pád rsit při pokusu o kontrolu

[knedle]

na jednom evidentne nemocnem pc chci spustit rsit.exe (32)

jde o win7 (32)

vypadne tento error:

http://awesomescreenshot.com/0006hwj6c

vzhledem k tomu, že rsit je pro mě základ vyčištění...

nějakej nápad?

[stell]

zdravim
Takto, ak sa vyznas ,tak preco sa pytas,??Inak to sem nepatri.podla mna RSIT si zakopal,treba to dat na plochu.

[knedle]

rsit padá i když je na ploše

[stell]

Tak treba spustit dalsi diagnosticky nastroj, napriklad OTL, teraz neviem ci to tu unas chces riesit,alebo ako to je??

[knedle]

zdravim
Takto, ak sa vyznas ,tak preco sa pytas,??

nevyznám se, jenom vždy začínám zde řešit problémy tím, že sem mrsknu log z rsit

což teď nemůžu...(když se nestustí a log nevytvoří)

...teraz neviem ci to tu unas chces riesit,alebo ako to je??

nějak nerozumím - jsem ve špatném fóru? můj problém bych neměl řešit v "řešení problémů, logy"

(ač je pravda, že zatím žádný log nemám...)

[stell]

No si na spravnom fore,ale ked si napisal toto:

vzhledem k tomu, že rsit je pro mě základ vyčištění...

Ja som to pochopil tak,ze chces to sam zmaknut

Ok
Stahni OTListIt2>> OTL
Označ položku Pro všechny uživatele.
Označ položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
do okna >vloz zeleny text a klik Klikn na tlačítko Prohledat
Po dokončení, sem vlož logy OTL.Txt a Extras.txt

Kód: Vybrat vše

msconfig
safebootminimal
activex
drivers32
netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\drivers\*.sys /90

[knedle]

otl.txt


OTL logfile created on: 26.1.2011 17:04:09 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\download
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 62,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 143,89 Gb Total Space | 34,90 Gb Free Space | 24,26% Space Free | Partition Type: NTFS
Drive F: | 979,70 Mb Total Space | 298,98 Mb Free Space | 30,52% Space Free | Partition Type: FAT

Computer Name: PUDIL-NT | User Name: pudil | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.01.26 16:37:20 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\download\OTL.exe
PRC - [2010.11.30 13:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010.11.11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010.06.17 06:55:00 | 003,680,568 | ---- | M] (Ghisler Software GmbH) -- C:\totalcmd\TOTALCMD.EXE
PRC - [2010.02.23 13:05:12 | 000,043,000 | ---- | M] (The PHP Group) -- C:\Program Files\Zend\ZendServer\bin\php-cgi.exe
PRC - [2010.02.23 13:05:08 | 000,027,240 | ---- | M] (Apache Software Foundation) -- C:\Program Files\Zend\Apache2\bin\httpd.exe
PRC - [2010.01.22 20:36:00 | 000,621,320 | ---- | M] (http://tortoisesvn.net) -- C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
PRC - [2009.12.03 20:28:08 | 000,026,112 | ---- | M] (LSI Corporation) -- C:\Program Files\LSI SoftModem\agrsmsvc.exe
PRC - [2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.07.14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.07.14 02:14:15 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
PRC - [2009.07.14 02:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2007.02.21 18:14:24 | 001,183,744 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2007.02.06 11:44:24 | 000,069,632 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AEADISRV.EXE


========== Modules (SafeList) ==========

MOD - [2011.01.26 16:37:20 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\download\OTL.exe
MOD - [2010.08.21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
MOD - [2009.07.14 02:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009.07.14 02:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009.07.14 02:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009.07.14 02:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009.07.14 02:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009.07.14 02:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009.07.14 02:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009.07.14 02:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (XobniService)
SRV - File not found [On_Demand | Stopped] -- -- (SwitchBoard)
SRV - [2011.01.25 14:51:12 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.11.11 12:26:42 | 000,206,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2010.11.11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010.11.02 05:36:16 | 000,801,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2010.09.22 15:33:04 | 000,051,040 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV - [2010.05.19 08:07:18 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.23 13:05:08 | 000,027,240 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\Zend\Apache2\bin\httpd.exe -- (Apache2.2-Zend)
SRV - [2010.01.15 20:26:52 | 006,066,176 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Zend\MySQL51\bin\mysqld.exe -- (MySQL_ZendServer51)
SRV - [2009.12.03 20:28:08 | 000,026,112 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2009.07.16 10:20:06 | 000,036,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\OpenVPN\bin\openvpnserv.exe -- (OpenVPNService)
SRV - [2009.07.14 02:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009.07.14 02:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009.07.14 02:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009.07.14 02:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009.07.14 02:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009.07.14 02:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 02:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc) Protokol PNRP (Peer Name Resolution Protocol)
SRV - [2009.07.14 02:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009.07.14 02:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009.07.14 02:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.07.14 02:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009.07.14 02:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009.07.14 02:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009.07.14 02:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009.07.14 02:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) Instalační program ovládacích prvků ActiveX (AxInstSV)
SRV - [2009.07.14 02:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009.07.14 02:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2007.05.31 16:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007.05.31 16:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2007.02.06 11:44:24 | 000,069,632 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AEADISRV.EXE -- (AEADIFilters)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Running] -- -- (catchme)
DRV - [2010.10.24 21:25:38 | 000,054,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2010.10.24 21:25:38 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010.06.15 15:53:28 | 000,025,656 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\hpdskflt.sys -- (hpdskflt)
DRV - [2010.06.15 15:53:12 | 000,033,848 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2010.06.04 01:18:58 | 001,303,728 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2010.02.05 09:41:36 | 000,009,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpdispm.sys -- (RDPDISPM)
DRV - [2010.01.26 17:38:06 | 001,163,328 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009.12.11 08:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009.12.03 16:48:44 | 000,625,224 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2009.09.23 18:18:14 | 004,808,192 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2009.07.16 10:20:26 | 000,025,984 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901.sys -- (tap0901)
DRV - [2009.07.14 02:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009.07.14 02:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009.07.14 02:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009.07.14 02:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009.07.14 02:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009.07.14 02:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009.07.14 02:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009.07.14 02:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009.07.14 02:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009.07.14 02:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009.07.14 02:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009.07.14 02:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009.07.14 02:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009.07.14 02:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009.07.14 02:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009.07.14 02:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009.07.14 02:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009.07.14 02:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009.07.14 02:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009.07.14 02:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009.07.14 02:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009.07.14 02:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009.07.14 02:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009.07.14 02:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009.07.14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009.07.14 02:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009.07.14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 02:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009.07.14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009.07.14 02:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009.07.14 02:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009.07.14 02:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009.07.14 02:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009.07.14 02:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009.07.14 02:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009.07.14 02:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009.07.14 02:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009.07.14 02:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009.07.14 01:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009.07.14 01:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009.07.14 01:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009.07.14 00:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009.07.14 00:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009.07.14 00:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009.07.14 00:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009.07.14 00:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci)
DRV - [2009.07.14 00:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009.07.14 00:51:23 | 000,080,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvuků USB (WDM)
DRV - [2009.07.14 00:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WINUSB)
DRV - [2009.07.14 00:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009.07.14 00:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009.07.14 00:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009.07.14 00:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009.07.14 00:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009.07.14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.14 00:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009.07.14 00:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009.07.14 00:12:52 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2009.07.14 00:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009.07.13 23:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.13 23:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009.07.13 23:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009.07.13 23:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009.07.13 23:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009.07.13 23:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009.07.13 23:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel(R)
DRV - [2009.07.13 23:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009.07.13 23:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009.07.13 23:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009.04.20 14:38:54 | 000,009,344 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPQBttn.sys -- (HBtnKey)
DRV - [2008.10.10 09:10:26 | 000,051,040 | ---- | M] (IPWireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ipw3gnet.sys -- (IpwP)
DRV - [2008.04.24 17:26:28 | 000,309,248 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2008.02.26 05:20:56 | 000,293,696 | ---- | M] (Magnetk LLC) [File_System | System | Running] -- C:\Windows\System32\drivers\SftpDrive.sys -- (SftpDrive)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-167061667-3415706156-1809765533-1217\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-167061667-3415706156-1809765533-1217\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs
IE - HKU\S-1-5-21-167061667-3415706156-1809765533-1217\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 22 1C 16 87 3B 11 CB 01 [binary data]
IE - HKU\S-1-5-21-167061667-3415706156-1809765533-1217\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-167061667-3415706156-1809765533-1217\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\S-1-5-21-167061667-3415706156-1809765533-1217\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = socks=localhost:666

========== FireFox ==========

FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=302398"
FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..extensions.enabledItems: foxmarks@kei.com:3.9.2
FF - prefs.js..extensions.enabledItems: {FFA36170-80B1-4535-B0E3-A4569E497DD0}:3.0.0
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.6.1
FF - prefs.js..extensions.enabledItems: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.14.2
FF - prefs.js..extensions.enabledItems: {394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}:1.2.0
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.9
FF - prefs.js..extensions.enabledItems: {6AC85730-7D0F-4de0-B3FA-21142DD85326}:2.2.2

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.01.25 20:13:05 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.12.11 19:23:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.7\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010.12.12 10:14:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.7\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2010.08.30 15:28:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Extensions
[2010.08.30 15:28:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011.01.26 11:47:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions
[2011.01.04 22:02:44 | 000,000,000 | ---D | M] (LightShot (screenshot tool)) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions\{394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}
[2010.10.14 12:33:09 | 000,000,000 | ---D | M] (Flashblock) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
[2010.09.13 08:29:20 | 000,000,000 | ---D | M] (ColorZilla) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}
[2010.12.16 12:28:01 | 000,000,000 | ---D | M] (Easy Youtube Video Downloader) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}
[2011.01.08 14:32:52 | 000,000,000 | ---D | M] (Web Developer) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2011.01.26 10:36:56 | 000,000,000 | ---D | M] (Toggle Web Developer Toolbar) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions\{c75a27d8-4529-449f-b67b-aba65d7a1c0a}
[2010.10.14 11:59:23 | 000,000,000 | ---D | M] (flashget3 Extension) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}
[2010.02.05 14:52:35 | 000,000,000 | ---D | M] (Mouse Gestures Redox) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions\{FFA36170-80B1-4535-B0E3-A4569E497DD0}
[2011.01.06 18:45:31 | 000,000,000 | ---D | M] (Firebug) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions\firebug@software.joehewitt.com
[2010.10.05 08:26:30 | 000,000,000 | ---D | M] ("Xmarks") -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\mozilla\Firefox\Profiles\fuqy2jq8.default\extensions\foxmarks@kei.com
[2010.03.05 19:01:14 | 000,001,692 | ---- | M] () -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Mozilla\Firefox\Profiles\fuqy2jq8.default\searchplugins\sfd.xml
[2011.01.26 11:47:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010.07.19 08:25:21 | 000,075,208 | ---- | M] (Foxit Software Company) -- C:\Program Files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
[2010.11.04 18:40:49 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.11.04 18:40:49 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.11.04 18:40:49 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.11.04 18:40:49 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.11.04 18:40:49 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2011.01.26 15:46:47 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll (www.flashget.com)
O2 - BHO: (FlashFXP Helper for Internet Explorer) - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\Program Files\FlashFXP\IEFlash.dll (IniCom Networks, Inc.)
O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll (www.flashget.com)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKU\S-1-5-21-167061667-3415706156-1809765533-1217..\Run: [NvCplDaemonTool] File not found
O4 - Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall LastPass RunOnce.lnk = C:\Users\Administrator\AppData\Roaming\lpuninstall.exe (LastPass)
O4 - Startup: C:\Users\pudil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall LastPass RunOnce.lnk = C:\Users\pudil\AppData\Roaming\lpuninstall.exe (LastPass)
O4 - Startup: C:\Users\vesely\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Uninstall LastPass RunOnce.lnk = C:\Users\vesely\AppData\Roaming\lpuninstall.exe (LastPass)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-167061667-3415706156-1809765533-1217\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-167061667-3415706156-1809765533-1217\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-167061667-3415706156-1809765533-1217\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\JC_ALL.HTM ()
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\JC_LINK.HTM ()
O8 - Extra context menu item: Html To Image - C:\Program Files\Html To Image\menu.htm ()
O8 - Extra context menu item: 使用快车3下载 - C:\Users\pudil.MODRY1DOM\AppData\Roaming\FlashGetBHO\GetUrl.htm ()
O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Users\pudil.MODRY1DOM\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()
O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.16.8 192.168.0.24
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = modry1dom.bluepixel.local
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corp.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: Themes - C:\Windows\System32\themeservice.dll (Microsoft Corporation)
NetSvcs: BDESVC - C:\Windows\System32\bdesvc.dll (Microsoft Corporation)

========== Files/Folders - Created Within 30 Days ==========

[2011.01.26 17:00:05 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011.01.26 16:47:59 | 000,000,000 | ---D | C] -- C:\ComboFix
[2011.01.26 16:47:38 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2011.01.26 16:37:28 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011.01.26 16:37:28 | 000,000,000 | ---D | C] -- C:\Users\pudil.MODRY1DOM\AppData\Local\temp
[2011.01.26 15:34:32 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011.01.26 15:34:32 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011.01.26 15:34:32 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011.01.26 15:34:24 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011.01.26 15:33:52 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.01.26 15:27:59 | 000,000,000 | ---D | C] -- C:\ProgramData\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}
[2011.01.26 15:23:21 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.01.26 14:19:20 | 000,000,000 | ---D | C] -- C:\ProgramData\RegInOut
[2011.01.26 14:18:50 | 000,000,000 | ---D | C] -- C:\Windows\RegInOut
[2011.01.26 13:41:54 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2011.01.26 13:26:59 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2011.01.26 13:23:08 | 000,000,000 | ---D | C] -- C:\Users\pudil.MODRY1DOM\AppData\Local\Apps
[2011.01.25 20:30:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2011.01.25 20:28:36 | 000,000,000 | ---D | C] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Adobe
[2011.01.25 19:10:56 | 000,000,000 | ---D | C] -- C:\Windows\Temp13059729-87B6-F74C-41DC-9BE1855B9D54-Signatures
[2011.01.25 19:09:59 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011.01.25 19:09:08 | 000,240,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2011.01.25 19:01:09 | 000,000,000 | ---D | C] -- C:\Users\pudil.MODRY1DOM\Photoshop
[2011.01.25 17:12:37 | 000,098,392 | ---- | C] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2011.01.25 17:09:21 | 000,000,000 | ---D | C] -- C:\Users\pudil.MODRY1DOM\AppData\Local\Sunbelt Software
[2011.01.25 17:07:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2011.01.25 16:41:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2011.01.25 16:41:23 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011.01.25 16:31:12 | 000,000,000 | ---D | C] -- C:\Users\pudil.MODRY1DOM\AppData\Local\Immunet
[2011.01.25 16:31:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Immunet
[2011.01.25 16:30:24 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2011.01.25 16:18:42 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.01.25 16:18:41 | 000,000,000 | ---D | C] -- C:\rsit
[2011.01.25 15:15:08 | 000,000,000 | ---D | C] -- C:\Users\pudil.MODRY1DOM\Documents\Version Cue
[2011.01.25 15:15:07 | 000,000,000 | ---D | C] -- C:\Users\pudil.MODRY1DOM\Documents\AdobeStockPhotos
[2011.01.25 15:14:51 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2011.01.25 15:09:19 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011.01.25 14:51:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
[2011.01.25 14:10:31 | 000,000,000 | ---D | C] -- C:\pub
[2011.01.25 10:13:58 | 000,000,000 | ---D | C] -- C:\Users\pudil.MODRY1DOM\AppData\Local\Adobe
[2011.01.12 09:11:59 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.01.12 09:11:59 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.01.12 09:11:59 | 000,801,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.01.12 09:11:59 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.01.12 09:11:59 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2011.01.12 09:11:58 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.01.12 09:11:58 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.01.12 09:11:57 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2011.01.12 09:11:57 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2011.01.12 09:11:57 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.01.12 09:11:57 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.01.12 09:11:57 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.01.12 09:11:55 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2011.01.02 15:55:15 | 000,000,000 | ---D | C] -- C:\Users\pudil.MODRY1DOM\Documents\Tipard Studio
[2011.01.02 15:54:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tipard
[2011.01.02 15:54:54 | 000,000,000 | ---D | C] -- C:\Program Files\Tipard Studio
[2010.01.17 16:54:46 | 006,637,057 | ---- | C] (Aone Software ) -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\ultra_aviconverter.exe

========== Files - Modified Within 30 Days ==========

[2011.01.26 16:53:24 | 000,636,646 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2011.01.26 16:53:24 | 000,621,012 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.01.26 16:53:24 | 000,124,104 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2011.01.26 16:53:24 | 000,108,232 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.01.26 16:51:45 | 000,022,992 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.01.26 16:51:45 | 000,022,992 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.01.26 16:46:52 | 000,000,934 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.01.26 16:46:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.01.26 16:46:12 | 2409,078,784 | -HS- | M] () -- C:\hiberfil.sys
[2011.01.26 15:46:47 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011.01.26 15:39:24 | 000,000,938 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.01.26 15:37:02 | 000,000,982 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-167061667-3415706156-1809765533-1217UA.job
[2011.01.26 15:29:16 | 003,696,040 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.01.26 15:24:47 | 000,834,096 | ---- | M] () -- C:\cc_20110126_152430.reg
[2011.01.26 15:23:22 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.01.26 13:56:30 | 000,001,224 | ---- | M] () -- C:\Users\Public\Desktop\Google Calendar.lnk
[2011.01.26 13:56:29 | 000,002,156 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Google Calendar Sync.lnk
[2011.01.26 13:37:02 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-167061667-3415706156-1809765533-1217Core.job
[2011.01.26 13:30:18 | 000,000,640 | ---- | M] () -- C:\scandisk.lnk
[2011.01.26 13:25:31 | 000,123,484 | -H-- | M] () -- C:\treeinfo.wc
[2011.01.25 20:31:23 | 000,001,283 | ---- | M] () -- C:\Users\pudil.MODRY1DOM\Desktop\PhotoshopCS4Portable – zástupce (2).lnk
[2011.01.25 20:31:03 | 000,001,283 | ---- | M] () -- C:\Users\pudil.MODRY1DOM\Desktop\PhotoshopCS4Portable – zástupce.lnk
[2011.01.25 19:39:26 | 000,050,721 | ---- | M] () -- C:\FontTest (1).jsx
[2011.01.25 19:12:20 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011.01.25 19:00:36 | 000,050,721 | ---- | M] () -- C:\FontTest.jsx
[2011.01.25 17:12:21 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2011.01.25 09:56:50 | 000,000,600 | ---- | M] () -- C:\Users\pudil.MODRY1DOM\AppData\Local\PUTTY.RND
[2011.01.24 15:32:49 | 000,001,204 | ---- | M] () -- C:\dluzis.html
[2011.01.24 15:23:21 | 000,006,809 | ---- | M] () -- C:\error.png
[2011.01.21 15:13:32 | 000,002,088 | -H-- | M] () -- C:\Users\pudil.MODRY1DOM\Documents\Default.rdp
[2011.01.21 10:42:37 | 000,010,962 | ---- | M] () -- C:\elfinder.cs.js
[2011.01.21 10:41:58 | 000,072,630 | ---- | M] () -- C:\elfinder.cs_1_.js.htm
[2011.01.20 19:34:56 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2011.01.20 12:25:47 | 000,022,528 | ---- | M] () -- C:\potvrzeni o prevzeti.doc
[2011.01.19 15:44:32 | 013,865,593 | ---- | M] () -- C:\PaySecLogoManual.pdf
[2011.01.14 05:37:42 | 000,002,409 | ---- | M] () -- C:\Users\pudil.MODRY1DOM\Desktop\Google Chrome.lnk
[2011.01.13 21:21:13 | 000,112,716 | ---- | M] () -- C:\marcelaportret.jpg
[2011.01.12 14:26:53 | 009,179,908 | ---- | M] () -- C:\mandarin2.psd
[2011.01.12 14:16:12 | 000,082,624 | ---- | M] () -- C:\mandarin4.jpg
[2011.01.12 14:02:58 | 000,081,522 | ---- | M] () -- C:\mandarin3.jpg
[2011.01.12 13:59:37 | 000,096,192 | ---- | M] () -- C:\mandarin2.jpg
[2011.01.12 09:36:02 | 000,000,786 | RHS- | M] () -- C:\Users\pudil.MODRY1DOM\ntuser.pol
[2011.01.08 19:15:46 | 000,233,407 | ---- | M] () -- C:\test.rar
[2011.01.08 15:05:42 | 000,000,876 | ---- | M] () -- C:\Sešit3.csv
[2011.01.08 15:00:09 | 000,001,210 | ---- | M] () -- C:\Sešit2.csv
[2011.01.08 14:53:27 | 000,003,076 | ---- | M] () -- C:\Sešit1.csv
[2011.01.06 18:31:04 | 000,000,427 | ---- | M] () -- C:\derp.html
[2011.01.06 18:27:38 | 000,053,321 | ---- | M] () -- C:\derp.jpg
[2011.01.05 17:06:24 | 000,082,515 | ---- | M] () -- C:\Screenshot_1.png
[2011.01.04 14:38:31 | 000,049,664 | ---- | M] () -- C:\provize-kobera-2010.xls
[2011.01.03 11:32:37 | 000,000,753 | ---- | M] () -- C:\hama-201012.csv
[2011.01.02 16:28:56 | 015,147,335 | ---- | M] () -- C:\anna-20110101.mkv
[2011.01.02 15:54:59 | 000,001,263 | ---- | M] () -- C:\Users\pudil.MODRY1DOM\Desktop\Tipard TS Converter.lnk

========== Files Created - No Company Name ==========

[2011.01.26 15:34:32 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2011.01.26 15:34:32 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011.01.26 15:34:32 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
[2011.01.26 15:34:32 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011.01.26 15:34:32 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011.01.26 15:24:40 | 000,834,096 | ---- | C] () -- C:\cc_20110126_152430.reg
[2011.01.26 15:23:22 | 000,000,965 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.01.26 13:56:30 | 000,001,224 | ---- | C] () -- C:\Users\Public\Desktop\Google Calendar.lnk
[2011.01.26 13:56:29 | 000,002,156 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Google Calendar Sync.lnk
[2011.01.26 13:29:36 | 000,000,352 | -H-- | C] () -- C:\Windows\nod32fixtemdono.reg
[2011.01.25 20:31:23 | 000,001,283 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\Desktop\PhotoshopCS4Portable – zástupce (2).lnk
[2011.01.25 20:31:03 | 000,001,283 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\Desktop\PhotoshopCS4Portable – zástupce.lnk
[2011.01.25 19:39:31 | 000,050,721 | ---- | C] () -- C:\FontTest (1).jsx
[2011.01.25 19:12:20 | 000,001,945 | ---- | C] () -- C:\Windows\epplauncher.mif
[2011.01.25 19:00:46 | 000,050,721 | ---- | C] () -- C:\FontTest.jsx
[2011.01.25 16:55:32 | 000,009,952 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\Adobe CS5 Cleaner Tool.log
[2011.01.25 15:43:33 | 000,000,640 | ---- | C] () -- C:\scandisk.lnk
[2011.01.25 15:13:09 | 000,001,095 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS3.lnk
[2011.01.25 15:07:12 | 000,001,181 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Stock Photos CS3.lnk
[2011.01.25 15:03:12 | 000,001,361 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk
[2011.01.25 15:02:25 | 000,001,150 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk
[2011.01.25 14:55:17 | 000,001,057 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk
[2011.01.24 15:23:43 | 000,006,809 | ---- | C] () -- C:\error.png
[2011.01.24 15:22:03 | 000,001,204 | ---- | C] () -- C:\dluzis.html
[2011.01.21 10:42:37 | 000,010,962 | ---- | C] () -- C:\elfinder.cs.js
[2011.01.21 10:41:57 | 000,072,630 | ---- | C] () -- C:\elfinder.cs_1_.js.htm
[2011.01.20 12:24:19 | 000,022,528 | ---- | C] () -- C:\potvrzeni o prevzeti.doc
[2011.01.19 15:45:11 | 013,865,593 | ---- | C] () -- C:\PaySecLogoManual.pdf
[2011.01.13 21:21:13 | 000,112,716 | ---- | C] () -- C:\marcelaportret.jpg
[2011.01.12 14:16:11 | 000,082,624 | ---- | C] () -- C:\mandarin4.jpg
[2011.01.12 14:02:57 | 000,081,522 | ---- | C] () -- C:\mandarin3.jpg
[2011.01.12 13:59:49 | 009,179,908 | ---- | C] () -- C:\mandarin2.psd
[2011.01.12 13:59:36 | 000,096,192 | ---- | C] () -- C:\mandarin2.jpg
[2011.01.08 19:15:44 | 000,233,407 | ---- | C] () -- C:\test.rar
[2011.01.08 14:53:24 | 000,003,076 | ---- | C] () -- C:\Sešit1.csv
[2011.01.06 18:29:44 | 000,000,427 | ---- | C] () -- C:\derp.html
[2011.01.06 18:27:31 | 000,053,321 | ---- | C] () -- C:\derp.jpg
[2011.01.05 20:44:40 | 000,000,876 | ---- | C] () -- C:\Sešit3.csv
[2011.01.05 19:25:32 | 000,001,210 | ---- | C] () -- C:\Sešit2.csv
[2011.01.05 17:06:24 | 000,082,515 | ---- | C] () -- C:\Screenshot_1.png
[2011.01.04 14:07:46 | 000,049,664 | ---- | C] () -- C:\provize-kobera-2010.xls
[2011.01.03 11:31:36 | 000,000,753 | ---- | C] () -- C:\hama-201012.csv
[2011.01.02 16:28:33 | 015,147,335 | ---- | C] () -- C:\anna-20110101.mkv
[2011.01.02 15:54:59 | 000,001,263 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\Desktop\Tipard TS Converter.lnk
[2010.10.12 14:38:42 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2010.09.08 21:23:37 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll
[2010.09.08 21:18:04 | 000,000,132 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Adobe Formát BMP CS5 – předvolby
[2010.06.22 15:40:52 | 000,000,064 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\AppData\Local\xobni_installer_updater.log
[2010.06.15 08:36:59 | 000,001,480 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\AppData\Local\Adobe Uložit pro web 12.0 Prefs
[2010.06.04 14:03:42 | 000,000,600 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\winscp.rnd
[2010.05.14 16:07:51 | 000,129,024 | ---- | C] () -- C:\Windows\System32\AVERM.dll
[2010.05.14 16:07:51 | 000,028,672 | ---- | C] () -- C:\Windows\System32\AVEQT.dll
[2010.05.14 15:47:10 | 000,003,584 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.12 22:56:10 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010.03.07 16:53:04 | 001,481,728 | ---- | C] () -- C:\Windows\System32\LegitCheckControl.dll
[2010.03.07 16:53:04 | 000,190,976 | ---- | C] () -- C:\Windows\System32\WgaLogon.dll
[2010.02.13 16:23:13 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2010.02.13 16:23:09 | 000,881,664 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010.02.13 16:23:09 | 000,205,824 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010.02.13 16:23:08 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2010.02.13 16:23:06 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2010.02.10 11:20:17 | 000,610,304 | -HS- | C] () -- C:\Windows\System32\jloadnA6.dll
[2010.02.08 12:02:48 | 000,000,600 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\AppData\Local\PUTTY.RND
[2010.02.05 09:42:45 | 000,001,037 | ---- | C] () -- C:\Users\pudil.MODRY1DOM\AppData\Local\Account.atomsvc
[2010.02.04 12:46:21 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll
[2010.02.04 12:26:06 | 000,007,884 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009.12.02 19:39:02 | 020,317,504 | ---- | C] () -- C:\Windows\System32\TrueSuiteCoInst02020000.dll
[2009.07.14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2006.03.09 16:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2005.10.14 10:56:50 | 000,921,600 | ---- | C] () -- C:\Windows\System32\VorbisEnc.dll
[2005.10.14 10:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2005.10.14 10:56:50 | 000,237,568 | ---- | C] () -- C:\Windows\System32\OggDS.dll
[2005.10.14 10:56:50 | 000,188,416 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2005.10.14 10:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2005.10.14 10:56:50 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ogg.dll

========== LOP Check ==========

[2010.02.04 19:25:22 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\GHISLER
[2010.02.04 19:27:19 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Launchy
[2011.01.26 10:55:44 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\AIMP
[2010.04.05 10:40:16 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\BatteryCare
[2010.12.10 16:04:54 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\BITS
[2010.12.17 10:48:40 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\FileZilla
[2010.09.22 10:07:07 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\FlashFXP
[2010.10.12 14:48:21 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\FlashGet
[2010.10.12 14:38:11 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\FlashGetBHO
[2010.07.19 08:26:06 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Foxit Software
[2010.08.03 08:23:16 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\GARMIN
[2010.02.04 20:25:29 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\GHISLER
[2010.08.03 17:51:31 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\IBP
[2010.03.19 14:14:26 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\IrfanView
[2010.02.04 19:12:13 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Launchy
[2010.02.04 19:53:01 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Miranda
[2010.07.25 19:53:34 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Offline Explorer
[2010.04.27 08:48:49 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Opera
[2010.08.17 08:04:05 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\postgresql
[2010.02.05 14:52:25 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\SpamBayes
[2010.06.15 08:08:31 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010.02.05 13:07:59 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Subversion
[2010.03.04 15:37:54 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Thinstall
[2010.08.30 15:28:35 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Thunderbird
[2010.02.15 15:14:13 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\Trillian
[2010.07.25 19:42:06 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\UltraGet
[2010.09.30 07:58:12 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\X-Chat 2
[2010.12.09 18:27:02 | 000,000,000 | ---D | M] -- C:\Users\pudil.MODRY1DOM\AppData\Roaming\XnView
[2009.07.14 05:53:46 | 000,029,942 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >

[knedle]

extra.txt


OTL Extras logfile created on: 26.1.2011 17:04:09 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\download
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 62,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 143,89 Gb Total Space | 34,90 Gb Free Space | 24,26% Space Free | Partition Type: NTFS
Drive F: | 979,70 Mb Total Space | 298,98 Mb Free Space | 30,52% Space Free | Partition Type: FAT

Computer Name: PUDIL-NT | User Name: pudil | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-167061667-3415706156-1809765533-1217\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [Browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [Browse with XnView] -- "C:\Program Files\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\GloballyOpenPorts]
"AllowUserPrefMerge" = 1
"Enabled" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\GloballyOpenPorts\List]
"4104:UDP:192.168.0.0/24:enabled:CAM" = 4104:UDP:192.168.0.0/24:enabled:CAM
"4728:TCP:192.168.0.0/16:enabled:CAF" = 4728:TCP:192.168.0.0/16:enabled:CAF

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\IcmpSettings]
"AllowOutboundDestinationUnreachable" = 0
"AllowOutboundSourceQuench" = 0
"AllowRedirect" = 0
"AllowInboundEchoRequest" = 1
"AllowInboundRouterRequest" = 0
"AllowOutboundTimeExceeded" = 0
"AllowOutboundParameterProblem" = 0
"AllowInboundTimestampRequest" = 0
"AllowInboundMaskRequest" = 0
"AllowOutboundPacketTooBig" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\RemoteAdminSettings]
"Enabled" = 1
"RemoteAddresses" = 192.168.0.0/16

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Services\FileAndPrint]
"Enabled" = 1
"RemoteAddresses" = 192.168.0.0/16

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\FlashFXP\FlashFXP.exe" = C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- (IniCom Networks, Inc.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\xchat\xchat.exe" = C:\Program Files\xchat\xchat.exe:*:Enabled:XChat IRC Client -- ()
"C:\Program Files\FlashFXP\FlashFXP.exe" = C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- (IniCom Networks, Inc.)
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{00BA866C-F2A2-4BB9-A308-3DFA695B6F7C}" = Java DB 10.5.3.0
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{0891B708-EF3F-4D7E-9724-265245F46276}" = Windows Live Remote Service Resources
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0E339AAF-263A-4E51-8CFB-58FFD93C3F67}" = STORMWARE POHODA CZ Start
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{15F4085A-BC98-4590-AFFD-03BBBE49524E}" = Garmin Communicator Plugin
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1BBD8D70-721A-41AD-AC8F-7308A0C8FA92}" = Adobe Creative Suite 5 Master Collection
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 18
"{281F16DE-F405-F00E-C4C3-522609D41986}" = PLi_PDA
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{30DE52AF-3186-4396-883B-E3AFC7E522BB}" = pgAdmin III 1.10
"{32A3A4F4-B792-11D6-A78A-00B0D0160180}" = Java(TM) SE Development Kit 6 Update 18
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D7E3EC9-46CF-4359-9289-39CE01DFB82F}" = Adobe Photoshop CS3
"{3E92DCCC-A2F0-4C27-A5B9-B3B1A2143149}" = HP 3D DriveGuard
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{454F5782-A4C3-480E-A629-D435795DEFD8}" = Windows Live Remote Client Resources
"{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}" = Windows Live UX Platform Language Pack
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5DC6B387-DCD5-4B66-B866-434020FF2ECC}" = TortoiseSVN 1.6.7.18415 (32 bit)
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{6421F085-1FAA-DE13-D02A-CFB412C522A4}" = Acrobat.com
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{65F9E1F3-A2C1-4AA9-9F33-A3AEB0255F0E}" = Garmin USB Drivers
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69DAC00A-7665-4E9B-B441-093D40736429}" = HP BatteryCheck 2.10 A2
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware
"{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}" = Microsoft Security Client
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{86490974-8847-4067-88F3-F428DD418C1B}" = Zend Server
"{87CC8013-56D1-43E1-A0A5-AD406B4EBA95}" = Opera 10.63
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A91ACA8-3811-49CC-8F5C-1A5C369D0455}" = STORMWARE POHODA CZ Start
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8DC069E7-893C-41E1-9442-DE89FEC33371}" = Xobni Core
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8E7A8F89-9A8C-48A5-8A03-BDAE191D7B1A}" = MySQL Server 5.1
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISER_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISER_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISER_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISER_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISER_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISER_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISER_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISER_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISER_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISER_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISER_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISER_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISER_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{904CCF62-818D-4675-BC76-D37EB399F917}" = Centrum zařízení Windows Mobile
"{91120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-0052-0409-0000-0000000FF1CE}" = Microsoft Office Visio Viewer 2007
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-007A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{96E3AED5-3D0B-4BB0-84C2-1EDADB204487}" = FlashFXP v3
"{97F81AF1-0E47-DC99-FF1F-C8B3B9A1E18E}" = Visual C++ 8.0 ATL (x86) WinSXS MSM
"{98CB24AD-52FB-DB5F-FF1F-C8B3B9A1E18E}" = Visual C++ 8.0 CRT (x86) WinSXS MSM
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A4B308CA-8235-404D-8876-8A73BA4497B1}" = BatteryCare
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B3A352A9-58C7-4E8E-A7CE-52E54E7A3539}" = STORMWARE POHODA CZ Start
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D6C9AF27-9414-46C8-B9D8-D878BA041029}" = Nero 8
"{D88C3E7C-1DA6-4AD7-97FC-75BC8705B266}" = runtime
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E5484836-E51C-4423-A663-12B9DDD50DE6}" = Garmin BaseCamp
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E6C44758-FF49-47D1-8182-65E3818ACE23}" = AuthenTec TrueSuite
"{E7044E25-3038-4A76-9064-344AC038043E}" = Aktualizace ovladače pro aplikaci Centrum zařízení Windows Mobile
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FD241BDF-BBCD-4654-A00A-0893D0079F2A}" = STORMWARE POHODA CZ Start
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF11004C-F42A-4A31-9BCF-7F5C8FDBE53C}" = Adobe Setup
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AIMP2" = AIMP2
"Bouquet Editor Suite_is1" = Bouquet Editor Suite Uninstall
"CaptureOne5_is1" = Capture One 5.1
"CCleaner" = CCleaner
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"DreamBoxEdit" = DreamBoxEdit -- The one and only settings editor for your Dreambox
"ENTERPRISER" = Microsoft Office Enterprise 2007
"FlashGet" = FlashGet 1.9.6.1073
"Foxit Reader" = Foxit Reader
"Google Calendar Sync" = Google Calendar Sync
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"Html To Image_is1" = Html To Image 2.0
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"InstallShield_{86490974-8847-4067-88F3-F428DD418C1B}" = Zend Server Community Edition
"IrfanView" = IrfanView (remove only)
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 5.7.0
"Launchy_21344213_is1" = Launchy 2.1.2
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"Mozilla Thunderbird (3.1.7)" = Mozilla Thunderbird (3.1.7)
"nbi-nb-base-6.9.0.0.0" = NetBeans IDE 6.9
"NOD32 v3.x FiX 1.1 by TemDono_is1" = NOD32 v3.x FiX 1.1 by TemDono (Free Updates - Expire in 2050)
"OpenVPN" = OpenVPN 2.1_rc19
"PLi-PDA.DFAD1A8E61E9D7BA5ACCAF1FEF32FE0627DED4D0.1" = PLi_PDA
"PSPad editor_is1" = PSPad editor
"SftpDrive" = SftpDrive
"SpamBayes_is1" = SpamBayes 1.0.4
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Teleport Pro" = Teleport Pro
"Tipard TS Converter_is1" = Tipard TS Converter
"Totalcmd" = Total Commander (Remove or Repair)
"Trillian" = Trillian
"TVWiz" = Intel(R) TV Wizard
"Ultra AVI Converter_is1" = Ultra AVI Converter 5.2.1022
"Ultra Video Converter_is1" = Ultra Video Converter 4.6.0504
"VLC media player" = VLC media player 1.0.5
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"winscp3_is1" = WinSCP 4.2.7
"xchat" = XChat 2 (remove only)
"XnView_is1" = XnView 1.97.8

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-167061667-3415706156-1809765533-1217\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"FileZilla Client" = FileZilla Client 3.3.4.1
"Google Chrome" = Google Chrome
"NCS Navigator" = NCS Navigator

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 25.1.2011 20:59:02 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = SideBySide | ID = 16842815
Description = Generování kontextu aktivace pro c:\Program Files\Common Files\Adobe
AIR\Versions\1.0\Adobe AIR.dll se nezdařilo. Chyba v souboru manifestu nebo zásady
c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll na řádku 3. Hodnota
MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version
v prvku assemblyIdentity je neplatná.

Error - 25.1.2011 20:59:11 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files\phase one\capture
one 5\Drivers\Leaf\dpinst_x64.exe se nezdařilo. Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 26.1.2011 8:41:42 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Microsoft-Windows-RestartManager | ID = 10006
Description = Aplikaci nebo službu Eset Service nelze ukončit.

Error - 26.1.2011 8:44:22 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Microsoft-Windows-RestartManager | ID = 10007
Description = Aplikaci nebo službu Eset Service nelze restartovat.

Error - 26.1.2011 8:45:42 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = RapiMgr | ID = 8
Description = Zařízení se systémem Windows Mobile se nepodařilo připojit z důvodu
chyby communication (0x80072745) (viz data pro kód chyby).

Error - 26.1.2011 8:57:24 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = MsiInstaller | ID = 11723
Description =

Error - 26.1.2011 9:29:06 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = RapiMgr | ID = 8
Description = Zařízení se systémem Windows Mobile se nepodařilo připojit z důvodu
chyby communication (0x80072745) (viz data pro kód chyby).

Error - 26.1.2011 11:25:08 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = VSS | ID = 18
Description =

Error - 26.1.2011 11:25:08 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = VSS | ID = 8193
Description =

Error - 26.1.2011 11:25:08 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = System Restore | ID = 8193
Description =

[ OSession Events ]
Error - 17.2.2010 4:43:24 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 482457
seconds with 5700 seconds of active time. This session ended with a crash.

Error - 30.6.2010 13:31:55 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 125670
seconds with 9600 seconds of active time. This session ended with a crash.

Error - 30.6.2010 13:32:19 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 13
seconds with 0 seconds of active time. This session ended with a crash.

Error - 16.7.2010 2:03:38 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 125465
seconds with 6840 seconds of active time. This session ended with a crash.

Error - 28.7.2010 2:53:11 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 63746
seconds with 840 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 26.1.2011 11:21:37 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = DCOM | ID = 10005
Description =

Error - 26.1.2011 11:21:43 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = DCOM | ID = 10005
Description =

Error - 26.1.2011 11:21:44 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = DCOM | ID = 10005
Description =

Error - 26.1.2011 11:21:44 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = DCOM | ID = 10005
Description =

Error - 26.1.2011 11:25:08 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = DCOM | ID = 10005
Description =

Error - 26.1.2011 11:27:26 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 26.1.2011 11:35:30 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 26.1.2011 11:48:50 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Service Control Manager | ID = 7034
Description = Služba MySQL_ZendServer51 byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 26.1.2011 11:48:51 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 26.1.2011 11:58:37 | Computer Name = pudil-nt.modry1dom.bluepixel.local | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.


< End of report >

[knedle]

jo a imho ta svine je

C:\Windows\System32\jloadnA6.dll

[stell]

1: Nespravil si log tak ako som napisal.
2:Vidim ze si spustal combofix, vloz sem log z combofixu.

[knedle]

combofix totiz take nedobehl

nicmene - majitel pc si s problemem nakonec přes noc poradil i beze me (a tudiz tohoto vlakna) - pomoci Malwarebytes' Anti-Malware

ktery vyse zmineny odhalil a sejmul


diky za cas a rady

[stell]

Nemas zaco.