Dobrý den,
prosím o kontrolu logu, notebook nemám dlouho, ale spoustu věcí jsem instaloval a přidával.
Předem děkuji Marek "echo"
Logfile of random's system information tool 1.09 (written by random/random)
Run by Marek at 2011-10-11 19:40:01
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 15 GB (30%) free of 51 GB
Total RAM: 3990 MB (50% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:40:12, on 11.10.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Users\Marek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\Marek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\Marek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111010152623.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-580890379-3430277850-3007477444-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-580890379-3430277850-3007477444-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~2\mcafee\msc\mcsniepl.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: 1% (MOBKbackup) - McAfee, Inc. - C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14446 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
winlogon.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 23197296
\??\C:\Windows\system32\conhost.exe "186287547-1262938235-1110408793-1809123919-926556263-1244869508-472585697548491829
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\Windows\system32\mfevtps.exe"
"C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe" SERVICE
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll" saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll" saHooker_Initialize_and_Wait
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
WLIDSvcM.exe 2092
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE" C:\Users\Marek
"C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE"
"C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX3
"C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\WINDOWS\System32\igfxtray.exe"
"C:\WINDOWS\System32\hkcmd.exe"
"C:\WINDOWS\System32\igfxpers.exe"
"C:\Program Files\McAfee\MAT\McPvTray.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe"
"C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe" /wts 2516 484 488
C:\Windows\system32\vssvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"c:\PROGRA~1\mcafee\msc\mcupdmgr.exe" -Embedding
C:\Windows\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Opera\opera.exe"
"C:\Users\Marek\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Marek\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Default_Prefix/WarmSocketImpact/warmest_socket/ --disable-client-side-phishing-detection --enable-print-preview --channel=2224.029EC160.3548539 --ignored=" --type=renderer " /prefetch:3
"C:\Users\Marek\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.40.135.1_0\McChPlg.dll" --lang=cs --channel=2224.0771DE00.692497356 /prefetch:4
"C:\Users\Marek\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Default_Prefix/WarmSocketImpact/warmest_socket/ --disable-client-side-phishing-detection --enable-print-preview --channel=2224.042C29A0.447140225 /prefetch:3
C:\Windows\system32\rundll32.exe "C:\Users\Marek\AppData\Local\Google\Chrome\APPLIC~1\140835~1.202\gcswf32.dll",BrokerMain browser=chrome
"C:\Users\Marek\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Marek\AppData\Local\Google\Chrome\Application\14.0.835.202\gcswf32.dll" --lang=cs --channel=2224.079C7380.553825092 --flash-broker=8516 /prefetch:4
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3684.a969d30.573474903 "C:\Program Files (x86)\McAfee\SiteAdvisor\NPMcFFPlg32.dll" Mozilla.Firefox.7.0.1 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.jar" 3684 "\\.\pipe\gecko-crash-server-pipe.3684" plugin
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3684.198472e0.114558495 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" Mozilla.Firefox.7.0.1 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.jar" 3684 "\\.\pipe\gecko-crash-server-pipe.3684" plugin
"C:\Users\Marek\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001UA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, personas@christopher.beard:1.6.2, bkmrksync@nokia.com:1.0.0.736, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15"
prefs.js - "keyword.URL" - "http://search.yahoo.com/search?fr=mcafee&p="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\progra~2\mcafee\msc\npmcsn~1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/SAFFPlugin]
"Description"=
"Path"=C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@parallelgraphics.com/Cortona]
"Description"=Cortona VRML Plugin
"Path"=C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona\npCortona.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@virtools.com/3DviaPlayer]
"Description"=3Dvia Player For Mozilla Based Broswer
"Path"=C:\Program Files (x86)\Virtools\3D Life Player\npvirtools.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
npCortona.xpt
nsIQTScriptablePlugin.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npCortona.dll
nppdf32.DEU
nppdf32.dll
nppdf32.FRA
nppdf32.JPN
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
McSiteAdvisor.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\
crawlersrch.xml
facebook.xml
icqplugin.xml
live-search.xml
qip-search.xml
zbocz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20111010152623.dll [2011-08-19 94424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2011-08-11 317336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-13 49440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111010152623.dll [2011-08-19 79480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2011-08-11 258120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-08-03 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2011-08-11 317336]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2011-08-11 258120]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-12-17 2531624]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2011-02-19 6611048]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-01-19 2188904]
"FreeFallProtection"=C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [2010-12-17 686704]
"NVHotkey"=C:\Windows\system32\nvHotkey.dll [2011-08-03 335976]
"QuickSet"=c:\Program Files\Dell\QuickSet\QuickSet.exe [2011-01-25 4479648]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-03-30 167960]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-03-30 391704]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-03-30 418840]
"McPvTray_exe"=C:\Program Files\McAfee\MAT\McPvTray.exe [2011-04-08 436384]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-09-05 35736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-07-22 402432]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell Webcam Central]
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2011-08-12 520330]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop Disc Tool]
C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [2010-11-17 514544]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Marek\AppData\Local\Google\Update\GoogleUpdate.exe [2011-05-30 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelWireless]
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-12-17 1933584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroLauncher]
C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe [2011-07-07 75064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
E:\Programy\QuickTime\QTTask.exe [2011-07-05 421888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray]
C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [2010-11-25 240112]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TNOD UP]
C:\Program Files (x86)\TNod User & Password Finder\TNODUP.exe /i []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []
"Dell DataSafe Online"=C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [2010-08-26 1117528]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2011-09-10 1671824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-03-26 385024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2011-10-11 19:40:01 ----D---- C:\rsit
2011-10-11 19:40:01 ----D---- C:\Program Files\trend micro
2011-10-10 15:27:15 ----D---- C:\Program Files (x86)\McAfeeMOBK
2011-10-10 15:27:12 ----A---- C:\Windows\system32\drivers\MOBK.sys
2011-10-10 15:27:11 ----D---- C:\Program Files (x86)\McAfee Online Backup
2011-10-10 15:27:01 ----A---- C:\Windows\system32\drivers\McPvDrv.sys
2011-10-10 15:26:40 ----D---- C:\Program Files (x86)\McAfee.com
2011-10-10 15:26:22 ----A---- C:\Windows\system32\drivers\mfeclnk.sys
2011-10-10 15:26:05 ----A---- C:\Windows\system32\drivers\mfewfpk.sys
2011-10-10 15:26:05 ----A---- C:\Windows\system32\drivers\mferkdet.sys
2011-10-10 15:26:05 ----A---- C:\Windows\system32\drivers\mfenlfk.sys
2011-10-10 15:26:05 ----A---- C:\Windows\system32\drivers\mfefirek.sys
2011-10-10 15:26:05 ----A---- C:\Windows\system32\drivers\mfeavfk.sys
2011-10-10 15:26:05 ----A---- C:\Windows\system32\drivers\cfwids.sys
2011-10-10 15:25:59 ----D---- C:\Program Files\McAfee.com
2011-10-10 15:25:59 ----D---- C:\Program Files\McAfee
2011-10-10 15:25:59 ----D---- C:\Program Files\Common Files\McAfee
2011-10-10 15:25:53 ----D---- C:\Program Files (x86)\McAfee
2011-10-10 15:12:36 ----A---- C:\Windows\system32\mfevtps.exe
2011-10-09 18:17:10 ----D---- C:\ProgramData\Bluetooth
2011-10-04 13:40:30 ----D---- C:\Users\Marek\AppData\Roaming\Reallusion
2011-09-26 22:50:43 ----D---- C:\Users\Marek\AppData\Roaming\NVIDIA
2011-09-26 18:32:03 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2011-09-26 18:32:03 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2011-09-26 18:32:03 ----A---- C:\Windows\SYSWOW64\nvoptimusmft.dll
2011-09-26 18:32:03 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2011-09-26 18:32:03 ----A---- C:\Windows\SYSWOW64\nvdecodemft.dll
2011-09-26 18:32:03 ----A---- C:\Windows\system32\OpenCL.dll
2011-09-26 18:32:03 ----A---- C:\Windows\system32\nvwgf2umx.dll
2011-09-26 18:32:03 ----A---- C:\Windows\system32\nvoptimusmft.dll
2011-09-26 18:32:03 ----A---- C:\Windows\system32\nvoglv64.dll
2011-09-26 18:32:03 ----A---- C:\Windows\system32\nvgenco64.dll
2011-09-26 18:32:03 ----A---- C:\Windows\system32\nvdispco64.dll
2011-09-26 18:32:03 ----A---- C:\Windows\system32\nvdecodemft.dll
2011-09-26 18:32:03 ----A---- C:\Windows\system32\nvd3dumx.dll
2011-09-26 18:32:03 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2011-09-26 18:32:03 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-09-26 18:32:03 ----A---- C:\Windows\system32\drivers\nvkflt.sys
2011-09-26 18:32:02 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2011-09-26 18:32:02 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2011-09-26 18:32:02 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2011-09-26 18:32:02 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2011-09-26 18:32:02 ----A---- C:\Windows\system32\nvcuvid.dll
2011-09-26 18:32:02 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-09-26 18:32:02 ----A---- C:\Windows\system32\nvcuda.dll
2011-09-26 18:32:02 ----A---- C:\Windows\system32\nvcompiler.dll
2011-09-26 17:41:51 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2011-09-25 22:27:04 ----D---- C:\Users\Marek\AppData\Roaming\ICQ
2011-09-25 22:26:59 ----D---- C:\Program Files (x86)\ICQ7.6
2011-09-24 19:52:33 ----D---- C:\Users\Marek\AppData\Roaming\Zoner
2011-09-23 22:50:50 ----A---- C:\Windows\system32\drivers\truecrypt.sys
2011-09-22 19:38:22 ----D---- C:\Users\Marek\AppData\Roaming\Nokia Ovi Suite
2011-09-22 19:30:42 ----D---- C:\Users\Marek\AppData\Roaming\Nokia
2011-09-22 19:29:16 ----D---- C:\ProgramData\Installations
2011-09-22 19:28:29 ----D---- C:\ProgramData\PC Suite
2011-09-22 19:28:28 ----D---- C:\Users\Marek\AppData\Roaming\PC Suite
2011-09-22 19:27:38 ----D---- C:\Program Files\DIFX
2011-09-22 19:27:38 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2011-09-22 19:27:34 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2011-09-22 19:27:19 ----A---- C:\Windows\system32\nmwcdclsX64.dll
2011-09-22 19:26:27 ----D---- C:\ProgramData\NokiaInstallerCache
2011-09-22 19:26:27 ----D---- C:\Program Files (x86)\Nokia
2011-09-22 07:56:59 ----D---- C:\ProgramData\3DVIA
2011-09-22 07:56:58 ----D---- C:\Program Files (x86)\Virtools
2011-09-21 17:30:29 ----A---- C:\Windows\iun6002.exe
2011-09-21 17:30:27 ----D---- C:\Program Files (x86)\Codec Pack - All In 1
2011-09-20 12:53:51 ----D---- C:\ProgramData\EGG
2011-09-20 07:52:34 ----D---- C:\Users\Marek\AppData\Roaming\Roxio Burn
2011-09-20 07:47:13 ----D---- C:\Users\Marek\AppData\Roaming\Macrovision
2011-09-19 22:34:32 ----D---- C:\Users\Marek\AppData\Roaming\eM Client
2011-09-19 22:20:53 ----D---- C:\Windows\Sun
2011-09-19 20:04:16 ----D---- C:\Users\Marek\AppData\Roaming\PSpad
======List of files/folders modified in the last 1 month======
2011-10-11 19:40:03 ----D---- C:\Windows\Temp
2011-10-11 19:40:01 ----D---- C:\Program Files
2011-10-11 19:38:05 ----D---- C:\Users\Marek\AppData\Roaming\Skype
2011-10-11 19:31:09 ----D---- C:\Windows\system32\config
2011-10-11 08:51:24 ----D---- C:\Windows\system32\Tasks
2011-10-11 08:48:49 ----D---- C:\Windows\System32
2011-10-11 08:48:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-10-11 08:48:48 ----D---- C:\Windows\inf
2011-10-11 07:18:44 ----D---- C:\ProgramData\Sonic
2011-10-11 07:18:31 ----A---- C:\Windows\SYSWOW64\log.txt
2011-10-11 07:17:11 ----D---- C:\Program Files (x86)\Dell DataSafe Local Backup
2011-10-11 07:16:18 ----D---- C:\ProgramData\NVIDIA
2011-10-10 22:53:39 ----D---- C:\WINDOWS
2011-10-10 21:01:58 ----D---- C:\Windows\system32\drivers
2011-10-10 18:36:08 ----D---- C:\ProgramData\McAfee
2011-10-10 17:05:23 ----RD---- C:\Program Files (x86)
2011-10-10 16:16:15 ----HD---- C:\ProgramData
2011-10-10 15:27:20 ----SHD---- C:\System Volume Information
2011-10-10 15:27:15 ----SHD---- C:\Windows\Installer
2011-10-10 15:27:12 ----DC---- C:\Windows\system32\DRVSTORE
2011-10-10 15:27:02 ----D---- C:\Windows\system32\catroot
2011-10-10 15:26:32 ----D---- C:\Windows\system32\DriverStore
2011-10-10 15:26:23 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-10-10 15:25:59 ----D---- C:\Program Files\Common Files
2011-10-10 15:00:04 ----D---- C:\Windows\Downloaded Program Files
2011-10-10 09:15:38 ----D---- C:\Program Files\CCleaner
2011-10-10 07:16:52 ----D---- C:\Windows\system32\drivers\UMDF
2011-10-09 19:04:50 ----D---- C:\Windows\Tasks
2011-10-09 19:04:50 ----D---- C:\Windows\system32\wfp
2011-10-09 19:04:49 ----D---- C:\Windows\system32\wbem
2011-10-09 19:04:14 ----D---- C:\Windows\SysWOW64
2011-10-09 19:04:14 ----D---- C:\Windows\system32\drivers\etc
2011-10-09 19:04:13 ----D---- C:\Windows\system32\catroot2
2011-10-09 19:04:13 ----D---- C:\Windows\security
2011-10-09 19:04:12 ----D---- C:\Windows\registration
2011-10-09 00:35:47 ----D---- C:\Windows\Prefetch
2011-10-02 15:47:56 ----D---- C:\Program Files (x86)\Common Files
2011-10-02 09:22:06 ----D---- C:\Windows\panther
2011-10-02 09:17:51 ----D---- C:\dell
2011-10-01 22:08:16 ----D---- C:\Windows\system32\NDF
2011-09-29 17:53:25 ----D---- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
2011-09-29 17:53:22 ----D---- C:\Windows\debug
2011-09-28 12:01:53 ----RD---- C:\Program Files (x86)\Skype
2011-09-28 12:01:51 ----D---- C:\ProgramData\Skype
2011-09-27 20:53:49 ----A---- C:\Windows\system32\MRT.exe
2011-09-27 14:50:45 ----D---- C:\Users\Marek\AppData\Roaming\Mozilla
2011-09-27 07:20:18 ----D---- C:\Windows\system32\wdi
2011-09-26 23:14:03 ----D---- C:\Windows\Logs
2011-09-26 22:48:46 ----D---- C:\Windows\SYSWOW64\NV
2011-09-26 22:48:46 ----D---- C:\Windows\system32\NV
2011-09-26 18:34:32 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-09-26 18:34:15 ----D---- C:\Program Files\NVIDIA Corporation
2011-09-26 18:33:35 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2011-09-24 20:43:03 ----RD---- C:\Users
2011-09-22 19:52:03 ----SD---- C:\Users\Marek\AppData\Roaming\Microsoft
2011-09-22 19:42:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2011-09-22 19:26:59 ----D---- C:\Windows\winsxs
2011-09-21 16:52:51 ----D---- C:\Users\Marek\AppData\Roaming\GHISLER
2011-09-20 22:13:46 ----SHD---- C:\$RECYCLE.BIN
2011-09-20 21:58:52 ----D---- C:\ProgramData\Roxio
2011-09-20 21:14:36 ----SD---- C:\ProgramData\Microsoft
2011-09-20 13:00:06 ----D---- C:\Users\Marek\AppData\Roaming\Roxio
2011-09-20 08:38:22 ----D---- C:\Windows\rescache
2011-09-20 08:20:38 ----D---- C:\Windows\Microsoft.NET
2011-09-19 22:35:20 ----RSD---- C:\Windows\assembly
2011-09-18 10:01:09 ----D---- C:\ProgramData\Microsoft Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2011-01-13 439320]
R0 McPvDrv;McPvDrv Driver; C:\Windows\system32\drivers\McPvDrv.sys [2011-04-11 71800]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2011-08-15 642824]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2011-08-15 283744]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-08-03 27240]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2010-08-20 21616]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2011-08-15 75672]
R1 MOBKFilter;MOBKFilter; C:\Windows\system32\DRIVERS\MOBK.sys [2010-04-13 66040]
R1 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [2011-08-03 246888]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 Acceler;Accelerometer Service; C:\Windows\system32\DRIVERS\Accelern.sys [2010-12-13 27760]
R3 AVer7231_x64;AVerMedia 7231 capture service; C:\Windows\system32\DRIVERS\AVer7231_x64.sys [2010-06-11 1799808]
R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2011-08-15 65128]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2011-06-16 176000]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-09-06 270912]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-03-26 12262336]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-02-19 2748520]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2011-08-15 158584]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2011-08-15 228752]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2011-08-15 481504]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2010-12-22 8505856]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2011-02-11 82432]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2011-02-11 181760]
R3 qicflt;upper Device Filter Driver; C:\Windows\system32\DRIVERS\qicflt.sys [2010-07-13 29288]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-12-17 1404464]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 wdkmd;Intel WiDi KMD; C:\Windows\system32\DRIVERS\WDKMD.sys [2010-12-01 42392]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-12-21 34144]
S3 Impcd;Impcd; C:\Windows\system32\drivers\Impcd.sys [2010-02-27 158976]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2010-12-15 174168]
S3 mfeavfk01;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk01.sys []
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2011-08-15 100904]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-05-18 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-05-18 27136]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\Windows\system32\drivers\nvstusb.sys [2010-12-12 121960]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-05-18 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-21 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-05-18 9216]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2006-11-01 151656]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-12-17 1515792]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
R2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
R2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2011-08-19 199008]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2011-08-19 208272]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2011-08-19 158832]
R2 MOBKbackup;1%; C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-04-13 231224]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-07-22 690472]
R2 NOBU;Dell DataSafe Online; C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe [2010-08-26 2823000]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-08-03 980072]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-12-17 836880]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-08-18 1692480]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-08-03 379496]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 RoxWatch12;Roxio Hard Drive Watcher 12; C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 McODS;McAfee Scanner; C:\Program Files\McAfee\VirusScan\mcods.exe [2011-06-23 501768]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-12-17 340240]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-03-16 407336]
S3 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2010-11-09 74392]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-06 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosim o kontrolu logu
Zdravim a pekny vecer preji 
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
CREATERESTOREPOINT netsvcs drivers32 savembr:0 /md5start adp3132.sys AGP440.sys ahcix86.sys ahcix86s.sys atapi.sys autochk.exe cdrom.sys cngaudit.dll cryptsvc.dll eNetHook.dll eventlog.dll explorer.exe hal.dll Changer.sys iaStor.sys iastorv.sys IdeChnDr.sys isapnp.sys JakNDis.sys KR10N.sys logevent.dll lsass.exe mv61xx.sys ndis.sys netlogon.dll ntelogon.dll nvata.sys nvatabus.sys nvgts.sys nvraid.sys nvrd32.sys nvstor.sys nvstor32.sys scecli.dll sceclt.dll smss.exe svchost.exe symmpi.sys tcpip.sys userinit.exe vaxscsi.sys viamraid.sys viasraid.sys ViPrt.sys winlogon.exe ws2_32.dll /md5stop %systemroot%*.* /U /s %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 %SYSTEMDRIVE%\*.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c type c:\boot.ini >> test.txt /c %SystemDrive%\PhysicalMBR.bin /md5- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosim o kontrolu logu
Děkuji,
právě probíhá kontrola, jen se teď ještě zeptám, StartUpLite je na ovládání procesů spouštěných po startu? Je to lepší nástroj než ten v ccleaneru nebo ten stačí a jaký je prosím rozdíl?
Ještě mám takový postřeh, při kliknutí na váš odkaz oldtimer.geekstogo.com/OTL.exe mi McAfee napsalo výstrahu http://www.siteadvisor.com/restricted.h ... er=6.1.1.0.
__________________________________________________________________________
Update 21:21: OTL mi napsalo Can't create cmd.bat
právě probíhá kontrola, jen se teď ještě zeptám, StartUpLite je na ovládání procesů spouštěných po startu? Je to lepší nástroj než ten v ccleaneru nebo ten stačí a jaký je prosím rozdíl?
Ještě mám takový postřeh, při kliknutí na váš odkaz oldtimer.geekstogo.com/OTL.exe mi McAfee napsalo výstrahu http://www.siteadvisor.com/restricted.h ... er=6.1.1.0.
__________________________________________________________________________
Update 21:21: OTL mi napsalo Can't create cmd.bat
Re: Prosim o kontrolu logu
Rozdil je v tom ze StartUpLite ukaze i co je defakto zbytecne - ovsem tez je potreba pouzi rozum...
Ze McAfee krici me neprekvapuje, obcas antiviry oznacuji utility jako nebezpeceni, je to dano jejich zdrojovym kodem...Ale nebojte, OTL je ciste
Ze McAfee krici me neprekvapuje, obcas antiviry oznacuji utility jako nebezpeceni, je to dano jejich zdrojovym kodem...Ale nebojte, OTL je ciste
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosim o kontrolu logu
Ano, při práci s PC je často potřeba použít rozum, hold technika není všemocná a je jen tak dobrá jako její uživatel...
A děkuji za pomoc, tady jsou ty logy (omlouvám se za SPAM, ale bohužel bylo příliš mnoho znaků
):
OTL Extras logfile created on: 11.10.2011 22:06:40 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Marek\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,90 Gb Total Physical Memory | 1,91 Gb Available Physical Memory | 49,06% Memory free
7,79 Gb Paging File | 5,79 Gb Available in Paging File | 74,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 50,00 Gb Total Space | 14,11 Gb Free Space | 28,21% Space Free | Partition Type: NTFS
Drive E: | 396,13 Gb Total Space | 347,15 Gb Free Space | 87,64% Space Free | Partition Type: NTFS
Computer Name: MAREK-PC | User Name: Marek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- E:\Programy\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- E:\Programy\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{26A24AE4-039D-4CA4-87B4-2F86416024FF}" = Java(TM) 6 Update 24 (64-bit)
"{28EF7372-9087-4AC3-9B9F-D9751FCDF830}" = Intel(R) Wireless Display
"{290D4DB2-F1B4-4B8E-918D-D71EF29A001B}" = Software Intel(R) PROSet/Wireless WiFi
"{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources
"{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}" = Roxio File Backup
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}" = RBVirtualFolder64Inst
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 280.26
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 280.19
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.2.23.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{CFF4500E-C5D6-695D-A027-B3D4DDED2CC3}" = McAfee Online Backup
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"72A50F48CC5601190B9C4E74D81161693133E7F7" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9)
"CCleaner" = CCleaner
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)
"FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"ProInst" = Intel PROSet Wireless
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR 4.01 (64-bit)
"ZonerPhotoStudio13_CZ_is1" = Zoner Photo Studio 13
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{07D77970-B205-460C-84E4-263F30455597}" = Nokia Ovi Suite
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{12451AF7-EFF8-4B5B-8255-282D7CC7CAEE}" = OviMPlatform
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 26
"{27C467F8-F8EF-4f68-BD72-D63632B2096C}" = McAfee Online Backup
"{2CC53A53-44F4-4667-8584-2FFC9ACB2242}" = Ovi Desktop Sync Engine
"{2D99A593-C841-43A7-B7C9-D6F3AE70B756}" = Nokia Connectivity Cable Driver
"{3250260C-7A95-4632-893B-89657EB5545B}" = PhotoShowExpress
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{40F06490-8C14-43AA-99D3-EEEFDBAC3CFC}" = SyncUP
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E868D3D-6EEB-4273-926C-2287236B5B79}" = 3DVIA player 5.0
"{4E86E575-2B04-4FEC-ADA3-72D47CB4777C}" = Cortona3D Viewer
"{50300123-F8FC-4B50-B449-E847D04F1BA2}" = Windows Live Messenger
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{58CB9A9A-1EFB-4EA8-B50C-3097E754AC21}" = High-Definition Video Playback
"{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}" = Roxio BackOnTrack
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}" = Apple Application Support
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}" = Roxio Creator Starter
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6
"{7746BFAA-2B5D-4FFD-A0E8-4558F4668105}" = Roxio Burn
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7EC66A95-AC2D-4127-940B-0445A526AB2F}" = Dell DataSafe Online
"{7FB00B6B-6843-97EC-EED6-78BD6D35370A}" = Zinio Reader 4
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{87434D51-51DB-4109-B68F-A829ECDCF380}" = AccelerometerP11
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{9A00EC4E-27E1-42C4-98DD-662F32AC8870}" = Sonic CinePlayer Decoder Pack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A121EEDE-C68F-461D-91AA-D48BA226AF1C}" = Roxio Activation Module
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A8F7FCEF-3CA6-4CE9-8FEA-8BB18F8686F0}" = Nokia Ovi Suite Software Updater
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X (10.1.1) MUI
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{B44F3823-52DD-45CA-A916-8B320778715D}" = Messenger Companion
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{C373F7C4-05D2-4047-96D1-6AF30661C6AA}" = PC Connectivity Solution
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D0D14551-3A2D-433B-861F-F4DCE5422759}" = Nokia PC Suite
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{D92C9CCE-E5F0-4125-977A-0590F3225B74}" = SyncUP
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1024E20-2F4B-4DD1-9102-BA37D91A31C6}" = eM Client
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EF56258E-0326-48C5-A86C-3BAC26FC15DF}" = Roxio Creator Starter
"{F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878}" = Roxio Creator Starter
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F84906ED-BB54-4889-B131-FED9C9056FC8}" = Intel(R) Wireless Display
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"AVerMedia H339 Hybrid TV Tuner" = AVerMedia H339 Hybrid TV Tuner 2.2.64.64
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"DAEMON Tools Lite" = DAEMON Tools Lite
"Dell Webcam Central" = Dell Webcam Central
"ENTERPRISE" = Microsoft Office Enterprise 2007
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Mozilla Firefox 7.0.1 (x86 cs)" = Mozilla Firefox 7.0.1 (x86 cs)
"MSC" = McAfee Total Protection
"Nokia Ovi Suite" = Nokia Ovi Suite
"Nokia PC Suite" = Nokia PC Suite
"Notepad++" = Notepad++
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Opera 11.51.1087" = Opera 11.51
"PSPad editor_is1" = PSPad editor
"rajče.net_is1" = rajče průvodce verze 1.59.25.240
"Room Arranger" = Room Arranger
"Steam App 10" = Counter-Strike
"Steam App 400" = Portal
"SystemRequirementsLab" = System Requirements Lab
"Totalcmd" = Total Commander (Remove or Repair)
"Vypínač na dobrou noc_is1" = Vypínač na dobrou noc verze 2.0
"WinLiveSuite" = Windows Live Essentials
"ZinioReader4" = Zinio Reader 4
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 9.10.2011 3:59:14 | Computer Name = Marek-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =
Error - 9.10.2011 10:46:55 | Computer Name = Marek-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro E:\Programy\Nokia\Nokia PC Suite
7\TIS_Windows7PIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 9.10.2011 11:42:22 | Computer Name = Marek-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: PCSuite.exe, verze: 7.1.76.0, časové razítko:
0x4df9f52e Název chybujícího modulu: QtCore4.dll, verze: 4.7.2.0, časové razítko:
0x4d63c30d Kód výjimky: 0xc0000005 Posun chyby: 0x0005e414 ID chybujícího procesu:
0x21e4 Čas spuštění chybující aplikace: 0x01cc869687cf4233 Cesta k chybující aplikaci:
E:\Programy\Nokia\Nokia PC Suite 7\PCSuite.exe Cesta k chybujícímu modulu: E:\Programy\Nokia\Nokia
PC Suite 7\QtCore4.dll ID zprávy: 46d5dd29-f28d-11e0-b94b-14feb5c0d387
Error - 9.10.2011 12:31:19 | Computer Name = Marek-PC | Source = WinMgmt | ID = 10
Description =
Error - 9.10.2011 13:05:11 | Computer Name = Marek-PC | Source = WinMgmt | ID = 10
Description =
Error - 9.10.2011 14:50:28 | Computer Name = Marek-PC | Source = Application Hang | ID = 1002
Description = Program NokiaOviSuite.exe verze 3.1.1.90 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: b90 Čas spuštění: 01cc86b42bcc7134 Čas ukončení: 38 Cesta k aplikaci: C:\Program
Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe ID hlášení: 730333c1-f2a7-11e0-8ef3-14feb5c0d387
Error - 10.10.2011 0:50:12 | Computer Name = Marek-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =
Error - 10.10.2011 1:37:24 | Computer Name = Marek-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: PCSuite.exe, verze: 7.1.76.0, časové razítko:
0x4df9f52e Název chybujícího modulu: QtCore4.dll, verze: 4.7.2.0, časové razítko:
0x4d63c30d Kód výjimky: 0xc0000005 Posun chyby: 0x0005e414 ID chybujícího procesu:
0x2230 Čas spuštění chybující aplikace: 0x01cc870ca8342753 Cesta k chybující aplikaci:
E:\Programy\Nokia\Nokia PC Suite 7\PCSuite.exe Cesta k chybujícímu modulu: E:\Programy\Nokia\Nokia
PC Suite 7\QtCore4.dll ID zprávy: edcc9052-f301-11e0-8ef3-14feb5c0d387
Error - 10.10.2011 2:48:06 | Computer Name = Marek-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: PCSuite.exe, verze: 7.1.76.0, časové razítko:
0x4df9f52e Název chybujícího modulu: QtCore4.dll, verze: 4.7.2.0, časové razítko:
0x4d63c30d Kód výjimky: 0xc0000005 Posun chyby: 0x0005e414 ID chybujícího procesu:
0x2080 Čas spuštění chybující aplikace: 0x01cc870f8329e09a Cesta k chybující aplikaci:
E:\Programy\Nokia\Nokia PC Suite 7\PCSuite.exe Cesta k chybujícímu modulu: E:\Programy\Nokia\Nokia
PC Suite 7\QtCore4.dll ID zprávy: ce49c059-f30b-11e0-8ef3-14feb5c0d387
Error - 10.10.2011 3:24:05 | Computer Name = Marek-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: PCSuite.exe, verze: 7.1.76.0, časové razítko:
0x4df9f52e Název chybujícího modulu: QtCore4.dll, verze: 4.7.2.0, časové razítko:
0x4d63c30d Kód výjimky: 0xc0000005 Posun chyby: 0x0005e414 ID chybujícího procesu:
0x1874 Čas spuštění chybující aplikace: 0x01cc871d01d84d28 Cesta k chybující aplikaci:
E:\Programy\Nokia\Nokia PC Suite 7\PCSuite.exe Cesta k chybujícímu modulu: E:\Programy\Nokia\Nokia
PC Suite 7\QtCore4.dll ID zprávy: d56aae94-f310-11e0-8ef3-14feb5c0d387
[ Media Center Events ]
Error - 2.10.2011 23:21:48 | Computer Name = Marek-PC | Source = MCUpdate | ID = 0
Description = 5:21:48 - Chyba při připojování k Internetu 5:21:48 - Nelze kontaktovat
server..
Error - 2.10.2011 23:22:09 | Computer Name = Marek-PC | Source = MCUpdate | ID = 0
Description = 5:21:53 - Chyba při připojování k Internetu 5:21:53 - Nelze kontaktovat
server..
[ System Events ]
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:55:48 | Computer Name = Marek-PC | Source = BTHUSB | ID = 327685
Description = Ovladač Bluetooth očekával událost HCI s určitou velikostí, ale neobdržel
ji.
Error - 9.10.2011 12:55:52 | Computer Name = Marek-PC | Source = BTHUSB | ID = 327685
Description = Ovladač Bluetooth očekával událost HCI s určitou velikostí, ale neobdržel
ji.
Error - 9.10.2011 12:57:35 | Computer Name = Marek-PC | Source = BTHUSB | ID = 327696
Description = Vzájemné ověření mezi místním adaptérem Bluetooth a zařízením s adresou
adaptéru Bluetooth (9c:4a:7b:4a:d9:43) se nezdařilo.
< End of report >
A děkuji za pomoc, tady jsou ty logy (omlouvám se za SPAM, ale bohužel bylo příliš mnoho znaků
):OTL Extras logfile created on: 11.10.2011 22:06:40 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Marek\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,90 Gb Total Physical Memory | 1,91 Gb Available Physical Memory | 49,06% Memory free
7,79 Gb Paging File | 5,79 Gb Available in Paging File | 74,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 50,00 Gb Total Space | 14,11 Gb Free Space | 28,21% Space Free | Partition Type: NTFS
Drive E: | 396,13 Gb Total Space | 347,15 Gb Free Space | 87,64% Space Free | Partition Type: NTFS
Computer Name: MAREK-PC | User Name: Marek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- E:\Programy\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- E:\Programy\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{26A24AE4-039D-4CA4-87B4-2F86416024FF}" = Java(TM) 6 Update 24 (64-bit)
"{28EF7372-9087-4AC3-9B9F-D9751FCDF830}" = Intel(R) Wireless Display
"{290D4DB2-F1B4-4B8E-918D-D71EF29A001B}" = Software Intel(R) PROSet/Wireless WiFi
"{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources
"{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}" = Roxio File Backup
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}" = RBVirtualFolder64Inst
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 280.26
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 280.19
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.2.23.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{CFF4500E-C5D6-695D-A027-B3D4DDED2CC3}" = McAfee Online Backup
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"72A50F48CC5601190B9C4E74D81161693133E7F7" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9)
"CCleaner" = CCleaner
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)
"FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"ProInst" = Intel PROSet Wireless
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR 4.01 (64-bit)
"ZonerPhotoStudio13_CZ_is1" = Zoner Photo Studio 13
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{07D77970-B205-460C-84E4-263F30455597}" = Nokia Ovi Suite
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{12451AF7-EFF8-4B5B-8255-282D7CC7CAEE}" = OviMPlatform
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 26
"{27C467F8-F8EF-4f68-BD72-D63632B2096C}" = McAfee Online Backup
"{2CC53A53-44F4-4667-8584-2FFC9ACB2242}" = Ovi Desktop Sync Engine
"{2D99A593-C841-43A7-B7C9-D6F3AE70B756}" = Nokia Connectivity Cable Driver
"{3250260C-7A95-4632-893B-89657EB5545B}" = PhotoShowExpress
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{40F06490-8C14-43AA-99D3-EEEFDBAC3CFC}" = SyncUP
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E868D3D-6EEB-4273-926C-2287236B5B79}" = 3DVIA player 5.0
"{4E86E575-2B04-4FEC-ADA3-72D47CB4777C}" = Cortona3D Viewer
"{50300123-F8FC-4B50-B449-E847D04F1BA2}" = Windows Live Messenger
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{58CB9A9A-1EFB-4EA8-B50C-3097E754AC21}" = High-Definition Video Playback
"{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}" = Roxio BackOnTrack
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}" = Apple Application Support
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}" = Roxio Creator Starter
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6
"{7746BFAA-2B5D-4FFD-A0E8-4558F4668105}" = Roxio Burn
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7EC66A95-AC2D-4127-940B-0445A526AB2F}" = Dell DataSafe Online
"{7FB00B6B-6843-97EC-EED6-78BD6D35370A}" = Zinio Reader 4
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{87434D51-51DB-4109-B68F-A829ECDCF380}" = AccelerometerP11
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{9A00EC4E-27E1-42C4-98DD-662F32AC8870}" = Sonic CinePlayer Decoder Pack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A121EEDE-C68F-461D-91AA-D48BA226AF1C}" = Roxio Activation Module
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A8F7FCEF-3CA6-4CE9-8FEA-8BB18F8686F0}" = Nokia Ovi Suite Software Updater
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X (10.1.1) MUI
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{B44F3823-52DD-45CA-A916-8B320778715D}" = Messenger Companion
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{C373F7C4-05D2-4047-96D1-6AF30661C6AA}" = PC Connectivity Solution
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D0D14551-3A2D-433B-861F-F4DCE5422759}" = Nokia PC Suite
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{D92C9CCE-E5F0-4125-977A-0590F3225B74}" = SyncUP
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1024E20-2F4B-4DD1-9102-BA37D91A31C6}" = eM Client
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EF56258E-0326-48C5-A86C-3BAC26FC15DF}" = Roxio Creator Starter
"{F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878}" = Roxio Creator Starter
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F84906ED-BB54-4889-B131-FED9C9056FC8}" = Intel(R) Wireless Display
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"AVerMedia H339 Hybrid TV Tuner" = AVerMedia H339 Hybrid TV Tuner 2.2.64.64
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"DAEMON Tools Lite" = DAEMON Tools Lite
"Dell Webcam Central" = Dell Webcam Central
"ENTERPRISE" = Microsoft Office Enterprise 2007
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Mozilla Firefox 7.0.1 (x86 cs)" = Mozilla Firefox 7.0.1 (x86 cs)
"MSC" = McAfee Total Protection
"Nokia Ovi Suite" = Nokia Ovi Suite
"Nokia PC Suite" = Nokia PC Suite
"Notepad++" = Notepad++
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Opera 11.51.1087" = Opera 11.51
"PSPad editor_is1" = PSPad editor
"rajče.net_is1" = rajče průvodce verze 1.59.25.240
"Room Arranger" = Room Arranger
"Steam App 10" = Counter-Strike
"Steam App 400" = Portal
"SystemRequirementsLab" = System Requirements Lab
"Totalcmd" = Total Commander (Remove or Repair)
"Vypínač na dobrou noc_is1" = Vypínač na dobrou noc verze 2.0
"WinLiveSuite" = Windows Live Essentials
"ZinioReader4" = Zinio Reader 4
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 9.10.2011 3:59:14 | Computer Name = Marek-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =
Error - 9.10.2011 10:46:55 | Computer Name = Marek-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro E:\Programy\Nokia\Nokia PC Suite
7\TIS_Windows7PIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 9.10.2011 11:42:22 | Computer Name = Marek-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: PCSuite.exe, verze: 7.1.76.0, časové razítko:
0x4df9f52e Název chybujícího modulu: QtCore4.dll, verze: 4.7.2.0, časové razítko:
0x4d63c30d Kód výjimky: 0xc0000005 Posun chyby: 0x0005e414 ID chybujícího procesu:
0x21e4 Čas spuštění chybující aplikace: 0x01cc869687cf4233 Cesta k chybující aplikaci:
E:\Programy\Nokia\Nokia PC Suite 7\PCSuite.exe Cesta k chybujícímu modulu: E:\Programy\Nokia\Nokia
PC Suite 7\QtCore4.dll ID zprávy: 46d5dd29-f28d-11e0-b94b-14feb5c0d387
Error - 9.10.2011 12:31:19 | Computer Name = Marek-PC | Source = WinMgmt | ID = 10
Description =
Error - 9.10.2011 13:05:11 | Computer Name = Marek-PC | Source = WinMgmt | ID = 10
Description =
Error - 9.10.2011 14:50:28 | Computer Name = Marek-PC | Source = Application Hang | ID = 1002
Description = Program NokiaOviSuite.exe verze 3.1.1.90 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: b90 Čas spuštění: 01cc86b42bcc7134 Čas ukončení: 38 Cesta k aplikaci: C:\Program
Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe ID hlášení: 730333c1-f2a7-11e0-8ef3-14feb5c0d387
Error - 10.10.2011 0:50:12 | Computer Name = Marek-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =
Error - 10.10.2011 1:37:24 | Computer Name = Marek-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: PCSuite.exe, verze: 7.1.76.0, časové razítko:
0x4df9f52e Název chybujícího modulu: QtCore4.dll, verze: 4.7.2.0, časové razítko:
0x4d63c30d Kód výjimky: 0xc0000005 Posun chyby: 0x0005e414 ID chybujícího procesu:
0x2230 Čas spuštění chybující aplikace: 0x01cc870ca8342753 Cesta k chybující aplikaci:
E:\Programy\Nokia\Nokia PC Suite 7\PCSuite.exe Cesta k chybujícímu modulu: E:\Programy\Nokia\Nokia
PC Suite 7\QtCore4.dll ID zprávy: edcc9052-f301-11e0-8ef3-14feb5c0d387
Error - 10.10.2011 2:48:06 | Computer Name = Marek-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: PCSuite.exe, verze: 7.1.76.0, časové razítko:
0x4df9f52e Název chybujícího modulu: QtCore4.dll, verze: 4.7.2.0, časové razítko:
0x4d63c30d Kód výjimky: 0xc0000005 Posun chyby: 0x0005e414 ID chybujícího procesu:
0x2080 Čas spuštění chybující aplikace: 0x01cc870f8329e09a Cesta k chybující aplikaci:
E:\Programy\Nokia\Nokia PC Suite 7\PCSuite.exe Cesta k chybujícímu modulu: E:\Programy\Nokia\Nokia
PC Suite 7\QtCore4.dll ID zprávy: ce49c059-f30b-11e0-8ef3-14feb5c0d387
Error - 10.10.2011 3:24:05 | Computer Name = Marek-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: PCSuite.exe, verze: 7.1.76.0, časové razítko:
0x4df9f52e Název chybujícího modulu: QtCore4.dll, verze: 4.7.2.0, časové razítko:
0x4d63c30d Kód výjimky: 0xc0000005 Posun chyby: 0x0005e414 ID chybujícího procesu:
0x1874 Čas spuštění chybující aplikace: 0x01cc871d01d84d28 Cesta k chybující aplikaci:
E:\Programy\Nokia\Nokia PC Suite 7\PCSuite.exe Cesta k chybujícímu modulu: E:\Programy\Nokia\Nokia
PC Suite 7\QtCore4.dll ID zprávy: d56aae94-f310-11e0-8ef3-14feb5c0d387
[ Media Center Events ]
Error - 2.10.2011 23:21:48 | Computer Name = Marek-PC | Source = MCUpdate | ID = 0
Description = 5:21:48 - Chyba při připojování k Internetu 5:21:48 - Nelze kontaktovat
server..
Error - 2.10.2011 23:22:09 | Computer Name = Marek-PC | Source = MCUpdate | ID = 0
Description = 5:21:53 - Chyba při připojování k Internetu 5:21:53 - Nelze kontaktovat
server..
[ System Events ]
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:53:26 | Computer Name = Marek-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 0 s funkcí 1. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 9.10.2011 12:55:48 | Computer Name = Marek-PC | Source = BTHUSB | ID = 327685
Description = Ovladač Bluetooth očekával událost HCI s určitou velikostí, ale neobdržel
ji.
Error - 9.10.2011 12:55:52 | Computer Name = Marek-PC | Source = BTHUSB | ID = 327685
Description = Ovladač Bluetooth očekával událost HCI s určitou velikostí, ale neobdržel
ji.
Error - 9.10.2011 12:57:35 | Computer Name = Marek-PC | Source = BTHUSB | ID = 327696
Description = Vzájemné ověření mezi místním adaptérem Bluetooth a zařízením s adresou
adaptéru Bluetooth (9c:4a:7b:4a:d9:43) se nezdařilo.
< End of report >
Naposledy upravil(a) 3ch0 dne 11 říj 2011 21:50, celkem upraveno 1 x.
Re: Prosim o kontrolu logu
OTL logfile created on: 11.10.2011 22:06:40 - Run 1
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Marek\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,90 Gb Total Physical Memory | 1,91 Gb Available Physical Memory | 49,06% Memory free
7,79 Gb Paging File | 5,79 Gb Available in Paging File | 74,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 50,00 Gb Total Space | 14,11 Gb Free Space | 28,21% Space Free | Partition Type: NTFS
Drive E: | 396,13 Gb Total Space | 347,15 Gb Free Space | 87,64% Space Free | Partition Type: NTFS
Computer Name: MAREK-PC | User Name: Marek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011.10.11 20:38:27 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Marek\Desktop\OTL.exe
PRC - [2011.09.06 20:03:28 | 000,947,056 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe
PRC - [2011.09.06 19:29:20 | 004,259,648 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2011.08.18 17:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011.08.18 17:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011.08.01 19:56:48 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011.07.22 14:26:40 | 000,690,472 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2010.12.21 01:24:38 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2010.12.21 01:24:36 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2010.12.17 17:25:22 | 000,686,704 | ---- | M] () -- C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
PRC - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
========== Modules (No Company Name) ==========
MOD - [2011.09.25 18:39:10 | 006,277,280 | ---- | M] () -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll
MOD - [2011.08.18 17:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
MOD - [2011.08.13 14:45:06 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2011.08.13 14:45:05 | 005,025,792 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
MOD - [2011.07.09 00:33:43 | 004,550,656 | ---- | M] () -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
MOD - [2011.05.05 00:32:40 | 003,190,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
MOD - [2011.04.22 18:13:00 | 000,004,096 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\detoured.dll
MOD - [2010.12.17 17:25:22 | 000,686,704 | ---- | M] () -- C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
MOD - [2010.11.21 11:27:11 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationCore.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationCore.resources.dll
MOD - [2010.11.21 05:25:01 | 000,667,648 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Core\3.5.0.0__b77a5c561934e089\System.Core.dll
MOD - [2010.11.21 05:24:56 | 004,218,880 | ---- | M] () -- C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
MOD - [2010.11.21 05:24:53 | 005,279,744 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
MOD - [2010.11.21 05:24:53 | 001,253,376 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
MOD - [2010.11.21 05:24:32 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll
MOD - [2010.11.21 05:24:16 | 000,626,688 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
MOD - [2010.11.21 05:23:48 | 002,048,000 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll
MOD - [2009.06.10 23:14:43 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.Aero\3.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2011.08.19 15:59:28 | 000,158,832 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\WINDOWS\SysNative\mfevtps.exe -- (mfevtp)
SRV:64bit: - [2011.08.19 15:50:56 | 000,208,272 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:64bit: - [2011.08.19 15:50:42 | 000,199,008 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV:64bit: - [2011.06.23 15:23:52 | 000,501,768 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McProxy)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McAfee SiteAdvisor Service)
SRV:64bit: - [2010.12.17 21:41:32 | 001,515,792 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2010.12.17 21:28:46 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2010.12.17 21:26:50 | 000,836,880 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2010.09.23 01:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009.11.18 04:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011.08.18 17:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE -- (SftService)
SRV - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011.07.22 14:26:40 | 000,690,472 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011.06.08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011.03.16 10:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010.12.21 01:24:38 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2010.12.21 01:24:36 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2010.11.25 12:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010.11.25 12:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010.08.26 03:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010.04.13 20:11:18 | 000,231,224 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe -- (MOBKbackup)
SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011.09.06 20:01:27 | 000,270,912 | ---- | M] (DT Soft Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011.08.15 10:00:06 | 000,642,824 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:64bit: - [2011.08.15 10:00:06 | 000,481,504 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:64bit: - [2011.08.15 10:00:06 | 000,283,744 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:64bit: - [2011.08.15 10:00:06 | 000,228,752 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:64bit: - [2011.08.15 10:00:06 | 000,158,584 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:64bit: - [2011.08.15 10:00:06 | 000,100,904 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Stopped] -- C:\WINDOWS\SysNative\drivers\mferkdet.sys -- (mferkdet)
DRV:64bit: - [2011.08.15 10:00:06 | 000,075,672 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\SysNative\drivers\mfenlfk.sys -- (mfenlfk)
DRV:64bit: - [2011.08.15 10:00:06 | 000,065,128 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:64bit: - [2011.08.13 14:44:58 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.08.13 14:44:58 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.08.03 13:50:00 | 000,246,888 | ---- | M] (NVIDIA Corporation) [Kernel | System | Running] -- C:\WINDOWS\SysNative\drivers\nvkflt.sys -- (nvkflt)
DRV:64bit: - [2011.08.03 13:50:00 | 000,027,240 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2011.06.16 14:40:20 | 000,176,000 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2011.06.10 06:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.05.18 10:14:22 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2011.05.18 10:14:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2011.05.18 10:14:16 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2011.05.18 10:14:12 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2011.04.11 14:29:20 | 000,071,800 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\McPvDrv.sys -- (McPvDrv)
DRV:64bit: - [2011.03.26 11:17:50 | 012,262,336 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011.02.11 00:52:34 | 000,181,760 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011.02.11 00:52:34 | 000,082,432 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011.01.13 03:51:44 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010.12.22 11:08:48 | 008,505,856 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\NETwNs64.sys -- (NETwNs64) ___ Ovladač adaptéru řady Intel(R)
DRV:64bit: - [2010.12.21 13:47:38 | 000,034,144 | ---- | M] (ESET) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\epfwndis.sys -- (Epfwndis)
DRV:64bit: - [2010.12.17 19:06:32 | 001,404,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010.12.15 19:02:04 | 000,174,168 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\jmcr.sys -- (JMCR)
DRV:64bit: - [2010.12.13 19:34:14 | 000,027,760 | ---- | M] (ST Microelectronics) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Accelern.sys -- (Acceler)
DRV:64bit: - [2010.12.12 16:18:36 | 000,121,960 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\nvstusb.sys -- (NvStUSB)
DRV:64bit: - [2010.12.01 12:02:22 | 000,042,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\WDKMD.sys -- (wdkmd)
DRV:64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.21 05:23:48 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010.11.21 05:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010.10.20 02:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\HECIx64.sys -- (MEIx64) Intel(R)
DRV:64bit: - [2010.10.15 18:28:18 | 000,317,440 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)
DRV:64bit: - [2010.08.20 11:05:12 | 000,021,616 | ---- | M] (ST Microelectronics) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\stdcfltn.sys -- (stdcfltn)
DRV:64bit: - [2010.07.13 04:38:06 | 000,029,288 | ---- | M] (Quanta Computer) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\qicflt.sys -- (qicflt)
DRV:64bit: - [2010.06.11 18:14:00 | 001,799,808 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\AVer7231_x64.sys -- (AVer7231_x64)
DRV:64bit: - [2010.04.13 20:10:24 | 000,066,040 | ---- | M] (Mozy, Inc.) [File_System | System | Running] -- C:\WINDOWS\SysNative\drivers\MOBK.sys -- (MOBKFilter)
DRV:64bit: - [2010.03.19 10:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010.02.27 09:32:14 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.08.28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2006.11.01 19:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Marek\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,90 Gb Total Physical Memory | 1,91 Gb Available Physical Memory | 49,06% Memory free
7,79 Gb Paging File | 5,79 Gb Available in Paging File | 74,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 50,00 Gb Total Space | 14,11 Gb Free Space | 28,21% Space Free | Partition Type: NTFS
Drive E: | 396,13 Gb Total Space | 347,15 Gb Free Space | 87,64% Space Free | Partition Type: NTFS
Computer Name: MAREK-PC | User Name: Marek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011.10.11 20:38:27 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Marek\Desktop\OTL.exe
PRC - [2011.09.06 20:03:28 | 000,947,056 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe
PRC - [2011.09.06 19:29:20 | 004,259,648 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2011.08.18 17:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011.08.18 17:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011.08.01 19:56:48 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011.07.22 14:26:40 | 000,690,472 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2010.12.21 01:24:38 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2010.12.21 01:24:36 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2010.12.17 17:25:22 | 000,686,704 | ---- | M] () -- C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
PRC - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
========== Modules (No Company Name) ==========
MOD - [2011.09.25 18:39:10 | 006,277,280 | ---- | M] () -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll
MOD - [2011.08.18 17:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
MOD - [2011.08.13 14:45:06 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2011.08.13 14:45:05 | 005,025,792 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
MOD - [2011.07.09 00:33:43 | 004,550,656 | ---- | M] () -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
MOD - [2011.05.05 00:32:40 | 003,190,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
MOD - [2011.04.22 18:13:00 | 000,004,096 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\detoured.dll
MOD - [2010.12.17 17:25:22 | 000,686,704 | ---- | M] () -- C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
MOD - [2010.11.21 11:27:11 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationCore.resources\3.0.0.0_cs_31bf3856ad364e35\PresentationCore.resources.dll
MOD - [2010.11.21 05:25:01 | 000,667,648 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Core\3.5.0.0__b77a5c561934e089\System.Core.dll
MOD - [2010.11.21 05:24:56 | 004,218,880 | ---- | M] () -- C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
MOD - [2010.11.21 05:24:53 | 005,279,744 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
MOD - [2010.11.21 05:24:53 | 001,253,376 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
MOD - [2010.11.21 05:24:32 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll
MOD - [2010.11.21 05:24:16 | 000,626,688 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
MOD - [2010.11.21 05:23:48 | 002,048,000 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll
MOD - [2009.06.10 23:14:43 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.Aero\3.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2011.08.19 15:59:28 | 000,158,832 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\WINDOWS\SysNative\mfevtps.exe -- (mfevtp)
SRV:64bit: - [2011.08.19 15:50:56 | 000,208,272 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:64bit: - [2011.08.19 15:50:42 | 000,199,008 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV:64bit: - [2011.06.23 15:23:52 | 000,501,768 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McProxy)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:64bit: - [2011.01.27 18:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McAfee SiteAdvisor Service)
SRV:64bit: - [2010.12.17 21:41:32 | 001,515,792 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2010.12.17 21:28:46 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2010.12.17 21:26:50 | 000,836,880 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2010.09.23 01:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009.11.18 04:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011.08.18 17:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE -- (SftService)
SRV - [2011.08.03 13:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.08.03 03:31:42 | 000,379,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011.07.22 14:26:40 | 000,690,472 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011.06.08 13:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011.06.06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011.03.16 10:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010.12.21 01:24:38 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2010.12.21 01:24:36 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2010.11.25 12:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010.11.25 12:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010.08.26 03:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010.04.13 20:11:18 | 000,231,224 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe -- (MOBKbackup)
SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011.09.06 20:01:27 | 000,270,912 | ---- | M] (DT Soft Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011.08.15 10:00:06 | 000,642,824 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:64bit: - [2011.08.15 10:00:06 | 000,481,504 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:64bit: - [2011.08.15 10:00:06 | 000,283,744 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:64bit: - [2011.08.15 10:00:06 | 000,228,752 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:64bit: - [2011.08.15 10:00:06 | 000,158,584 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:64bit: - [2011.08.15 10:00:06 | 000,100,904 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Stopped] -- C:\WINDOWS\SysNative\drivers\mferkdet.sys -- (mferkdet)
DRV:64bit: - [2011.08.15 10:00:06 | 000,075,672 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\SysNative\drivers\mfenlfk.sys -- (mfenlfk)
DRV:64bit: - [2011.08.15 10:00:06 | 000,065,128 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:64bit: - [2011.08.13 14:44:58 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.08.13 14:44:58 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.08.03 13:50:00 | 000,246,888 | ---- | M] (NVIDIA Corporation) [Kernel | System | Running] -- C:\WINDOWS\SysNative\drivers\nvkflt.sys -- (nvkflt)
DRV:64bit: - [2011.08.03 13:50:00 | 000,027,240 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2011.06.16 14:40:20 | 000,176,000 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2011.06.10 06:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.05.18 10:14:22 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2011.05.18 10:14:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2011.05.18 10:14:16 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2011.05.18 10:14:12 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2011.04.11 14:29:20 | 000,071,800 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\McPvDrv.sys -- (McPvDrv)
DRV:64bit: - [2011.03.26 11:17:50 | 012,262,336 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011.02.11 00:52:34 | 000,181,760 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011.02.11 00:52:34 | 000,082,432 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011.01.13 03:51:44 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010.12.22 11:08:48 | 008,505,856 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\NETwNs64.sys -- (NETwNs64) ___ Ovladač adaptéru řady Intel(R)
DRV:64bit: - [2010.12.21 13:47:38 | 000,034,144 | ---- | M] (ESET) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\epfwndis.sys -- (Epfwndis)
DRV:64bit: - [2010.12.17 19:06:32 | 001,404,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010.12.15 19:02:04 | 000,174,168 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\jmcr.sys -- (JMCR)
DRV:64bit: - [2010.12.13 19:34:14 | 000,027,760 | ---- | M] (ST Microelectronics) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Accelern.sys -- (Acceler)
DRV:64bit: - [2010.12.12 16:18:36 | 000,121,960 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\nvstusb.sys -- (NvStUSB)
DRV:64bit: - [2010.12.01 12:02:22 | 000,042,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\WDKMD.sys -- (wdkmd)
DRV:64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.21 05:23:48 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010.11.21 05:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010.10.20 02:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\HECIx64.sys -- (MEIx64) Intel(R)
DRV:64bit: - [2010.10.15 18:28:18 | 000,317,440 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)
DRV:64bit: - [2010.08.20 11:05:12 | 000,021,616 | ---- | M] (ST Microelectronics) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\stdcfltn.sys -- (stdcfltn)
DRV:64bit: - [2010.07.13 04:38:06 | 000,029,288 | ---- | M] (Quanta Computer) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\qicflt.sys -- (qicflt)
DRV:64bit: - [2010.06.11 18:14:00 | 001,799,808 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\AVer7231_x64.sys -- (AVer7231_x64)
DRV:64bit: - [2010.04.13 20:10:24 | 000,066,040 | ---- | M] (Mozy, Inc.) [File_System | System | Running] -- C:\WINDOWS\SysNative\drivers\MOBK.sys -- (MOBKFilter)
DRV:64bit: - [2010.03.19 10:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010.02.27 09:32:14 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.08.28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2006.11.01 19:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
Re: Prosim o kontrolu logu
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd
IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd
IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Crawler Search"
FF - prefs.js..browser.search.defaulturl: "http://www.fastbrowsersearch.com/result ... EF&v=19&q="
FF - prefs.js..browser.search.order.1: "Crawler Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.6.2
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.736
FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..browser.startup.homepage: "[{\"title\":\"VIRY.CZ • Upravit pĹ™ĂspÄ›vek\",\"text\":\"DÄ›kuji,\\nprávÄ› probĂhá kontrola, jen se teÄŹ ještÄ› zeptám, StartUpLite je na ovládánĂ procesĹŻ spouštÄ›nĂ˝ch po startu? Je to lepšà nástroj neĹľ ten v ccleaneru nebo ten staÄŤĂ a jakĂ˝ je prosĂm rozdĂl?\\nJeštÄ› mám takovĂ˝ postĹ™eh, pĹ™i kliknutĂ na váš odkaz oldtimer.geekstogo.com/OTL.exe mi McAfee napsalo vĂ˝strahu [url]http://www.siteadvisor.com/restricted.h ... :\"VIRY.CZ • Odeslat novĂ© tĂ©ma\",\"text\":\"DobrĂ˝ den,\\nprosĂm o kontrolu logu, notebook nemám dlouho, ale spoustu vÄ›cĂ jsem instaloval a pĹ™idával.\\n\\nPĹ™edem dÄ›kuji Marek \\\"echo\\\"\\n\\n\\n\\n\\n\\nLogfile of random's system information tool 1.09 (written by random/random)\\nRun by Marek at 2011-10-11 19:40:01\\nMicrosoft Windows 7 Home Premium Service Pack 1\\nSystem drive C: has 15 GB (30%) free of 51 GB\\nTotal RAM: 3990 MB (50% free)\\n\\nLogfile of Trend Micro HijackThis v2.0.4\\nScan saved at 19:40:12, on 11.10.2011\\nPlatform: Windows 7 SP1 (WinNT 6.00.3505)\\nMSIE: Internet Explorer v9.00 (9.00.8112.16421)\\nBoot mode: Normal\\n\\nRunning processes:\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\TOASTER.EXE\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\COMPONENTS\\\\SCHEDULER\\\\STSERVICE.EXE\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\Components\\\\DSUpdate\\\\DSUpd.exe\\nC:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe\\nC:\\\\Program Files (x86)\\\\Skype\\\\Phone\\\\Skype.exe\\nC:\\\\Program Files (x86)\\\\Opera\\\\opera.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Windows\\\\SysWOW64\\\\rundll32.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\firefox.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\nC:\\\\Program Files\\\\trend micro\\\\Marek.exe\\n\\nR1 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... s=bsd\\nR1 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896\\nR0 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Start Page = http://www1.euro.dell.com/content/defau ... s=bsd\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896\\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157\\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Search,SearchAssistant = \\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Search,CustomizeSearch = \\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Local Page = C:\\\\Windows\\\\SysWOW64\\\\blank.htm\\nR0 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Toolbar,LinksFolderName = \\nF2 - REG:system.ini: UserInit=userinit.exe\\nO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\Acrobat\\\\ActiveX\\\\AcroIEHelperShim.dll\\nO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll\\nO2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\\\\Program Files (x86)\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll\\nO2 - BHO: Pomocná sluĹľba pro pĹ™ihlášenĂ ke sluĹľbÄ› Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll\\nO2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll\\nO2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll\\nO3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO4 - HKLM\\\\..\\\\Run: [Dell DataSafe Online] C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe\\nO4 - HKLM\\\\..\\\\Run: [mcui_exe] \\\"C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe\\\" /runkey\\nO4 - HKUS\\\\S-1-5-19\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'LOCAL SERVICE')\\nO4 - HKUS\\\\S-1-5-19\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'LOCAL SERVICE')\\nO4 - HKUS\\\\S-1-5-20\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'NETWORK SERVICE')\\nO4 - HKUS\\\\S-1-5-20\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'NETWORK SERVICE')\\nO4 - HKUS\\\\S-1-5-21-580890379-3430277850-3007477444-1000\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'UpdatusUser')\\nO4 - HKUS\\\\S-1-5-21-580890379-3430277850-3007477444-1000\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'UpdatusUser')\\nO8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\EXCEL.EXE/3000\\nO9 - Extra button: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll\\nO9 - Extra button: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WriterBrowserExtension.dll\\nO9 - Extra 'Tools' menuitem: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WriterBrowserExtension.dll\\nO9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\ONBttnIE.dll\\nO9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\ONBttnIE.dll\\nO9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\\\\Program Files (x86)\\\\ICQ7.6\\\\ICQ.exe\\nO9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\\\\Program Files (x86)\\\\ICQ7.6\\\\ICQ.exe\\nO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\REFIEBAR.DLL\\nO10 - Unknown file in Winsock LSP: c:\\\\program files (x86)\\\\common files\\\\microsoft shared\\\\windows live\\\\wlidnsp.dll\\nO10 - Unknown file in Winsock LSP: c:\\\\program files (x86)\\\\common files\\\\microsoft shared\\\\windows live\\\\wlidnsp.dll\\nO11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics\\nO16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... .cab\\nO16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... .cab\\nO16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwar ... .cab\\nO16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... .cab\\nO16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... .cab\\nO18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveSystemServices.dll\\nO18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\AlbumDownloadProtocolHandler.dll\\nO18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\\\\progra~2\\\\mcafee\\\\msc\\\\mcsniepl.dll\\nO20 - AppInit_DLLs: C:\\\\Windows\\\\SysWOW64\\\\nvinit.dll\\nO23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe\\nO23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\Alg.exe,-112 (ALG) - Unknown owner - C:\\\\Windows\\\\System32\\\\alg.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\efssvc.dll,-100 (EFS) - Unknown owner - C:\\\\Windows\\\\System32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\fxsresm.dll,-118 (Fax) - Unknown owner - C:\\\\Windows\\\\system32\\\\fxssvc.exe (file missing)\\nO23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe\\nO23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\\\\Program Files\\\\McAfee\\\\VirusScan\\\\mcods.exe\\nO23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe\\nO23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe\\nO23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\\\\Windows\\\\system32\\\\mfevtps.exe (file missing)\\nO23 - Service: 1% (MOBKbackup) - McAfee, Inc. - C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\nO23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\\\\Windows\\\\System32\\\\msdtc.exe (file missing)\\nO23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\PanDhcpDns.exe\\nO23 - Service: @C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe\\nO23 - Service: @%SystemRoot%\\\\System32\\\\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe\\nO23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\nvvsvc.exe (file missing)\\nO23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe\\nO23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxMediaDB12OEM.exe\\nO23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatch12OEM.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\\\\Windows\\\\system32\\\\locator.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\samsrv.dll,-1 (SamSs) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: ServiceLayer - Nokia - C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\\\ServiceLayer.exe\\nO23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE\\nO23 - Service: @%SystemRoot%\\\\system32\\\\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\\\\Windows\\\\System32\\\\snmptrap.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\\\\Windows\\\\System32\\\\spoolsv.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\sppsvc.exe (file missing)\\nO23 - Service: Steam Client Service - Valve Corporation - C:\\\\Program Files (x86)\\\\Common Files\\\\Steam\\\\SteamService.exe\\nO23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe\\nO23 - Service: stllssvr - MicroVision Development, Inc. - C:\\\\Program Files (x86)\\\\Common Files\\\\SureThing Shared\\\\stllssvr.exe\\nO23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\\\\Windows\\\\system32\\\\UI0Detect.exe (file missing)\\nO23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\vds.exe,-100 (vds) - Unknown owner - C:\\\\Windows\\\\System32\\\\vds.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\vssvc.exe,-102 (VSS) - Unknown owner - C:\\\\Windows\\\\system32\\\\vssvc.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\Wat\\\\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\Wat\\\\WatAdminSvc.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\wbengine.exe,-104 (wbengine) - Unknown owner - C:\\\\Windows\\\\system32\\\\wbengine.exe (file missing)\\nO23 - Service: @%Systemroot%\\\\system32\\\\wbem\\\\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\\\\Windows\\\\system32\\\\wbem\\\\WmiApSrv.exe (file missing)\\nO23 - Service: @%PROGRAMFILES%\\\\Windows Media Player\\\\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\\\\Program Files (x86)\\\\Windows Media Player\\\\wmpnetwk.exe (file missing)\\n\\n--\\nEnd of file - 14446 bytes\\n\\n======Listing Processes======\\n\\n\\\\SystemRoot\\\\System32\\\\smss.exe\\n%SystemRoot%\\\\system32\\\\csrss.exe ObjectDirectory=\\\\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16\\nwininit.exe\\n%SystemRoot%\\\\system32\\\\csrss.exe ObjectDirectory=\\\\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16\\nC:\\\\Windows\\\\system32\\\\services.exe\\nC:\\\\Windows\\\\system32\\\\lsass.exe\\nC:\\\\Windows\\\\system32\\\\lsm.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k DcomLaunch\\nC:\\\\Windows\\\\system32\\\\nvvsvc.exe\\nwinlogon.exe\\n\\\"C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe\\\"\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k RPCSS\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k LocalServiceNetworkRestricted\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k LocalSystemNetworkRestricted\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k netsvcs\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalService\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k NetworkService\\nC:\\\\Windows\\\\system32\\\\WLANExt.exe 23197296\\n\\\\??\\\\C:\\\\Windows\\\\system32\\\\conhost.exe \\\"186287547-1262938235-1110408793-1809123919-926556263-1244869508-472585697548491829\\n\\\"C:\\\\Program Files\\\\NVIDIA Corporation\\\\Display\\\\nvxdsync.exe\\\"\\nC:\\\\Windows\\\\system32\\\\nvvsvc.exe -session -first\\nC:\\\\Windows\\\\System32\\\\spoolsv.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalServiceNoNetwork\\n\\\"C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe\\\"\\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe\\\"\\n\\\"C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe\\\"\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\\" /McCoreSvc\\n\\\"C:\\\\Windows\\\\system32\\\\mfevtps.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe\\\" SERVICE\\n\\\"C:\\\\Windows\\\\system32\\\\rundll32.exe\\\" \\\"c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\saHook.dll\\\" saHooker_Initialize_and_Wait\\n\\\"C:\\\\Windows\\\\system32\\\\rundll32.exe\\\" \\\"c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\saHook.dll\\\" saHooker_Initialize_and_Wait\\n\\\"C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE\\\"\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k imgsvc\\n\\\"C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WLIDSVC.EXE\\\"\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe\\\"\\nWLIDSvcM.exe 2092\\nC:\\\\Windows\\\\system32\\\\wbem\\\\unsecapp.exe -Embedding\\nC:\\\\Windows\\\\system32\\\\wbem\\\\wmiprvse.exe\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe\\\"\\nC:\\\\Windows\\\\System32\\\\alg.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k NetworkServiceNetworkRestricted\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalServiceAndNoImpersonation\\n\\\"taskhost.exe\\\"\\n\\\"C:\\\\Windows\\\\system32\\\\Dwm.exe\\\"\\nC:\\\\Windows\\\\Explorer.EXE\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\TOASTER.EXE\\\" C:\\\\Users\\\\Marek\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\COMPONENTS\\\\SCHEDULER\\\\STSERVICE.EXE\\\" \\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\Components\\\\DSUpdate\\\\DSUpd.exe\\\" \\n\\\"C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPEnh.exe\\\" \\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RtkNGUI64.exe\\\" -s\\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RAVBg64.exe\\\" /MAXX3\\n\\\"C:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe\\\" \\n\\\"C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPHelper.exe\\\" \\n\\\"C:\\\\Program Files\\\\Dell\\\\QuickSet\\\\quickset.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\igfxtray.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\hkcmd.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\igfxpers.exe\\\" \\n\\\"C:\\\\Program Files\\\\McAfee\\\\MAT\\\\McPvTray.exe\\\" \\n\\\"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe\\\" -user_has_logged_in 1\\n\\\"C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe\\\" \\n\\\"C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe\\\" /runkey\\nC:\\\\Windows\\\\system32\\\\SearchIndexer.exe /Embedding\\n\\\"C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\\" /wts 2516 484 488\\nC:\\\\Windows\\\\system32\\\\vssvc.exe\\n\\\"C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe\\\"\\n\\\"C:\\\\Program Files\\\\Windows Media Player\\\\wmpnetwk.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe\\\"\\n\\\"c:\\\\PROGRA~1\\\\mcafee\\\\msc\\\\mcupdmgr.exe\\\" -Embedding\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k swprv\\n\\\"C:\\\\Program Files (x86)\\\\Skype\\\\Phone\\\\Skype.exe\\\" \\nC:\\\\Windows\\\\servicing\\\\TrustedInstaller.exe\\n\\\"C:\\\\Program Files (x86)\\\\Opera\\\\opera.exe\\\" \\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" \\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=extension --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Default_Prefix/WarmSocketImpact/warmest_socket/ --disable-client-side-phishing-detection --enable-print-preview --channel=2224.029EC160.3548539 --ignored=\\\" --type=renderer \\\" /prefetch:3\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=plugin --plugin-path=\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\User Data\\\\Default\\\\Extensions\\\\fheoggkfdfchfphceeifdbepaooicaho\\\\3.40.135.1_0\\\\McChPlg.dll\\\" --lang=cs --channel=2224.0771DE00.692497356 /prefetch:4\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=renderer --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Default_Prefix/WarmSocketImpact/warmest_socket/ --disable-client-side-phishing-detection --enable-print-preview --channel=2224.042C29A0.447140225 /prefetch:3\\nC:\\\\Windows\\\\system32\\\\rundll32.exe \\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\APPLIC~1\\\\140835~1.202\\\\gcswf32.dll\\\",BrokerMain browser=chrome\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=plugin --plugin-path=\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\14.0.835.202\\\\gcswf32.dll\\\" --lang=cs --channel=2224.079C7380.553825092 --flash-broker=8516 /prefetch:4\\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\firefox.exe\\\" \\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\\" --channel=3684.a969d30.573474903 \\\"C:\\\\Program Files (x86)\\\\McAfee\\\\SiteAdvisor\\\\NPMcFFPlg32.dll\\\" Mozilla.Firefox.7.0.1 -greomni \\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\omni.jar\\\" 3684 \\\"\\\\\\\\.\\\\pipe\\\\gecko-crash-server-pipe.3684\\\" plugin\\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\\" --channel=3684.198472e0.114558495 \\\"C:\\\\Windows\\\\SysWOW64\\\\Macromed\\\\Flash\\\\NPSWF32.dll\\\" Mozilla.Firefox.7.0.1 -greomni \\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\omni.jar\\\" 3684 \\\"\\\\\\\\.\\\\pipe\\\\gecko-crash-server-pipe.3684\\\" plugin\\n\\\"C:\\\\Users\\\\Marek\\\\Desktop\\\\RSITx64.exe\\\" \\nC:\\\\Windows\\\\system32\\\\wbem\\\\wmiprvse.exe\\n\\n======Scheduled tasks folder======\\n\\nC:\\\\Windows\\\\tasks\\\\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001Core.job\\nC:\\\\Windows\\\\tasks\\\\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001UA.job\\n\\n=========Mozilla firefox=========\\n\\nProfilePath - C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\n\\nprefs.js - \\\"browser.search.useDBForOrder\\\" - true\\nprefs.js - \\\"browser.startup.homepage\\\" - \\\"http://www.seznam.cz/\\\"\\nprefs.js - \\\"extensions.enabledItems\\\" - \\\"{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, personas@christopher.beard:1.6.2, bkmrksync@nokia.com:1.0.0.736, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15\\\"\\nprefs.js - \\\"keyword.URL\\\" - \\\"http://search.yahoo.com/search?fr=mcafee&p=\\\"\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@adobe.com/FlashPlayer]\\n\\\"Description\\\"=Adobe® Flash® Player 10.1 Plugin\\n\\\"Path\\\"=C:\\\\Windows\\\\SysWOW64\\\\Macromed\\\\Flash\\\\NPSWF32.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@adobe.com/ShockwavePlayer]\\n\\\"Description\\\"=Adobe Shockwave Player\\n\\\"Path\\\"=C:\\\\Windows\\\\system32\\\\Adobe\\\\Director\\\\np32dsw.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@java.com/JavaPlugin]\\n\\\"Description\\\"=Oracle® Next Generation Java™ Plug-In\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\new_plugin\\\\npjp2.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@mcafee.com/MSC,version=10]\\n\\\"Description\\\"=McAfee Total Protection MIME Plugin\\n\\\"Path\\\"=c:\\\\progra~2\\\\mcafee\\\\msc\\\\npmcsn~1.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@mcafee.com/SAFFPlugin]\\n\\\"Description\\\"=\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\McAfee\\\\SiteAdvisor\\\\npmcffplg32.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/GENUINE]\\n\\\"Description\\\"=\\n\\\"Path\\\"=disabled\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@Microsoft.com/NpCtrl,version=1.0]\\n\\\"Description\\\"=Ag Player Plugin\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Microsoft Silverlight\\\\4.0.60531.0\\\\npctrl.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/WLPG,version=15.4.3502.0922]\\n\\\"Description\\\"=WLPG Install MIME type\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\NPWLPG.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/WLPG,version=15.4.3508.1109]\\n\\\"Description\\\"=WLPG Install MIME type\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\NPWLPG.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@nvidia.com/3DVision]\\n\\\"Description\\\"=NVIDIA stereo images plugin for Mozilla browsers\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\npnv3dv.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@nvidia.com/3DVisionStreaming]\\n\\\"Description\\\"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\npnv3dvstreaming.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@parallelgraphics.com/Cortona]\\n\\\"Description\\\"=Cortona VRML Plugin\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Common Files\\\\ParallelGraphics\\\\Cortona\\\\npCortona.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@virtools.com/3DviaPlayer]\\n\\\"Description\\\"=3Dvia Player For Mozilla Based Broswer\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Virtools\\\\3D Life Player\\\\npvirtools.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\Adobe Reader]\\n\\\"Description\\\"=Handles PDFs in-place in Firefox\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Adobe\\\\Reader 10.0\\\\Reader\\\\AIR\\\\nppdf32.dll\\n\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@java.com/JavaPlugin]\\n\\\"Description\\\"=Oracle® Next Generation Java™ Plug-In\\n\\\"Path\\\"=C:\\\\Program Files\\\\Java\\\\jre6\\\\bin\\\\new_plugin\\\\npjp2.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@mcafee.com/MSC,version=10]\\n\\\"Description\\\"=McAfee Total Protection MIME Plugin\\n\\\"Path\\\"=c:\\\\PROGRA~1\\\\mcafee\\\\msc\\\\NPMCSN~1.DLL\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@microsoft.com/GENUINE]\\n\\\"Description\\\"=\\n\\\"Path\\\"=disabled\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\\\n{972ce4c6-7e08-4474-a285-3208198ce6fd}\\n{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\components\\\\\\nbinary.manifest\\nbrowsercomps.dll\\nnpCortona.xpt\\nnsIQTScriptablePlugin.xpt\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugins\\\\\\nnp-mswmp.dll\\nnpCortona.dll\\nnppdf32.DEU\\nnppdf32.dll\\nnppdf32.FRA\\nnppdf32.JPN\\nnpqtplugin.dll\\nnpqtplugin2.dll\\nnpqtplugin3.dll\\nnpqtplugin4.dll\\nnpqtplugin5.dll\\nnpqtplugin6.dll\\nnpqtplugin7.dll\\nQuickTimePlugin.class\\nWMP Firefox Plugin License.rtf\\nWMP Firefox Plugin RelNotes.txt\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\searchplugins\\\\\\ngoogle.xml\\nheureka-cz.xml\\njyxo-cz.xml\\nMcSiteAdvisor.xml\\nseznam-cz.xml\\nslunecnice-cz.xml\\nwikipedia-cz.xml\\n\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\\\extensions\\\\\\n{20a82645-c095-46ed-80e3-08825760534b}\\n\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\\\searchplugins\\\\\\ncrawlersrch.xml\\nfacebook.xml\\nicqplugin.xml\\nlive-search.xml\\nqip-search.xml\\nzbocz.xml\\n\\n======Registry dump======\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]\\nscriptproxy - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll [2011-08-19 94424]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]\\nWindows Live ID Sign-in Helper - C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll [2010-09-21 529280]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]\\nMcAfee SiteAdvisor BHO - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\x64\\\\mcieplg.dll [2011-08-11 317336]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]\\nJava(tm) Plug-In 2 SSV Helper - C:\\\\Program Files\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll [2011-08-13 49440]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]\\nAdobe PDF Link Helper - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\Acrobat\\\\ActiveX\\\\AcroIEHelperShim.dll [2011-09-05 63912]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]\\nGroove GFS Browser Helper - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll [2009-02-12 2217848]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]\\nscriptproxy - C:\\\\Program Files (x86)\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll [2011-08-19 79480]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]\\nPomocná sluĹľba pro pĹ™ihlášenĂ ke sluĹľbÄ› Windows Live ID - C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll [2010-09-21 439168]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]\\nWindows Live Messenger Companion Helper - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll [2010-11-10 393600]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]\\nMcAfee SiteAdvisor BHO - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll [2011-08-11 258120]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]\\nJava(tm) Plug-In 2 SSV Helper - C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll [2011-08-03 42272]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Toolbar]\\n{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\x64\\\\mcieplg.dll [2011-08-11 317336]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Internet Explorer\\\\Toolbar]\\n{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll [2011-08-11 258120]\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"SynTPEnh\\\"=C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPEnh.exe [2010-12-17 2531624]\\n\\\"RTHDVCPL\\\"=C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RtkNGUI64.exe [2011-02-19 6611048]\\n\\\"RtHDVBg\\\"=C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RAVBg64.exe [2011-01-19 2188904]\\n\\\"FreeFallProtection\\\"=C:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe [2010-12-17 686704]\\n\\\"NVHotkey\\\"=C:\\\\Windows\\\\system32\\\\nvHotkey.dll [2011-08-03 335976]\\n\\\"QuickSet\\\"=c:\\\\Program Files\\\\Dell\\\\QuickSet\\\\QuickSet.exe [2011-01-25 4479648]\\n\\\"IgfxTray\\\"=C:\\\\Windows\\\\system32\\\\igfxtray.exe [2011-03-30 167960]\\n\\\"HotKeysCmds\\\"=C:\\\\Windows\\\\system32\\\\hkcmd.exe [2011-03-30 391704]\\n\\\"Persistence\\\"=C:\\\\Windows\\\\system32\\\\igfxpers.exe [2011-03-30 418840]\\n\\\"McPvTray_exe\\\"=C:\\\\Program Files\\\\McAfee\\\\MAT\\\\McPvTray.exe [2011-04-08 436384]\\n\\n[HKEY_CURRENT_USER\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"\\\"= []\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Adobe ARM]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\AdobeARM.exe [2011-03-30 937920]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Adobe Reader Speed Launcher]\\nC:\\\\Program Files (x86)\\\\Adobe\\\\Reader 10.0\\\\Reader\\\\Reader_sl.exe [2011-09-05 35736]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\AdobeAAMUpdater-1.0]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\OOBE\\\\PDApp\\\\UWA\\\\UpdaterStartupUtility.exe [2010-03-06 500208]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\AdobeCS5ServiceManager]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\CS5ServiceManager\\\\CS5ServiceManager.exe [2010-07-22 402432]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Dell Webcam Central]\\nC:\\\\Program Files (x86)\\\\Dell Webcam\\\\Dell Webcam Central\\\\WebcamDell2.exe [2011-08-12 520330]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Desktop Disc Tool]\\nC:\\\\Program Files (x86)\\\\Roxio\\\\OEM\\\\Roxio Burn\\\\RoxioBurnLauncher.exe [2010-11-17 514544]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Google Update]\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Update\\\\GoogleUpdate.exe [2011-05-30 136176]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\GrooveMonitor]\\nC:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveMonitor.exe [2008-10-25 31072]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\IntelWireless]\\nC:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\iFrmewrk.exe [2010-12-17 1933584]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\NeroLauncher]\\nC:\\\\Program Files (x86)\\\\Nero\\\\SyncUP\\\\NeroLauncher.exe [2011-07-07 75064]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\NokiaMServer]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Nokia\\\\MPlatform\\\\NokiaMServer /watchfiles startup []\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\QuickTime Task]\\nE:\\\\Programy\\\\QuickTime\\\\QTTask.exe [2011-07-05 421888]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\RoxWatchTray]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatchTray12OEM.exe [2010-11-25 240112]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\SunJavaUpdateSched]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Java\\\\Java Update\\\\jusched.exe [2011-04-08 254696]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\SwitchBoard]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe [2010-02-19 517096]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\TNOD UP]\\nC:\\\\Program Files (x86)\\\\TNod User & Password Finder\\\\TNODUP.exe /i []\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"\\\"= []\\n\\\"Dell DataSafe Online\\\"=C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe [2010-08-26 1117528]\\n\\\"mcui_exe\\\"=C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe [2011-09-10 1671824]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows]\\n\\\"AppInit_DLLs\\\"=\\\"C:\\\\Windows\\\\system32\\\\nvinitx.dll\\\"\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Notify\\\\igfxcui]\\nC:\\\\Windows\\\\system32\\\\igfxdev.dll [2011-03-26 385024]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\ShellServiceObjectDelayLoad]\\nWebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\ShellExecuteHooks]\\n\\\"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}\\\"=C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll [2009-02-12 2217848]\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\control\\\\securityproviders]\\n\\\"SecurityProviders\\\"=credssp.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\Minimal\\\\mcmscsvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\Minimal\\\\MCODS]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\AFD]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\McMPFSvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mcmscsvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\MCODS]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefire]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefirek]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefirek.sys]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfehidk]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfehidk.sys]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfevtp]\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\System]\\n\\\"ConsentPromptBehaviorAdmin\\\"=0\\n\\\"ConsentPromptBehaviorUser\\\"=3\\n\\\"EnableLUA\\\"=0\\n\\\"EnableUIADesktopToggle\\\"=0\\n\\\"PromptOnSecureDesktop\\\"=0\\n\\\"dontdisplaylastusername\\\"=0\\n\\\"legalnoticecaption\\\"=\\n\\\"legalnoticetext\\\"=\\n\\\"shutdownwithoutlogon\\\"=1\\n\\\"undockwithoutlogon\\\"=1\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\explorer]\\n\\\"NoActiveDesktop\\\"=1\\n\\\"NoActiveDesktopChanges\\\"=1\\n\\\"ForceActiveDesktopOn\\\"=0\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\services\\\\sharedaccess\\\\parameters\\\\firewallpolicy\\\\standardprofile\\\\authorizedapplications\\\\list]\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\services\\\\sharedaccess\\\\parameters\\\\firewallpolicy\\\\domainprofile\\\\authorizedapplications\\\\list]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Drivers32]\\n\\\"vidc.mrle\\\"=msrle32.dll\\n\\\"vidc.msvc\\\"=msvidc32.dll\\n\\\"msacm.imaadpcm\\\"=imaadp32.acm\\n\\\"msacm.msg711\\\"=msg711.acm\\n\\\"msacm.msgsm610\\\"=msgsm32.acm\\n\\\"msacm.msadpcm\\\"=msadp32.acm\\n\\\"midimapper\\\"=midimap.dll\\n\\\"wavemapper\\\"=msacm32.drv\\n\\\"VIDC.UYVY\\\"=msyuv.dll\\n\\\"VIDC.YUY2\\\"=msyuv.dll\\n\\\"VIDC.YVYU\\\"=msyuv.dll\\n\\\"VIDC.IYUV\\\"=iyuv_32.dll\\n\\\"vidc.i420\\\"=iyuv_32.dll\\n\\\"VIDC.YVU9\\\"=tsbyuv.dll\\n\\\"msacm.l3acm\\\"=C:\\\\Windows\\\\System32\\\\l3codeca.acm\\n\\\"MSVideo8\\\"=VfWWDM32.dll\\n\\\"wave\\\"=wdmaud.drv\\n\\\"midi\\\"=wdmaud.drv\\n\\\"mixer\\\"=wdmaud.drv\\n\\\"aux\\\"=wdmaud.drv\\n\\\"wave1\\\"=wdmaud.drv\\n\\\"midi1\\\"=wdmaud.drv\\n\\\"mixer1\\\"=wdmaud.drv\\n\\\"aux1\\\"=wdmaud.drv\\n\\n======File associations======\\n\\n.js - edit - C:\\\\Windows\\\\System32\\\\Notepad.exe %1\\n.js - open - C:\\\\Windows\\\\System32\\\\WScript.exe \\\"%1\\\" %*\\n\\n======List of files/folders created in the last 1 month======\\n\\n2011-10-11 19:40:01 ----D---- C:\\\\rsit\\n2011-10-11 19:40:01 ----D---- C:\\\\Program Files\\\\trend micro\\n2011-10-10 15:27:15 ----D---- C:\\\\Program Files (x86)\\\\McAfeeMOBK\\n2011-10-10 15:27:12 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\MOBK.sys\\n2011-10-10 15:27:11 ----D---- C:\\\\Program Files (x86)\\\\McAfee Online Backup\\n2011-10-10 15:27:01 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\McPvDrv.sys\\n2011-10-10 15:26:40 ----D---- C:\\\\Program Files (x86)\\\\McAfee.com\\n2011-10-10 15:26:22 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfeclnk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfewfpk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mferkdet.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfenlfk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfefirek.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\cfwids.sys\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\McAfee.com\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\McAfee\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\Common Files\\\\McAfee\\n2011-10-10 15:25:53 ----D---- C:\\\\Program Files (x86)\\\\McAfee\\n2011-10-10 15:12:36 ----A---- C:\\\\Windows\\\\system32\\\\mfevtps.exe\\n2011-10-09 18:17:10 ----D---- C:\\\\ProgramData\\\\Bluetooth\\n2011-10-04 13:40:30 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Reallusion\\n2011-09-26 22:50:43 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\NVIDIA\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\OpenCL.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvwgf2um.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvoptimusmft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvoglv32.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvdecodemft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\OpenCL.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvwgf2umx.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvoptimusmft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvoglv64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvgenco64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvdispco64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvdecodemft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvd3dumx.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvpciflt.sys\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvlddmkm.sys\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvkflt.sys\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuvid.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuvenc.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuda.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcompiler.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuvid.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuvenc.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuda.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcompiler.dll\\n2011-09-26 17:41:51 ----D---- C:\\\\Program Files (x86)\\\\SystemRequirementsLab\\n2011-09-25 22:27:04 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\ICQ\\n2011-09-25 22:26:59 ----D---- C:\\\\Program Files (x86)\\\\ICQ7.6\\n2011-09-24 19:52:33 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Zoner\\n2011-09-23 22:50:50 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\truecrypt.sys\\n2011-09-22 19:38:22 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Nokia Ovi Suite\\n2011-09-22 19:30:42 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Nokia\\n2011-09-22 19:29:16 ----D---- C:\\\\ProgramData\\\\Installations\\n2011-09-22 19:28:29 ----D---- C:\\\\ProgramData\\\\PC Suite\\n2011-09-22 19:28:28 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\PC Suite\\n2011-09-22 19:27:38 ----D---- C:\\\\Program Files\\\\DIFX\\n2011-09-22 19:27:38 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\pccsmcfdx64.sys\\n2011-09-22 19:27:34 ----D---- C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\n2011-09-22 19:27:19 ----A---- C:\\\\Windows\\\\system32\\\\nmwcdclsX64.dll\\n2011-09-22 19:26:27 ----D---- C:\\\\ProgramData\\\\NokiaInstallerCache\\n2011-09-22 19:26:27 ----D---- C:\\\\Program Files (x86)\\\\Nokia\\n2011-09-22 07:56:59 ----D---- C:\\\\ProgramData\\\\3DVIA\\n2011-09-22 07:56:58 ----D---- C:\\\\Program Files (x86)\\\\Virtools\\n2011-09-21 17:30:29 ----A---- C:\\\\Windows\\\\iun6002.exe\\n2011-09-21 17:30:27 ----D---- C:\\\\Program Files (x86)\\\\Codec Pack - All In 1\\n2011-09-20 12:53:51 ----D---- C:\\\\ProgramData\\\\EGG\\n2011-09-20 07:52:34 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Roxio Burn\\n2011-09-20 07:47:13 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Macrovision\\n2011-09-19 22:34:32 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\eM Client\\n2011-09-19 22:20:53 ----D---- C:\\\\Windows\\\\Sun\\n2011-09-19 20:04:16 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\PSpad\\n\\n======List of files/folders modified in the last 1 month======\\n\\n2011-10-11 19:40:03 ----D---- C:\\\\Windows\\\\Temp\\n2011-10-11 19:40:01 ----D---- C:\\\\Program Files\\n2011-10-11 19:38:05 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Skype\\n2011-10-11 19:31:09 ----D---- C:\\\\Windows\\\\system32\\\\config\\n2011-10-11 08:51:24 ----D---- C:\\\\Windows\\\\system32\\\\Tasks\\n2011-10-11 08:48:49 ----D---- C:\\\\Windows\\\\System32\\n2011-10-11 08:48:49 ----A---- C:\\\\Windows\\\\system32\\\\PerfStringBackup.INI\\n2011-10-11 08:48:48 ----D---- C:\\\\Windows\\\\inf\\n2011-10-11 07:18:44 ----D---- C:\\\\ProgramData\\\\Sonic\\n2011-10-11 07:18:31 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\log.txt\\n2011-10-11 07:17:11 ----D---- C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\n2011-10-11 07:16:18 ----D---- C:\\\\ProgramData\\\\NVIDIA\\n2011-10-10 22:53:39 ----D---- C:\\\\WINDOWS\\n2011-10-10 21:01:58 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\n2011-10-10 18:36:08 ----D---- C:\\\\ProgramData\\\\McAfee\\n2011-10-10 17:05:23 ----RD---- C:\\\\Program Files (x86)\\n2011-10-10 16:16:15 ----HD---- C:\\\\ProgramData\\n2011-10-10 15:27:20 ----SHD---- C:\\\\System Volume Information\\n2011-10-10 15:27:15 ----SHD---- C:\\\\Windows\\\\Installer\\n2011-10-10 15:27:12 ----DC---- C:\\\\Windows\\\\system32\\\\DRVSTORE\\n2011-10-10 15:27:02 ----D---- C:\\\\Windows\\\\system32\\\\catroot\\n2011-10-10 15:26:32 ----D---- C:\\\\Windows\\\\system32\\\\DriverStore\\n2011-10-10 15:26:23 ----D---- C:\\\\Program Files (x86)\\\\Mozilla Firefox\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\Common Files\\n2011-10-10 15:00:04 ----D---- C:\\\\Windows\\\\Downloaded Program Files\\n2011-10-10 09:15:38 ----D---- C:\\\\Program Files\\\\CCleaner\\n2011-10-10 07:16:52 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\\\UMDF\\n2011-10-09 19:04:50 ----D---- C:\\\\Windows\\\\Tasks\\n2011-10-09 19:04:50 ----D---- C:\\\\Windows\\\\system32\\\\wfp\\n2011-10-09 19:04:49 ----D---- C:\\\\Windows\\\\system32\\\\wbem\\n2011-10-09 19:04:14 ----D---- C:\\\\Windows\\\\SysWOW64\\n2011-10-09 19:04:14 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\\\etc\\n2011-10-09 19:04:13 ----D---- C:\\\\Windows\\\\system32\\\\catroot2\\n2011-10-09 19:04:13 ----D---- C:\\\\Windows\\\\security\\n2011-10-09 19:04:12 ----D---- C:\\\\Windows\\\\registration\\n2011-10-09 00:35:47 ----D---- C:\\\\Windows\\\\Prefetch\\n2011-10-02 15:47:56 ----D---- C:\\\\Program Files (x86)\\\\Common Files\\n2011-10-02 09:22:06 ----D---- C:\\\\Windows\\\\panther\\n2011-10-02 09:17:51 ----D---- C:\\\\dell\\n2011-10-01 22:08:16 ----D---- C:\\\\Windows\\\\system32\\\\NDF\\n2011-09-29 17:53:25 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\DAEMON Tools Lite\\n2011-09-29 17:53:22 ----D---- C:\\\\Windows\\\\debug\\n2011-09-28 12:01:53 ----RD---- C:\\\\Program Files (x86)\\\\Skype\\n2011-09-28 12:01:51 ----D---- C:\\\\ProgramData\\\\Skype\\n2011-09-27 20:53:49 ----A---- C:\\\\Windows\\\\system32\\\\MRT.exe\\n2011-09-27 14:50:45 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\n2011-09-27 07:20:18 ----D---- C:\\\\Windows\\\\system32\\\\wdi\\n2011-09-26 23:14:03 ----D---- C:\\\\Windows\\\\Logs\\n2011-09-26 22:48:46 ----D---- C:\\\\Windows\\\\SYSWOW64\\\\NV\\n2011-09-26 22:48:46 ----D---- C:\\\\Windows\\\\system32\\\\NV\\n2011-09-26 18:34:32 ----HD---- C:\\\\Program Files (x86)\\\\InstallShield Installation Information\\n2011-09-26 18:34:15 ----D---- C:\\\\Program Files\\\\NVIDIA Corporation\\n2011-09-26 18:33:35 ----D---- C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\n2011-09-24 20:43:03 ----RD---- C:\\\\Users\\n2011-09-22 19:52:03 ----SD---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Microsoft\\n2011-09-22 19:42:37 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\PerfStringBackup.INI\\n2011-09-22 19:26:59 ----D---- C:\\\\Windows\\\\winsxs\\n2011-09-21 16:52:51 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\GHISLER\\n2011-09-20 22:13:46 ----SHD---- C:\\\\$RECYCLE.BIN\\n2011-09-20 21:58:52 ----D---- C:\\\\ProgramData\\\\Roxio\\n2011-09-20 21:14:36 ----SD---- C:\\\\ProgramData\\\\Microsoft\\n2011-09-20 13:00:06 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Roxio\\n2011-09-20 08:38:22 ----D---- C:\\\\Windows\\\\rescache\\n2011-09-20 08:20:38 ----D---- C:\\\\Windows\\\\Microsoft.NET\\n2011-09-19 22:35:20 ----RSD---- C:\\\\Windows\\\\assembly\\n2011-09-18 10:01:09 ----D---- C:\\\\ProgramData\\\\Microsoft Help\\n\\n======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======\\n\\nR0 iaStor;Intel AHCI Controller; C:\\\\Windows\\\\system32\\\\drivers\\\\iaStor.sys [2011-01-13 439320]\\nR0 McPvDrv;McPvDrv Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\McPvDrv.sys [2011-04-11 71800]\\nR0 mfehidk;McAfee Inc. mfehidk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfehidk.sys [2011-08-15 642824]\\nR0 mfewfpk;McAfee Inc. mfewfpk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfewfpk.sys [2011-08-15 283744]\\nR0 nvpciflt;nvpciflt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nvpciflt.sys [2011-08-03 27240]\\nR0 PxHlpa64;PxHlpa64; C:\\\\Windows\\\\System32\\\\Drivers\\\\PxHlpa64.sys [2010-03-19 55856]\\nR0 rdyboost;ReadyBoost; C:\\\\Windows\\\\System32\\\\drivers\\\\rdyboost.sys [2010-11-21 213888]\\nR0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\stdcfltn.sys [2010-08-20 21616]\\nR1 mfenlfk;McAfee NDIS Light Filter; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\mfenlfk.sys [2011-08-15 75672]\\nR1 MOBKFilter;MOBKFilter; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\MOBK.sys [2010-04-13 66040]\\nR1 nvkflt;nvkflt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nvkflt.sys [2011-08-03 246888]\\nR1 vwififlt;Virtual WiFi Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\vwififlt.sys [2009-07-14 59904]\\nR3 Acceler;Accelerometer Service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Accelern.sys [2010-12-13 27760]\\nR3 AVer7231_x64;AVerMedia 7231 capture service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\AVer7231_x64.sys [2010-06-11 1799808]\\nR3 cfwids;McAfee Inc. cfwids; C:\\\\Windows\\\\system32\\\\drivers\\\\cfwids.sys [2011-08-15 65128]\\nR3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\CtClsFlt.sys [2011-06-16 176000]\\nR3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\dtsoftbus01.sys [2011-09-06 270912]\\nR3 igfx;igfx; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\igdkmd64.sys [2011-03-26 12262336]\\nR3 IntcAzAudAddService;Service for Realtek HD Audio (WDM C:\\\\Windows\\\\system32\\\\drivers\\\\RTKVHD64.sys [2011-02-19 2748520]\\nR3 IntcDAud;Intel(R) Display Audio; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\IntcDAud.sys [2010-10-15 317440]\\nR3 MEIx64;Intel(R) Management Engine Interface; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\HECIx64.sys [2010-10-20 56344]\\nR3 mfeapfk;McAfee Inc. mfeapfk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeapfk.sys [2011-08-15 158584]\\nR3 mfeavfk;McAfee Inc. mfeavfk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk.sys [2011-08-15 228752]\\nR3 mfefirek;McAfee Inc. mfefirek; C:\\\\Windows\\\\system32\\\\drivers\\\\mfefirek.sys [2011-08-15 481504]\\nR3 NETwNs64;___ OvladaÄŤ adaptĂ©ru Ĺ™ady Intel(R) Wireless WiFi Link 5000 pro systĂ©m Windows 7 64 Bit; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\NETwNs64.sys [2010-12-22 8505856]\\nR3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nusb3hub.sys [2011-02-11 82432]\\nR3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nusb3xhc.sys [2011-02-11 181760]\\nR3 qicflt;upper Device Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\qicflt.sys [2010-07-13 29288]\\nR3 RTL8167;Realtek 8167 NT Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Rt64win7.sys [2011-06-10 539240]\\nR3 SynTP;Synaptics TouchPad Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\SynTP.sys [2010-12-17 1404464]\\nR3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\vwifimp.sys [2009-07-14 17920]\\nR3 wdkmd;Intel WiDi KMD; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\WDKMD.sys [2010-12-01 42392]\\nS3 BthEnum;SluĹľba Bluetooth Enumerator; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\BthEnum.sys [2009-07-14 41984]\\nS3 BthPan;ZaĹ™ĂzenĂ Bluetooth (sĂĹĄ PAN); C:\\\\Windows\\\\system32\\\\DRIVERS\\\\bthpan.sys [2009-07-14 118784]\\nS3 BTHPORT;OvladaÄŤ portu Bluetooth; C:\\\\Windows\\\\System32\\\\Drivers\\\\BTHport.sys [2011-04-28 552960]\\nS3 BTHUSB;OvladaÄŤ rozhranĂ USB radiostanice Bluetooth; C:\\\\Windows\\\\System32\\\\Drivers\\\\BTHUSB.sys [2011-04-28 80384]\\nS3 Epfwndis;Eset Personal Firewall; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Epfwndis.sys [2010-12-21 34144]\\nS3 Impcd;Impcd; C:\\\\Windows\\\\system32\\\\drivers\\\\Impcd.sys [2010-02-27 158976]\\nS3 JMCR;JMCR; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\jmcr.sys [2010-12-15 174168]\\nS3 mfeavfk01;McAfee Inc.; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk01.sys []\\nS3 mferkdet;McAfee Inc. mferkdet; C:\\\\Windows\\\\system32\\\\drivers\\\\mferkdet.sys [2011-08-15 100904]\\nS3 nmwcd;Nokia USB Phone Parent Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\ccdcmbx64.sys [2011-05-18 19968]\\nS3 nmwcdc;Nokia USB Communication Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\ccdcmbox64.sys [2011-05-18 27136]\\nS3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\\\\Windows\\\\system32\\\\drivers\\\\nvstusb.sys [2010-12-12 121960]\\nS3 pccsmcfd;PCCS Mode Change Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\pccsmcfdx64.sys [2008-08-28 25600]\\nS3 pciide;pciide; C:\\\\Windows\\\\system32\\\\drivers\\\\pciide.sys [2009-07-14 12352]\\nS3 RFCOMM;ZaĹ™ĂzenĂ Bluetooth (RFCOMM protokol TDI); C:\\\\Windows\\\\system32\\\\DRIVERS\\\\rfcomm.sys [2009-07-14 158720]\\nS3 sdbus;sdbus; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\sdbus.sys [2010-11-21 109056]\\nS3 TsUsbFlt;TsUsbFlt; C:\\\\Windows\\\\system32\\\\drivers\\\\tsusbflt.sys [2010-11-21 59392]\\nS3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\\\\Windows\\\\system32\\\\drivers\\\\TsUsbGD.sys [2010-11-21 31232]\\nS3 upperdev;upperdev; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\usbser_lowerfltx64.sys [2011-05-18 9216]\\nS3 usbser;USB Modem Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\usbser.sys [2010-11-21 32768]\\nS3 UsbserFilt;UsbserFilt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\usbser_lowerfltjx64.sys [2011-05-18 9216]\\nS3 WimFltr;WimFltr; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\wimfltr.sys [2006-11-01 151656]\\nS3 WinUsb;WinUsb; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\WinUsb.sys [2010-11-21 41984]\\n\\n======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======\\n\\nR2 AdobeARMservice;Adobe Acrobat Update Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe [2011-06-06 64952]\\nR2 AERTFilters;Andrea RT Filters Service; C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe [2009-11-18 98208]\\nR2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe [2010-12-17 1515792]\\nR2 LMS;Intel(R) Management and Security Application Local Management Service; C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe [2010-12-21 325656]\\nR2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McMPFSvc;McAfee Personal Firewall Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 mcmscsvc;McAfee Services; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McNaiAnn;McAfee VirusScan Announcer; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McNASvc;McAfee Network Agent; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McProxy;McAfee Proxy Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McShield;McAfee McShield; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe [2011-08-19 199008]\\nR2 mfefire;McAfee Firewall Core Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe [2011-08-19 208272]\\nR2 mfevtp;McAfee Validation Trust Protection Service; C:\\\\Windows\\\\system32\\\\mfevtps.exe [2011-08-19 158832]\\nR2 MOBKbackup;1%; C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe [2010-04-13 231224]\\nR2 MSK80Service;McAfee Anti-Spam Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 NAUpdate;@C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe,-200; C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe [2011-07-22 690472]\\nR2 NOBU;Dell DataSafe Online; C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe [2010-08-26 2823000]\\nR2 NVSvc;NVIDIA Display Driver Service; C:\\\\Windows\\\\system32\\\\nvvsvc.exe [2011-08-03 980072]\\nR2 nvUpdatusService;NVIDIA Update Service Daemon; C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe [2011-08-03 2255464]\\nR2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe [2010-12-17 836880]\\nR2 SftService;SoftThinks Agent Service; C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE [2011-08-18 1692480]\\nR2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe [2011-08-03 379496]\\nR2 UNS;Intel(R) Management and Security Application User Notification Service; C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe [2010-12-21 2656280]\\nR2 wlidsvc;Windows Live ID Sign-in Assistant; C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WLIDSVC.EXE [2010-09-21 2286976]\\nS2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\\\\Windows\\\\Microsoft.NET\\\\Framework\\\\v4.0.30319\\\\mscorsvw.exe [2010-03-18 130384]\\nS2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\mscorsvw.exe [2010-03-18 138576]\\nS2 RoxWatch12;Roxio Hard Drive Watcher 12; C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatch12OEM.exe [2010-11-25 219632]\\nS3 aspnet_state;ASP.NET State Service; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\aspnet_state.exe [2010-03-18 44376]\\nS3 McODS;McAfee Scanner; C:\\\\Program Files\\\\McAfee\\\\VirusScan\\\\mcods.exe [2011-06-23 501768]\\nS3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveAuditService.exe [2008-10-25 65888]\\nS3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\PanDhcpDns.exe [2010-12-17 340240]\\nS3 odserv;Microsoft Office Diagnostics Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\OFFICE12\\\\ODSERV.EXE [2008-11-04 441712]\\nS3 ose;Office Source Engine; C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Source Engine\\\\OSE.EXE [2006-10-26 145184]\\nS3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxMediaDB12OEM.exe [2010-11-25 1116656]\\nS3 ServiceLayer;ServiceLayer; C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\\\ServiceLayer.exe [2011-06-08 633856]\\nS3 Steam Client Service;Steam Client Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Steam\\\\SteamService.exe [2011-03-16 407336]\\nS3 stllssvr;stllssvr; C:\\\\Program Files (x86)\\\\Common Files\\\\SureThing Shared\\\\stllssvr.exe [2010-11-09 74392]\\nS3 SwitchBoard;SwitchBoard; C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe [2010-02-19 517096]\\nS3 WatAdminSvc;@%SystemRoot%\\\\system32\\\\Wat\\\\WatUX.exe,-601; C:\\\\Windows\\\\system32\\\\Wat\\\\WatAdminSvc.exe [2011-09-06 1255736]\\nS4 NetMsmqActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8195; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 NetPipeActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8197; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 NetTcpActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8199; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 wlcrasvc;Windows Live Mesh remote connections service; C:\\\\Program Files\\\\Windows Live\\\\Mesh\\\\wlcrasvc.exe [2010-09-23 57184]\\n\\n-----------------EOF-----------------\\n\",\"id\":\"76-1#126\",\"time\":1318355221004},
FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=mcafee&p="
FF - prefs.js..network.proxy.type: 0
FF - user.js..network.proxy.type: 0
FF - user.js..network.proxy.http: ""
FF - user.js..network.proxy.http_port:
FF - user.js..network.proxy.no_proxies_on: ""
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd
IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd
IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Crawler Search"
FF - prefs.js..browser.search.defaulturl: "http://www.fastbrowsersearch.com/result ... EF&v=19&q="
FF - prefs.js..browser.search.order.1: "Crawler Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.6.2
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.736
FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..browser.startup.homepage: "[{\"title\":\"VIRY.CZ • Upravit pĹ™ĂspÄ›vek\",\"text\":\"DÄ›kuji,\\nprávÄ› probĂhá kontrola, jen se teÄŹ ještÄ› zeptám, StartUpLite je na ovládánĂ procesĹŻ spouštÄ›nĂ˝ch po startu? Je to lepšà nástroj neĹľ ten v ccleaneru nebo ten staÄŤĂ a jakĂ˝ je prosĂm rozdĂl?\\nJeštÄ› mám takovĂ˝ postĹ™eh, pĹ™i kliknutĂ na váš odkaz oldtimer.geekstogo.com/OTL.exe mi McAfee napsalo vĂ˝strahu [url]http://www.siteadvisor.com/restricted.h ... :\"VIRY.CZ • Odeslat novĂ© tĂ©ma\",\"text\":\"DobrĂ˝ den,\\nprosĂm o kontrolu logu, notebook nemám dlouho, ale spoustu vÄ›cĂ jsem instaloval a pĹ™idával.\\n\\nPĹ™edem dÄ›kuji Marek \\\"echo\\\"\\n\\n\\n\\n\\n\\nLogfile of random's system information tool 1.09 (written by random/random)\\nRun by Marek at 2011-10-11 19:40:01\\nMicrosoft Windows 7 Home Premium Service Pack 1\\nSystem drive C: has 15 GB (30%) free of 51 GB\\nTotal RAM: 3990 MB (50% free)\\n\\nLogfile of Trend Micro HijackThis v2.0.4\\nScan saved at 19:40:12, on 11.10.2011\\nPlatform: Windows 7 SP1 (WinNT 6.00.3505)\\nMSIE: Internet Explorer v9.00 (9.00.8112.16421)\\nBoot mode: Normal\\n\\nRunning processes:\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\TOASTER.EXE\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\COMPONENTS\\\\SCHEDULER\\\\STSERVICE.EXE\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\Components\\\\DSUpdate\\\\DSUpd.exe\\nC:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe\\nC:\\\\Program Files (x86)\\\\Skype\\\\Phone\\\\Skype.exe\\nC:\\\\Program Files (x86)\\\\Opera\\\\opera.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Windows\\\\SysWOW64\\\\rundll32.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\firefox.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\nC:\\\\Program Files\\\\trend micro\\\\Marek.exe\\n\\nR1 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... s=bsd\\nR1 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896\\nR0 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Start Page = http://www1.euro.dell.com/content/defau ... s=bsd\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896\\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157\\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Search,SearchAssistant = \\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Search,CustomizeSearch = \\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Local Page = C:\\\\Windows\\\\SysWOW64\\\\blank.htm\\nR0 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Toolbar,LinksFolderName = \\nF2 - REG:system.ini: UserInit=userinit.exe\\nO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\Acrobat\\\\ActiveX\\\\AcroIEHelperShim.dll\\nO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll\\nO2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\\\\Program Files (x86)\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll\\nO2 - BHO: Pomocná sluĹľba pro pĹ™ihlášenĂ ke sluĹľbÄ› Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll\\nO2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll\\nO2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll\\nO3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO4 - HKLM\\\\..\\\\Run: [Dell DataSafe Online] C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe\\nO4 - HKLM\\\\..\\\\Run: [mcui_exe] \\\"C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe\\\" /runkey\\nO4 - HKUS\\\\S-1-5-19\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'LOCAL SERVICE')\\nO4 - HKUS\\\\S-1-5-19\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'LOCAL SERVICE')\\nO4 - HKUS\\\\S-1-5-20\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'NETWORK SERVICE')\\nO4 - HKUS\\\\S-1-5-20\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'NETWORK SERVICE')\\nO4 - HKUS\\\\S-1-5-21-580890379-3430277850-3007477444-1000\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'UpdatusUser')\\nO4 - HKUS\\\\S-1-5-21-580890379-3430277850-3007477444-1000\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'UpdatusUser')\\nO8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\EXCEL.EXE/3000\\nO9 - Extra button: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll\\nO9 - Extra button: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WriterBrowserExtension.dll\\nO9 - Extra 'Tools' menuitem: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WriterBrowserExtension.dll\\nO9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\ONBttnIE.dll\\nO9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\ONBttnIE.dll\\nO9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\\\\Program Files (x86)\\\\ICQ7.6\\\\ICQ.exe\\nO9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\\\\Program Files (x86)\\\\ICQ7.6\\\\ICQ.exe\\nO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\REFIEBAR.DLL\\nO10 - Unknown file in Winsock LSP: c:\\\\program files (x86)\\\\common files\\\\microsoft shared\\\\windows live\\\\wlidnsp.dll\\nO10 - Unknown file in Winsock LSP: c:\\\\program files (x86)\\\\common files\\\\microsoft shared\\\\windows live\\\\wlidnsp.dll\\nO11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics\\nO16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... .cab\\nO16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... .cab\\nO16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwar ... .cab\\nO16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... .cab\\nO16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... .cab\\nO18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveSystemServices.dll\\nO18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\AlbumDownloadProtocolHandler.dll\\nO18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\\\\progra~2\\\\mcafee\\\\msc\\\\mcsniepl.dll\\nO20 - AppInit_DLLs: C:\\\\Windows\\\\SysWOW64\\\\nvinit.dll\\nO23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe\\nO23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\Alg.exe,-112 (ALG) - Unknown owner - C:\\\\Windows\\\\System32\\\\alg.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\efssvc.dll,-100 (EFS) - Unknown owner - C:\\\\Windows\\\\System32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\fxsresm.dll,-118 (Fax) - Unknown owner - C:\\\\Windows\\\\system32\\\\fxssvc.exe (file missing)\\nO23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe\\nO23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\\\\Program Files\\\\McAfee\\\\VirusScan\\\\mcods.exe\\nO23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe\\nO23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe\\nO23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\\\\Windows\\\\system32\\\\mfevtps.exe (file missing)\\nO23 - Service: 1% (MOBKbackup) - McAfee, Inc. - C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\nO23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\\\\Windows\\\\System32\\\\msdtc.exe (file missing)\\nO23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\PanDhcpDns.exe\\nO23 - Service: @C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe\\nO23 - Service: @%SystemRoot%\\\\System32\\\\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe\\nO23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\nvvsvc.exe (file missing)\\nO23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe\\nO23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxMediaDB12OEM.exe\\nO23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatch12OEM.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\\\\Windows\\\\system32\\\\locator.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\samsrv.dll,-1 (SamSs) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: ServiceLayer - Nokia - C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\\\ServiceLayer.exe\\nO23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE\\nO23 - Service: @%SystemRoot%\\\\system32\\\\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\\\\Windows\\\\System32\\\\snmptrap.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\\\\Windows\\\\System32\\\\spoolsv.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\sppsvc.exe (file missing)\\nO23 - Service: Steam Client Service - Valve Corporation - C:\\\\Program Files (x86)\\\\Common Files\\\\Steam\\\\SteamService.exe\\nO23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe\\nO23 - Service: stllssvr - MicroVision Development, Inc. - C:\\\\Program Files (x86)\\\\Common Files\\\\SureThing Shared\\\\stllssvr.exe\\nO23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\\\\Windows\\\\system32\\\\UI0Detect.exe (file missing)\\nO23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\vds.exe,-100 (vds) - Unknown owner - C:\\\\Windows\\\\System32\\\\vds.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\vssvc.exe,-102 (VSS) - Unknown owner - C:\\\\Windows\\\\system32\\\\vssvc.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\Wat\\\\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\Wat\\\\WatAdminSvc.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\wbengine.exe,-104 (wbengine) - Unknown owner - C:\\\\Windows\\\\system32\\\\wbengine.exe (file missing)\\nO23 - Service: @%Systemroot%\\\\system32\\\\wbem\\\\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\\\\Windows\\\\system32\\\\wbem\\\\WmiApSrv.exe (file missing)\\nO23 - Service: @%PROGRAMFILES%\\\\Windows Media Player\\\\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\\\\Program Files (x86)\\\\Windows Media Player\\\\wmpnetwk.exe (file missing)\\n\\n--\\nEnd of file - 14446 bytes\\n\\n======Listing Processes======\\n\\n\\\\SystemRoot\\\\System32\\\\smss.exe\\n%SystemRoot%\\\\system32\\\\csrss.exe ObjectDirectory=\\\\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16\\nwininit.exe\\n%SystemRoot%\\\\system32\\\\csrss.exe ObjectDirectory=\\\\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16\\nC:\\\\Windows\\\\system32\\\\services.exe\\nC:\\\\Windows\\\\system32\\\\lsass.exe\\nC:\\\\Windows\\\\system32\\\\lsm.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k DcomLaunch\\nC:\\\\Windows\\\\system32\\\\nvvsvc.exe\\nwinlogon.exe\\n\\\"C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe\\\"\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k RPCSS\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k LocalServiceNetworkRestricted\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k LocalSystemNetworkRestricted\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k netsvcs\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalService\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k NetworkService\\nC:\\\\Windows\\\\system32\\\\WLANExt.exe 23197296\\n\\\\??\\\\C:\\\\Windows\\\\system32\\\\conhost.exe \\\"186287547-1262938235-1110408793-1809123919-926556263-1244869508-472585697548491829\\n\\\"C:\\\\Program Files\\\\NVIDIA Corporation\\\\Display\\\\nvxdsync.exe\\\"\\nC:\\\\Windows\\\\system32\\\\nvvsvc.exe -session -first\\nC:\\\\Windows\\\\System32\\\\spoolsv.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalServiceNoNetwork\\n\\\"C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe\\\"\\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe\\\"\\n\\\"C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe\\\"\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\\" /McCoreSvc\\n\\\"C:\\\\Windows\\\\system32\\\\mfevtps.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe\\\" SERVICE\\n\\\"C:\\\\Windows\\\\system32\\\\rundll32.exe\\\" \\\"c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\saHook.dll\\\" saHooker_Initialize_and_Wait\\n\\\"C:\\\\Windows\\\\system32\\\\rundll32.exe\\\" \\\"c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\saHook.dll\\\" saHooker_Initialize_and_Wait\\n\\\"C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE\\\"\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k imgsvc\\n\\\"C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WLIDSVC.EXE\\\"\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe\\\"\\nWLIDSvcM.exe 2092\\nC:\\\\Windows\\\\system32\\\\wbem\\\\unsecapp.exe -Embedding\\nC:\\\\Windows\\\\system32\\\\wbem\\\\wmiprvse.exe\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe\\\"\\nC:\\\\Windows\\\\System32\\\\alg.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k NetworkServiceNetworkRestricted\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalServiceAndNoImpersonation\\n\\\"taskhost.exe\\\"\\n\\\"C:\\\\Windows\\\\system32\\\\Dwm.exe\\\"\\nC:\\\\Windows\\\\Explorer.EXE\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\TOASTER.EXE\\\" C:\\\\Users\\\\Marek\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\COMPONENTS\\\\SCHEDULER\\\\STSERVICE.EXE\\\" \\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\Components\\\\DSUpdate\\\\DSUpd.exe\\\" \\n\\\"C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPEnh.exe\\\" \\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RtkNGUI64.exe\\\" -s\\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RAVBg64.exe\\\" /MAXX3\\n\\\"C:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe\\\" \\n\\\"C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPHelper.exe\\\" \\n\\\"C:\\\\Program Files\\\\Dell\\\\QuickSet\\\\quickset.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\igfxtray.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\hkcmd.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\igfxpers.exe\\\" \\n\\\"C:\\\\Program Files\\\\McAfee\\\\MAT\\\\McPvTray.exe\\\" \\n\\\"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe\\\" -user_has_logged_in 1\\n\\\"C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe\\\" \\n\\\"C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe\\\" /runkey\\nC:\\\\Windows\\\\system32\\\\SearchIndexer.exe /Embedding\\n\\\"C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\\" /wts 2516 484 488\\nC:\\\\Windows\\\\system32\\\\vssvc.exe\\n\\\"C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe\\\"\\n\\\"C:\\\\Program Files\\\\Windows Media Player\\\\wmpnetwk.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe\\\"\\n\\\"c:\\\\PROGRA~1\\\\mcafee\\\\msc\\\\mcupdmgr.exe\\\" -Embedding\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k swprv\\n\\\"C:\\\\Program Files (x86)\\\\Skype\\\\Phone\\\\Skype.exe\\\" \\nC:\\\\Windows\\\\servicing\\\\TrustedInstaller.exe\\n\\\"C:\\\\Program Files (x86)\\\\Opera\\\\opera.exe\\\" \\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" \\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=extension --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Default_Prefix/WarmSocketImpact/warmest_socket/ --disable-client-side-phishing-detection --enable-print-preview --channel=2224.029EC160.3548539 --ignored=\\\" --type=renderer \\\" /prefetch:3\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=plugin --plugin-path=\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\User Data\\\\Default\\\\Extensions\\\\fheoggkfdfchfphceeifdbepaooicaho\\\\3.40.135.1_0\\\\McChPlg.dll\\\" --lang=cs --channel=2224.0771DE00.692497356 /prefetch:4\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=renderer --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Default_Prefix/WarmSocketImpact/warmest_socket/ --disable-client-side-phishing-detection --enable-print-preview --channel=2224.042C29A0.447140225 /prefetch:3\\nC:\\\\Windows\\\\system32\\\\rundll32.exe \\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\APPLIC~1\\\\140835~1.202\\\\gcswf32.dll\\\",BrokerMain browser=chrome\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=plugin --plugin-path=\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\14.0.835.202\\\\gcswf32.dll\\\" --lang=cs --channel=2224.079C7380.553825092 --flash-broker=8516 /prefetch:4\\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\firefox.exe\\\" \\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\\" --channel=3684.a969d30.573474903 \\\"C:\\\\Program Files (x86)\\\\McAfee\\\\SiteAdvisor\\\\NPMcFFPlg32.dll\\\" Mozilla.Firefox.7.0.1 -greomni \\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\omni.jar\\\" 3684 \\\"\\\\\\\\.\\\\pipe\\\\gecko-crash-server-pipe.3684\\\" plugin\\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\\" --channel=3684.198472e0.114558495 \\\"C:\\\\Windows\\\\SysWOW64\\\\Macromed\\\\Flash\\\\NPSWF32.dll\\\" Mozilla.Firefox.7.0.1 -greomni \\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\omni.jar\\\" 3684 \\\"\\\\\\\\.\\\\pipe\\\\gecko-crash-server-pipe.3684\\\" plugin\\n\\\"C:\\\\Users\\\\Marek\\\\Desktop\\\\RSITx64.exe\\\" \\nC:\\\\Windows\\\\system32\\\\wbem\\\\wmiprvse.exe\\n\\n======Scheduled tasks folder======\\n\\nC:\\\\Windows\\\\tasks\\\\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001Core.job\\nC:\\\\Windows\\\\tasks\\\\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001UA.job\\n\\n=========Mozilla firefox=========\\n\\nProfilePath - C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\n\\nprefs.js - \\\"browser.search.useDBForOrder\\\" - true\\nprefs.js - \\\"browser.startup.homepage\\\" - \\\"http://www.seznam.cz/\\\"\\nprefs.js - \\\"extensions.enabledItems\\\" - \\\"{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, personas@christopher.beard:1.6.2, bkmrksync@nokia.com:1.0.0.736, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15\\\"\\nprefs.js - \\\"keyword.URL\\\" - \\\"http://search.yahoo.com/search?fr=mcafee&p=\\\"\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@adobe.com/FlashPlayer]\\n\\\"Description\\\"=Adobe® Flash® Player 10.1 Plugin\\n\\\"Path\\\"=C:\\\\Windows\\\\SysWOW64\\\\Macromed\\\\Flash\\\\NPSWF32.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@adobe.com/ShockwavePlayer]\\n\\\"Description\\\"=Adobe Shockwave Player\\n\\\"Path\\\"=C:\\\\Windows\\\\system32\\\\Adobe\\\\Director\\\\np32dsw.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@java.com/JavaPlugin]\\n\\\"Description\\\"=Oracle® Next Generation Java™ Plug-In\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\new_plugin\\\\npjp2.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@mcafee.com/MSC,version=10]\\n\\\"Description\\\"=McAfee Total Protection MIME Plugin\\n\\\"Path\\\"=c:\\\\progra~2\\\\mcafee\\\\msc\\\\npmcsn~1.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@mcafee.com/SAFFPlugin]\\n\\\"Description\\\"=\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\McAfee\\\\SiteAdvisor\\\\npmcffplg32.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/GENUINE]\\n\\\"Description\\\"=\\n\\\"Path\\\"=disabled\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@Microsoft.com/NpCtrl,version=1.0]\\n\\\"Description\\\"=Ag Player Plugin\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Microsoft Silverlight\\\\4.0.60531.0\\\\npctrl.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/WLPG,version=15.4.3502.0922]\\n\\\"Description\\\"=WLPG Install MIME type\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\NPWLPG.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/WLPG,version=15.4.3508.1109]\\n\\\"Description\\\"=WLPG Install MIME type\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\NPWLPG.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@nvidia.com/3DVision]\\n\\\"Description\\\"=NVIDIA stereo images plugin for Mozilla browsers\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\npnv3dv.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@nvidia.com/3DVisionStreaming]\\n\\\"Description\\\"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\npnv3dvstreaming.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@parallelgraphics.com/Cortona]\\n\\\"Description\\\"=Cortona VRML Plugin\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Common Files\\\\ParallelGraphics\\\\Cortona\\\\npCortona.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@virtools.com/3DviaPlayer]\\n\\\"Description\\\"=3Dvia Player For Mozilla Based Broswer\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Virtools\\\\3D Life Player\\\\npvirtools.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\Adobe Reader]\\n\\\"Description\\\"=Handles PDFs in-place in Firefox\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Adobe\\\\Reader 10.0\\\\Reader\\\\AIR\\\\nppdf32.dll\\n\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@java.com/JavaPlugin]\\n\\\"Description\\\"=Oracle® Next Generation Java™ Plug-In\\n\\\"Path\\\"=C:\\\\Program Files\\\\Java\\\\jre6\\\\bin\\\\new_plugin\\\\npjp2.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@mcafee.com/MSC,version=10]\\n\\\"Description\\\"=McAfee Total Protection MIME Plugin\\n\\\"Path\\\"=c:\\\\PROGRA~1\\\\mcafee\\\\msc\\\\NPMCSN~1.DLL\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@microsoft.com/GENUINE]\\n\\\"Description\\\"=\\n\\\"Path\\\"=disabled\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\\\n{972ce4c6-7e08-4474-a285-3208198ce6fd}\\n{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\components\\\\\\nbinary.manifest\\nbrowsercomps.dll\\nnpCortona.xpt\\nnsIQTScriptablePlugin.xpt\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugins\\\\\\nnp-mswmp.dll\\nnpCortona.dll\\nnppdf32.DEU\\nnppdf32.dll\\nnppdf32.FRA\\nnppdf32.JPN\\nnpqtplugin.dll\\nnpqtplugin2.dll\\nnpqtplugin3.dll\\nnpqtplugin4.dll\\nnpqtplugin5.dll\\nnpqtplugin6.dll\\nnpqtplugin7.dll\\nQuickTimePlugin.class\\nWMP Firefox Plugin License.rtf\\nWMP Firefox Plugin RelNotes.txt\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\searchplugins\\\\\\ngoogle.xml\\nheureka-cz.xml\\njyxo-cz.xml\\nMcSiteAdvisor.xml\\nseznam-cz.xml\\nslunecnice-cz.xml\\nwikipedia-cz.xml\\n\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\\\extensions\\\\\\n{20a82645-c095-46ed-80e3-08825760534b}\\n\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\\\searchplugins\\\\\\ncrawlersrch.xml\\nfacebook.xml\\nicqplugin.xml\\nlive-search.xml\\nqip-search.xml\\nzbocz.xml\\n\\n======Registry dump======\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]\\nscriptproxy - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll [2011-08-19 94424]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]\\nWindows Live ID Sign-in Helper - C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll [2010-09-21 529280]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]\\nMcAfee SiteAdvisor BHO - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\x64\\\\mcieplg.dll [2011-08-11 317336]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]\\nJava(tm) Plug-In 2 SSV Helper - C:\\\\Program Files\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll [2011-08-13 49440]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]\\nAdobe PDF Link Helper - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\Acrobat\\\\ActiveX\\\\AcroIEHelperShim.dll [2011-09-05 63912]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]\\nGroove GFS Browser Helper - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll [2009-02-12 2217848]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]\\nscriptproxy - C:\\\\Program Files (x86)\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll [2011-08-19 79480]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]\\nPomocná sluĹľba pro pĹ™ihlášenĂ ke sluĹľbÄ› Windows Live ID - C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll [2010-09-21 439168]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]\\nWindows Live Messenger Companion Helper - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll [2010-11-10 393600]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]\\nMcAfee SiteAdvisor BHO - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll [2011-08-11 258120]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]\\nJava(tm) Plug-In 2 SSV Helper - C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll [2011-08-03 42272]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Toolbar]\\n{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\x64\\\\mcieplg.dll [2011-08-11 317336]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Internet Explorer\\\\Toolbar]\\n{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll [2011-08-11 258120]\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"SynTPEnh\\\"=C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPEnh.exe [2010-12-17 2531624]\\n\\\"RTHDVCPL\\\"=C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RtkNGUI64.exe [2011-02-19 6611048]\\n\\\"RtHDVBg\\\"=C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RAVBg64.exe [2011-01-19 2188904]\\n\\\"FreeFallProtection\\\"=C:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe [2010-12-17 686704]\\n\\\"NVHotkey\\\"=C:\\\\Windows\\\\system32\\\\nvHotkey.dll [2011-08-03 335976]\\n\\\"QuickSet\\\"=c:\\\\Program Files\\\\Dell\\\\QuickSet\\\\QuickSet.exe [2011-01-25 4479648]\\n\\\"IgfxTray\\\"=C:\\\\Windows\\\\system32\\\\igfxtray.exe [2011-03-30 167960]\\n\\\"HotKeysCmds\\\"=C:\\\\Windows\\\\system32\\\\hkcmd.exe [2011-03-30 391704]\\n\\\"Persistence\\\"=C:\\\\Windows\\\\system32\\\\igfxpers.exe [2011-03-30 418840]\\n\\\"McPvTray_exe\\\"=C:\\\\Program Files\\\\McAfee\\\\MAT\\\\McPvTray.exe [2011-04-08 436384]\\n\\n[HKEY_CURRENT_USER\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"\\\"= []\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Adobe ARM]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\AdobeARM.exe [2011-03-30 937920]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Adobe Reader Speed Launcher]\\nC:\\\\Program Files (x86)\\\\Adobe\\\\Reader 10.0\\\\Reader\\\\Reader_sl.exe [2011-09-05 35736]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\AdobeAAMUpdater-1.0]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\OOBE\\\\PDApp\\\\UWA\\\\UpdaterStartupUtility.exe [2010-03-06 500208]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\AdobeCS5ServiceManager]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\CS5ServiceManager\\\\CS5ServiceManager.exe [2010-07-22 402432]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Dell Webcam Central]\\nC:\\\\Program Files (x86)\\\\Dell Webcam\\\\Dell Webcam Central\\\\WebcamDell2.exe [2011-08-12 520330]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Desktop Disc Tool]\\nC:\\\\Program Files (x86)\\\\Roxio\\\\OEM\\\\Roxio Burn\\\\RoxioBurnLauncher.exe [2010-11-17 514544]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Google Update]\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Update\\\\GoogleUpdate.exe [2011-05-30 136176]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\GrooveMonitor]\\nC:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveMonitor.exe [2008-10-25 31072]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\IntelWireless]\\nC:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\iFrmewrk.exe [2010-12-17 1933584]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\NeroLauncher]\\nC:\\\\Program Files (x86)\\\\Nero\\\\SyncUP\\\\NeroLauncher.exe [2011-07-07 75064]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\NokiaMServer]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Nokia\\\\MPlatform\\\\NokiaMServer /watchfiles startup []\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\QuickTime Task]\\nE:\\\\Programy\\\\QuickTime\\\\QTTask.exe [2011-07-05 421888]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\RoxWatchTray]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatchTray12OEM.exe [2010-11-25 240112]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\SunJavaUpdateSched]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Java\\\\Java Update\\\\jusched.exe [2011-04-08 254696]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\SwitchBoard]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe [2010-02-19 517096]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\TNOD UP]\\nC:\\\\Program Files (x86)\\\\TNod User & Password Finder\\\\TNODUP.exe /i []\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"\\\"= []\\n\\\"Dell DataSafe Online\\\"=C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe [2010-08-26 1117528]\\n\\\"mcui_exe\\\"=C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe [2011-09-10 1671824]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows]\\n\\\"AppInit_DLLs\\\"=\\\"C:\\\\Windows\\\\system32\\\\nvinitx.dll\\\"\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Notify\\\\igfxcui]\\nC:\\\\Windows\\\\system32\\\\igfxdev.dll [2011-03-26 385024]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\ShellServiceObjectDelayLoad]\\nWebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\ShellExecuteHooks]\\n\\\"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}\\\"=C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll [2009-02-12 2217848]\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\control\\\\securityproviders]\\n\\\"SecurityProviders\\\"=credssp.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\Minimal\\\\mcmscsvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\Minimal\\\\MCODS]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\AFD]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\McMPFSvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mcmscsvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\MCODS]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefire]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefirek]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefirek.sys]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfehidk]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfehidk.sys]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfevtp]\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\System]\\n\\\"ConsentPromptBehaviorAdmin\\\"=0\\n\\\"ConsentPromptBehaviorUser\\\"=3\\n\\\"EnableLUA\\\"=0\\n\\\"EnableUIADesktopToggle\\\"=0\\n\\\"PromptOnSecureDesktop\\\"=0\\n\\\"dontdisplaylastusername\\\"=0\\n\\\"legalnoticecaption\\\"=\\n\\\"legalnoticetext\\\"=\\n\\\"shutdownwithoutlogon\\\"=1\\n\\\"undockwithoutlogon\\\"=1\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\explorer]\\n\\\"NoActiveDesktop\\\"=1\\n\\\"NoActiveDesktopChanges\\\"=1\\n\\\"ForceActiveDesktopOn\\\"=0\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\services\\\\sharedaccess\\\\parameters\\\\firewallpolicy\\\\standardprofile\\\\authorizedapplications\\\\list]\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\services\\\\sharedaccess\\\\parameters\\\\firewallpolicy\\\\domainprofile\\\\authorizedapplications\\\\list]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Drivers32]\\n\\\"vidc.mrle\\\"=msrle32.dll\\n\\\"vidc.msvc\\\"=msvidc32.dll\\n\\\"msacm.imaadpcm\\\"=imaadp32.acm\\n\\\"msacm.msg711\\\"=msg711.acm\\n\\\"msacm.msgsm610\\\"=msgsm32.acm\\n\\\"msacm.msadpcm\\\"=msadp32.acm\\n\\\"midimapper\\\"=midimap.dll\\n\\\"wavemapper\\\"=msacm32.drv\\n\\\"VIDC.UYVY\\\"=msyuv.dll\\n\\\"VIDC.YUY2\\\"=msyuv.dll\\n\\\"VIDC.YVYU\\\"=msyuv.dll\\n\\\"VIDC.IYUV\\\"=iyuv_32.dll\\n\\\"vidc.i420\\\"=iyuv_32.dll\\n\\\"VIDC.YVU9\\\"=tsbyuv.dll\\n\\\"msacm.l3acm\\\"=C:\\\\Windows\\\\System32\\\\l3codeca.acm\\n\\\"MSVideo8\\\"=VfWWDM32.dll\\n\\\"wave\\\"=wdmaud.drv\\n\\\"midi\\\"=wdmaud.drv\\n\\\"mixer\\\"=wdmaud.drv\\n\\\"aux\\\"=wdmaud.drv\\n\\\"wave1\\\"=wdmaud.drv\\n\\\"midi1\\\"=wdmaud.drv\\n\\\"mixer1\\\"=wdmaud.drv\\n\\\"aux1\\\"=wdmaud.drv\\n\\n======File associations======\\n\\n.js - edit - C:\\\\Windows\\\\System32\\\\Notepad.exe %1\\n.js - open - C:\\\\Windows\\\\System32\\\\WScript.exe \\\"%1\\\" %*\\n\\n======List of files/folders created in the last 1 month======\\n\\n2011-10-11 19:40:01 ----D---- C:\\\\rsit\\n2011-10-11 19:40:01 ----D---- C:\\\\Program Files\\\\trend micro\\n2011-10-10 15:27:15 ----D---- C:\\\\Program Files (x86)\\\\McAfeeMOBK\\n2011-10-10 15:27:12 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\MOBK.sys\\n2011-10-10 15:27:11 ----D---- C:\\\\Program Files (x86)\\\\McAfee Online Backup\\n2011-10-10 15:27:01 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\McPvDrv.sys\\n2011-10-10 15:26:40 ----D---- C:\\\\Program Files (x86)\\\\McAfee.com\\n2011-10-10 15:26:22 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfeclnk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfewfpk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mferkdet.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfenlfk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfefirek.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\cfwids.sys\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\McAfee.com\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\McAfee\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\Common Files\\\\McAfee\\n2011-10-10 15:25:53 ----D---- C:\\\\Program Files (x86)\\\\McAfee\\n2011-10-10 15:12:36 ----A---- C:\\\\Windows\\\\system32\\\\mfevtps.exe\\n2011-10-09 18:17:10 ----D---- C:\\\\ProgramData\\\\Bluetooth\\n2011-10-04 13:40:30 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Reallusion\\n2011-09-26 22:50:43 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\NVIDIA\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\OpenCL.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvwgf2um.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvoptimusmft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvoglv32.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvdecodemft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\OpenCL.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvwgf2umx.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvoptimusmft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvoglv64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvgenco64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvdispco64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvdecodemft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvd3dumx.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvpciflt.sys\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvlddmkm.sys\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvkflt.sys\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuvid.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuvenc.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuda.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcompiler.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuvid.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuvenc.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuda.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcompiler.dll\\n2011-09-26 17:41:51 ----D---- C:\\\\Program Files (x86)\\\\SystemRequirementsLab\\n2011-09-25 22:27:04 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\ICQ\\n2011-09-25 22:26:59 ----D---- C:\\\\Program Files (x86)\\\\ICQ7.6\\n2011-09-24 19:52:33 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Zoner\\n2011-09-23 22:50:50 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\truecrypt.sys\\n2011-09-22 19:38:22 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Nokia Ovi Suite\\n2011-09-22 19:30:42 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Nokia\\n2011-09-22 19:29:16 ----D---- C:\\\\ProgramData\\\\Installations\\n2011-09-22 19:28:29 ----D---- C:\\\\ProgramData\\\\PC Suite\\n2011-09-22 19:28:28 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\PC Suite\\n2011-09-22 19:27:38 ----D---- C:\\\\Program Files\\\\DIFX\\n2011-09-22 19:27:38 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\pccsmcfdx64.sys\\n2011-09-22 19:27:34 ----D---- C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\n2011-09-22 19:27:19 ----A---- C:\\\\Windows\\\\system32\\\\nmwcdclsX64.dll\\n2011-09-22 19:26:27 ----D---- C:\\\\ProgramData\\\\NokiaInstallerCache\\n2011-09-22 19:26:27 ----D---- C:\\\\Program Files (x86)\\\\Nokia\\n2011-09-22 07:56:59 ----D---- C:\\\\ProgramData\\\\3DVIA\\n2011-09-22 07:56:58 ----D---- C:\\\\Program Files (x86)\\\\Virtools\\n2011-09-21 17:30:29 ----A---- C:\\\\Windows\\\\iun6002.exe\\n2011-09-21 17:30:27 ----D---- C:\\\\Program Files (x86)\\\\Codec Pack - All In 1\\n2011-09-20 12:53:51 ----D---- C:\\\\ProgramData\\\\EGG\\n2011-09-20 07:52:34 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Roxio Burn\\n2011-09-20 07:47:13 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Macrovision\\n2011-09-19 22:34:32 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\eM Client\\n2011-09-19 22:20:53 ----D---- C:\\\\Windows\\\\Sun\\n2011-09-19 20:04:16 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\PSpad\\n\\n======List of files/folders modified in the last 1 month======\\n\\n2011-10-11 19:40:03 ----D---- C:\\\\Windows\\\\Temp\\n2011-10-11 19:40:01 ----D---- C:\\\\Program Files\\n2011-10-11 19:38:05 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Skype\\n2011-10-11 19:31:09 ----D---- C:\\\\Windows\\\\system32\\\\config\\n2011-10-11 08:51:24 ----D---- C:\\\\Windows\\\\system32\\\\Tasks\\n2011-10-11 08:48:49 ----D---- C:\\\\Windows\\\\System32\\n2011-10-11 08:48:49 ----A---- C:\\\\Windows\\\\system32\\\\PerfStringBackup.INI\\n2011-10-11 08:48:48 ----D---- C:\\\\Windows\\\\inf\\n2011-10-11 07:18:44 ----D---- C:\\\\ProgramData\\\\Sonic\\n2011-10-11 07:18:31 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\log.txt\\n2011-10-11 07:17:11 ----D---- C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\n2011-10-11 07:16:18 ----D---- C:\\\\ProgramData\\\\NVIDIA\\n2011-10-10 22:53:39 ----D---- C:\\\\WINDOWS\\n2011-10-10 21:01:58 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\n2011-10-10 18:36:08 ----D---- C:\\\\ProgramData\\\\McAfee\\n2011-10-10 17:05:23 ----RD---- C:\\\\Program Files (x86)\\n2011-10-10 16:16:15 ----HD---- C:\\\\ProgramData\\n2011-10-10 15:27:20 ----SHD---- C:\\\\System Volume Information\\n2011-10-10 15:27:15 ----SHD---- C:\\\\Windows\\\\Installer\\n2011-10-10 15:27:12 ----DC---- C:\\\\Windows\\\\system32\\\\DRVSTORE\\n2011-10-10 15:27:02 ----D---- C:\\\\Windows\\\\system32\\\\catroot\\n2011-10-10 15:26:32 ----D---- C:\\\\Windows\\\\system32\\\\DriverStore\\n2011-10-10 15:26:23 ----D---- C:\\\\Program Files (x86)\\\\Mozilla Firefox\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\Common Files\\n2011-10-10 15:00:04 ----D---- C:\\\\Windows\\\\Downloaded Program Files\\n2011-10-10 09:15:38 ----D---- C:\\\\Program Files\\\\CCleaner\\n2011-10-10 07:16:52 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\\\UMDF\\n2011-10-09 19:04:50 ----D---- C:\\\\Windows\\\\Tasks\\n2011-10-09 19:04:50 ----D---- C:\\\\Windows\\\\system32\\\\wfp\\n2011-10-09 19:04:49 ----D---- C:\\\\Windows\\\\system32\\\\wbem\\n2011-10-09 19:04:14 ----D---- C:\\\\Windows\\\\SysWOW64\\n2011-10-09 19:04:14 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\\\etc\\n2011-10-09 19:04:13 ----D---- C:\\\\Windows\\\\system32\\\\catroot2\\n2011-10-09 19:04:13 ----D---- C:\\\\Windows\\\\security\\n2011-10-09 19:04:12 ----D---- C:\\\\Windows\\\\registration\\n2011-10-09 00:35:47 ----D---- C:\\\\Windows\\\\Prefetch\\n2011-10-02 15:47:56 ----D---- C:\\\\Program Files (x86)\\\\Common Files\\n2011-10-02 09:22:06 ----D---- C:\\\\Windows\\\\panther\\n2011-10-02 09:17:51 ----D---- C:\\\\dell\\n2011-10-01 22:08:16 ----D---- C:\\\\Windows\\\\system32\\\\NDF\\n2011-09-29 17:53:25 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\DAEMON Tools Lite\\n2011-09-29 17:53:22 ----D---- C:\\\\Windows\\\\debug\\n2011-09-28 12:01:53 ----RD---- C:\\\\Program Files (x86)\\\\Skype\\n2011-09-28 12:01:51 ----D---- C:\\\\ProgramData\\\\Skype\\n2011-09-27 20:53:49 ----A---- C:\\\\Windows\\\\system32\\\\MRT.exe\\n2011-09-27 14:50:45 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\n2011-09-27 07:20:18 ----D---- C:\\\\Windows\\\\system32\\\\wdi\\n2011-09-26 23:14:03 ----D---- C:\\\\Windows\\\\Logs\\n2011-09-26 22:48:46 ----D---- C:\\\\Windows\\\\SYSWOW64\\\\NV\\n2011-09-26 22:48:46 ----D---- C:\\\\Windows\\\\system32\\\\NV\\n2011-09-26 18:34:32 ----HD---- C:\\\\Program Files (x86)\\\\InstallShield Installation Information\\n2011-09-26 18:34:15 ----D---- C:\\\\Program Files\\\\NVIDIA Corporation\\n2011-09-26 18:33:35 ----D---- C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\n2011-09-24 20:43:03 ----RD---- C:\\\\Users\\n2011-09-22 19:52:03 ----SD---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Microsoft\\n2011-09-22 19:42:37 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\PerfStringBackup.INI\\n2011-09-22 19:26:59 ----D---- C:\\\\Windows\\\\winsxs\\n2011-09-21 16:52:51 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\GHISLER\\n2011-09-20 22:13:46 ----SHD---- C:\\\\$RECYCLE.BIN\\n2011-09-20 21:58:52 ----D---- C:\\\\ProgramData\\\\Roxio\\n2011-09-20 21:14:36 ----SD---- C:\\\\ProgramData\\\\Microsoft\\n2011-09-20 13:00:06 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Roxio\\n2011-09-20 08:38:22 ----D---- C:\\\\Windows\\\\rescache\\n2011-09-20 08:20:38 ----D---- C:\\\\Windows\\\\Microsoft.NET\\n2011-09-19 22:35:20 ----RSD---- C:\\\\Windows\\\\assembly\\n2011-09-18 10:01:09 ----D---- C:\\\\ProgramData\\\\Microsoft Help\\n\\n======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======\\n\\nR0 iaStor;Intel AHCI Controller; C:\\\\Windows\\\\system32\\\\drivers\\\\iaStor.sys [2011-01-13 439320]\\nR0 McPvDrv;McPvDrv Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\McPvDrv.sys [2011-04-11 71800]\\nR0 mfehidk;McAfee Inc. mfehidk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfehidk.sys [2011-08-15 642824]\\nR0 mfewfpk;McAfee Inc. mfewfpk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfewfpk.sys [2011-08-15 283744]\\nR0 nvpciflt;nvpciflt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nvpciflt.sys [2011-08-03 27240]\\nR0 PxHlpa64;PxHlpa64; C:\\\\Windows\\\\System32\\\\Drivers\\\\PxHlpa64.sys [2010-03-19 55856]\\nR0 rdyboost;ReadyBoost; C:\\\\Windows\\\\System32\\\\drivers\\\\rdyboost.sys [2010-11-21 213888]\\nR0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\stdcfltn.sys [2010-08-20 21616]\\nR1 mfenlfk;McAfee NDIS Light Filter; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\mfenlfk.sys [2011-08-15 75672]\\nR1 MOBKFilter;MOBKFilter; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\MOBK.sys [2010-04-13 66040]\\nR1 nvkflt;nvkflt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nvkflt.sys [2011-08-03 246888]\\nR1 vwififlt;Virtual WiFi Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\vwififlt.sys [2009-07-14 59904]\\nR3 Acceler;Accelerometer Service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Accelern.sys [2010-12-13 27760]\\nR3 AVer7231_x64;AVerMedia 7231 capture service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\AVer7231_x64.sys [2010-06-11 1799808]\\nR3 cfwids;McAfee Inc. cfwids; C:\\\\Windows\\\\system32\\\\drivers\\\\cfwids.sys [2011-08-15 65128]\\nR3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\CtClsFlt.sys [2011-06-16 176000]\\nR3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\dtsoftbus01.sys [2011-09-06 270912]\\nR3 igfx;igfx; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\igdkmd64.sys [2011-03-26 12262336]\\nR3 IntcAzAudAddService;Service for Realtek HD Audio (WDM C:\\\\Windows\\\\system32\\\\drivers\\\\RTKVHD64.sys [2011-02-19 2748520]\\nR3 IntcDAud;Intel(R) Display Audio; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\IntcDAud.sys [2010-10-15 317440]\\nR3 MEIx64;Intel(R) Management Engine Interface; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\HECIx64.sys [2010-10-20 56344]\\nR3 mfeapfk;McAfee Inc. mfeapfk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeapfk.sys [2011-08-15 158584]\\nR3 mfeavfk;McAfee Inc. mfeavfk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk.sys [2011-08-15 228752]\\nR3 mfefirek;McAfee Inc. mfefirek; C:\\\\Windows\\\\system32\\\\drivers\\\\mfefirek.sys [2011-08-15 481504]\\nR3 NETwNs64;___ OvladaÄŤ adaptĂ©ru Ĺ™ady Intel(R) Wireless WiFi Link 5000 pro systĂ©m Windows 7 64 Bit; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\NETwNs64.sys [2010-12-22 8505856]\\nR3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nusb3hub.sys [2011-02-11 82432]\\nR3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nusb3xhc.sys [2011-02-11 181760]\\nR3 qicflt;upper Device Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\qicflt.sys [2010-07-13 29288]\\nR3 RTL8167;Realtek 8167 NT Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Rt64win7.sys [2011-06-10 539240]\\nR3 SynTP;Synaptics TouchPad Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\SynTP.sys [2010-12-17 1404464]\\nR3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\vwifimp.sys [2009-07-14 17920]\\nR3 wdkmd;Intel WiDi KMD; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\WDKMD.sys [2010-12-01 42392]\\nS3 BthEnum;SluĹľba Bluetooth Enumerator; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\BthEnum.sys [2009-07-14 41984]\\nS3 BthPan;ZaĹ™ĂzenĂ Bluetooth (sĂĹĄ PAN); C:\\\\Windows\\\\system32\\\\DRIVERS\\\\bthpan.sys [2009-07-14 118784]\\nS3 BTHPORT;OvladaÄŤ portu Bluetooth; C:\\\\Windows\\\\System32\\\\Drivers\\\\BTHport.sys [2011-04-28 552960]\\nS3 BTHUSB;OvladaÄŤ rozhranĂ USB radiostanice Bluetooth; C:\\\\Windows\\\\System32\\\\Drivers\\\\BTHUSB.sys [2011-04-28 80384]\\nS3 Epfwndis;Eset Personal Firewall; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Epfwndis.sys [2010-12-21 34144]\\nS3 Impcd;Impcd; C:\\\\Windows\\\\system32\\\\drivers\\\\Impcd.sys [2010-02-27 158976]\\nS3 JMCR;JMCR; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\jmcr.sys [2010-12-15 174168]\\nS3 mfeavfk01;McAfee Inc.; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk01.sys []\\nS3 mferkdet;McAfee Inc. mferkdet; C:\\\\Windows\\\\system32\\\\drivers\\\\mferkdet.sys [2011-08-15 100904]\\nS3 nmwcd;Nokia USB Phone Parent Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\ccdcmbx64.sys [2011-05-18 19968]\\nS3 nmwcdc;Nokia USB Communication Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\ccdcmbox64.sys [2011-05-18 27136]\\nS3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\\\\Windows\\\\system32\\\\drivers\\\\nvstusb.sys [2010-12-12 121960]\\nS3 pccsmcfd;PCCS Mode Change Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\pccsmcfdx64.sys [2008-08-28 25600]\\nS3 pciide;pciide; C:\\\\Windows\\\\system32\\\\drivers\\\\pciide.sys [2009-07-14 12352]\\nS3 RFCOMM;ZaĹ™ĂzenĂ Bluetooth (RFCOMM protokol TDI); C:\\\\Windows\\\\system32\\\\DRIVERS\\\\rfcomm.sys [2009-07-14 158720]\\nS3 sdbus;sdbus; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\sdbus.sys [2010-11-21 109056]\\nS3 TsUsbFlt;TsUsbFlt; C:\\\\Windows\\\\system32\\\\drivers\\\\tsusbflt.sys [2010-11-21 59392]\\nS3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\\\\Windows\\\\system32\\\\drivers\\\\TsUsbGD.sys [2010-11-21 31232]\\nS3 upperdev;upperdev; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\usbser_lowerfltx64.sys [2011-05-18 9216]\\nS3 usbser;USB Modem Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\usbser.sys [2010-11-21 32768]\\nS3 UsbserFilt;UsbserFilt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\usbser_lowerfltjx64.sys [2011-05-18 9216]\\nS3 WimFltr;WimFltr; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\wimfltr.sys [2006-11-01 151656]\\nS3 WinUsb;WinUsb; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\WinUsb.sys [2010-11-21 41984]\\n\\n======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======\\n\\nR2 AdobeARMservice;Adobe Acrobat Update Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe [2011-06-06 64952]\\nR2 AERTFilters;Andrea RT Filters Service; C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe [2009-11-18 98208]\\nR2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe [2010-12-17 1515792]\\nR2 LMS;Intel(R) Management and Security Application Local Management Service; C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe [2010-12-21 325656]\\nR2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McMPFSvc;McAfee Personal Firewall Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 mcmscsvc;McAfee Services; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McNaiAnn;McAfee VirusScan Announcer; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McNASvc;McAfee Network Agent; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McProxy;McAfee Proxy Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McShield;McAfee McShield; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe [2011-08-19 199008]\\nR2 mfefire;McAfee Firewall Core Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe [2011-08-19 208272]\\nR2 mfevtp;McAfee Validation Trust Protection Service; C:\\\\Windows\\\\system32\\\\mfevtps.exe [2011-08-19 158832]\\nR2 MOBKbackup;1%; C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe [2010-04-13 231224]\\nR2 MSK80Service;McAfee Anti-Spam Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 NAUpdate;@C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe,-200; C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe [2011-07-22 690472]\\nR2 NOBU;Dell DataSafe Online; C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe [2010-08-26 2823000]\\nR2 NVSvc;NVIDIA Display Driver Service; C:\\\\Windows\\\\system32\\\\nvvsvc.exe [2011-08-03 980072]\\nR2 nvUpdatusService;NVIDIA Update Service Daemon; C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe [2011-08-03 2255464]\\nR2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe [2010-12-17 836880]\\nR2 SftService;SoftThinks Agent Service; C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE [2011-08-18 1692480]\\nR2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe [2011-08-03 379496]\\nR2 UNS;Intel(R) Management and Security Application User Notification Service; C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe [2010-12-21 2656280]\\nR2 wlidsvc;Windows Live ID Sign-in Assistant; C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WLIDSVC.EXE [2010-09-21 2286976]\\nS2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\\\\Windows\\\\Microsoft.NET\\\\Framework\\\\v4.0.30319\\\\mscorsvw.exe [2010-03-18 130384]\\nS2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\mscorsvw.exe [2010-03-18 138576]\\nS2 RoxWatch12;Roxio Hard Drive Watcher 12; C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatch12OEM.exe [2010-11-25 219632]\\nS3 aspnet_state;ASP.NET State Service; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\aspnet_state.exe [2010-03-18 44376]\\nS3 McODS;McAfee Scanner; C:\\\\Program Files\\\\McAfee\\\\VirusScan\\\\mcods.exe [2011-06-23 501768]\\nS3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveAuditService.exe [2008-10-25 65888]\\nS3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\PanDhcpDns.exe [2010-12-17 340240]\\nS3 odserv;Microsoft Office Diagnostics Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\OFFICE12\\\\ODSERV.EXE [2008-11-04 441712]\\nS3 ose;Office Source Engine; C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Source Engine\\\\OSE.EXE [2006-10-26 145184]\\nS3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxMediaDB12OEM.exe [2010-11-25 1116656]\\nS3 ServiceLayer;ServiceLayer; C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\\\ServiceLayer.exe [2011-06-08 633856]\\nS3 Steam Client Service;Steam Client Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Steam\\\\SteamService.exe [2011-03-16 407336]\\nS3 stllssvr;stllssvr; C:\\\\Program Files (x86)\\\\Common Files\\\\SureThing Shared\\\\stllssvr.exe [2010-11-09 74392]\\nS3 SwitchBoard;SwitchBoard; C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe [2010-02-19 517096]\\nS3 WatAdminSvc;@%SystemRoot%\\\\system32\\\\Wat\\\\WatUX.exe,-601; C:\\\\Windows\\\\system32\\\\Wat\\\\WatAdminSvc.exe [2011-09-06 1255736]\\nS4 NetMsmqActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8195; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 NetPipeActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8197; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 NetTcpActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8199; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 wlcrasvc;Windows Live Mesh remote connections service; C:\\\\Program Files\\\\Windows Live\\\\Mesh\\\\wlcrasvc.exe [2010-09-23 57184]\\n\\n-----------------EOF-----------------\\n\",\"id\":\"76-1#126\",\"time\":1318355221004},
FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=mcafee&p="
FF - prefs.js..network.proxy.type: 0
FF - user.js..network.proxy.type: 0
FF - user.js..network.proxy.http: ""
FF - user.js..network.proxy.http_port:
FF - user.js..network.proxy.no_proxies_on: ""
Naposledy upravil(a) 3ch0 dne 11 říj 2011 21:56, celkem upraveno 1 x.
Re: Prosim o kontrolu logu
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~2\mcafee\msc\npmcsn~1.dll ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@parallelgraphics.com/Cortona: C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona\npCortona.dll (ParallelGraphics)
FF - HKLM\Software\MozillaPlugins\@virtools.com/3DviaPlayer: C:\Program Files (x86)\Virtools\3D Life Player\npvirtools.dll (Dassault Systèmes)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Marek\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Marek\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files (x86)\Common Files\McAfee\SystemCore [2011.10.10 15:26:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor [2011.10.10 16:11:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.10.02 19:18:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.10.02 15:47:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011.09.22 19:27:40 | 000,000,000 | ---D | M]
[2011.09.21 18:04:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Extensions
[2011.09.21 19:00:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\extensions
[2011.09.21 18:12:01 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.09.21 18:04:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Nová složka\Extensions
[2011.10.10 21:17:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Nová složka\Firefox\Profiles\6j0gk2yo.default\extensions
[2011.10.10 21:17:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Marek\AppData\Roaming\Mozilla\Nová složka\Firefox\Profiles\6j0gk2yo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.09.21 18:04:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Extensions
[2010.09.30 07:54:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010.09.30 07:54:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Extensions\MediaCoder
[2010.09.30 07:54:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Extensions\MediaCoder-MCEX
[2011.09.21 18:04:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Firefox\Profiles\6j0gk2yo.default\extensions
[2011.09.21 18:04:01 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Firefox\Profiles\6j0gk2yo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.04.19 05:14:32 | 000,001,331 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\crawlersrch.xml
[2011.10.09 21:18:32 | 000,001,018 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\facebook.xml
[2011.10.09 21:18:32 | 000,000,945 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\icqplugin.xml
[2009.04.04 14:38:58 | 000,001,632 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\live-search.xml
[2010.07.13 19:32:00 | 000,002,062 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\qip-search.xml
[2010.08.30 09:20:20 | 000,002,212 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\zbocz.xml
[2011.09.21 18:01:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011.09.06 21:33:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.10.10 16:11:40 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR
() (No name found) -- C:\USERS\MAREK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\6J0GK2YO.DEFAULT\EXTENSIONS\{578E7CAA-210F-4967-A0D3-88FE5B59A39F}.XPI
() (No name found) -- C:\USERS\MAREK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\6J0GK2YO.DEFAULT\EXTENSIONS\PERSONAS@CHRISTOPHER.BEARD.XPI
[2011.10.02 19:18:07 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2010.08.09 16:17:46 | 000,873,888 | ---- | M] (ParallelGraphics) -- C:\Program Files (x86)\mozilla firefox\plugins\npCortona.dll
[2011.10.02 19:18:04 | 000,002,208 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2011.10.02 19:18:04 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.10.11 09:37:44 | 000,002,036 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\McSiteAdvisor.xml
[2011.10.02 19:18:04 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2011.10.02 19:18:04 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.10.02 19:18:04 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Marek\AppData\Local\Google\Chrome\Application\14.0.835.202\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Marek\AppData\Local\Google\Chrome\Application\14.0.835.202\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Marek\AppData\Local\Google\Chrome\Application\14.0.835.202\pdf.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Marek\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: SiteAdvisor = C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.40.135.1_0\
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\WINDOWS\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20111010152623.dll (McAfee, Inc.)
O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20111010152623.dll (McAfee, Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [FreeFallProtection] C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [McPvTray_exe] C:\Program Files\McAfee\MAT\McPvTray.exe (McAfee, Inc.)
O4:64bit: - HKLM..\Run: [NVHotkey] C:\Windows\SysNative\nvHotkey.dll (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] c:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-580890379-3430277850-3007477444-1000..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-580890379-3430277850-3007477444-1001..\Run: [] File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-580890379-3430277850-3007477444-1000..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.symantec.com/sscv6/Shar ... vSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.symantec.com/sscv6/Shar ... /cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab (Creative Software AutoUpdate)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 80.82.144.142 80.82.146.10
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F9091F9D-E680-45E2-B7A3-F087B00D36F7}: DhcpNameServer = 80.82.144.142 80.82.146.10
O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\WINDOWS\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) -C:\WINDOWS\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\WINDOWS\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{17bda543-e378-11e0-976e-14feb5c0d387}\Shell - "" = AutoRun
O33 - MountPoints2\{17bda543-e378-11e0-976e-14feb5c0d387}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\WINDOWS\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~2\mcafee\msc\npmcsn~1.dll ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@parallelgraphics.com/Cortona: C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona\npCortona.dll (ParallelGraphics)
FF - HKLM\Software\MozillaPlugins\@virtools.com/3DviaPlayer: C:\Program Files (x86)\Virtools\3D Life Player\npvirtools.dll (Dassault Systèmes)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Marek\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Marek\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files (x86)\Common Files\McAfee\SystemCore [2011.10.10 15:26:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor [2011.10.10 16:11:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.10.02 19:18:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.10.02 15:47:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011.09.22 19:27:40 | 000,000,000 | ---D | M]
[2011.09.21 18:04:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Extensions
[2011.09.21 19:00:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\extensions
[2011.09.21 18:12:01 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.09.21 18:04:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Nová složka\Extensions
[2011.10.10 21:17:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Nová složka\Firefox\Profiles\6j0gk2yo.default\extensions
[2011.10.10 21:17:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Marek\AppData\Roaming\Mozilla\Nová složka\Firefox\Profiles\6j0gk2yo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.09.21 18:04:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Extensions
[2010.09.30 07:54:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010.09.30 07:54:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Extensions\MediaCoder
[2010.09.30 07:54:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Extensions\MediaCoder-MCEX
[2011.09.21 18:04:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Firefox\Profiles\6j0gk2yo.default\extensions
[2011.09.21 18:04:01 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Marek\AppData\Roaming\Mozilla\Záloha\Firefox\Profiles\6j0gk2yo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.04.19 05:14:32 | 000,001,331 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\crawlersrch.xml
[2011.10.09 21:18:32 | 000,001,018 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\facebook.xml
[2011.10.09 21:18:32 | 000,000,945 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\icqplugin.xml
[2009.04.04 14:38:58 | 000,001,632 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\live-search.xml
[2010.07.13 19:32:00 | 000,002,062 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\qip-search.xml
[2010.08.30 09:20:20 | 000,002,212 | ---- | M] () -- C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\6j0gk2yo.default\searchplugins\zbocz.xml
[2011.09.21 18:01:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011.09.06 21:33:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.10.10 16:11:40 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR
() (No name found) -- C:\USERS\MAREK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\6J0GK2YO.DEFAULT\EXTENSIONS\{578E7CAA-210F-4967-A0D3-88FE5B59A39F}.XPI
() (No name found) -- C:\USERS\MAREK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\6J0GK2YO.DEFAULT\EXTENSIONS\PERSONAS@CHRISTOPHER.BEARD.XPI
[2011.10.02 19:18:07 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2010.08.09 16:17:46 | 000,873,888 | ---- | M] (ParallelGraphics) -- C:\Program Files (x86)\mozilla firefox\plugins\npCortona.dll
[2011.10.02 19:18:04 | 000,002,208 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2011.10.02 19:18:04 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.10.11 09:37:44 | 000,002,036 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\McSiteAdvisor.xml
[2011.10.02 19:18:04 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2011.10.02 19:18:04 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.10.02 19:18:04 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Marek\AppData\Local\Google\Chrome\Application\14.0.835.202\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Marek\AppData\Local\Google\Chrome\Application\14.0.835.202\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Marek\AppData\Local\Google\Chrome\Application\14.0.835.202\pdf.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Marek\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: SiteAdvisor = C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.40.135.1_0\
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\WINDOWS\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20111010152623.dll (McAfee, Inc.)
O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20111010152623.dll (McAfee, Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [FreeFallProtection] C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [McPvTray_exe] C:\Program Files\McAfee\MAT\McPvTray.exe (McAfee, Inc.)
O4:64bit: - HKLM..\Run: [NVHotkey] C:\Windows\SysNative\nvHotkey.dll (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] c:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-580890379-3430277850-3007477444-1000..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-580890379-3430277850-3007477444-1001..\Run: [] File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-580890379-3430277850-3007477444-1000..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} http://security.symantec.com/sscv6/Shar ... vSniff.cab (Symantec AntiVirus scanner)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.symantec.com/sscv6/Shar ... /cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab (Creative Software AutoUpdate)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 80.82.144.142 80.82.146.10
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F9091F9D-E680-45E2-B7A3-F087B00D36F7}: DhcpNameServer = 80.82.144.142 80.82.146.10
O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\WINDOWS\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) -C:\WINDOWS\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\WINDOWS\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{17bda543-e378-11e0-976e-14feb5c0d387}\Shell - "" = AutoRun
O33 - MountPoints2\{17bda543-e378-11e0-976e-14feb5c0d387}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\WINDOWS\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
Re: Prosim o kontrolu logu
========== Files/Folders - Created Within 7 Days ==========
[2011.10.11 21:41:54 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011.10.11 21:40:33 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011.10.11 21:40:33 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011.10.11 21:40:32 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011.10.11 21:40:32 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011.10.11 21:40:31 | 002,309,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2011.10.11 21:40:31 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011.10.11 21:40:31 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011.10.11 21:40:30 | 000,818,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2011.10.11 21:40:30 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2011.10.11 21:37:57 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2011.10.11 21:37:56 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2011.10.11 21:37:55 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2011.10.11 21:37:55 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2011.10.11 21:37:30 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2011.10.11 21:37:29 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2011.10.11 20:54:10 | 000,204,496 | ---- | C] (Malwarebytes) -- C:\Users\Marek\Desktop\StartUpLite.exe
[2011.10.11 20:38:22 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Users\Marek\Desktop\OTL.exe
[2011.10.11 19:40:01 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.10.11 19:40:01 | 000,000,000 | ---D | C] -- C:\rsit
[2011.10.10 21:01:39 | 000,000,000 | ---D | C] -- C:\Users\Marek\Desktop\ProcessExplorer
[2011.10.10 17:05:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\rajce
[2011.10.10 15:27:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfeeMOBK
[2011.10.10 15:27:12 | 000,066,040 | ---- | C] (Mozy, Inc.) -- C:\Windows\SysNative\drivers\MOBK.sys
[2011.10.10 15:27:12 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Online Backup
[2011.10.10 15:27:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee Online Backup
[2011.10.10 15:27:01 | 000,071,800 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\McPvDrv.sys
[2011.10.10 15:27:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
[2011.10.10 15:26:59 | 000,000,000 | R-SD | C] -- C:\Users\Marek\Documents\Trezory společnosti McAfee
[2011.10.10 15:26:59 | 000,000,000 | ---D | C] -- C:\Users\Marek\AppData\Local\McAfee Anti-Theft
[2011.10.10 15:26:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee.com
[2011.10.10 15:26:22 | 000,009,984 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfeclnk.sys
[2011.10.10 15:26:05 | 000,481,504 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfefirek.sys
[2011.10.10 15:26:05 | 000,283,744 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfewfpk.sys
[2011.10.10 15:26:05 | 000,228,752 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfeavfk.sys
[2011.10.10 15:26:05 | 000,100,904 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mferkdet.sys
[2011.10.10 15:26:05 | 000,075,672 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfenlfk.sys
[2011.10.10 15:26:05 | 000,065,128 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\cfwids.sys
[2011.10.10 15:25:59 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee.com
[2011.10.10 15:25:59 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee
[2011.10.10 15:25:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee
[2011.10.10 15:25:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee
[2011.10.10 15:12:36 | 000,158,832 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\mfevtps.exe
[2011.10.10 14:54:15 | 150,761,536 | ---- | C] (Kaspersky Lab) -- C:\Users\Marek\Desktop\kis12.0.0.374cs_cz.exe
[2011.10.09 18:17:10 | 000,000,000 | ---D | C] -- C:\Users\Marek\Documents\Bluetooth
[2011.10.09 18:17:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Bluetooth
[2011.10.08 14:24:57 | 000,000,000 | ---D | C] -- C:\Users\Marek\Desktop\Nová složka
[2011.10.04 22:26:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vypínač na dobrou noc
========== Files - Modified Within 7 Days ==========
[2011.10.11 22:10:41 | 000,025,008 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.10.11 22:10:41 | 000,025,008 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.10.11 22:09:46 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.10.11 22:07:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001UA.job
[2011.10.11 22:03:54 | 000,001,797 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Total Protection.lnk
[2011.10.11 22:03:32 | 000,000,499 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.ics
[2011.10.11 22:03:07 | 005,020,728 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011.10.11 22:02:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.10.11 22:02:31 | 3137,994,752 | -HS- | M] () -- C:\hiberfil.sys
[2011.10.11 21:42:48 | 001,606,592 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.10.11 21:42:48 | 000,669,948 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2011.10.11 21:42:48 | 000,655,302 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.10.11 21:42:48 | 000,141,548 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2011.10.11 21:42:48 | 000,122,174 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.10.11 20:54:10 | 000,204,496 | ---- | M] (Malwarebytes) -- C:\Users\Marek\Desktop\StartUpLite.exe
[2011.10.11 20:38:27 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Marek\Desktop\OTL.exe
[2011.10.11 20:07:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001Core.job
[2011.10.11 19:30:40 | 001,176,083 | ---- | M] () -- C:\Users\Marek\Desktop\11102011252.jpg
[2011.10.10 19:36:30 | 000,007,605 | ---- | M] () -- C:\Users\Marek\AppData\Local\Resmon.ResmonCfg
[2011.10.10 19:29:23 | 000,000,835 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.10.10 17:05:38 | 000,000,648 | ---- | M] () -- C:\Users\Public\Desktop\rajče.lnk
[2011.10.10 15:08:24 | 150,761,536 | ---- | M] (Kaspersky Lab) -- C:\Users\Marek\Desktop\kis12.0.0.374cs_cz.exe
[2011.10.10 10:17:06 | 000,008,704 | ---- | M] () -- C:\Users\Marek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.10.10 07:16:55 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2011.10.10 07:16:50 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ccdcmbx64_01009.Wdf
[2011.10.09 14:11:59 | 000,002,149 | ---- | M] () -- C:\Users\Public\Desktop\Nokia Ovi Suite.lnk
[2011.10.08 23:18:10 | 003,129,185 | ---- | M] () -- C:\Users\Marek\Desktop\IMG_0169 – kopie (3).JPG
[2011.10.08 23:17:46 | 002,456,870 | ---- | M] () -- C:\Users\Marek\Desktop\IMG_0169 – kopie (2).JPG
[2011.10.08 20:52:37 | 000,495,182 | ---- | M] () -- C:\Users\Marek\Desktop\f71_kzk_pletovky.pdf
[2011.10.07 13:06:38 | 001,142,120 | ---- | M] () -- C:\Users\Marek\Desktop\Rayan_Fareh.JPG
[2011.10.07 13:06:38 | 001,115,076 | ---- | M] () -- C:\Users\Marek\Desktop\Rayan.JPG
[2011.10.07 13:06:38 | 000,710,000 | ---- | M] () -- C:\Users\Marek\Desktop\Rayan_23.9.2011.JPG
[2011.10.07 13:06:33 | 002,968,390 | ---- | M] () -- C:\Users\Marek\Desktop\zprava_1289.zip
[2011.10.05 07:09:02 | 000,002,361 | ---- | M] () -- C:\Users\Marek\Desktop\Google Chrome.lnk
[2011.10.04 22:26:14 | 000,000,832 | ---- | M] () -- C:\Users\Marek\Desktop\Vypínač na dobrou noc.lnk
========== Files Created - No Company Name ==========
[2011.10.11 20:43:23 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.10.11 19:28:34 | 001,176,083 | ---- | C] () -- C:\Users\Marek\Desktop\11102011252.jpg
[2011.10.10 19:36:30 | 000,007,605 | ---- | C] () -- C:\Users\Marek\AppData\Local\Resmon.ResmonCfg
[2011.10.10 17:05:38 | 000,000,648 | ---- | C] () -- C:\Users\Public\Desktop\rajče.lnk
[2011.10.10 15:27:53 | 000,001,797 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Total Protection.lnk
[2011.10.10 07:16:55 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2011.10.10 07:16:50 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ccdcmbx64_01009.Wdf
[2011.10.08 23:16:51 | 003,129,185 | ---- | C] () -- C:\Users\Marek\Desktop\IMG_0169 – kopie (3).JPG
[2011.10.08 23:16:32 | 002,456,870 | ---- | C] () -- C:\Users\Marek\Desktop\IMG_0169 – kopie (2).JPG
[2011.10.08 20:52:32 | 000,495,182 | ---- | C] () -- C:\Users\Marek\Desktop\f71_kzk_pletovky.pdf
[2011.10.07 16:16:16 | 001,142,120 | ---- | C] () -- C:\Users\Marek\Desktop\Rayan_Fareh.JPG
[2011.10.07 16:16:16 | 001,115,076 | ---- | C] () -- C:\Users\Marek\Desktop\Rayan.JPG
[2011.10.07 16:16:16 | 000,710,000 | ---- | C] () -- C:\Users\Marek\Desktop\Rayan_23.9.2011.JPG
[2011.10.07 13:06:23 | 002,968,390 | ---- | C] () -- C:\Users\Marek\Desktop\zprava_1289.zip
[2011.10.04 22:26:14 | 000,000,832 | ---- | C] () -- C:\Users\Marek\Desktop\Vypínač na dobrou noc.lnk
[2011.09.20 13:00:05 | 000,000,000 | ---- | C] () -- C:\Users\Marek\AppData\Local\rx_image32.Cache
[2011.09.19 18:13:09 | 000,008,704 | ---- | C] () -- C:\Users\Marek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.09.06 20:12:07 | 000,000,047 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_89001461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_49001461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_33011461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_ca.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_8a.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A0F1461_ca.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_ca.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_8a.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_14001461_61.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_13011461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_110F1461_ca.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_110F1461_8a.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_11071461_aa.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_ca.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_aa.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_8a.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_ca.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_aa.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_8a.bin
[2011.08.13 14:32:26 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_890F1461_ca.bin
[2011.08.13 14:32:26 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_2B0f1461_ca.bin
[2011.08.13 14:32:26 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_29001461_ca.bin
[2011.08.13 14:32:26 | 000,000,412 | ---- | C] () -- C:\Windows\11317231_180F1461_ca.bin
[2011.08.13 14:32:26 | 000,000,412 | ---- | C] () -- C:\Windows\11317231_18071461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_11071461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A0F1461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A031461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A031461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A011461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A011461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_09001461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_08071461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_060F1461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_06071461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_06071461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_03011461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_03011461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_02011461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_02011461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_010F1461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_010F1461_8a.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_07031461_aa.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_ca.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_aa.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_8a.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03131461_8a.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03031461_aa.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_ca.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_aa.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_8a.bin
[2011.08.13 14:32:25 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_0B0f1461_ca.bin
[2011.08.13 14:32:25 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_090F1461_ca.bin
[2011.08.13 14:32:25 | 000,000,376 | ---- | C] () -- C:\Windows\11317231_03131461_aa.bin
[2011.08.13 14:32:24 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_01071461_aa.bin
[2011.08.13 14:32:24 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_01071461_8a.bin
[2011.08.13 14:32:24 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_00000000_aa.bin
[2011.08.13 14:32:24 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_00000000_8a.bin
[2011.08.13 14:31:34 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2011.08.13 14:30:45 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011.08.13 14:30:42 | 000,216,876 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011.08.13 14:30:40 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011.08.03 03:31:54 | 000,311,912 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2011.02.15 09:08:16 | 001,604,058 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2005.10.14 11:56:50 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\Windows\SysWow64\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,778,240 | ---- | C] () -- C:\Windows\SysWow64\DivXsm.exe
[2005.10.14 11:56:50 | 000,761,856 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\Windows\SysWow64\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\Windows\SysWow64\vorbis.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\ogg.dll
========== LOP Check ==========
[2011.09.29 17:53:25 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
[2011.09.22 19:48:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\eM Client
[2011.09.06 21:08:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ESET
[2011.09.21 16:52:51 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\GHISLER
[2011.10.10 17:37:46 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ICQ
[2011.10.10 07:44:59 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nokia
[2011.09.22 19:38:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nokia Ovi Suite
[2011.09.06 23:07:33 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Notepad++
[2011.09.06 20:03:33 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Opera
[2011.09.22 19:34:27 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\PC Suite
[2011.09.06 23:14:23 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ZinioReader4
[2011.09.24 19:53:42 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Zoner
[2009.07.14 07:08:49 | 000,021,102 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\WINDOWS\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\WINDOWS\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\WINDOWS\SysWOW64\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\WINDOWS\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\WINDOWS\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\WINDOWS\SysWOW64\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\WINDOWS\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2010.11.21 05:24:16 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\SysNative\cryptsvc.dll
[2010.11.21 05:24:16 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\WINDOWS\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2010.11.21 05:24:32 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\WINDOWS\SysWOW64\cryptsvc.dll
[2010.11.21 05:24:32 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\WINDOWS\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2011.08.13 14:44:59 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\WINDOWS\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.08.13 14:44:59 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\WINDOWS\explorer.exe
[2011.08.13 14:44:59 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.08.13 14:44:59 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.21 05:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\WINDOWS\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011.08.13 14:44:59 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\WINDOWS\SysWOW64\explorer.exe
[2011.08.13 14:44:59 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\WINDOWS\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010.11.21 05:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll
< MD5 for: IASTOR.SYS >
[2011.01.13 03:51:44 | 000,439,320 | ---- | M] (Intel Corporation) MD5=D469B77687E12FE43E344806740B624D -- C:\Drivers\Chipset_IRST\f6flpy-x64\iaStor.sys
[2011.01.13 03:51:44 | 000,439,320 | ---- | M] (Intel Corporation) MD5=D469B77687E12FE43E344806740B624D -- C:\Windows\SysNative\drivers\iaStor.sys
[2011.01.13 03:51:44 | 000,439,320 | ---- | M] (Intel Corporation) MD5=D469B77687E12FE43E344806740B624D -- C:\Windows\SysNative\DriverStore\FileRepository\iaahci.inf_amd64_neutral_a36325196df56f7d\iaStor.sys
[2011.01.13 03:51:44 | 000,439,320 | ---- | M] (Intel Corporation) MD5=D469B77687E12FE43E344806740B624D -- C:\Windows\SysNative\DriverStore\FileRepository\iastor.inf_amd64_neutral_e3082ac13af8d3bf\iaStor.sys
< MD5 for: IASTORV.SYS >
[2010.11.21 05:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.21 05:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\WINDOWS\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011.08.13 14:44:58 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\WINDOWS\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011.08.13 14:44:58 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011.08.13 14:44:58 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011.08.13 14:44:58 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\WINDOWS\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\WINDOWS\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys
< MD5 for: LSASS.EXE >
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\WINDOWS\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
< MD5 for: NDIS.SYS >
[2011.08.13 14:44:44 | 000,950,656 | ---- | M] (Microsoft Corporation) MD5=303310C91F8C0740ED1C76851C759874 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.21628_none_066fff3d4bd0b870\ndis.sys
[2010.11.21 05:23:55 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\WINDOWS\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2011.08.13 14:44:44 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=C38B8AE57F78915905064A9A24DC1586 -- C:\Windows\SysNative\drivers\ndis.sys
[2011.08.13 14:44:44 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=C38B8AE57F78915905064A9A24DC1586 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17530_none_05d3903632c269df\ndis.sys
< MD5 for: NETLOGON.DLL >
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\WINDOWS\SysWOW64\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\WINDOWS\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
< MD5 for: NVRAID.SYS >
[2011.08.13 14:44:58 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\drivers\nvraid.sys
[2011.08.13 14:44:58 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.08.13 14:44:58 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvraid.sys
[2010.11.21 05:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.21 05:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys
[2011.08.13 14:44:58 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=666CA16F17914C1CD3616CF16DE0A6EA -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2011.08.13 14:44:58 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011.08.13 14:44:58 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011.08.13 14:44:58 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.08.13 14:44:58 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys
< MD5 for: SCECLI.DLL >
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\WINDOWS\SysWOW64\scecli.dll
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\WINDOWS\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\WINDOWS\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
< MD5 for: SMSS.EXE >
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\WINDOWS\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\WINDOWS\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\WINDOWS\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\WINDOWS\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2010.11.21 05:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2011.08.13 14:45:00 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2011.06.21 08:20:30 | 001,914,752 | ---- | M] (Microsoft Corporation) MD5=A0EB71E0DC047C7CC95CD6AB4036296E -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21754_none_11a276c29643d7ec\tcpip.sys
[2011.08.13 14:45:00 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2011.08.13 14:44:46 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=CB6A53EF141CC3DA32DA54F7E75D301B -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21687_none_118505f696597a9d\tcpip.sys
[2011.08.13 14:44:46 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=DC08410DB2D0CC542DACAC7A90E6CB7A -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17582_none_10f667b97d405c20\tcpip.sys
[2011.06.21 08:34:00 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=F0E98C00A09FDF791525829A1D14240F -- C:\Windows\SysNative\drivers\tcpip.sys
[2011.06.21 08:34:00 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=F0E98C00A09FDF791525829A1D14240F -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17638_none_11327af77d12659c\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\WINDOWS\SysWOW64\userinit.exe
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\WINDOWS\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
< MD5 for: WS2_32.DLL >
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\WINDOWS\SysWOW64\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\WINDOWS\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[6 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[2 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[2 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2011.09.08 19:37:30 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Adobe
[2011.09.08 06:27:47 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Creative
[2011.09.29 17:53:25 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
[2011.09.07 22:29:18 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Dell
[2011.09.22 19:48:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\eM Client
[2011.09.06 21:08:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ESET
[2011.09.21 16:52:51 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\GHISLER
[2011.10.10 17:37:46 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ICQ
[2011.09.07 16:42:45 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Identities
[2011.09.07 16:40:31 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Intel
[2011.08.13 13:36:12 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Macromedia
[2011.09.20 07:47:13 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Macrovision
[2011.08.13 14:27:05 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Media Center Programs
[2011.09.22 19:52:03 | 000,000,000 | --SD | M] -- C:\Users\Marek\AppData\Roaming\Microsoft
[2011.09.27 14:50:45 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Mozilla
[2011.09.06 20:11:43 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nero
[2011.10.10 07:44:59 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nokia
[2011.09.22 19:38:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nokia Ovi Suite
[2011.09.06 23:07:33 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Notepad++
[2011.09.26 22:50:43 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\NVIDIA
[2011.09.06 20:03:33 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Opera
[2011.09.22 19:34:27 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\PC Suite
[2011.09.21 16:58:55 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\PSpad
[2011.10.04 13:40:30 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Reallusion
[2011.09.20 13:00:06 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Roxio
[2011.09.20 07:52:34 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Roxio Burn
[2011.10.11 22:10:53 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Skype
[2011.09.06 20:56:13 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\WinRAR
[2011.09.06 23:14:23 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ZinioReader4
[2011.09.24 19:53:42 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Zoner
< %APPDATA%\*.exe /s >
[2011.09.26 11:42:18 | 000,053,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Marek\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011.10.11 22:05:25 | 000,000,018 | ---- | M] () -- C:\Windows\system32\log.txt
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"" =
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.10.11 22:09:46 | 000,000,512 | ---- | M] () MD5=3DF5EF271981EE182B1902D12D98C42D -- C:\PhysicalMBR.bin
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
< End of report >
[2011.10.11 21:41:54 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011.10.11 21:40:33 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011.10.11 21:40:33 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011.10.11 21:40:32 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011.10.11 21:40:32 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011.10.11 21:40:31 | 002,309,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2011.10.11 21:40:31 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011.10.11 21:40:31 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011.10.11 21:40:30 | 000,818,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2011.10.11 21:40:30 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2011.10.11 21:37:57 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2011.10.11 21:37:56 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2011.10.11 21:37:55 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2011.10.11 21:37:55 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2011.10.11 21:37:30 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2011.10.11 21:37:29 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2011.10.11 20:54:10 | 000,204,496 | ---- | C] (Malwarebytes) -- C:\Users\Marek\Desktop\StartUpLite.exe
[2011.10.11 20:38:22 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Users\Marek\Desktop\OTL.exe
[2011.10.11 19:40:01 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.10.11 19:40:01 | 000,000,000 | ---D | C] -- C:\rsit
[2011.10.10 21:01:39 | 000,000,000 | ---D | C] -- C:\Users\Marek\Desktop\ProcessExplorer
[2011.10.10 17:05:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\rajce
[2011.10.10 15:27:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfeeMOBK
[2011.10.10 15:27:12 | 000,066,040 | ---- | C] (Mozy, Inc.) -- C:\Windows\SysNative\drivers\MOBK.sys
[2011.10.10 15:27:12 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Online Backup
[2011.10.10 15:27:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee Online Backup
[2011.10.10 15:27:01 | 000,071,800 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\McPvDrv.sys
[2011.10.10 15:27:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
[2011.10.10 15:26:59 | 000,000,000 | R-SD | C] -- C:\Users\Marek\Documents\Trezory společnosti McAfee
[2011.10.10 15:26:59 | 000,000,000 | ---D | C] -- C:\Users\Marek\AppData\Local\McAfee Anti-Theft
[2011.10.10 15:26:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee.com
[2011.10.10 15:26:22 | 000,009,984 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfeclnk.sys
[2011.10.10 15:26:05 | 000,481,504 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfefirek.sys
[2011.10.10 15:26:05 | 000,283,744 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfewfpk.sys
[2011.10.10 15:26:05 | 000,228,752 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfeavfk.sys
[2011.10.10 15:26:05 | 000,100,904 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mferkdet.sys
[2011.10.10 15:26:05 | 000,075,672 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfenlfk.sys
[2011.10.10 15:26:05 | 000,065,128 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\cfwids.sys
[2011.10.10 15:25:59 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee.com
[2011.10.10 15:25:59 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee
[2011.10.10 15:25:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee
[2011.10.10 15:25:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee
[2011.10.10 15:12:36 | 000,158,832 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\mfevtps.exe
[2011.10.10 14:54:15 | 150,761,536 | ---- | C] (Kaspersky Lab) -- C:\Users\Marek\Desktop\kis12.0.0.374cs_cz.exe
[2011.10.09 18:17:10 | 000,000,000 | ---D | C] -- C:\Users\Marek\Documents\Bluetooth
[2011.10.09 18:17:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Bluetooth
[2011.10.08 14:24:57 | 000,000,000 | ---D | C] -- C:\Users\Marek\Desktop\Nová složka
[2011.10.04 22:26:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vypínač na dobrou noc
========== Files - Modified Within 7 Days ==========
[2011.10.11 22:10:41 | 000,025,008 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.10.11 22:10:41 | 000,025,008 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.10.11 22:09:46 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.10.11 22:07:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001UA.job
[2011.10.11 22:03:54 | 000,001,797 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Total Protection.lnk
[2011.10.11 22:03:32 | 000,000,499 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.ics
[2011.10.11 22:03:07 | 005,020,728 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011.10.11 22:02:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.10.11 22:02:31 | 3137,994,752 | -HS- | M] () -- C:\hiberfil.sys
[2011.10.11 21:42:48 | 001,606,592 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.10.11 21:42:48 | 000,669,948 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2011.10.11 21:42:48 | 000,655,302 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.10.11 21:42:48 | 000,141,548 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2011.10.11 21:42:48 | 000,122,174 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.10.11 20:54:10 | 000,204,496 | ---- | M] (Malwarebytes) -- C:\Users\Marek\Desktop\StartUpLite.exe
[2011.10.11 20:38:27 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Marek\Desktop\OTL.exe
[2011.10.11 20:07:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001Core.job
[2011.10.11 19:30:40 | 001,176,083 | ---- | M] () -- C:\Users\Marek\Desktop\11102011252.jpg
[2011.10.10 19:36:30 | 000,007,605 | ---- | M] () -- C:\Users\Marek\AppData\Local\Resmon.ResmonCfg
[2011.10.10 19:29:23 | 000,000,835 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.10.10 17:05:38 | 000,000,648 | ---- | M] () -- C:\Users\Public\Desktop\rajče.lnk
[2011.10.10 15:08:24 | 150,761,536 | ---- | M] (Kaspersky Lab) -- C:\Users\Marek\Desktop\kis12.0.0.374cs_cz.exe
[2011.10.10 10:17:06 | 000,008,704 | ---- | M] () -- C:\Users\Marek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.10.10 07:16:55 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2011.10.10 07:16:50 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ccdcmbx64_01009.Wdf
[2011.10.09 14:11:59 | 000,002,149 | ---- | M] () -- C:\Users\Public\Desktop\Nokia Ovi Suite.lnk
[2011.10.08 23:18:10 | 003,129,185 | ---- | M] () -- C:\Users\Marek\Desktop\IMG_0169 – kopie (3).JPG
[2011.10.08 23:17:46 | 002,456,870 | ---- | M] () -- C:\Users\Marek\Desktop\IMG_0169 – kopie (2).JPG
[2011.10.08 20:52:37 | 000,495,182 | ---- | M] () -- C:\Users\Marek\Desktop\f71_kzk_pletovky.pdf
[2011.10.07 13:06:38 | 001,142,120 | ---- | M] () -- C:\Users\Marek\Desktop\Rayan_Fareh.JPG
[2011.10.07 13:06:38 | 001,115,076 | ---- | M] () -- C:\Users\Marek\Desktop\Rayan.JPG
[2011.10.07 13:06:38 | 000,710,000 | ---- | M] () -- C:\Users\Marek\Desktop\Rayan_23.9.2011.JPG
[2011.10.07 13:06:33 | 002,968,390 | ---- | M] () -- C:\Users\Marek\Desktop\zprava_1289.zip
[2011.10.05 07:09:02 | 000,002,361 | ---- | M] () -- C:\Users\Marek\Desktop\Google Chrome.lnk
[2011.10.04 22:26:14 | 000,000,832 | ---- | M] () -- C:\Users\Marek\Desktop\Vypínač na dobrou noc.lnk
========== Files Created - No Company Name ==========
[2011.10.11 20:43:23 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.10.11 19:28:34 | 001,176,083 | ---- | C] () -- C:\Users\Marek\Desktop\11102011252.jpg
[2011.10.10 19:36:30 | 000,007,605 | ---- | C] () -- C:\Users\Marek\AppData\Local\Resmon.ResmonCfg
[2011.10.10 17:05:38 | 000,000,648 | ---- | C] () -- C:\Users\Public\Desktop\rajče.lnk
[2011.10.10 15:27:53 | 000,001,797 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Total Protection.lnk
[2011.10.10 07:16:55 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2011.10.10 07:16:50 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ccdcmbx64_01009.Wdf
[2011.10.08 23:16:51 | 003,129,185 | ---- | C] () -- C:\Users\Marek\Desktop\IMG_0169 – kopie (3).JPG
[2011.10.08 23:16:32 | 002,456,870 | ---- | C] () -- C:\Users\Marek\Desktop\IMG_0169 – kopie (2).JPG
[2011.10.08 20:52:32 | 000,495,182 | ---- | C] () -- C:\Users\Marek\Desktop\f71_kzk_pletovky.pdf
[2011.10.07 16:16:16 | 001,142,120 | ---- | C] () -- C:\Users\Marek\Desktop\Rayan_Fareh.JPG
[2011.10.07 16:16:16 | 001,115,076 | ---- | C] () -- C:\Users\Marek\Desktop\Rayan.JPG
[2011.10.07 16:16:16 | 000,710,000 | ---- | C] () -- C:\Users\Marek\Desktop\Rayan_23.9.2011.JPG
[2011.10.07 13:06:23 | 002,968,390 | ---- | C] () -- C:\Users\Marek\Desktop\zprava_1289.zip
[2011.10.04 22:26:14 | 000,000,832 | ---- | C] () -- C:\Users\Marek\Desktop\Vypínač na dobrou noc.lnk
[2011.09.20 13:00:05 | 000,000,000 | ---- | C] () -- C:\Users\Marek\AppData\Local\rx_image32.Cache
[2011.09.19 18:13:09 | 000,008,704 | ---- | C] () -- C:\Users\Marek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.09.06 20:12:07 | 000,000,047 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_89001461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_49001461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_33011461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_ca.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2B071461_8a.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A0F1461_ca.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_ca.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_2A071461_8a.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_14001461_61.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_13011461_aa.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_110F1461_ca.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_110F1461_8a.bin
[2011.08.13 14:32:26 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_11071461_aa.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_ca.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_aa.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_A3031461_8a.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_ca.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_aa.bin
[2011.08.13 14:32:26 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_83231461_8a.bin
[2011.08.13 14:32:26 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_890F1461_ca.bin
[2011.08.13 14:32:26 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_2B0f1461_ca.bin
[2011.08.13 14:32:26 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_29001461_ca.bin
[2011.08.13 14:32:26 | 000,000,412 | ---- | C] () -- C:\Windows\11317231_180F1461_ca.bin
[2011.08.13 14:32:26 | 000,000,412 | ---- | C] () -- C:\Windows\11317231_18071461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_11071461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0B071461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A0F1461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A071461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A031461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A031461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A011461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_0A011461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_09001461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_08071461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_060F1461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_06071461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_06071461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_03011461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_03011461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_02011461_aa.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_02011461_8a.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_010F1461_ca.bin
[2011.08.13 14:32:25 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_010F1461_8a.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_07031461_aa.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_ca.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_aa.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03231461_8a.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03131461_8a.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_03031461_aa.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_ca.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_aa.bin
[2011.08.13 14:32:25 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_02031461_8a.bin
[2011.08.13 14:32:25 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_0B0f1461_ca.bin
[2011.08.13 14:32:25 | 000,000,434 | ---- | C] () -- C:\Windows\11317231_090F1461_ca.bin
[2011.08.13 14:32:25 | 000,000,376 | ---- | C] () -- C:\Windows\11317231_03131461_aa.bin
[2011.08.13 14:32:24 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_01071461_aa.bin
[2011.08.13 14:32:24 | 000,000,502 | ---- | C] () -- C:\Windows\11317231_01071461_8a.bin
[2011.08.13 14:32:24 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_00000000_aa.bin
[2011.08.13 14:32:24 | 000,000,461 | ---- | C] () -- C:\Windows\11317231_00000000_8a.bin
[2011.08.13 14:31:34 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2011.08.13 14:30:45 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011.08.13 14:30:42 | 000,216,876 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011.08.13 14:30:40 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011.08.03 03:31:54 | 000,311,912 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2011.02.15 09:08:16 | 001,604,058 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2005.10.14 11:56:50 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\Windows\SysWow64\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,778,240 | ---- | C] () -- C:\Windows\SysWow64\DivXsm.exe
[2005.10.14 11:56:50 | 000,761,856 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\Windows\SysWow64\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\Windows\SysWow64\vorbis.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\ogg.dll
========== LOP Check ==========
[2011.09.29 17:53:25 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
[2011.09.22 19:48:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\eM Client
[2011.09.06 21:08:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ESET
[2011.09.21 16:52:51 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\GHISLER
[2011.10.10 17:37:46 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ICQ
[2011.10.10 07:44:59 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nokia
[2011.09.22 19:38:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nokia Ovi Suite
[2011.09.06 23:07:33 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Notepad++
[2011.09.06 20:03:33 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Opera
[2011.09.22 19:34:27 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\PC Suite
[2011.09.06 23:14:23 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ZinioReader4
[2011.09.24 19:53:42 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Zoner
[2009.07.14 07:08:49 | 000,021,102 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\WINDOWS\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\WINDOWS\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\WINDOWS\SysWOW64\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\WINDOWS\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\WINDOWS\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\WINDOWS\SysWOW64\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\WINDOWS\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2010.11.21 05:24:16 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\SysNative\cryptsvc.dll
[2010.11.21 05:24:16 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\WINDOWS\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2010.11.21 05:24:32 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\WINDOWS\SysWOW64\cryptsvc.dll
[2010.11.21 05:24:32 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\WINDOWS\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2011.08.13 14:44:59 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\WINDOWS\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.08.13 14:44:59 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\WINDOWS\explorer.exe
[2011.08.13 14:44:59 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.08.13 14:44:59 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.21 05:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\WINDOWS\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011.08.13 14:44:59 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\WINDOWS\SysWOW64\explorer.exe
[2011.08.13 14:44:59 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\WINDOWS\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010.11.21 05:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll
< MD5 for: IASTOR.SYS >
[2011.01.13 03:51:44 | 000,439,320 | ---- | M] (Intel Corporation) MD5=D469B77687E12FE43E344806740B624D -- C:\Drivers\Chipset_IRST\f6flpy-x64\iaStor.sys
[2011.01.13 03:51:44 | 000,439,320 | ---- | M] (Intel Corporation) MD5=D469B77687E12FE43E344806740B624D -- C:\Windows\SysNative\drivers\iaStor.sys
[2011.01.13 03:51:44 | 000,439,320 | ---- | M] (Intel Corporation) MD5=D469B77687E12FE43E344806740B624D -- C:\Windows\SysNative\DriverStore\FileRepository\iaahci.inf_amd64_neutral_a36325196df56f7d\iaStor.sys
[2011.01.13 03:51:44 | 000,439,320 | ---- | M] (Intel Corporation) MD5=D469B77687E12FE43E344806740B624D -- C:\Windows\SysNative\DriverStore\FileRepository\iastor.inf_amd64_neutral_e3082ac13af8d3bf\iaStor.sys
< MD5 for: IASTORV.SYS >
[2010.11.21 05:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.21 05:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\WINDOWS\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011.08.13 14:44:58 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\WINDOWS\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011.08.13 14:44:58 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011.08.13 14:44:58 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011.08.13 14:44:58 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\WINDOWS\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\WINDOWS\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys
< MD5 for: LSASS.EXE >
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\WINDOWS\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
< MD5 for: NDIS.SYS >
[2011.08.13 14:44:44 | 000,950,656 | ---- | M] (Microsoft Corporation) MD5=303310C91F8C0740ED1C76851C759874 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.21628_none_066fff3d4bd0b870\ndis.sys
[2010.11.21 05:23:55 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\WINDOWS\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2011.08.13 14:44:44 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=C38B8AE57F78915905064A9A24DC1586 -- C:\Windows\SysNative\drivers\ndis.sys
[2011.08.13 14:44:44 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=C38B8AE57F78915905064A9A24DC1586 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17530_none_05d3903632c269df\ndis.sys
< MD5 for: NETLOGON.DLL >
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\WINDOWS\SysWOW64\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\WINDOWS\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
< MD5 for: NVRAID.SYS >
[2011.08.13 14:44:58 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\drivers\nvraid.sys
[2011.08.13 14:44:58 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.08.13 14:44:58 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvraid.sys
[2010.11.21 05:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.21 05:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys
[2011.08.13 14:44:58 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=666CA16F17914C1CD3616CF16DE0A6EA -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2011.08.13 14:44:58 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011.08.13 14:44:58 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011.08.13 14:44:58 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.08.13 14:44:58 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\WINDOWS\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys
< MD5 for: SCECLI.DLL >
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\WINDOWS\SysWOW64\scecli.dll
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\WINDOWS\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\WINDOWS\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
< MD5 for: SMSS.EXE >
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\WINDOWS\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\WINDOWS\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\WINDOWS\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\WINDOWS\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2010.11.21 05:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2011.08.13 14:45:00 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2011.06.21 08:20:30 | 001,914,752 | ---- | M] (Microsoft Corporation) MD5=A0EB71E0DC047C7CC95CD6AB4036296E -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21754_none_11a276c29643d7ec\tcpip.sys
[2011.08.13 14:45:00 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2011.08.13 14:44:46 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=CB6A53EF141CC3DA32DA54F7E75D301B -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21687_none_118505f696597a9d\tcpip.sys
[2011.08.13 14:44:46 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=DC08410DB2D0CC542DACAC7A90E6CB7A -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17582_none_10f667b97d405c20\tcpip.sys
[2011.06.21 08:34:00 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=F0E98C00A09FDF791525829A1D14240F -- C:\Windows\SysNative\drivers\tcpip.sys
[2011.06.21 08:34:00 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=F0E98C00A09FDF791525829A1D14240F -- C:\WINDOWS\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17638_none_11327af77d12659c\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\WINDOWS\SysWOW64\userinit.exe
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\WINDOWS\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
< MD5 for: WS2_32.DLL >
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\WINDOWS\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\WINDOWS\SysWOW64\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\WINDOWS\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[6 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[2 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[2 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2011.09.08 19:37:30 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Adobe
[2011.09.08 06:27:47 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Creative
[2011.09.29 17:53:25 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
[2011.09.07 22:29:18 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Dell
[2011.09.22 19:48:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\eM Client
[2011.09.06 21:08:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ESET
[2011.09.21 16:52:51 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\GHISLER
[2011.10.10 17:37:46 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ICQ
[2011.09.07 16:42:45 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Identities
[2011.09.07 16:40:31 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Intel
[2011.08.13 13:36:12 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Macromedia
[2011.09.20 07:47:13 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Macrovision
[2011.08.13 14:27:05 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Media Center Programs
[2011.09.22 19:52:03 | 000,000,000 | --SD | M] -- C:\Users\Marek\AppData\Roaming\Microsoft
[2011.09.27 14:50:45 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Mozilla
[2011.09.06 20:11:43 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nero
[2011.10.10 07:44:59 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nokia
[2011.09.22 19:38:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nokia Ovi Suite
[2011.09.06 23:07:33 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Notepad++
[2011.09.26 22:50:43 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\NVIDIA
[2011.09.06 20:03:33 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Opera
[2011.09.22 19:34:27 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\PC Suite
[2011.09.21 16:58:55 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\PSpad
[2011.10.04 13:40:30 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Reallusion
[2011.09.20 13:00:06 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Roxio
[2011.09.20 07:52:34 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Roxio Burn
[2011.10.11 22:10:53 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Skype
[2011.09.06 20:56:13 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\WinRAR
[2011.09.06 23:14:23 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ZinioReader4
[2011.09.24 19:53:42 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Zoner
< %APPDATA%\*.exe /s >
[2011.09.26 11:42:18 | 000,053,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Marek\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011.10.11 22:05:25 | 000,000,018 | ---- | M] () -- C:\Windows\system32\log.txt
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"" =
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.10.11 22:09:46 | 000,000,512 | ---- | M] () MD5=3DF5EF271981EE182B1902D12D98C42D -- C:\PhysicalMBR.bin
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
< End of report >
Re: Prosim o kontrolu logu
SPAM to v zadnem pripade neni - kdybyste to takto nedal, stejne bych to po Vas chtel nebo bych si to do vice prispevku nahazel sam 
Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl DRV:64bit: - [2010.12.21 13:47:38 | 000,034,144 | ---- | M] (ESET) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\epfwndis.sys -- (Epfwndis) IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - prefs.js..browser.search.defaultenginename: "Crawler Search" FF - prefs.js..browser.search.defaulturl: "http://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=19&q=" FF - prefs.js..browser.search.order.1: "Crawler Search" FF - prefs.js..browser.startup.homepage: "[{\"title\":\"VIRY.CZ • Upravit pĹ™ĂspÄ›vek\",\"text\":\"DÄ›kuji,\\nprávÄ› probĂhá kontrola, jen se teÄŹ ještÄ› zeptám, StartUpLite je na ovládánĂ procesĹŻ spouštÄ›nĂ˝ch po startu? Je to lepšà nástroj neĹľ ten v ccleaneru nebo ten staÄŤĂ a jakĂ˝ je prosĂm rozdĂl?\\nJeštÄ› mám takovĂ˝ postĹ™eh, pĹ™i kliknutĂ na váš odkaz [url]oldtimer.geekstogo.com/OTL.exe[/url] mi McAfee napsalo vĂ˝strahu [url]http://www.siteadvisor.com/restricted.html?domain=http:%2F%2Foldtimer.geekstogo.com%2FOTL.exe&originalURL=-298215247&pip=false&premium=true&,{\"title\":\"VIRY.CZ • Odeslat novĂ© tĂ©ma\",\"text\":\"DobrĂ˝ den,\\nprosĂm o kontrolu logu, notebook nemám dlouho, ale spoustu vÄ›cĂ jsem instaloval a pĹ™idával.\\n\\nPĹ™edem dÄ›kuji Marek \\\"echo\\\"\\n\\n\\n\\n\\n\\nLogfile of random's system information tool 1.09 (written by random/random)\\nRun by Marek at 2011-10-11 19:40:01\\nMicrosoft Windows 7 Home Premium Service Pack 1\\nSystem drive C: has 15 GB (30%) free of 51 GB\\nTotal RAM: 3990 MB (50% free)\\n\\nLogfile of Trend Micro HijackThis v2.0.4\\nScan saved at 19:40:12, on 11.10.2011\\nPlatform: Windows 7 SP1 (WinNT 6.00.3505)\\nMSIE: Internet Explorer v9.00 (9.00.8112.16421)\\nBoot mode: Normal\\n\\nRunning processes:\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\TOASTER.EXE\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\COMPONENTS\\\\SCHEDULER\\\\STSERVICE.EXE\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\Components\\\\DSUpdate\\\\DSUpd.exe\\nC:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe\\nC:\\\\Program Files (x86)\\\\Skype\\\\Phone\\\\Skype.exe\\nC:\\\\Program Files (x86)\\\\Opera\\\\opera.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Windows\\\\SysWOW64\\\\rundll32.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\firefox.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\nC:\\\\Program Files\\\\trend micro\\\\Marek.exe\\n\\nR1 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd\\nR1 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896\\nR0 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Start Page = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896\\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157\\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Search,SearchAssistant = \\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Search,CustomizeSearch = \\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Local Page = C:\\\\Windows\\\\SysWOW64\\\\blank.htm\\nR0 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Toolbar,LinksFolderName = \\nF2 - REG:system.ini: UserInit=userinit.exe\\nO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\Acrobat\\\\ActiveX\\\\AcroIEHelperShim.dll\\nO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll\\nO2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\\\\Program Files (x86)\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll\\nO2 - BHO: Pomocná sluĹľba pro pĹ™ihlášenĂ ke sluĹľbÄ› Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll\\nO2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll\\nO2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll\\nO3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO4 - HKLM\\\\..\\\\Run: [Dell DataSafe Online] C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe\\nO4 - HKLM\\\\..\\\\Run: [mcui_exe] \\\"C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe\\\" /runkey\\nO4 - HKUS\\\\S-1-5-19\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'LOCAL SERVICE')\\nO4 - HKUS\\\\S-1-5-19\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'LOCAL SERVICE')\\nO4 - HKUS\\\\S-1-5-20\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'NETWORK SERVICE')\\nO4 - HKUS\\\\S-1-5-20\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'NETWORK SERVICE')\\nO4 - HKUS\\\\S-1-5-21-580890379-3430277850-3007477444-1000\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'UpdatusUser')\\nO4 - HKUS\\\\S-1-5-21-580890379-3430277850-3007477444-1000\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'UpdatusUser')\\nO8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\EXCEL.EXE/3000\\nO9 - Extra button: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll\\nO9 - Extra button: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WriterBrowserExtension.dll\\nO9 - Extra 'Tools' menuitem: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WriterBrowserExtension.dll\\nO9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\ONBttnIE.dll\\nO9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\ONBttnIE.dll\\nO9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\\\\Program Files (x86)\\\\ICQ7.6\\\\ICQ.exe\\nO9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\\\\Program Files (x86)\\\\ICQ7.6\\\\ICQ.exe\\nO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\REFIEBAR.DLL\\nO10 - Unknown file in Winsock LSP: c:\\\\program files (x86)\\\\common files\\\\microsoft shared\\\\windows live\\\\wlidnsp.dll\\nO10 - Unknown file in Winsock LSP: c:\\\\program files (x86)\\\\common files\\\\microsoft shared\\\\windows live\\\\wlidnsp.dll\\nO11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics\\nO16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... vSniff.cab\\nO16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab\\nO16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab\\nO16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab\\nO16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab\\nO18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveSystemServices.dll\\nO18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\AlbumDownloadProtocolHandler.dll\\nO18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\\\\progra~2\\\\mcafee\\\\msc\\\\mcsniepl.dll\\nO20 - AppInit_DLLs: C:\\\\Windows\\\\SysWOW64\\\\nvinit.dll\\nO23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe\\nO23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\Alg.exe,-112 (ALG) - Unknown owner - C:\\\\Windows\\\\System32\\\\alg.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\efssvc.dll,-100 (EFS) - Unknown owner - C:\\\\Windows\\\\System32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\fxsresm.dll,-118 (Fax) - Unknown owner - C:\\\\Windows\\\\system32\\\\fxssvc.exe (file missing)\\nO23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe\\nO23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\\\\Program Files\\\\McAfee\\\\VirusScan\\\\mcods.exe\\nO23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe\\nO23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe\\nO23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\\\\Windows\\\\system32\\\\mfevtps.exe (file missing)\\nO23 - Service: 1% (MOBKbackup) - McAfee, Inc. - C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\nO23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\\\\Windows\\\\System32\\\\msdtc.exe (file missing)\\nO23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\PanDhcpDns.exe\\nO23 - Service: @C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe\\nO23 - Service: @%SystemRoot%\\\\System32\\\\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe\\nO23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\nvvsvc.exe (file missing)\\nO23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe\\nO23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxMediaDB12OEM.exe\\nO23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatch12OEM.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\\\\Windows\\\\system32\\\\locator.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\samsrv.dll,-1 (SamSs) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: ServiceLayer - Nokia - C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\\\ServiceLayer.exe\\nO23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE\\nO23 - Service: @%SystemRoot%\\\\system32\\\\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\\\\Windows\\\\System32\\\\snmptrap.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\\\\Windows\\\\System32\\\\spoolsv.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\sppsvc.exe (file missing)\\nO23 - Service: Steam Client Service - Valve Corporation - C:\\\\Program Files (x86)\\\\Common Files\\\\Steam\\\\SteamService.exe\\nO23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe\\nO23 - Service: stllssvr - MicroVision Development, Inc. - C:\\\\Program Files (x86)\\\\Common Files\\\\SureThing Shared\\\\stllssvr.exe\\nO23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\\\\Windows\\\\system32\\\\UI0Detect.exe (file missing)\\nO23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\vds.exe,-100 (vds) - Unknown owner - C:\\\\Windows\\\\System32\\\\vds.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\vssvc.exe,-102 (VSS) - Unknown owner - C:\\\\Windows\\\\system32\\\\vssvc.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\Wat\\\\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\Wat\\\\WatAdminSvc.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\wbengine.exe,-104 (wbengine) - Unknown owner - C:\\\\Windows\\\\system32\\\\wbengine.exe (file missing)\\nO23 - Service: @%Systemroot%\\\\system32\\\\wbem\\\\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\\\\Windows\\\\system32\\\\wbem\\\\WmiApSrv.exe (file missing)\\nO23 - Service: @%PROGRAMFILES%\\\\Windows Media Player\\\\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\\\\Program Files (x86)\\\\Windows Media Player\\\\wmpnetwk.exe (file missing)\\n\\n--\\nEnd of file - 14446 bytes\\n\\n======Listing Processes======\\n\\n\\\\SystemRoot\\\\System32\\\\smss.exe\\n%SystemRoot%\\\\system32\\\\csrss.exe ObjectDirectory=\\\\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16\\nwininit.exe\\n%SystemRoot%\\\\system32\\\\csrss.exe ObjectDirectory=\\\\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16\\nC:\\\\Windows\\\\system32\\\\services.exe\\nC:\\\\Windows\\\\system32\\\\lsass.exe\\nC:\\\\Windows\\\\system32\\\\lsm.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k DcomLaunch\\nC:\\\\Windows\\\\system32\\\\nvvsvc.exe\\nwinlogon.exe\\n\\\"C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe\\\"\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k RPCSS\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k LocalServiceNetworkRestricted\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k LocalSystemNetworkRestricted\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k netsvcs\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalService\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k NetworkService\\nC:\\\\Windows\\\\system32\\\\WLANExt.exe 23197296\\n\\\\??\\\\C:\\\\Windows\\\\system32\\\\conhost.exe \\\"186287547-1262938235-1110408793-1809123919-926556263-1244869508-472585697548491829\\n\\\"C:\\\\Program Files\\\\NVIDIA Corporation\\\\Display\\\\nvxdsync.exe\\\"\\nC:\\\\Windows\\\\system32\\\\nvvsvc.exe -session -first\\nC:\\\\Windows\\\\System32\\\\spoolsv.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalServiceNoNetwork\\n\\\"C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe\\\"\\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe\\\"\\n\\\"C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe\\\"\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\\" /McCoreSvc\\n\\\"C:\\\\Windows\\\\system32\\\\mfevtps.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe\\\" SERVICE\\n\\\"C:\\\\Windows\\\\system32\\\\rundll32.exe\\\" \\\"c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\saHook.dll\\\" saHooker_Initialize_and_Wait\\n\\\"C:\\\\Windows\\\\system32\\\\rundll32.exe\\\" \\\"c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\saHook.dll\\\" saHooker_Initialize_and_Wait\\n\\\"C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE\\\"\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k imgsvc\\n\\\"C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WLIDSVC.EXE\\\"\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe\\\"\\nWLIDSvcM.exe 2092\\nC:\\\\Windows\\\\system32\\\\wbem\\\\unsecapp.exe -Embedding\\nC:\\\\Windows\\\\system32\\\\wbem\\\\wmiprvse.exe\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe\\\"\\nC:\\\\Windows\\\\System32\\\\alg.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k NetworkServiceNetworkRestricted\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalServiceAndNoImpersonation\\n\\\"taskhost.exe\\\"\\n\\\"C:\\\\Windows\\\\system32\\\\Dwm.exe\\\"\\nC:\\\\Windows\\\\Explorer.EXE\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\TOASTER.EXE\\\" C:\\\\Users\\\\Marek\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\COMPONENTS\\\\SCHEDULER\\\\STSERVICE.EXE\\\" \\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\Components\\\\DSUpdate\\\\DSUpd.exe\\\" \\n\\\"C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPEnh.exe\\\" \\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RtkNGUI64.exe\\\" -s\\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RAVBg64.exe\\\" /MAXX3\\n\\\"C:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe\\\" \\n\\\"C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPHelper.exe\\\" \\n\\\"C:\\\\Program Files\\\\Dell\\\\QuickSet\\\\quickset.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\igfxtray.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\hkcmd.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\igfxpers.exe\\\" \\n\\\"C:\\\\Program Files\\\\McAfee\\\\MAT\\\\McPvTray.exe\\\" \\n\\\"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe\\\" -user_has_logged_in 1\\n\\\"C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe\\\" \\n\\\"C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe\\\" /runkey\\nC:\\\\Windows\\\\system32\\\\SearchIndexer.exe /Embedding\\n\\\"C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\\" /wts 2516 484 488\\nC:\\\\Windows\\\\system32\\\\vssvc.exe\\n\\\"C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe\\\"\\n\\\"C:\\\\Program Files\\\\Windows Media Player\\\\wmpnetwk.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe\\\"\\n\\\"c:\\\\PROGRA~1\\\\mcafee\\\\msc\\\\mcupdmgr.exe\\\" -Embedding\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k swprv\\n\\\"C:\\\\Program Files (x86)\\\\Skype\\\\Phone\\\\Skype.exe\\\" \\nC:\\\\Windows\\\\servicing\\\\TrustedInstaller.exe\\n\\\"C:\\\\Program Files (x86)\\\\Opera\\\\opera.exe\\\" \\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" \\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=extension --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Default_Prefix/WarmSocketImpact/warmest_socket/ --disable-client-side-phishing-detection --enable-print-preview --channel=2224.029EC160.3548539 --ignored=\\\" --type=renderer \\\" /prefetch:3\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=plugin --plugin-path=\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\User Data\\\\Default\\\\Extensions\\\\fheoggkfdfchfphceeifdbepaooicaho\\\\3.40.135.1_0\\\\McChPlg.dll\\\" --lang=cs --channel=2224.0771DE00.692497356 /prefetch:4\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=renderer --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Default_Prefix/WarmSocketImpact/warmest_socket/ --disable-client-side-phishing-detection --enable-print-preview --channel=2224.042C29A0.447140225 /prefetch:3\\nC:\\\\Windows\\\\system32\\\\rundll32.exe \\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\APPLIC~1\\\\140835~1.202\\\\gcswf32.dll\\\",BrokerMain browser=chrome\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=plugin --plugin-path=\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\14.0.835.202\\\\gcswf32.dll\\\" --lang=cs --channel=2224.079C7380.553825092 --flash-broker=8516 /prefetch:4\\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\firefox.exe\\\" \\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\\" --channel=3684.a969d30.573474903 \\\"C:\\\\Program Files (x86)\\\\McAfee\\\\SiteAdvisor\\\\NPMcFFPlg32.dll\\\" Mozilla.Firefox.7.0.1 -greomni \\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\omni.jar\\\" 3684 \\\"\\\\\\\\.\\\\pipe\\\\gecko-crash-server-pipe.3684\\\" plugin\\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\\" --channel=3684.198472e0.114558495 \\\"C:\\\\Windows\\\\SysWOW64\\\\Macromed\\\\Flash\\\\NPSWF32.dll\\\" Mozilla.Firefox.7.0.1 -greomni \\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\omni.jar\\\" 3684 \\\"\\\\\\\\.\\\\pipe\\\\gecko-crash-server-pipe.3684\\\" plugin\\n\\\"C:\\\\Users\\\\Marek\\\\Desktop\\\\RSITx64.exe\\\" \\nC:\\\\Windows\\\\system32\\\\wbem\\\\wmiprvse.exe\\n\\n======Scheduled tasks folder======\\n\\nC:\\\\Windows\\\\tasks\\\\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001Core.job\\nC:\\\\Windows\\\\tasks\\\\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001UA.job\\n\\n=========Mozilla firefox=========\\n\\nProfilePath - C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\n\\nprefs.js - \\\"browser.search.useDBForOrder\\\" - true\\nprefs.js - \\\"browser.startup.homepage\\\" - \\\"http://www.seznam.cz/\\\"\\nprefs.js - \\\"extensions.enabledItems\\\" - \\\"{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, personas@christopher.beard:1.6.2, bkmrksync@nokia.com:1.0.0.736, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15\\\"\\nprefs.js - \\\"keyword.URL\\\" - \\\"http://search.yahoo.com/search?fr=mcafee&p=\\\"\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@adobe.com/FlashPlayer]\\n\\\"Description\\\"=Adobe® Flash® Player 10.1 Plugin\\n\\\"Path\\\"=C:\\\\Windows\\\\SysWOW64\\\\Macromed\\\\Flash\\\\NPSWF32.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@adobe.com/ShockwavePlayer]\\n\\\"Description\\\"=Adobe Shockwave Player\\n\\\"Path\\\"=C:\\\\Windows\\\\system32\\\\Adobe\\\\Director\\\\np32dsw.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@java.com/JavaPlugin]\\n\\\"Description\\\"=Oracle® Next Generation Java™ Plug-In\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\new_plugin\\\\npjp2.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@mcafee.com/MSC,version=10]\\n\\\"Description\\\"=McAfee Total Protection MIME Plugin\\n\\\"Path\\\"=c:\\\\progra~2\\\\mcafee\\\\msc\\\\npmcsn~1.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@mcafee.com/SAFFPlugin]\\n\\\"Description\\\"=\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\McAfee\\\\SiteAdvisor\\\\npmcffplg32.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/GENUINE]\\n\\\"Description\\\"=\\n\\\"Path\\\"=disabled\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@Microsoft.com/NpCtrl,version=1.0]\\n\\\"Description\\\"=Ag Player Plugin\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Microsoft Silverlight\\\\4.0.60531.0\\\\npctrl.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/WLPG,version=15.4.3502.0922]\\n\\\"Description\\\"=WLPG Install MIME type\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\NPWLPG.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/WLPG,version=15.4.3508.1109]\\n\\\"Description\\\"=WLPG Install MIME type\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\NPWLPG.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@nvidia.com/3DVision]\\n\\\"Description\\\"=NVIDIA stereo images plugin for Mozilla browsers\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\npnv3dv.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@nvidia.com/3DVisionStreaming]\\n\\\"Description\\\"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\npnv3dvstreaming.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@parallelgraphics.com/Cortona]\\n\\\"Description\\\"=Cortona VRML Plugin\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Common Files\\\\ParallelGraphics\\\\Cortona\\\\npCortona.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@virtools.com/3DviaPlayer]\\n\\\"Description\\\"=3Dvia Player For Mozilla Based Broswer\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Virtools\\\\3D Life Player\\\\npvirtools.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\Adobe Reader]\\n\\\"Description\\\"=Handles PDFs in-place in Firefox\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Adobe\\\\Reader 10.0\\\\Reader\\\\AIR\\\\nppdf32.dll\\n\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@java.com/JavaPlugin]\\n\\\"Description\\\"=Oracle® Next Generation Java™ Plug-In\\n\\\"Path\\\"=C:\\\\Program Files\\\\Java\\\\jre6\\\\bin\\\\new_plugin\\\\npjp2.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@mcafee.com/MSC,version=10]\\n\\\"Description\\\"=McAfee Total Protection MIME Plugin\\n\\\"Path\\\"=c:\\\\PROGRA~1\\\\mcafee\\\\msc\\\\NPMCSN~1.DLL\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@microsoft.com/GENUINE]\\n\\\"Description\\\"=\\n\\\"Path\\\"=disabled\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\\\n{972ce4c6-7e08-4474-a285-3208198ce6fd}\\n{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\components\\\\\\nbinary.manifest\\nbrowsercomps.dll\\nnpCortona.xpt\\nnsIQTScriptablePlugin.xpt\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugins\\\\\\nnp-mswmp.dll\\nnpCortona.dll\\nnppdf32.DEU\\nnppdf32.dll\\nnppdf32.FRA\\nnppdf32.JPN\\nnpqtplugin.dll\\nnpqtplugin2.dll\\nnpqtplugin3.dll\\nnpqtplugin4.dll\\nnpqtplugin5.dll\\nnpqtplugin6.dll\\nnpqtplugin7.dll\\nQuickTimePlugin.class\\nWMP Firefox Plugin License.rtf\\nWMP Firefox Plugin RelNotes.txt\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\searchplugins\\\\\\ngoogle.xml\\nheureka-cz.xml\\njyxo-cz.xml\\nMcSiteAdvisor.xml\\nseznam-cz.xml\\nslunecnice-cz.xml\\nwikipedia-cz.xml\\n\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\\\extensions\\\\\\n{20a82645-c095-46ed-80e3-08825760534b}\\n\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\\\searchplugins\\\\\\ncrawlersrch.xml\\nfacebook.xml\\nicqplugin.xml\\nlive-search.xml\\nqip-search.xml\\nzbocz.xml\\n\\n======Registry dump======\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]\\nscriptproxy - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll [2011-08-19 94424]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]\\nWindows Live ID Sign-in Helper - C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll [2010-09-21 529280]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]\\nMcAfee SiteAdvisor BHO - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\x64\\\\mcieplg.dll [2011-08-11 317336]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]\\nJava(tm) Plug-In 2 SSV Helper - C:\\\\Program Files\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll [2011-08-13 49440]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]\\nAdobe PDF Link Helper - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\Acrobat\\\\ActiveX\\\\AcroIEHelperShim.dll [2011-09-05 63912]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]\\nGroove GFS Browser Helper - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll [2009-02-12 2217848]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]\\nscriptproxy - C:\\\\Program Files (x86)\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll [2011-08-19 79480]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]\\nPomocná sluĹľba pro pĹ™ihlášenĂ ke sluĹľbÄ› Windows Live ID - C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll [2010-09-21 439168]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]\\nWindows Live Messenger Companion Helper - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll [2010-11-10 393600]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]\\nMcAfee SiteAdvisor BHO - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll [2011-08-11 258120]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]\\nJava(tm) Plug-In 2 SSV Helper - C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll [2011-08-03 42272]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Toolbar]\\n{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\x64\\\\mcieplg.dll [2011-08-11 317336]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Internet Explorer\\\\Toolbar]\\n{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll [2011-08-11 258120]\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"SynTPEnh\\\"=C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPEnh.exe [2010-12-17 2531624]\\n\\\"RTHDVCPL\\\"=C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RtkNGUI64.exe [2011-02-19 6611048]\\n\\\"RtHDVBg\\\"=C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RAVBg64.exe [2011-01-19 2188904]\\n\\\"FreeFallProtection\\\"=C:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe [2010-12-17 686704]\\n\\\"NVHotkey\\\"=C:\\\\Windows\\\\system32\\\\nvHotkey.dll [2011-08-03 335976]\\n\\\"QuickSet\\\"=c:\\\\Program Files\\\\Dell\\\\QuickSet\\\\QuickSet.exe [2011-01-25 4479648]\\n\\\"IgfxTray\\\"=C:\\\\Windows\\\\system32\\\\igfxtray.exe [2011-03-30 167960]\\n\\\"HotKeysCmds\\\"=C:\\\\Windows\\\\system32\\\\hkcmd.exe [2011-03-30 391704]\\n\\\"Persistence\\\"=C:\\\\Windows\\\\system32\\\\igfxpers.exe [2011-03-30 418840]\\n\\\"McPvTray_exe\\\"=C:\\\\Program Files\\\\McAfee\\\\MAT\\\\McPvTray.exe [2011-04-08 436384]\\n\\n[HKEY_CURRENT_USER\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"\\\"= []\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Adobe ARM]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\AdobeARM.exe [2011-03-30 937920]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Adobe Reader Speed Launcher]\\nC:\\\\Program Files (x86)\\\\Adobe\\\\Reader 10.0\\\\Reader\\\\Reader_sl.exe [2011-09-05 35736]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\AdobeAAMUpdater-1.0]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\OOBE\\\\PDApp\\\\UWA\\\\UpdaterStartupUtility.exe [2010-03-06 500208]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\AdobeCS5ServiceManager]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\CS5ServiceManager\\\\CS5ServiceManager.exe [2010-07-22 402432]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Dell Webcam Central]\\nC:\\\\Program Files (x86)\\\\Dell Webcam\\\\Dell Webcam Central\\\\WebcamDell2.exe [2011-08-12 520330]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Desktop Disc Tool]\\nC:\\\\Program Files (x86)\\\\Roxio\\\\OEM\\\\Roxio Burn\\\\RoxioBurnLauncher.exe [2010-11-17 514544]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Google Update]\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Update\\\\GoogleUpdate.exe [2011-05-30 136176]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\GrooveMonitor]\\nC:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveMonitor.exe [2008-10-25 31072]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\IntelWireless]\\nC:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\iFrmewrk.exe [2010-12-17 1933584]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\NeroLauncher]\\nC:\\\\Program Files (x86)\\\\Nero\\\\SyncUP\\\\NeroLauncher.exe [2011-07-07 75064]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\NokiaMServer]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Nokia\\\\MPlatform\\\\NokiaMServer /watchfiles startup []\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\QuickTime Task]\\nE:\\\\Programy\\\\QuickTime\\\\QTTask.exe [2011-07-05 421888]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\RoxWatchTray]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatchTray12OEM.exe [2010-11-25 240112]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\SunJavaUpdateSched]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Java\\\\Java Update\\\\jusched.exe [2011-04-08 254696]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\SwitchBoard]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe [2010-02-19 517096]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\TNOD UP]\\nC:\\\\Program Files (x86)\\\\TNod User & Password Finder\\\\TNODUP.exe /i []\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"\\\"= []\\n\\\"Dell DataSafe Online\\\"=C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe [2010-08-26 1117528]\\n\\\"mcui_exe\\\"=C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe [2011-09-10 1671824]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows]\\n\\\"AppInit_DLLs\\\"=\\\"C:\\\\Windows\\\\system32\\\\nvinitx.dll\\\"\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Notify\\\\igfxcui]\\nC:\\\\Windows\\\\system32\\\\igfxdev.dll [2011-03-26 385024]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\ShellServiceObjectDelayLoad]\\nWebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\ShellExecuteHooks]\\n\\\"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}\\\"=C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll [2009-02-12 2217848]\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\control\\\\securityproviders]\\n\\\"SecurityProviders\\\"=credssp.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\Minimal\\\\mcmscsvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\Minimal\\\\MCODS]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\AFD]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\McMPFSvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mcmscsvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\MCODS]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefire]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefirek]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefirek.sys]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfehidk]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfehidk.sys]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfevtp]\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\System]\\n\\\"ConsentPromptBehaviorAdmin\\\"=0\\n\\\"ConsentPromptBehaviorUser\\\"=3\\n\\\"EnableLUA\\\"=0\\n\\\"EnableUIADesktopToggle\\\"=0\\n\\\"PromptOnSecureDesktop\\\"=0\\n\\\"dontdisplaylastusername\\\"=0\\n\\\"legalnoticecaption\\\"=\\n\\\"legalnoticetext\\\"=\\n\\\"shutdownwithoutlogon\\\"=1\\n\\\"undockwithoutlogon\\\"=1\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\explorer]\\n\\\"NoActiveDesktop\\\"=1\\n\\\"NoActiveDesktopChanges\\\"=1\\n\\\"ForceActiveDesktopOn\\\"=0\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\services\\\\sharedaccess\\\\parameters\\\\firewallpolicy\\\\standardprofile\\\\authorizedapplications\\\\list]\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\services\\\\sharedaccess\\\\parameters\\\\firewallpolicy\\\\domainprofile\\\\authorizedapplications\\\\list]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Drivers32]\\n\\\"vidc.mrle\\\"=msrle32.dll\\n\\\"vidc.msvc\\\"=msvidc32.dll\\n\\\"msacm.imaadpcm\\\"=imaadp32.acm\\n\\\"msacm.msg711\\\"=msg711.acm\\n\\\"msacm.msgsm610\\\"=msgsm32.acm\\n\\\"msacm.msadpcm\\\"=msadp32.acm\\n\\\"midimapper\\\"=midimap.dll\\n\\\"wavemapper\\\"=msacm32.drv\\n\\\"VIDC.UYVY\\\"=msyuv.dll\\n\\\"VIDC.YUY2\\\"=msyuv.dll\\n\\\"VIDC.YVYU\\\"=msyuv.dll\\n\\\"VIDC.IYUV\\\"=iyuv_32.dll\\n\\\"vidc.i420\\\"=iyuv_32.dll\\n\\\"VIDC.YVU9\\\"=tsbyuv.dll\\n\\\"msacm.l3acm\\\"=C:\\\\Windows\\\\System32\\\\l3codeca.acm\\n\\\"MSVideo8\\\"=VfWWDM32.dll\\n\\\"wave\\\"=wdmaud.drv\\n\\\"midi\\\"=wdmaud.drv\\n\\\"mixer\\\"=wdmaud.drv\\n\\\"aux\\\"=wdmaud.drv\\n\\\"wave1\\\"=wdmaud.drv\\n\\\"midi1\\\"=wdmaud.drv\\n\\\"mixer1\\\"=wdmaud.drv\\n\\\"aux1\\\"=wdmaud.drv\\n\\n======File associations======\\n\\n.js - edit - C:\\\\Windows\\\\System32\\\\Notepad.exe %1\\n.js - open - C:\\\\Windows\\\\System32\\\\WScript.exe \\\"%1\\\" %*\\n\\n======List of files/folders created in the last 1 month======\\n\\n2011-10-11 19:40:01 ----D---- C:\\\\rsit\\n2011-10-11 19:40:01 ----D---- C:\\\\Program Files\\\\trend micro\\n2011-10-10 15:27:15 ----D---- C:\\\\Program Files (x86)\\\\McAfeeMOBK\\n2011-10-10 15:27:12 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\MOBK.sys\\n2011-10-10 15:27:11 ----D---- C:\\\\Program Files (x86)\\\\McAfee Online Backup\\n2011-10-10 15:27:01 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\McPvDrv.sys\\n2011-10-10 15:26:40 ----D---- C:\\\\Program Files (x86)\\\\McAfee.com\\n2011-10-10 15:26:22 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfeclnk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfewfpk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mferkdet.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfenlfk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfefirek.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\cfwids.sys\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\McAfee.com\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\McAfee\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\Common Files\\\\McAfee\\n2011-10-10 15:25:53 ----D---- C:\\\\Program Files (x86)\\\\McAfee\\n2011-10-10 15:12:36 ----A---- C:\\\\Windows\\\\system32\\\\mfevtps.exe\\n2011-10-09 18:17:10 ----D---- C:\\\\ProgramData\\\\Bluetooth\\n2011-10-04 13:40:30 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Reallusion\\n2011-09-26 22:50:43 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\NVIDIA\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\OpenCL.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvwgf2um.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvoptimusmft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvoglv32.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvdecodemft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\OpenCL.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvwgf2umx.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvoptimusmft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvoglv64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvgenco64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvdispco64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvdecodemft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvd3dumx.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvpciflt.sys\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvlddmkm.sys\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvkflt.sys\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuvid.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuvenc.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuda.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcompiler.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuvid.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuvenc.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuda.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcompiler.dll\\n2011-09-26 17:41:51 ----D---- C:\\\\Program Files (x86)\\\\SystemRequirementsLab\\n2011-09-25 22:27:04 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\ICQ\\n2011-09-25 22:26:59 ----D---- C:\\\\Program Files (x86)\\\\ICQ7.6\\n2011-09-24 19:52:33 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Zoner\\n2011-09-23 22:50:50 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\truecrypt.sys\\n2011-09-22 19:38:22 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Nokia Ovi Suite\\n2011-09-22 19:30:42 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Nokia\\n2011-09-22 19:29:16 ----D---- C:\\\\ProgramData\\\\Installations\\n2011-09-22 19:28:29 ----D---- C:\\\\ProgramData\\\\PC Suite\\n2011-09-22 19:28:28 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\PC Suite\\n2011-09-22 19:27:38 ----D---- C:\\\\Program Files\\\\DIFX\\n2011-09-22 19:27:38 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\pccsmcfdx64.sys\\n2011-09-22 19:27:34 ----D---- C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\n2011-09-22 19:27:19 ----A---- C:\\\\Windows\\\\system32\\\\nmwcdclsX64.dll\\n2011-09-22 19:26:27 ----D---- C:\\\\ProgramData\\\\NokiaInstallerCache\\n2011-09-22 19:26:27 ----D---- C:\\\\Program Files (x86)\\\\Nokia\\n2011-09-22 07:56:59 ----D---- C:\\\\ProgramData\\\\3DVIA\\n2011-09-22 07:56:58 ----D---- C:\\\\Program Files (x86)\\\\Virtools\\n2011-09-21 17:30:29 ----A---- C:\\\\Windows\\\\iun6002.exe\\n2011-09-21 17:30:27 ----D---- C:\\\\Program Files (x86)\\\\Codec Pack - All In 1\\n2011-09-20 12:53:51 ----D---- C:\\\\ProgramData\\\\EGG\\n2011-09-20 07:52:34 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Roxio Burn\\n2011-09-20 07:47:13 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Macrovision\\n2011-09-19 22:34:32 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\eM Client\\n2011-09-19 22:20:53 ----D---- C:\\\\Windows\\\\Sun\\n2011-09-19 20:04:16 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\PSpad\\n\\n======List of files/folders modified in the last 1 month======\\n\\n2011-10-11 19:40:03 ----D---- C:\\\\Windows\\\\Temp\\n2011-10-11 19:40:01 ----D---- C:\\\\Program Files\\n2011-10-11 19:38:05 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Skype\\n2011-10-11 19:31:09 ----D---- C:\\\\Windows\\\\system32\\\\config\\n2011-10-11 08:51:24 ----D---- C:\\\\Windows\\\\system32\\\\Tasks\\n2011-10-11 08:48:49 ----D---- C:\\\\Windows\\\\System32\\n2011-10-11 08:48:49 ----A---- C:\\\\Windows\\\\system32\\\\PerfStringBackup.INI\\n2011-10-11 08:48:48 ----D---- C:\\\\Windows\\\\inf\\n2011-10-11 07:18:44 ----D---- C:\\\\ProgramData\\\\Sonic\\n2011-10-11 07:18:31 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\log.txt\\n2011-10-11 07:17:11 ----D---- C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\n2011-10-11 07:16:18 ----D---- C:\\\\ProgramData\\\\NVIDIA\\n2011-10-10 22:53:39 ----D---- C:\\\\WINDOWS\\n2011-10-10 21:01:58 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\n2011-10-10 18:36:08 ----D---- C:\\\\ProgramData\\\\McAfee\\n2011-10-10 17:05:23 ----RD---- C:\\\\Program Files (x86)\\n2011-10-10 16:16:15 ----HD---- C:\\\\ProgramData\\n2011-10-10 15:27:20 ----SHD---- C:\\\\System Volume Information\\n2011-10-10 15:27:15 ----SHD---- C:\\\\Windows\\\\Installer\\n2011-10-10 15:27:12 ----DC---- C:\\\\Windows\\\\system32\\\\DRVSTORE\\n2011-10-10 15:27:02 ----D---- C:\\\\Windows\\\\system32\\\\catroot\\n2011-10-10 15:26:32 ----D---- C:\\\\Windows\\\\system32\\\\DriverStore\\n2011-10-10 15:26:23 ----D---- C:\\\\Program Files (x86)\\\\Mozilla Firefox\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\Common Files\\n2011-10-10 15:00:04 ----D---- C:\\\\Windows\\\\Downloaded Program Files\\n2011-10-10 09:15:38 ----D---- C:\\\\Program Files\\\\CCleaner\\n2011-10-10 07:16:52 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\\\UMDF\\n2011-10-09 19:04:50 ----D---- C:\\\\Windows\\\\Tasks\\n2011-10-09 19:04:50 ----D---- C:\\\\Windows\\\\system32\\\\wfp\\n2011-10-09 19:04:49 ----D---- C:\\\\Windows\\\\system32\\\\wbem\\n2011-10-09 19:04:14 ----D---- C:\\\\Windows\\\\SysWOW64\\n2011-10-09 19:04:14 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\\\etc\\n2011-10-09 19:04:13 ----D---- C:\\\\Windows\\\\system32\\\\catroot2\\n2011-10-09 19:04:13 ----D---- C:\\\\Windows\\\\security\\n2011-10-09 19:04:12 ----D---- C:\\\\Windows\\\\registration\\n2011-10-09 00:35:47 ----D---- C:\\\\Windows\\\\Prefetch\\n2011-10-02 15:47:56 ----D---- C:\\\\Program Files (x86)\\\\Common Files\\n2011-10-02 09:22:06 ----D---- C:\\\\Windows\\\\panther\\n2011-10-02 09:17:51 ----D---- C:\\\\dell\\n2011-10-01 22:08:16 ----D---- C:\\\\Windows\\\\system32\\\\NDF\\n2011-09-29 17:53:25 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\DAEMON Tools Lite\\n2011-09-29 17:53:22 ----D---- C:\\\\Windows\\\\debug\\n2011-09-28 12:01:53 ----RD---- C:\\\\Program Files (x86)\\\\Skype\\n2011-09-28 12:01:51 ----D---- C:\\\\ProgramData\\\\Skype\\n2011-09-27 20:53:49 ----A---- C:\\\\Windows\\\\system32\\\\MRT.exe\\n2011-09-27 14:50:45 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\n2011-09-27 07:20:18 ----D---- C:\\\\Windows\\\\system32\\\\wdi\\n2011-09-26 23:14:03 ----D---- C:\\\\Windows\\\\Logs\\n2011-09-26 22:48:46 ----D---- C:\\\\Windows\\\\SYSWOW64\\\\NV\\n2011-09-26 22:48:46 ----D---- C:\\\\Windows\\\\system32\\\\NV\\n2011-09-26 18:34:32 ----HD---- C:\\\\Program Files (x86)\\\\InstallShield Installation Information\\n2011-09-26 18:34:15 ----D---- C:\\\\Program Files\\\\NVIDIA Corporation\\n2011-09-26 18:33:35 ----D---- C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\n2011-09-24 20:43:03 ----RD---- C:\\\\Users\\n2011-09-22 19:52:03 ----SD---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Microsoft\\n2011-09-22 19:42:37 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\PerfStringBackup.INI\\n2011-09-22 19:26:59 ----D---- C:\\\\Windows\\\\winsxs\\n2011-09-21 16:52:51 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\GHISLER\\n2011-09-20 22:13:46 ----SHD---- C:\\\\$RECYCLE.BIN\\n2011-09-20 21:58:52 ----D---- C:\\\\ProgramData\\\\Roxio\\n2011-09-20 21:14:36 ----SD---- C:\\\\ProgramData\\\\Microsoft\\n2011-09-20 13:00:06 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Roxio\\n2011-09-20 08:38:22 ----D---- C:\\\\Windows\\\\rescache\\n2011-09-20 08:20:38 ----D---- C:\\\\Windows\\\\Microsoft.NET\\n2011-09-19 22:35:20 ----RSD---- C:\\\\Windows\\\\assembly\\n2011-09-18 10:01:09 ----D---- C:\\\\ProgramData\\\\Microsoft Help\\n\\n======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======\\n\\nR0 iaStor;Intel AHCI Controller; C:\\\\Windows\\\\system32\\\\drivers\\\\iaStor.sys [2011-01-13 439320]\\nR0 McPvDrv;McPvDrv Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\McPvDrv.sys [2011-04-11 71800]\\nR0 mfehidk;McAfee Inc. mfehidk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfehidk.sys [2011-08-15 642824]\\nR0 mfewfpk;McAfee Inc. mfewfpk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfewfpk.sys [2011-08-15 283744]\\nR0 nvpciflt;nvpciflt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nvpciflt.sys [2011-08-03 27240]\\nR0 PxHlpa64;PxHlpa64; C:\\\\Windows\\\\System32\\\\Drivers\\\\PxHlpa64.sys [2010-03-19 55856]\\nR0 rdyboost;ReadyBoost; C:\\\\Windows\\\\System32\\\\drivers\\\\rdyboost.sys [2010-11-21 213888]\\nR0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\stdcfltn.sys [2010-08-20 21616]\\nR1 mfenlfk;McAfee NDIS Light Filter; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\mfenlfk.sys [2011-08-15 75672]\\nR1 MOBKFilter;MOBKFilter; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\MOBK.sys [2010-04-13 66040]\\nR1 nvkflt;nvkflt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nvkflt.sys [2011-08-03 246888]\\nR1 vwififlt;Virtual WiFi Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\vwififlt.sys [2009-07-14 59904]\\nR3 Acceler;Accelerometer Service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Accelern.sys [2010-12-13 27760]\\nR3 AVer7231_x64;AVerMedia 7231 capture service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\AVer7231_x64.sys [2010-06-11 1799808]\\nR3 cfwids;McAfee Inc. cfwids; C:\\\\Windows\\\\system32\\\\drivers\\\\cfwids.sys [2011-08-15 65128]\\nR3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\CtClsFlt.sys [2011-06-16 176000]\\nR3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\dtsoftbus01.sys [2011-09-06 270912]\\nR3 igfx;igfx; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\igdkmd64.sys [2011-03-26 12262336]\\nR3 IntcAzAudAddService;Service for Realtek HD Audio (WDM C:\\\\Windows\\\\system32\\\\drivers\\\\RTKVHD64.sys [2011-02-19 2748520]\\nR3 IntcDAud;Intel(R) Display Audio; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\IntcDAud.sys [2010-10-15 317440]\\nR3 MEIx64;Intel(R) Management Engine Interface; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\HECIx64.sys [2010-10-20 56344]\\nR3 mfeapfk;McAfee Inc. mfeapfk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeapfk.sys [2011-08-15 158584]\\nR3 mfeavfk;McAfee Inc. mfeavfk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk.sys [2011-08-15 228752]\\nR3 mfefirek;McAfee Inc. mfefirek; C:\\\\Windows\\\\system32\\\\drivers\\\\mfefirek.sys [2011-08-15 481504]\\nR3 NETwNs64;___ OvladaÄŤ adaptĂ©ru Ĺ™ady Intel(R) Wireless WiFi Link 5000 pro systĂ©m Windows 7 64 Bit; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\NETwNs64.sys [2010-12-22 8505856]\\nR3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nusb3hub.sys [2011-02-11 82432]\\nR3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nusb3xhc.sys [2011-02-11 181760]\\nR3 qicflt;upper Device Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\qicflt.sys [2010-07-13 29288]\\nR3 RTL8167;Realtek 8167 NT Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Rt64win7.sys [2011-06-10 539240]\\nR3 SynTP;Synaptics TouchPad Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\SynTP.sys [2010-12-17 1404464]\\nR3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\vwifimp.sys [2009-07-14 17920]\\nR3 wdkmd;Intel WiDi KMD; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\WDKMD.sys [2010-12-01 42392]\\nS3 BthEnum;SluĹľba Bluetooth Enumerator; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\BthEnum.sys [2009-07-14 41984]\\nS3 BthPan;ZaĹ™ĂzenĂ Bluetooth (sĂĹĄ PAN); C:\\\\Windows\\\\system32\\\\DRIVERS\\\\bthpan.sys [2009-07-14 118784]\\nS3 BTHPORT;OvladaÄŤ portu Bluetooth; C:\\\\Windows\\\\System32\\\\Drivers\\\\BTHport.sys [2011-04-28 552960]\\nS3 BTHUSB;OvladaÄŤ rozhranĂ USB radiostanice Bluetooth; C:\\\\Windows\\\\System32\\\\Drivers\\\\BTHUSB.sys [2011-04-28 80384]\\nS3 Epfwndis;Eset Personal Firewall; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Epfwndis.sys [2010-12-21 34144]\\nS3 Impcd;Impcd; C:\\\\Windows\\\\system32\\\\drivers\\\\Impcd.sys [2010-02-27 158976]\\nS3 JMCR;JMCR; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\jmcr.sys [2010-12-15 174168]\\nS3 mfeavfk01;McAfee Inc.; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk01.sys []\\nS3 mferkdet;McAfee Inc. mferkdet; C:\\\\Windows\\\\system32\\\\drivers\\\\mferkdet.sys [2011-08-15 100904]\\nS3 nmwcd;Nokia USB Phone Parent Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\ccdcmbx64.sys [2011-05-18 19968]\\nS3 nmwcdc;Nokia USB Communication Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\ccdcmbox64.sys [2011-05-18 27136]\\nS3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\\\\Windows\\\\system32\\\\drivers\\\\nvstusb.sys [2010-12-12 121960]\\nS3 pccsmcfd;PCCS Mode Change Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\pccsmcfdx64.sys [2008-08-28 25600]\\nS3 pciide;pciide; C:\\\\Windows\\\\system32\\\\drivers\\\\pciide.sys [2009-07-14 12352]\\nS3 RFCOMM;ZaĹ™ĂzenĂ Bluetooth (RFCOMM protokol TDI); C:\\\\Windows\\\\system32\\\\DRIVERS\\\\rfcomm.sys [2009-07-14 158720]\\nS3 sdbus;sdbus; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\sdbus.sys [2010-11-21 109056]\\nS3 TsUsbFlt;TsUsbFlt; C:\\\\Windows\\\\system32\\\\drivers\\\\tsusbflt.sys [2010-11-21 59392]\\nS3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\\\\Windows\\\\system32\\\\drivers\\\\TsUsbGD.sys [2010-11-21 31232]\\nS3 upperdev;upperdev; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\usbser_lowerfltx64.sys [2011-05-18 9216]\\nS3 usbser;USB Modem Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\usbser.sys [2010-11-21 32768]\\nS3 UsbserFilt;UsbserFilt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\usbser_lowerfltjx64.sys [2011-05-18 9216]\\nS3 WimFltr;WimFltr; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\wimfltr.sys [2006-11-01 151656]\\nS3 WinUsb;WinUsb; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\WinUsb.sys [2010-11-21 41984]\\n\\n======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======\\n\\nR2 AdobeARMservice;Adobe Acrobat Update Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe [2011-06-06 64952]\\nR2 AERTFilters;Andrea RT Filters Service; C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe [2009-11-18 98208]\\nR2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe [2010-12-17 1515792]\\nR2 LMS;Intel(R) Management and Security Application Local Management Service; C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe [2010-12-21 325656]\\nR2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McMPFSvc;McAfee Personal Firewall Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 mcmscsvc;McAfee Services; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McNaiAnn;McAfee VirusScan Announcer; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McNASvc;McAfee Network Agent; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McProxy;McAfee Proxy Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McShield;McAfee McShield; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe [2011-08-19 199008]\\nR2 mfefire;McAfee Firewall Core Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe [2011-08-19 208272]\\nR2 mfevtp;McAfee Validation Trust Protection Service; C:\\\\Windows\\\\system32\\\\mfevtps.exe [2011-08-19 158832]\\nR2 MOBKbackup;1%; C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe [2010-04-13 231224]\\nR2 MSK80Service;McAfee Anti-Spam Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 NAUpdate;@C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe,-200; C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe [2011-07-22 690472]\\nR2 NOBU;Dell DataSafe Online; C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe [2010-08-26 2823000]\\nR2 NVSvc;NVIDIA Display Driver Service; C:\\\\Windows\\\\system32\\\\nvvsvc.exe [2011-08-03 980072]\\nR2 nvUpdatusService;NVIDIA Update Service Daemon; C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe [2011-08-03 2255464]\\nR2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe [2010-12-17 836880]\\nR2 SftService;SoftThinks Agent Service; C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE [2011-08-18 1692480]\\nR2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe [2011-08-03 379496]\\nR2 UNS;Intel(R) Management and Security Application User Notification Service; C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe [2010-12-21 2656280]\\nR2 wlidsvc;Windows Live ID Sign-in Assistant; C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WLIDSVC.EXE [2010-09-21 2286976]\\nS2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\\\\Windows\\\\Microsoft.NET\\\\Framework\\\\v4.0.30319\\\\mscorsvw.exe [2010-03-18 130384]\\nS2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\mscorsvw.exe [2010-03-18 138576]\\nS2 RoxWatch12;Roxio Hard Drive Watcher 12; C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatch12OEM.exe [2010-11-25 219632]\\nS3 aspnet_state;ASP.NET State Service; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\aspnet_state.exe [2010-03-18 44376]\\nS3 McODS;McAfee Scanner; C:\\\\Program Files\\\\McAfee\\\\VirusScan\\\\mcods.exe [2011-06-23 501768]\\nS3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveAuditService.exe [2008-10-25 65888]\\nS3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\PanDhcpDns.exe [2010-12-17 340240]\\nS3 odserv;Microsoft Office Diagnostics Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\OFFICE12\\\\ODSERV.EXE [2008-11-04 441712]\\nS3 ose;Office Source Engine; C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Source Engine\\\\OSE.EXE [2006-10-26 145184]\\nS3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxMediaDB12OEM.exe [2010-11-25 1116656]\\nS3 ServiceLayer;ServiceLayer; C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\\\ServiceLayer.exe [2011-06-08 633856]\\nS3 Steam Client Service;Steam Client Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Steam\\\\SteamService.exe [2011-03-16 407336]\\nS3 stllssvr;stllssvr; C:\\\\Program Files (x86)\\\\Common Files\\\\SureThing Shared\\\\stllssvr.exe [2010-11-09 74392]\\nS3 SwitchBoard;SwitchBoard; C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe [2010-02-19 517096]\\nS3 WatAdminSvc;@%SystemRoot%\\\\system32\\\\Wat\\\\WatUX.exe,-601; C:\\\\Windows\\\\system32\\\\Wat\\\\WatAdminSvc.exe [2011-09-06 1255736]\\nS4 NetMsmqActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8195; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 NetPipeActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8197; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 NetTcpActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8199; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 wlcrasvc;Windows Live Mesh remote connections service; C:\\\\Program Files\\\\Windows Live\\\\Mesh\\\\wlcrasvc.exe [2010-09-23 57184]\\n\\n-----------------EOF-----------------\\n\",\"id\":\"76-1#126\",\"time\":1318355221004}, FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=mcafee&p=" O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.) O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O33 - MountPoints2\{17bda543-e378-11e0-976e-14feb5c0d387}\Shell - "" = AutoRun [3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] [6 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ] [2 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ] [2 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ] [2011.09.06 21:08:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ESET @Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT :reg [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] ""=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroLauncher] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TNOD UP] [-HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- :files C:\Program Files (x86)\TNod User & Password Finder C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001UA.job %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosim o kontrolu logu
SPAM to v zadnem pripade neni - kdybyste to takto nedal, stejne bych to po Vas chtel nebo bych si to do vice prispevku nahazel sam Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl DRV:64bit: - [2010.12.21 13:47:38 | 000,034,144 | ---- | M] (ESET) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\epfwndis.sys -- (Epfwndis) IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd IE - HKU\S-1-5-21-580890379-3430277850-3007477444-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - prefs.js..browser.search.defaultenginename: "Crawler Search" FF - prefs.js..browser.search.defaulturl: "http://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=19&q=" FF - prefs.js..browser.search.order.1: "Crawler Search" FF - prefs.js..browser.startup.homepage: "[{\"title\":\"VIRY.CZ • Upravit pĹ™ĂspÄ›vek\",\"text\":\"DÄ›kuji,\\nprávÄ› probĂhá kontrola, jen se teÄŹ ještÄ› zeptám, StartUpLite je na ovládánĂ procesĹŻ spouštÄ›nĂ˝ch po startu? Je to lepšà nástroj neĹľ ten v ccleaneru nebo ten staÄŤĂ a jakĂ˝ je prosĂm rozdĂl?\\nJeštÄ› mám takovĂ˝ postĹ™eh, pĹ™i kliknutĂ na váš odkaz [url]oldtimer.geekstogo.com/OTL.exe[/url] mi McAfee napsalo vĂ˝strahu [url]http://www.siteadvisor.com/restricted.html?domain=http:%2F%2Foldtimer.geekstogo.com%2FOTL.exe&originalURL=-298215247&pip=false&premium=true&,{\"title\":\"VIRY.CZ • Odeslat novĂ© tĂ©ma\",\"text\":\"DobrĂ˝ den,\\nprosĂm o kontrolu logu, notebook nemám dlouho, ale spoustu vÄ›cĂ jsem instaloval a pĹ™idával.\\n\\nPĹ™edem dÄ›kuji Marek \\\"echo\\\"\\n\\n\\n\\n\\n\\nLogfile of random's system information tool 1.09 (written by random/random)\\nRun by Marek at 2011-10-11 19:40:01\\nMicrosoft Windows 7 Home Premium Service Pack 1\\nSystem drive C: has 15 GB (30%) free of 51 GB\\nTotal RAM: 3990 MB (50% free)\\n\\nLogfile of Trend Micro HijackThis v2.0.4\\nScan saved at 19:40:12, on 11.10.2011\\nPlatform: Windows 7 SP1 (WinNT 6.00.3505)\\nMSIE: Internet Explorer v9.00 (9.00.8112.16421)\\nBoot mode: Normal\\n\\nRunning processes:\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\TOASTER.EXE\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\COMPONENTS\\\\SCHEDULER\\\\STSERVICE.EXE\\nC:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\Components\\\\DSUpdate\\\\DSUpd.exe\\nC:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe\\nC:\\\\Program Files (x86)\\\\Skype\\\\Phone\\\\Skype.exe\\nC:\\\\Program Files (x86)\\\\Opera\\\\opera.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Windows\\\\SysWOW64\\\\rundll32.exe\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\firefox.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\nC:\\\\Program Files\\\\trend micro\\\\Marek.exe\\n\\nR1 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd\\nR1 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896\\nR0 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Start Page = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896\\nR1 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896\\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157\\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Search,SearchAssistant = \\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Search,CustomizeSearch = \\nR0 - HKLM\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Main,Local Page = C:\\\\Windows\\\\SysWOW64\\\\blank.htm\\nR0 - HKCU\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Toolbar,LinksFolderName = \\nF2 - REG:system.ini: UserInit=userinit.exe\\nO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\Acrobat\\\\ActiveX\\\\AcroIEHelperShim.dll\\nO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll\\nO2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\\\\Program Files (x86)\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll\\nO2 - BHO: Pomocná sluĹľba pro pĹ™ihlášenĂ ke sluĹľbÄ› Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll\\nO2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll\\nO2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll\\nO3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO4 - HKLM\\\\..\\\\Run: [Dell DataSafe Online] C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe\\nO4 - HKLM\\\\..\\\\Run: [mcui_exe] \\\"C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe\\\" /runkey\\nO4 - HKUS\\\\S-1-5-19\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'LOCAL SERVICE')\\nO4 - HKUS\\\\S-1-5-19\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'LOCAL SERVICE')\\nO4 - HKUS\\\\S-1-5-20\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'NETWORK SERVICE')\\nO4 - HKUS\\\\S-1-5-20\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'NETWORK SERVICE')\\nO4 - HKUS\\\\S-1-5-21-580890379-3430277850-3007477444-1000\\\\..\\\\Run: [Sidebar] %ProgramFiles%\\\\Windows Sidebar\\\\Sidebar.exe /autoRun (User 'UpdatusUser')\\nO4 - HKUS\\\\S-1-5-21-580890379-3430277850-3007477444-1000\\\\..\\\\RunOnce: [mctadmin] C:\\\\Windows\\\\System32\\\\mctadmin.exe (User 'UpdatusUser')\\nO8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\EXCEL.EXE/3000\\nO9 - Extra button: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll\\nO9 - Extra button: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WriterBrowserExtension.dll\\nO9 - Extra 'Tools' menuitem: @C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Writer\\\\WriterBrowserExtension.dll\\nO9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\ONBttnIE.dll\\nO9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\ONBttnIE.dll\\nO9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\\\\Program Files (x86)\\\\ICQ7.6\\\\ICQ.exe\\nO9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\\\\Program Files (x86)\\\\ICQ7.6\\\\ICQ.exe\\nO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\\\PROGRA~2\\\\MICROS~4\\\\Office12\\\\REFIEBAR.DLL\\nO10 - Unknown file in Winsock LSP: c:\\\\program files (x86)\\\\common files\\\\microsoft shared\\\\windows live\\\\wlidnsp.dll\\nO10 - Unknown file in Winsock LSP: c:\\\\program files (x86)\\\\common files\\\\microsoft shared\\\\windows live\\\\wlidnsp.dll\\nO11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics\\nO16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... vSniff.cab\\nO16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab\\nO16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab\\nO16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab\\nO16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab\\nO18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveSystemServices.dll\\nO18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll\\nO18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\AlbumDownloadProtocolHandler.dll\\nO18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\\\\progra~2\\\\mcafee\\\\msc\\\\mcsniepl.dll\\nO20 - AppInit_DLLs: C:\\\\Windows\\\\SysWOW64\\\\nvinit.dll\\nO23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe\\nO23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\Alg.exe,-112 (ALG) - Unknown owner - C:\\\\Windows\\\\System32\\\\alg.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\efssvc.dll,-100 (EFS) - Unknown owner - C:\\\\Windows\\\\System32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\fxsresm.dll,-118 (Fax) - Unknown owner - C:\\\\Windows\\\\system32\\\\fxssvc.exe (file missing)\\nO23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe\\nO23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\\\\Program Files\\\\McAfee\\\\VirusScan\\\\mcods.exe\\nO23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe\\nO23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe\\nO23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\\\\Windows\\\\system32\\\\mfevtps.exe (file missing)\\nO23 - Service: 1% (MOBKbackup) - McAfee, Inc. - C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\nO23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\\\\Windows\\\\System32\\\\msdtc.exe (file missing)\\nO23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\nO23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\PanDhcpDns.exe\\nO23 - Service: @C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe\\nO23 - Service: @%SystemRoot%\\\\System32\\\\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe\\nO23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\nvvsvc.exe (file missing)\\nO23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe\\nO23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxMediaDB12OEM.exe\\nO23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatch12OEM.exe\\nO23 - Service: @%systemroot%\\\\system32\\\\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\\\\Windows\\\\system32\\\\locator.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\samsrv.dll,-1 (SamSs) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: ServiceLayer - Nokia - C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\\\ServiceLayer.exe\\nO23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE\\nO23 - Service: @%SystemRoot%\\\\system32\\\\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\\\\Windows\\\\System32\\\\snmptrap.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\\\\Windows\\\\System32\\\\spoolsv.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\sppsvc.exe (file missing)\\nO23 - Service: Steam Client Service - Valve Corporation - C:\\\\Program Files (x86)\\\\Common Files\\\\Steam\\\\SteamService.exe\\nO23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe\\nO23 - Service: stllssvr - MicroVision Development, Inc. - C:\\\\Program Files (x86)\\\\Common Files\\\\SureThing Shared\\\\stllssvr.exe\\nO23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\\\\Windows\\\\system32\\\\UI0Detect.exe (file missing)\\nO23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe\\nO23 - Service: @%SystemRoot%\\\\system32\\\\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\lsass.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\vds.exe,-100 (vds) - Unknown owner - C:\\\\Windows\\\\System32\\\\vds.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\vssvc.exe,-102 (VSS) - Unknown owner - C:\\\\Windows\\\\system32\\\\vssvc.exe (file missing)\\nO23 - Service: @%SystemRoot%\\\\system32\\\\Wat\\\\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\\\\Windows\\\\system32\\\\Wat\\\\WatAdminSvc.exe (file missing)\\nO23 - Service: @%systemroot%\\\\system32\\\\wbengine.exe,-104 (wbengine) - Unknown owner - C:\\\\Windows\\\\system32\\\\wbengine.exe (file missing)\\nO23 - Service: @%Systemroot%\\\\system32\\\\wbem\\\\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\\\\Windows\\\\system32\\\\wbem\\\\WmiApSrv.exe (file missing)\\nO23 - Service: @%PROGRAMFILES%\\\\Windows Media Player\\\\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\\\\Program Files (x86)\\\\Windows Media Player\\\\wmpnetwk.exe (file missing)\\n\\n--\\nEnd of file - 14446 bytes\\n\\n======Listing Processes======\\n\\n\\\\SystemRoot\\\\System32\\\\smss.exe\\n%SystemRoot%\\\\system32\\\\csrss.exe ObjectDirectory=\\\\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16\\nwininit.exe\\n%SystemRoot%\\\\system32\\\\csrss.exe ObjectDirectory=\\\\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16\\nC:\\\\Windows\\\\system32\\\\services.exe\\nC:\\\\Windows\\\\system32\\\\lsass.exe\\nC:\\\\Windows\\\\system32\\\\lsm.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k DcomLaunch\\nC:\\\\Windows\\\\system32\\\\nvvsvc.exe\\nwinlogon.exe\\n\\\"C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe\\\"\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k RPCSS\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k LocalServiceNetworkRestricted\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k LocalSystemNetworkRestricted\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k netsvcs\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalService\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k NetworkService\\nC:\\\\Windows\\\\system32\\\\WLANExt.exe 23197296\\n\\\\??\\\\C:\\\\Windows\\\\system32\\\\conhost.exe \\\"186287547-1262938235-1110408793-1809123919-926556263-1244869508-472585697548491829\\n\\\"C:\\\\Program Files\\\\NVIDIA Corporation\\\\Display\\\\nvxdsync.exe\\\"\\nC:\\\\Windows\\\\system32\\\\nvvsvc.exe -session -first\\nC:\\\\Windows\\\\System32\\\\spoolsv.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalServiceNoNetwork\\n\\\"C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe\\\"\\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe\\\"\\n\\\"C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe\\\"\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe\\\" /McCoreSvc\\n\\\"C:\\\\Windows\\\\system32\\\\mfevtps.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe\\\" SERVICE\\n\\\"C:\\\\Windows\\\\system32\\\\rundll32.exe\\\" \\\"c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\saHook.dll\\\" saHooker_Initialize_and_Wait\\n\\\"C:\\\\Windows\\\\system32\\\\rundll32.exe\\\" \\\"c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\saHook.dll\\\" saHooker_Initialize_and_Wait\\n\\\"C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE\\\"\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k imgsvc\\n\\\"C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WLIDSVC.EXE\\\"\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe\\\"\\nWLIDSvcM.exe 2092\\nC:\\\\Windows\\\\system32\\\\wbem\\\\unsecapp.exe -Embedding\\nC:\\\\Windows\\\\system32\\\\wbem\\\\wmiprvse.exe\\n\\\"C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe\\\"\\nC:\\\\Windows\\\\System32\\\\alg.exe\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k NetworkServiceNetworkRestricted\\nC:\\\\Windows\\\\system32\\\\svchost.exe -k LocalServiceAndNoImpersonation\\n\\\"taskhost.exe\\\"\\n\\\"C:\\\\Windows\\\\system32\\\\Dwm.exe\\\"\\nC:\\\\Windows\\\\Explorer.EXE\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\TOASTER.EXE\\\" C:\\\\Users\\\\Marek\\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\COMPONENTS\\\\SCHEDULER\\\\STSERVICE.EXE\\\" \\n\\\"C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\Components\\\\DSUpdate\\\\DSUpd.exe\\\" \\n\\\"C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPEnh.exe\\\" \\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RtkNGUI64.exe\\\" -s\\n\\\"C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RAVBg64.exe\\\" /MAXX3\\n\\\"C:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe\\\" \\n\\\"C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPHelper.exe\\\" \\n\\\"C:\\\\Program Files\\\\Dell\\\\QuickSet\\\\quickset.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\igfxtray.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\hkcmd.exe\\\" \\n\\\"C:\\\\WINDOWS\\\\System32\\\\igfxpers.exe\\\" \\n\\\"C:\\\\Program Files\\\\McAfee\\\\MAT\\\\McPvTray.exe\\\" \\n\\\"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe\\\" -user_has_logged_in 1\\n\\\"C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe\\\" \\n\\\"C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe\\\" /runkey\\nC:\\\\Windows\\\\system32\\\\SearchIndexer.exe /Embedding\\n\\\"C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe\\\" /wts 2516 484 488\\nC:\\\\Windows\\\\system32\\\\vssvc.exe\\n\\\"C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe\\\"\\n\\\"C:\\\\Program Files\\\\Windows Media Player\\\\wmpnetwk.exe\\\"\\n\\\"C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe\\\"\\n\\\"c:\\\\PROGRA~1\\\\mcafee\\\\msc\\\\mcupdmgr.exe\\\" -Embedding\\nC:\\\\Windows\\\\System32\\\\svchost.exe -k swprv\\n\\\"C:\\\\Program Files (x86)\\\\Skype\\\\Phone\\\\Skype.exe\\\" \\nC:\\\\Windows\\\\servicing\\\\TrustedInstaller.exe\\n\\\"C:\\\\Program Files (x86)\\\\Opera\\\\opera.exe\\\" \\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" \\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=extension --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Default_Prefix/WarmSocketImpact/warmest_socket/ --disable-client-side-phishing-detection --enable-print-preview --channel=2224.029EC160.3548539 --ignored=\\\" --type=renderer \\\" /prefetch:3\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=plugin --plugin-path=\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\User Data\\\\Default\\\\Extensions\\\\fheoggkfdfchfphceeifdbepaooicaho\\\\3.40.135.1_0\\\\McChPlg.dll\\\" --lang=cs --channel=2224.0771DE00.692497356 /prefetch:4\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=renderer --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndMin16/SpdyImpact/npn_with_spdy/SuggestHostPrefix/Default_Prefix/WarmSocketImpact/warmest_socket/ --disable-client-side-phishing-detection --enable-print-preview --channel=2224.042C29A0.447140225 /prefetch:3\\nC:\\\\Windows\\\\system32\\\\rundll32.exe \\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\APPLIC~1\\\\140835~1.202\\\\gcswf32.dll\\\",BrokerMain browser=chrome\\n\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --type=plugin --plugin-path=\\\"C:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\14.0.835.202\\\\gcswf32.dll\\\" --lang=cs --channel=2224.079C7380.553825092 --flash-broker=8516 /prefetch:4\\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\firefox.exe\\\" \\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\\" --channel=3684.a969d30.573474903 \\\"C:\\\\Program Files (x86)\\\\McAfee\\\\SiteAdvisor\\\\NPMcFFPlg32.dll\\\" Mozilla.Firefox.7.0.1 -greomni \\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\omni.jar\\\" 3684 \\\"\\\\\\\\.\\\\pipe\\\\gecko-crash-server-pipe.3684\\\" plugin\\n\\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugin-container.exe\\\" --channel=3684.198472e0.114558495 \\\"C:\\\\Windows\\\\SysWOW64\\\\Macromed\\\\Flash\\\\NPSWF32.dll\\\" Mozilla.Firefox.7.0.1 -greomni \\\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\omni.jar\\\" 3684 \\\"\\\\\\\\.\\\\pipe\\\\gecko-crash-server-pipe.3684\\\" plugin\\n\\\"C:\\\\Users\\\\Marek\\\\Desktop\\\\RSITx64.exe\\\" \\nC:\\\\Windows\\\\system32\\\\wbem\\\\wmiprvse.exe\\n\\n======Scheduled tasks folder======\\n\\nC:\\\\Windows\\\\tasks\\\\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001Core.job\\nC:\\\\Windows\\\\tasks\\\\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001UA.job\\n\\n=========Mozilla firefox=========\\n\\nProfilePath - C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\n\\nprefs.js - \\\"browser.search.useDBForOrder\\\" - true\\nprefs.js - \\\"browser.startup.homepage\\\" - \\\"http://www.seznam.cz/\\\"\\nprefs.js - \\\"extensions.enabledItems\\\" - \\\"{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, personas@christopher.beard:1.6.2, bkmrksync@nokia.com:1.0.0.736, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15\\\"\\nprefs.js - \\\"keyword.URL\\\" - \\\"http://search.yahoo.com/search?fr=mcafee&p=\\\"\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@adobe.com/FlashPlayer]\\n\\\"Description\\\"=Adobe® Flash® Player 10.1 Plugin\\n\\\"Path\\\"=C:\\\\Windows\\\\SysWOW64\\\\Macromed\\\\Flash\\\\NPSWF32.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@adobe.com/ShockwavePlayer]\\n\\\"Description\\\"=Adobe Shockwave Player\\n\\\"Path\\\"=C:\\\\Windows\\\\system32\\\\Adobe\\\\Director\\\\np32dsw.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@java.com/JavaPlugin]\\n\\\"Description\\\"=Oracle® Next Generation Java™ Plug-In\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\new_plugin\\\\npjp2.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@mcafee.com/MSC,version=10]\\n\\\"Description\\\"=McAfee Total Protection MIME Plugin\\n\\\"Path\\\"=c:\\\\progra~2\\\\mcafee\\\\msc\\\\npmcsn~1.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@mcafee.com/SAFFPlugin]\\n\\\"Description\\\"=\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\McAfee\\\\SiteAdvisor\\\\npmcffplg32.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/GENUINE]\\n\\\"Description\\\"=\\n\\\"Path\\\"=disabled\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@Microsoft.com/NpCtrl,version=1.0]\\n\\\"Description\\\"=Ag Player Plugin\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Microsoft Silverlight\\\\4.0.60531.0\\\\npctrl.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/WLPG,version=15.4.3502.0922]\\n\\\"Description\\\"=WLPG Install MIME type\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\NPWLPG.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@microsoft.com/WLPG,version=15.4.3508.1109]\\n\\\"Description\\\"=WLPG Install MIME type\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Windows Live\\\\Photo Gallery\\\\NPWLPG.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@nvidia.com/3DVision]\\n\\\"Description\\\"=NVIDIA stereo images plugin for Mozilla browsers\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\npnv3dv.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@nvidia.com/3DVisionStreaming]\\n\\\"Description\\\"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\npnv3dvstreaming.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@parallelgraphics.com/Cortona]\\n\\\"Description\\\"=Cortona VRML Plugin\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Common Files\\\\ParallelGraphics\\\\Cortona\\\\npCortona.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\@virtools.com/3DviaPlayer]\\n\\\"Description\\\"=3Dvia Player For Mozilla Based Broswer\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Virtools\\\\3D Life Player\\\\npvirtools.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\MozillaPlugins\\\\Adobe Reader]\\n\\\"Description\\\"=Handles PDFs in-place in Firefox\\n\\\"Path\\\"=C:\\\\Program Files (x86)\\\\Adobe\\\\Reader 10.0\\\\Reader\\\\AIR\\\\nppdf32.dll\\n\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@java.com/JavaPlugin]\\n\\\"Description\\\"=Oracle® Next Generation Java™ Plug-In\\n\\\"Path\\\"=C:\\\\Program Files\\\\Java\\\\jre6\\\\bin\\\\new_plugin\\\\npjp2.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@mcafee.com/MSC,version=10]\\n\\\"Description\\\"=McAfee Total Protection MIME Plugin\\n\\\"Path\\\"=c:\\\\PROGRA~1\\\\mcafee\\\\msc\\\\NPMCSN~1.DLL\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\MozillaPlugins\\\\@microsoft.com/GENUINE]\\n\\\"Description\\\"=\\n\\\"Path\\\"=disabled\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\\\n{972ce4c6-7e08-4474-a285-3208198ce6fd}\\n{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\components\\\\\\nbinary.manifest\\nbrowsercomps.dll\\nnpCortona.xpt\\nnsIQTScriptablePlugin.xpt\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\plugins\\\\\\nnp-mswmp.dll\\nnpCortona.dll\\nnppdf32.DEU\\nnppdf32.dll\\nnppdf32.FRA\\nnppdf32.JPN\\nnpqtplugin.dll\\nnpqtplugin2.dll\\nnpqtplugin3.dll\\nnpqtplugin4.dll\\nnpqtplugin5.dll\\nnpqtplugin6.dll\\nnpqtplugin7.dll\\nQuickTimePlugin.class\\nWMP Firefox Plugin License.rtf\\nWMP Firefox Plugin RelNotes.txt\\n\\nC:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\searchplugins\\\\\\ngoogle.xml\\nheureka-cz.xml\\njyxo-cz.xml\\nMcSiteAdvisor.xml\\nseznam-cz.xml\\nslunecnice-cz.xml\\nwikipedia-cz.xml\\n\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\\\extensions\\\\\\n{20a82645-c095-46ed-80e3-08825760534b}\\n\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6j0gk2yo.default\\\\searchplugins\\\\\\ncrawlersrch.xml\\nfacebook.xml\\nicqplugin.xml\\nlive-search.xml\\nqip-search.xml\\nzbocz.xml\\n\\n======Registry dump======\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]\\nscriptproxy - C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll [2011-08-19 94424]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]\\nWindows Live ID Sign-in Helper - C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll [2010-09-21 529280]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]\\nMcAfee SiteAdvisor BHO - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\x64\\\\mcieplg.dll [2011-08-11 317336]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]\\nJava(tm) Plug-In 2 SSV Helper - C:\\\\Program Files\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll [2011-08-13 49440]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]\\nAdobe PDF Link Helper - C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\Acrobat\\\\ActiveX\\\\AcroIEHelperShim.dll [2011-09-05 63912]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]\\nGroove GFS Browser Helper - C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll [2009-02-12 2217848]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]\\nscriptproxy - C:\\\\Program Files (x86)\\\\Common Files\\\\McAfee\\\\SystemCore\\\\ScriptSn.20111010152623.dll [2011-08-19 79480]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]\\nPomocná sluĹľba pro pĹ™ihlášenĂ ke sluĹľbÄ› Windows Live ID - C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WindowsLiveLogin.dll [2010-09-21 439168]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]\\nWindows Live Messenger Companion Helper - C:\\\\Program Files (x86)\\\\Windows Live\\\\Companion\\\\companioncore.dll [2010-11-10 393600]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]\\nMcAfee SiteAdvisor BHO - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll [2011-08-11 258120]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Browser Helper Objects\\\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]\\nJava(tm) Plug-In 2 SSV Helper - C:\\\\Program Files (x86)\\\\Java\\\\jre6\\\\bin\\\\jp2ssv.dll [2011-08-03 42272]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Toolbar]\\n{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\x64\\\\mcieplg.dll [2011-08-11 317336]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Internet Explorer\\\\Toolbar]\\n{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\\\\PROGRA~2\\\\mcafee\\\\SITEAD~1\\\\mcieplg.dll [2011-08-11 258120]\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"SynTPEnh\\\"=C:\\\\Program Files\\\\Synaptics\\\\SynTP\\\\SynTPEnh.exe [2010-12-17 2531624]\\n\\\"RTHDVCPL\\\"=C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RtkNGUI64.exe [2011-02-19 6611048]\\n\\\"RtHDVBg\\\"=C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\RAVBg64.exe [2011-01-19 2188904]\\n\\\"FreeFallProtection\\\"=C:\\\\Program Files (x86)\\\\STMicroelectronics\\\\AccelerometerP11\\\\FF_Protection.exe [2010-12-17 686704]\\n\\\"NVHotkey\\\"=C:\\\\Windows\\\\system32\\\\nvHotkey.dll [2011-08-03 335976]\\n\\\"QuickSet\\\"=c:\\\\Program Files\\\\Dell\\\\QuickSet\\\\QuickSet.exe [2011-01-25 4479648]\\n\\\"IgfxTray\\\"=C:\\\\Windows\\\\system32\\\\igfxtray.exe [2011-03-30 167960]\\n\\\"HotKeysCmds\\\"=C:\\\\Windows\\\\system32\\\\hkcmd.exe [2011-03-30 391704]\\n\\\"Persistence\\\"=C:\\\\Windows\\\\system32\\\\igfxpers.exe [2011-03-30 418840]\\n\\\"McPvTray_exe\\\"=C:\\\\Program Files\\\\McAfee\\\\MAT\\\\McPvTray.exe [2011-04-08 436384]\\n\\n[HKEY_CURRENT_USER\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"\\\"= []\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Adobe ARM]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\AdobeARM.exe [2011-03-30 937920]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Adobe Reader Speed Launcher]\\nC:\\\\Program Files (x86)\\\\Adobe\\\\Reader 10.0\\\\Reader\\\\Reader_sl.exe [2011-09-05 35736]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\AdobeAAMUpdater-1.0]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\OOBE\\\\PDApp\\\\UWA\\\\UpdaterStartupUtility.exe [2010-03-06 500208]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\AdobeCS5ServiceManager]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\CS5ServiceManager\\\\CS5ServiceManager.exe [2010-07-22 402432]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Dell Webcam Central]\\nC:\\\\Program Files (x86)\\\\Dell Webcam\\\\Dell Webcam Central\\\\WebcamDell2.exe [2011-08-12 520330]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Desktop Disc Tool]\\nC:\\\\Program Files (x86)\\\\Roxio\\\\OEM\\\\Roxio Burn\\\\RoxioBurnLauncher.exe [2010-11-17 514544]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\Google Update]\\nC:\\\\Users\\\\Marek\\\\AppData\\\\Local\\\\Google\\\\Update\\\\GoogleUpdate.exe [2011-05-30 136176]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\GrooveMonitor]\\nC:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveMonitor.exe [2008-10-25 31072]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\IntelWireless]\\nC:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\iFrmewrk.exe [2010-12-17 1933584]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\NeroLauncher]\\nC:\\\\Program Files (x86)\\\\Nero\\\\SyncUP\\\\NeroLauncher.exe [2011-07-07 75064]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\NokiaMServer]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Nokia\\\\MPlatform\\\\NokiaMServer /watchfiles startup []\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\QuickTime Task]\\nE:\\\\Programy\\\\QuickTime\\\\QTTask.exe [2011-07-05 421888]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\RoxWatchTray]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatchTray12OEM.exe [2010-11-25 240112]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\SunJavaUpdateSched]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Java\\\\Java Update\\\\jusched.exe [2011-04-08 254696]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\SwitchBoard]\\nC:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe [2010-02-19 517096]\\n\\n[HKEY_LOCAL_MACHINE\\\\software\\\\microsoft\\\\shared tools\\\\msconfig\\\\startupreg\\\\TNOD UP]\\nC:\\\\Program Files (x86)\\\\TNod User & Password Finder\\\\TNODUP.exe /i []\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run]\\n\\\"\\\"= []\\n\\\"Dell DataSafe Online\\\"=C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuClient.exe [2010-08-26 1117528]\\n\\\"mcui_exe\\\"=C:\\\\Program Files\\\\McAfee.com\\\\Agent\\\\mcagent.exe [2011-09-10 1671824]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows]\\n\\\"AppInit_DLLs\\\"=\\\"C:\\\\Windows\\\\system32\\\\nvinitx.dll\\\"\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Notify\\\\igfxcui]\\nC:\\\\Windows\\\\system32\\\\igfxdev.dll [2011-03-26 385024]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\ShellServiceObjectDelayLoad]\\nWebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\wow6432node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\ShellExecuteHooks]\\n\\\"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}\\\"=C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveShellExtensions.dll [2009-02-12 2217848]\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\control\\\\securityproviders]\\n\\\"SecurityProviders\\\"=credssp.dll\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\Minimal\\\\mcmscsvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\Minimal\\\\MCODS]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\AFD]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\McMPFSvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mcmscsvc]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\MCODS]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefire]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefirek]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfefirek.sys]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfehidk]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfehidk.sys]\\n\\n[HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Control\\\\SafeBoot\\\\network\\\\mfevtp]\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\System]\\n\\\"ConsentPromptBehaviorAdmin\\\"=0\\n\\\"ConsentPromptBehaviorUser\\\"=3\\n\\\"EnableLUA\\\"=0\\n\\\"EnableUIADesktopToggle\\\"=0\\n\\\"PromptOnSecureDesktop\\\"=0\\n\\\"dontdisplaylastusername\\\"=0\\n\\\"legalnoticecaption\\\"=\\n\\\"legalnoticetext\\\"=\\n\\\"shutdownwithoutlogon\\\"=1\\n\\\"undockwithoutlogon\\\"=1\\n\\n[HKEY_LOCAL_MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\explorer]\\n\\\"NoActiveDesktop\\\"=1\\n\\\"NoActiveDesktopChanges\\\"=1\\n\\\"ForceActiveDesktopOn\\\"=0\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\services\\\\sharedaccess\\\\parameters\\\\firewallpolicy\\\\standardprofile\\\\authorizedapplications\\\\list]\\n\\n[HKEY_LOCAL_MACHINE\\\\system\\\\currentcontrolset\\\\services\\\\sharedaccess\\\\parameters\\\\firewallpolicy\\\\domainprofile\\\\authorizedapplications\\\\list]\\n\\n[HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Drivers32]\\n\\\"vidc.mrle\\\"=msrle32.dll\\n\\\"vidc.msvc\\\"=msvidc32.dll\\n\\\"msacm.imaadpcm\\\"=imaadp32.acm\\n\\\"msacm.msg711\\\"=msg711.acm\\n\\\"msacm.msgsm610\\\"=msgsm32.acm\\n\\\"msacm.msadpcm\\\"=msadp32.acm\\n\\\"midimapper\\\"=midimap.dll\\n\\\"wavemapper\\\"=msacm32.drv\\n\\\"VIDC.UYVY\\\"=msyuv.dll\\n\\\"VIDC.YUY2\\\"=msyuv.dll\\n\\\"VIDC.YVYU\\\"=msyuv.dll\\n\\\"VIDC.IYUV\\\"=iyuv_32.dll\\n\\\"vidc.i420\\\"=iyuv_32.dll\\n\\\"VIDC.YVU9\\\"=tsbyuv.dll\\n\\\"msacm.l3acm\\\"=C:\\\\Windows\\\\System32\\\\l3codeca.acm\\n\\\"MSVideo8\\\"=VfWWDM32.dll\\n\\\"wave\\\"=wdmaud.drv\\n\\\"midi\\\"=wdmaud.drv\\n\\\"mixer\\\"=wdmaud.drv\\n\\\"aux\\\"=wdmaud.drv\\n\\\"wave1\\\"=wdmaud.drv\\n\\\"midi1\\\"=wdmaud.drv\\n\\\"mixer1\\\"=wdmaud.drv\\n\\\"aux1\\\"=wdmaud.drv\\n\\n======File associations======\\n\\n.js - edit - C:\\\\Windows\\\\System32\\\\Notepad.exe %1\\n.js - open - C:\\\\Windows\\\\System32\\\\WScript.exe \\\"%1\\\" %*\\n\\n======List of files/folders created in the last 1 month======\\n\\n2011-10-11 19:40:01 ----D---- C:\\\\rsit\\n2011-10-11 19:40:01 ----D---- C:\\\\Program Files\\\\trend micro\\n2011-10-10 15:27:15 ----D---- C:\\\\Program Files (x86)\\\\McAfeeMOBK\\n2011-10-10 15:27:12 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\MOBK.sys\\n2011-10-10 15:27:11 ----D---- C:\\\\Program Files (x86)\\\\McAfee Online Backup\\n2011-10-10 15:27:01 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\McPvDrv.sys\\n2011-10-10 15:26:40 ----D---- C:\\\\Program Files (x86)\\\\McAfee.com\\n2011-10-10 15:26:22 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfeclnk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfewfpk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mferkdet.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfenlfk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfefirek.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk.sys\\n2011-10-10 15:26:05 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\cfwids.sys\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\McAfee.com\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\McAfee\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\Common Files\\\\McAfee\\n2011-10-10 15:25:53 ----D---- C:\\\\Program Files (x86)\\\\McAfee\\n2011-10-10 15:12:36 ----A---- C:\\\\Windows\\\\system32\\\\mfevtps.exe\\n2011-10-09 18:17:10 ----D---- C:\\\\ProgramData\\\\Bluetooth\\n2011-10-04 13:40:30 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Reallusion\\n2011-09-26 22:50:43 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\NVIDIA\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\OpenCL.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvwgf2um.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvoptimusmft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvoglv32.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvdecodemft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\OpenCL.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvwgf2umx.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvoptimusmft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvoglv64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvgenco64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvdispco64.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvdecodemft.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\nvd3dumx.dll\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvpciflt.sys\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvlddmkm.sys\\n2011-09-26 18:32:03 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\nvkflt.sys\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuvid.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuvenc.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcuda.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\nvcompiler.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuvid.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuvenc.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcuda.dll\\n2011-09-26 18:32:02 ----A---- C:\\\\Windows\\\\system32\\\\nvcompiler.dll\\n2011-09-26 17:41:51 ----D---- C:\\\\Program Files (x86)\\\\SystemRequirementsLab\\n2011-09-25 22:27:04 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\ICQ\\n2011-09-25 22:26:59 ----D---- C:\\\\Program Files (x86)\\\\ICQ7.6\\n2011-09-24 19:52:33 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Zoner\\n2011-09-23 22:50:50 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\truecrypt.sys\\n2011-09-22 19:38:22 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Nokia Ovi Suite\\n2011-09-22 19:30:42 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Nokia\\n2011-09-22 19:29:16 ----D---- C:\\\\ProgramData\\\\Installations\\n2011-09-22 19:28:29 ----D---- C:\\\\ProgramData\\\\PC Suite\\n2011-09-22 19:28:28 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\PC Suite\\n2011-09-22 19:27:38 ----D---- C:\\\\Program Files\\\\DIFX\\n2011-09-22 19:27:38 ----A---- C:\\\\Windows\\\\system32\\\\drivers\\\\pccsmcfdx64.sys\\n2011-09-22 19:27:34 ----D---- C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\n2011-09-22 19:27:19 ----A---- C:\\\\Windows\\\\system32\\\\nmwcdclsX64.dll\\n2011-09-22 19:26:27 ----D---- C:\\\\ProgramData\\\\NokiaInstallerCache\\n2011-09-22 19:26:27 ----D---- C:\\\\Program Files (x86)\\\\Nokia\\n2011-09-22 07:56:59 ----D---- C:\\\\ProgramData\\\\3DVIA\\n2011-09-22 07:56:58 ----D---- C:\\\\Program Files (x86)\\\\Virtools\\n2011-09-21 17:30:29 ----A---- C:\\\\Windows\\\\iun6002.exe\\n2011-09-21 17:30:27 ----D---- C:\\\\Program Files (x86)\\\\Codec Pack - All In 1\\n2011-09-20 12:53:51 ----D---- C:\\\\ProgramData\\\\EGG\\n2011-09-20 07:52:34 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Roxio Burn\\n2011-09-20 07:47:13 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Macrovision\\n2011-09-19 22:34:32 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\eM Client\\n2011-09-19 22:20:53 ----D---- C:\\\\Windows\\\\Sun\\n2011-09-19 20:04:16 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\PSpad\\n\\n======List of files/folders modified in the last 1 month======\\n\\n2011-10-11 19:40:03 ----D---- C:\\\\Windows\\\\Temp\\n2011-10-11 19:40:01 ----D---- C:\\\\Program Files\\n2011-10-11 19:38:05 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Skype\\n2011-10-11 19:31:09 ----D---- C:\\\\Windows\\\\system32\\\\config\\n2011-10-11 08:51:24 ----D---- C:\\\\Windows\\\\system32\\\\Tasks\\n2011-10-11 08:48:49 ----D---- C:\\\\Windows\\\\System32\\n2011-10-11 08:48:49 ----A---- C:\\\\Windows\\\\system32\\\\PerfStringBackup.INI\\n2011-10-11 08:48:48 ----D---- C:\\\\Windows\\\\inf\\n2011-10-11 07:18:44 ----D---- C:\\\\ProgramData\\\\Sonic\\n2011-10-11 07:18:31 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\log.txt\\n2011-10-11 07:17:11 ----D---- C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\n2011-10-11 07:16:18 ----D---- C:\\\\ProgramData\\\\NVIDIA\\n2011-10-10 22:53:39 ----D---- C:\\\\WINDOWS\\n2011-10-10 21:01:58 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\n2011-10-10 18:36:08 ----D---- C:\\\\ProgramData\\\\McAfee\\n2011-10-10 17:05:23 ----RD---- C:\\\\Program Files (x86)\\n2011-10-10 16:16:15 ----HD---- C:\\\\ProgramData\\n2011-10-10 15:27:20 ----SHD---- C:\\\\System Volume Information\\n2011-10-10 15:27:15 ----SHD---- C:\\\\Windows\\\\Installer\\n2011-10-10 15:27:12 ----DC---- C:\\\\Windows\\\\system32\\\\DRVSTORE\\n2011-10-10 15:27:02 ----D---- C:\\\\Windows\\\\system32\\\\catroot\\n2011-10-10 15:26:32 ----D---- C:\\\\Windows\\\\system32\\\\DriverStore\\n2011-10-10 15:26:23 ----D---- C:\\\\Program Files (x86)\\\\Mozilla Firefox\\n2011-10-10 15:25:59 ----D---- C:\\\\Program Files\\\\Common Files\\n2011-10-10 15:00:04 ----D---- C:\\\\Windows\\\\Downloaded Program Files\\n2011-10-10 09:15:38 ----D---- C:\\\\Program Files\\\\CCleaner\\n2011-10-10 07:16:52 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\\\UMDF\\n2011-10-09 19:04:50 ----D---- C:\\\\Windows\\\\Tasks\\n2011-10-09 19:04:50 ----D---- C:\\\\Windows\\\\system32\\\\wfp\\n2011-10-09 19:04:49 ----D---- C:\\\\Windows\\\\system32\\\\wbem\\n2011-10-09 19:04:14 ----D---- C:\\\\Windows\\\\SysWOW64\\n2011-10-09 19:04:14 ----D---- C:\\\\Windows\\\\system32\\\\drivers\\\\etc\\n2011-10-09 19:04:13 ----D---- C:\\\\Windows\\\\system32\\\\catroot2\\n2011-10-09 19:04:13 ----D---- C:\\\\Windows\\\\security\\n2011-10-09 19:04:12 ----D---- C:\\\\Windows\\\\registration\\n2011-10-09 00:35:47 ----D---- C:\\\\Windows\\\\Prefetch\\n2011-10-02 15:47:56 ----D---- C:\\\\Program Files (x86)\\\\Common Files\\n2011-10-02 09:22:06 ----D---- C:\\\\Windows\\\\panther\\n2011-10-02 09:17:51 ----D---- C:\\\\dell\\n2011-10-01 22:08:16 ----D---- C:\\\\Windows\\\\system32\\\\NDF\\n2011-09-29 17:53:25 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\DAEMON Tools Lite\\n2011-09-29 17:53:22 ----D---- C:\\\\Windows\\\\debug\\n2011-09-28 12:01:53 ----RD---- C:\\\\Program Files (x86)\\\\Skype\\n2011-09-28 12:01:51 ----D---- C:\\\\ProgramData\\\\Skype\\n2011-09-27 20:53:49 ----A---- C:\\\\Windows\\\\system32\\\\MRT.exe\\n2011-09-27 14:50:45 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Mozilla\\n2011-09-27 07:20:18 ----D---- C:\\\\Windows\\\\system32\\\\wdi\\n2011-09-26 23:14:03 ----D---- C:\\\\Windows\\\\Logs\\n2011-09-26 22:48:46 ----D---- C:\\\\Windows\\\\SYSWOW64\\\\NV\\n2011-09-26 22:48:46 ----D---- C:\\\\Windows\\\\system32\\\\NV\\n2011-09-26 18:34:32 ----HD---- C:\\\\Program Files (x86)\\\\InstallShield Installation Information\\n2011-09-26 18:34:15 ----D---- C:\\\\Program Files\\\\NVIDIA Corporation\\n2011-09-26 18:33:35 ----D---- C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\n2011-09-24 20:43:03 ----RD---- C:\\\\Users\\n2011-09-22 19:52:03 ----SD---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Microsoft\\n2011-09-22 19:42:37 ----A---- C:\\\\Windows\\\\SYSWOW64\\\\PerfStringBackup.INI\\n2011-09-22 19:26:59 ----D---- C:\\\\Windows\\\\winsxs\\n2011-09-21 16:52:51 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\GHISLER\\n2011-09-20 22:13:46 ----SHD---- C:\\\\$RECYCLE.BIN\\n2011-09-20 21:58:52 ----D---- C:\\\\ProgramData\\\\Roxio\\n2011-09-20 21:14:36 ----SD---- C:\\\\ProgramData\\\\Microsoft\\n2011-09-20 13:00:06 ----D---- C:\\\\Users\\\\Marek\\\\AppData\\\\Roaming\\\\Roxio\\n2011-09-20 08:38:22 ----D---- C:\\\\Windows\\\\rescache\\n2011-09-20 08:20:38 ----D---- C:\\\\Windows\\\\Microsoft.NET\\n2011-09-19 22:35:20 ----RSD---- C:\\\\Windows\\\\assembly\\n2011-09-18 10:01:09 ----D---- C:\\\\ProgramData\\\\Microsoft Help\\n\\n======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======\\n\\nR0 iaStor;Intel AHCI Controller; C:\\\\Windows\\\\system32\\\\drivers\\\\iaStor.sys [2011-01-13 439320]\\nR0 McPvDrv;McPvDrv Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\McPvDrv.sys [2011-04-11 71800]\\nR0 mfehidk;McAfee Inc. mfehidk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfehidk.sys [2011-08-15 642824]\\nR0 mfewfpk;McAfee Inc. mfewfpk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfewfpk.sys [2011-08-15 283744]\\nR0 nvpciflt;nvpciflt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nvpciflt.sys [2011-08-03 27240]\\nR0 PxHlpa64;PxHlpa64; C:\\\\Windows\\\\System32\\\\Drivers\\\\PxHlpa64.sys [2010-03-19 55856]\\nR0 rdyboost;ReadyBoost; C:\\\\Windows\\\\System32\\\\drivers\\\\rdyboost.sys [2010-11-21 213888]\\nR0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\stdcfltn.sys [2010-08-20 21616]\\nR1 mfenlfk;McAfee NDIS Light Filter; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\mfenlfk.sys [2011-08-15 75672]\\nR1 MOBKFilter;MOBKFilter; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\MOBK.sys [2010-04-13 66040]\\nR1 nvkflt;nvkflt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nvkflt.sys [2011-08-03 246888]\\nR1 vwififlt;Virtual WiFi Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\vwififlt.sys [2009-07-14 59904]\\nR3 Acceler;Accelerometer Service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Accelern.sys [2010-12-13 27760]\\nR3 AVer7231_x64;AVerMedia 7231 capture service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\AVer7231_x64.sys [2010-06-11 1799808]\\nR3 cfwids;McAfee Inc. cfwids; C:\\\\Windows\\\\system32\\\\drivers\\\\cfwids.sys [2011-08-15 65128]\\nR3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\CtClsFlt.sys [2011-06-16 176000]\\nR3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\dtsoftbus01.sys [2011-09-06 270912]\\nR3 igfx;igfx; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\igdkmd64.sys [2011-03-26 12262336]\\nR3 IntcAzAudAddService;Service for Realtek HD Audio (WDM C:\\\\Windows\\\\system32\\\\drivers\\\\RTKVHD64.sys [2011-02-19 2748520]\\nR3 IntcDAud;Intel(R) Display Audio; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\IntcDAud.sys [2010-10-15 317440]\\nR3 MEIx64;Intel(R) Management Engine Interface; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\HECIx64.sys [2010-10-20 56344]\\nR3 mfeapfk;McAfee Inc. mfeapfk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeapfk.sys [2011-08-15 158584]\\nR3 mfeavfk;McAfee Inc. mfeavfk; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk.sys [2011-08-15 228752]\\nR3 mfefirek;McAfee Inc. mfefirek; C:\\\\Windows\\\\system32\\\\drivers\\\\mfefirek.sys [2011-08-15 481504]\\nR3 NETwNs64;___ OvladaÄŤ adaptĂ©ru Ĺ™ady Intel(R) Wireless WiFi Link 5000 pro systĂ©m Windows 7 64 Bit; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\NETwNs64.sys [2010-12-22 8505856]\\nR3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nusb3hub.sys [2011-02-11 82432]\\nR3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\nusb3xhc.sys [2011-02-11 181760]\\nR3 qicflt;upper Device Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\qicflt.sys [2010-07-13 29288]\\nR3 RTL8167;Realtek 8167 NT Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Rt64win7.sys [2011-06-10 539240]\\nR3 SynTP;Synaptics TouchPad Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\SynTP.sys [2010-12-17 1404464]\\nR3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\vwifimp.sys [2009-07-14 17920]\\nR3 wdkmd;Intel WiDi KMD; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\WDKMD.sys [2010-12-01 42392]\\nS3 BthEnum;SluĹľba Bluetooth Enumerator; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\BthEnum.sys [2009-07-14 41984]\\nS3 BthPan;ZaĹ™ĂzenĂ Bluetooth (sĂĹĄ PAN); C:\\\\Windows\\\\system32\\\\DRIVERS\\\\bthpan.sys [2009-07-14 118784]\\nS3 BTHPORT;OvladaÄŤ portu Bluetooth; C:\\\\Windows\\\\System32\\\\Drivers\\\\BTHport.sys [2011-04-28 552960]\\nS3 BTHUSB;OvladaÄŤ rozhranĂ USB radiostanice Bluetooth; C:\\\\Windows\\\\System32\\\\Drivers\\\\BTHUSB.sys [2011-04-28 80384]\\nS3 Epfwndis;Eset Personal Firewall; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\Epfwndis.sys [2010-12-21 34144]\\nS3 Impcd;Impcd; C:\\\\Windows\\\\system32\\\\drivers\\\\Impcd.sys [2010-02-27 158976]\\nS3 JMCR;JMCR; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\jmcr.sys [2010-12-15 174168]\\nS3 mfeavfk01;McAfee Inc.; C:\\\\Windows\\\\system32\\\\drivers\\\\mfeavfk01.sys []\\nS3 mferkdet;McAfee Inc. mferkdet; C:\\\\Windows\\\\system32\\\\drivers\\\\mferkdet.sys [2011-08-15 100904]\\nS3 nmwcd;Nokia USB Phone Parent Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\ccdcmbx64.sys [2011-05-18 19968]\\nS3 nmwcdc;Nokia USB Communication Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\ccdcmbox64.sys [2011-05-18 27136]\\nS3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\\\\Windows\\\\system32\\\\drivers\\\\nvstusb.sys [2010-12-12 121960]\\nS3 pccsmcfd;PCCS Mode Change Filter Driver; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\pccsmcfdx64.sys [2008-08-28 25600]\\nS3 pciide;pciide; C:\\\\Windows\\\\system32\\\\drivers\\\\pciide.sys [2009-07-14 12352]\\nS3 RFCOMM;ZaĹ™ĂzenĂ Bluetooth (RFCOMM protokol TDI); C:\\\\Windows\\\\system32\\\\DRIVERS\\\\rfcomm.sys [2009-07-14 158720]\\nS3 sdbus;sdbus; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\sdbus.sys [2010-11-21 109056]\\nS3 TsUsbFlt;TsUsbFlt; C:\\\\Windows\\\\system32\\\\drivers\\\\tsusbflt.sys [2010-11-21 59392]\\nS3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\\\\Windows\\\\system32\\\\drivers\\\\TsUsbGD.sys [2010-11-21 31232]\\nS3 upperdev;upperdev; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\usbser_lowerfltx64.sys [2011-05-18 9216]\\nS3 usbser;USB Modem Driver; C:\\\\Windows\\\\system32\\\\drivers\\\\usbser.sys [2010-11-21 32768]\\nS3 UsbserFilt;UsbserFilt; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\usbser_lowerfltjx64.sys [2011-05-18 9216]\\nS3 WimFltr;WimFltr; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\wimfltr.sys [2006-11-01 151656]\\nS3 WinUsb;WinUsb; C:\\\\Windows\\\\system32\\\\DRIVERS\\\\WinUsb.sys [2010-11-21 41984]\\n\\n======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======\\n\\nR2 AdobeARMservice;Adobe Acrobat Update Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\ARM\\\\1.0\\\\armsvc.exe [2011-06-06 64952]\\nR2 AERTFilters;Andrea RT Filters Service; C:\\\\Program Files\\\\Realtek\\\\Audio\\\\HDA\\\\AERTSr64.exe [2009-11-18 98208]\\nR2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\EvtEng.exe [2010-12-17 1515792]\\nR2 LMS;Intel(R) Management and Security Application Local Management Service; C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\LMS\\\\LMS.exe [2010-12-21 325656]\\nR2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McMPFSvc;McAfee Personal Firewall Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 mcmscsvc;McAfee Services; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McNaiAnn;McAfee VirusScan Announcer; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McNASvc;McAfee Network Agent; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McProxy;McAfee Proxy Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 McShield;McAfee McShield; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mcshield.exe [2011-08-19 199008]\\nR2 mfefire;McAfee Firewall Core Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\SystemCore\\\\\\\\mfefire.exe [2011-08-19 208272]\\nR2 mfevtp;McAfee Validation Trust Protection Service; C:\\\\Windows\\\\system32\\\\mfevtps.exe [2011-08-19 158832]\\nR2 MOBKbackup;1%; C:\\\\Program Files (x86)\\\\McAfee Online Backup\\\\MOBKbackup.exe [2010-04-13 231224]\\nR2 MSK80Service;McAfee Anti-Spam Service; C:\\\\Program Files\\\\Common Files\\\\McAfee\\\\McSvcHost\\\\McSvHost.exe [2011-01-27 249936]\\nR2 NAUpdate;@C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe,-200; C:\\\\Program Files (x86)\\\\Nero\\\\Update\\\\NASvc.exe [2011-07-22 690472]\\nR2 NOBU;Dell DataSafe Online; C:\\\\Program Files (x86)\\\\Dell\\\\Dell Datasafe Online\\\\NOBuAgent.exe [2010-08-26 2823000]\\nR2 NVSvc;NVIDIA Display Driver Service; C:\\\\Windows\\\\system32\\\\nvvsvc.exe [2011-08-03 980072]\\nR2 nvUpdatusService;NVIDIA Update Service Daemon; C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\NVIDIA Updatus\\\\daemonu.exe [2011-08-03 2255464]\\nR2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\\\\Program Files\\\\Common Files\\\\Intel\\\\WirelessCommon\\\\RegSrvc.exe [2010-12-17 836880]\\nR2 SftService;SoftThinks Agent Service; C:\\\\Program Files (x86)\\\\Dell DataSafe Local Backup\\\\sftservice.EXE [2011-08-18 1692480]\\nR2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\\\\Program Files (x86)\\\\NVIDIA Corporation\\\\3D Vision\\\\nvSCPAPISvr.exe [2011-08-03 379496]\\nR2 UNS;Intel(R) Management and Security Application User Notification Service; C:\\\\Program Files (x86)\\\\Intel\\\\Intel(R) Management Engine Components\\\\UNS\\\\UNS.exe [2010-12-21 2656280]\\nR2 wlidsvc;Windows Live ID Sign-in Assistant; C:\\\\Program Files\\\\Common Files\\\\Microsoft Shared\\\\Windows Live\\\\WLIDSVC.EXE [2010-09-21 2286976]\\nS2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\\\\Windows\\\\Microsoft.NET\\\\Framework\\\\v4.0.30319\\\\mscorsvw.exe [2010-03-18 130384]\\nS2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\mscorsvw.exe [2010-03-18 138576]\\nS2 RoxWatch12;Roxio Hard Drive Watcher 12; C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxWatch12OEM.exe [2010-11-25 219632]\\nS3 aspnet_state;ASP.NET State Service; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\aspnet_state.exe [2010-03-18 44376]\\nS3 McODS;McAfee Scanner; C:\\\\Program Files\\\\McAfee\\\\VirusScan\\\\mcods.exe [2011-06-23 501768]\\nS3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\\\\Program Files (x86)\\\\Microsoft Office\\\\Office12\\\\GrooveAuditService.exe [2008-10-25 65888]\\nS3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\\\\Program Files\\\\Intel\\\\WiFi\\\\bin\\\\PanDhcpDns.exe [2010-12-17 340240]\\nS3 odserv;Microsoft Office Diagnostics Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\OFFICE12\\\\ODSERV.EXE [2008-11-04 441712]\\nS3 ose;Office Source Engine; C:\\\\Program Files (x86)\\\\Common Files\\\\Microsoft Shared\\\\Source Engine\\\\OSE.EXE [2006-10-26 145184]\\nS3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\\\\Program Files (x86)\\\\Common Files\\\\Roxio Shared\\\\OEM\\\\12.0\\\\SharedCOM\\\\RoxMediaDB12OEM.exe [2010-11-25 1116656]\\nS3 ServiceLayer;ServiceLayer; C:\\\\Program Files (x86)\\\\PC Connectivity Solution\\\\ServiceLayer.exe [2011-06-08 633856]\\nS3 Steam Client Service;Steam Client Service; C:\\\\Program Files (x86)\\\\Common Files\\\\Steam\\\\SteamService.exe [2011-03-16 407336]\\nS3 stllssvr;stllssvr; C:\\\\Program Files (x86)\\\\Common Files\\\\SureThing Shared\\\\stllssvr.exe [2010-11-09 74392]\\nS3 SwitchBoard;SwitchBoard; C:\\\\Program Files (x86)\\\\Common Files\\\\Adobe\\\\SwitchBoard\\\\SwitchBoard.exe [2010-02-19 517096]\\nS3 WatAdminSvc;@%SystemRoot%\\\\system32\\\\Wat\\\\WatUX.exe,-601; C:\\\\Windows\\\\system32\\\\Wat\\\\WatAdminSvc.exe [2011-09-06 1255736]\\nS4 NetMsmqActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8195; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 NetPipeActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8197; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 NetTcpActivator;@C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\\\\\ServiceModelInstallRC.dll,-8199; C:\\\\Windows\\\\Microsoft.NET\\\\Framework64\\\\v4.0.30319\\\\SMSvcHost.exe [2010-03-18 124240]\\nS4 wlcrasvc;Windows Live Mesh remote connections service; C:\\\\Program Files\\\\Windows Live\\\\Mesh\\\\wlcrasvc.exe [2010-09-23 57184]\\n\\n-----------------EOF-----------------\\n\",\"id\":\"76-1#126\",\"time\":1318355221004}, FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=mcafee&p=" O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.) O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O33 - MountPoints2\{17bda543-e378-11e0-976e-14feb5c0d387}\Shell - "" = AutoRun [3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] [6 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ] [2 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ] [2 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ] [2011.09.06 21:08:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ESET @Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT :reg [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] ""=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroLauncher] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TNOD UP] [-HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- :files C:\Program Files (x86)\TNod User & Password Finder C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001UA.job %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosim o kontrolu logu
Mám takový problém, když to začně dělat tuto operaci: FF - prefs.js..browser.search.order.1: "Crawler Search" vždy se mi OLT sekne napíše že neodpovídá, ikdyž jsem dlouho čekal, nakonec jsem program ukončil.
Re: Prosim o kontrolu logu
Opakujte opravu v nouzovem rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti)
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosim o kontrolu logu
Naprosto stejný problém, při otevření správce uloh opět napsáno že neodpovídá a také při "crawler". Mám déle počkat?
Re: Prosim o kontrolu logu
Pouzijte tento skript - postup je stejny
Kód: Vybrat vše
:otl
FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=mcafee&p="
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O33 - MountPoints2\{17bda543-e378-11e0-976e-14feb5c0d387}\Shell - "" = AutoRun
[3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[6 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[2 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[2 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ]
[2011.09.06 21:08:22 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ESET
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroLauncher]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TNOD UP]
[-HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""=-
:files
C:\Program Files (x86)\TNod User & Password Finder
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-580890379-3430277850-3007477444-1001UA.job
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?