Logfile of random's system information tool 1.09 (written by random/random)
Run by user at 2011-11-30 15:40:32
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 99 GB (72%) free of 138 GB
Total RAM: 2047 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:40:45, on 30.11.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\Miranda IM\miranda32.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\user\Plocha\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\user.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://klient4.rb.cz/ebts/version_02/cz/banka3.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [NetLockMngr] C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\rundll32.exe C:\DOCUME~1\ALLUSE~1\DATAAP~1\viresosimarj.dat,StartAs
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\rundll32.exe c:\docume~1\alluse~1\dataap~1\viresosimarj.dat,StartAs (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\rundll32.exe c:\docume~1\alluse~1\dataap~1\viresosimarj.dat,StartAs (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Převést výběr do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést výběr do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Přidat do stávajícího PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: mental ray 3.5 Satellite (32-bit) (mi-raysat_3dsmax9_32) - Unknown owner - C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: SWLock Server (SWLckServer) - Unknown owner - C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
--
End of file - 10641 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-1682526488-682003330-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-1682526488-682003330-1004UA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz"
prefs.js - "extensions.enabledItems" - "firebug@software.joehewitt.com:1.6.2, grabthemall@zelazko.info:0.6.1, {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}:6.0.12, {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, seo@profesional:1.1.1, {3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}:0.8.6.1, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {02450954-cdd9-410f-b1da-db804e18c671}:0.96.3, {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.5, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16"
prefs.js - "keyword.URL" - "http://www.google.com/search?sourceid=n ... t&hl=cs&q="
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1]
"Description"=Yahoo! activeX Plug-in Bridge
"Path"=C:\Program Files\Yahoo!\Common\npyaxmpb.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
AskSearch.js
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPOFF12.DLL
nppdf32.dll
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions\
navertheme@nhncorp.com
{02450954-cdd9-410f-b1da-db804e18c671}
{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}
C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\searchplugins\
ask.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-11 321120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-24 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-11 321120]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-08-20 16384512]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [2008-01-11 623992]
""= []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"NetLockMngr"=C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe [2010-06-08 1255144]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-09-10 98304]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2010-05-04 311296]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2011-06-15 997920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\DOCUME~1\ALLUSE~1\DATAAP~1\viresosimarj.dat [2011-08-23 1106114]
"Google Update"=C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-08-04 136176]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-01-29 23975720]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Acrobat Speed Launcher.lnk - C:\WINDOWS\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe
Adobe Acrobat Synchronizer.lnk - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Documents and Settings\user\Nabídka Start\Programy\Po spuštění
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-09-11 159744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Java\jre6\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\HP_CP1510_Default_Install_4.0\setup\hppniprint01.exe"="C:\HP_CP1510_Default_Install_4.0\setup\hppniprint01.exe:*:Enabled:hppniprint01.exe"
"C:\HP_CP1510_Default_Install_4.0\setup\hppniprint64.exe"="C:\HP_CP1510_Default_Install_4.0\setup\hppniprint64.exe:*:Enabled:hppniprint64.exe"
"C:\HP_CP1510_Default_Install_4.0\setup\hppnicifs01.exe"="C:\HP_CP1510_Default_Install_4.0\setup\hppnicifs01.exe:*:Enabled:hppnicifs01.exe"
"C:\HP_CP1510_Default_Install_4.0\setup\hpbtpg.exe"="C:\HP_CP1510_Default_Install_4.0\setup\hpbtpg.exe:*:Enabled:hpbtpg.exe"
"C:\HP_CP1510_Default_Install_4.0\setup\LaunchApp.exe"="C:\HP_CP1510_Default_Install_4.0\setup\LaunchApp.exe:*:Enabled:launchapp.exe"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Documents and Settings\user\Plocha\miranda\miranda32.exe"="C:\Documents and Settings\user\Plocha\miranda\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Documents and Settings\user\Plocha\bulanci.exe"="C:\Documents and Settings\user\Plocha\bulanci.exe:*:Enabled:bulanci"
"C:\Program Files\Miranda IM\miranda32.exe"="C:\Program Files\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"SENTINEL"=snti386.dll
======File associations======
.js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS3\Dreamweaver.exe","%1"
.scr - open - "%1" /S "%3"
======List of files/folders created in the last 1 month======
2011-11-30 15:40:33 ----D---- C:\Program Files\trend micro
2011-11-30 15:40:32 ----D---- C:\rsit
2011-11-30 14:44:14 ----AT---- C:\WINDOWS\system32\osamiaejmid.dat
2011-11-30 14:06:40 ----AT---- C:\WINDOWS\system32\ewqilaiuqmoc.dat
2011-11-24 12:58:38 ----D---- C:\Documents and Settings\user\Data aplikací\Windows Desktop Search
2011-11-24 12:42:00 ----D---- C:\Program Files\Windows Desktop Search
2011-11-24 12:41:59 ----D---- C:\WINDOWS\system32\GroupPolicy
2011-11-24 12:41:44 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2011-11-08 10:06:11 ----D---- C:\img
2011-11-03 16:08:21 ----D---- C:\Documents and Settings\user\Data aplikací\Zoner InShop Manager
2011-10-31 17:13:58 ----D---- C:\Program Files\MSXML 6.0
2011-10-31 17:09:34 ----D---- C:\Program Files\Microsoft SQL Server
2011-10-31 17:07:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Zoner Software a. s
======List of files/folders modified in the last 1 month======
2011-11-30 15:40:33 ----RD---- C:\Program Files
2011-11-30 15:37:39 ----D---- C:\Documents and Settings\user\Data aplikací\Skype
2011-11-30 15:23:35 ----D---- C:\WINDOWS\system32\config
2011-11-30 14:56:35 ----SD---- C:\WINDOWS\Tasks
2011-11-30 14:54:12 ----D---- C:\WINDOWS\Temp
2011-11-30 14:52:47 ----D---- C:\WINDOWS\system32\CatRoot2
2011-11-30 14:51:40 ----D---- C:\WINDOWS\Registration
2011-11-30 14:44:14 ----D---- C:\WINDOWS\system32
2011-11-30 14:44:07 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-11-30 14:42:55 ----D---- C:\WINDOWS\Prefetch
2011-11-30 14:14:19 ----SHD---- C:\WINDOWS\Installer
2011-11-30 14:07:04 ----D---- C:\WINDOWS
2011-11-30 12:05:06 ----D---- C:\WINDOWS\Debug
2011-11-29 13:03:56 ----D---- C:\Program Files\Mozilla Firefox
2011-11-25 15:02:05 ----HD---- C:\WINDOWS\inf
2011-11-24 12:42:16 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-11-24 12:42:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-11-24 12:42:02 ----D---- C:\WINDOWS\system32\cs-cz
2011-11-24 12:41:59 ----D---- C:\WINDOWS\system32\wbem
2011-11-24 12:41:36 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-11-23 13:38:57 ----A---- C:\WINDOWS\wincmd.ini
2011-11-23 12:25:31 ----A---- C:\WINDOWS\wcx_ftp.ini
2011-11-14 10:26:02 ----D---- C:\WINDOWS\Network Diagnostic
2011-11-14 09:35:39 ----HD---- C:\WINDOWS\$hf_mig$
2011-11-10 17:58:08 ----A---- C:\WINDOWS\system32\MRT.exe
2011-11-08 11:20:05 ----D---- C:\10
2011-11-03 17:01:19 ----SD---- C:\Documents and Settings\user\Data aplikací\Microsoft
2011-11-02 10:31:19 ----D---- C:\WINDOWS\Microsoft.NET
2011-11-02 10:31:18 ----RSD---- C:\WINDOWS\assembly
2011-10-31 17:18:02 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-10-31 17:18:01 ----D---- C:\Program Files\Microsoft.NET
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2011-04-18 165648]
R1 MpKsld1f418f5;MpKsld1f418f5; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{8826DB31-F6B6-4E74-9132-386FC9250516}\MpKsld1f418f5.sys []
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 Haspnt;Haspnt; \??\C:\WINDOWS\system32\drivers\Haspnt.sys []
R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2001-06-21 73728]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-09-11 5417472]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2007-11-14 84992]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-28 4609024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-04-14 94592]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S1 glaide32;glaide32; \??\C:\WINDOWS\system32\drivers\glaide32.sys []
S2 DS1410D;DS1410D; \??\C:\WINDOWS\system32\drivers\ds1410d.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 moufiltr;Tablet Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\moufiltr.sys []
S3 Sntnlusb;Rainbow USB SuperPro; C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS [2001-06-21 20032]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 vhidmini;Generic Virtual HID Driver; C:\WINDOWS\system32\DRIVERS\walvhid.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-09-11 606208]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-12 153376]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2011-04-27 11736]
R2 MSSQL$INSHOPSERVER;SQL Server (INSHOPSERVER); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-30 935208]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 86880]
R2 SWLckServer;SWLock Server; C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe [2010-06-08 592104]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-05-29 654848]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-27 136176]
S2 mi-raysat_3dsmax9_32;mental ray 3.5 Satellite (32-bit); C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe []
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-08-29 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-27 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu, počítač hrozně zlobí
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu, počítač hrozně zlobí
Zdravim a pekne odpoledne preji 
Jak PC zlobi 
Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
Jak PC zlobi Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
- Ukoncete vsechny programy
- Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
- Zvolte moznost 2 a potvrte enterem
- Utilita provede svou cinnost a da log - ten sem vlozte
- Nyni znovu, ale zvolte moznost 3 a pote jeste 4 - logy opet vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, počítač hrozně zlobí
Děkuji, logy vkládám níže. Jak zlobí: dnes z ničeho nic se začal chovat jako s virusem. Stránky se mi od sebe zavírají, moziila mi nejde téměř spustit, chrome mi po spuštění za chvíli spadne- jediné co jakž takž drží je explorer. Padají mi tady různé chybové hlášky co kde padá, co jak nefunguje. Restartování proběhlo několikrát, proběhla kontrola chyb CCleanerem, antivirus Microsoft Esential nic nenašel. Hlásí mi to různé chyby: např. nechce otevřít Outlook protože pro něj není dost paměti, když na něj kliknu podruhé tak už se otevře.
LOG 1:
RogueKiller V6.1.10 [11/18/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: user [Admin rights]
Mode: Remove -- Date : 11/30/2011 16:45:46
¤¤¤ Bad processes: 0 ¤¤¤
¤¤¤ Registry Entries: 3 ¤¤¤
[BLACKLIST DLL] HKCU\[...]\Run : CTFMON.EXE (C:\WINDOWS\system32\rundll32.exe C:\DOCUME~1\ALLUSE~1\DATAAP~1\viresosimarj.dat,StartAs) -> DELETED
[BLACKLIST DLL] HKUS\.DEFAULT[...]\Run : CTFMON.EXE (C:\WINDOWS\system32\rundll32.exe c:\docume~1\alluse~1\dataap~1\viresosimarj.dat,StartAs) -> DELETED
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
¤¤¤ Particular Files / Folders: ¤¤¤
¤¤¤ Driver: [LOADED] ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost
Finished : << RKreport[1].txt >>
RKreport[1].txt
-----------
LOG 1:
RogueKiller V6.1.10 [11/18/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: user [Admin rights]
Mode: Remove -- Date : 11/30/2011 16:45:46
¤¤¤ Bad processes: 0 ¤¤¤
¤¤¤ Registry Entries: 3 ¤¤¤
[BLACKLIST DLL] HKCU\[...]\Run : CTFMON.EXE (C:\WINDOWS\system32\rundll32.exe C:\DOCUME~1\ALLUSE~1\DATAAP~1\viresosimarj.dat,StartAs) -> DELETED
[BLACKLIST DLL] HKUS\.DEFAULT[...]\Run : CTFMON.EXE (C:\WINDOWS\system32\rundll32.exe c:\docume~1\alluse~1\dataap~1\viresosimarj.dat,StartAs) -> DELETED
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
¤¤¤ Particular Files / Folders: ¤¤¤
¤¤¤ Driver: [LOADED] ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost
Finished : << RKreport[1].txt >>
RKreport[1].txt
-----------
Naposledy upravil(a) vyosek dne 30 lis 2011 16:53, celkem upraveno 1 x.
Důvod: Odstranena citace
Důvod: Odstranena citace
Re: Prosím o kontrolu logu, počítač hrozně zlobí
Pouzivejte prosim tlacitko odpovedet a nedavejte tam citaci meho postupu, zbytecne to prispevek prodluzuje\zneprehlednujePROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe
- Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
- Pokud mate Win XP spustte pod uctem Spravce\Administratora
- Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
- Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
- Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
- Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
- Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
- Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
- Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, počítač hrozně zlobí
RogueKiller V6.1.10 [11/18/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: user [Admin rights]
Mode: HOSTSFix -- Date : 11/30/2011 16:46:09
¤¤¤ Bad processes: 0 ¤¤¤
¤¤¤ Driver: [LOADED] ¤¤¤
¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost
¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost
Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: user [Admin rights]
Mode: HOSTSFix -- Date : 11/30/2011 16:46:09
¤¤¤ Bad processes: 0 ¤¤¤
¤¤¤ Driver: [LOADED] ¤¤¤
¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost
¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost
Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt
Re: Prosím o kontrolu logu, počítač hrozně zlobí
log 3:
RogueKiller V6.1.10 [11/18/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: user [Admin rights]
Mode: ProxyFix -- Date : 11/30/2011 16:46:26
¤¤¤ Bad processes: 0 ¤¤¤
¤¤¤ Driver: [LOADED] ¤¤¤
¤¤¤ Registry Entries: 0 ¤¤¤
Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
RogueKiller V6.1.10 [11/18/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com
Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: user [Admin rights]
Mode: ProxyFix -- Date : 11/30/2011 16:46:26
¤¤¤ Bad processes: 0 ¤¤¤
¤¤¤ Driver: [LOADED] ¤¤¤
¤¤¤ Registry Entries: 0 ¤¤¤
Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
Re: Prosím o kontrolu logu, počítač hrozně zlobí
Super, pokracujte ComboFixem jak jsem psal 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, počítač hrozně zlobí
Dobré ráno, včera jsem pustila ComboFix přesně dle návodu. Spustil se ihned - načetla se modrá obrazovka, kde se objevilo ZKOUŠÍM VYTVOŘIT NOVÝ BOD OBNOVY (nebo tak něco). Pouštěla jsem to asi v půl šesté, v šest tam byla stále stejná obrazovka a hláška. Počítač jsem tedy nechala zapnutý přes noc, dnes jsem přišla - počítač zapla a nic se nezměnilo. ComboFix stále hlásí Zkouším vytvořit nový bod obnovy.
Zkusím jej zapnout ještě jednou....
Zkusím jej zapnout ještě jednou....
Re: Prosím o kontrolu logu, počítač hrozně zlobí
Zkuste jej spustit ale v nouzovem rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti)...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, počítač hrozně zlobí
Ok, zkusila jsem to znovu a efekt stejný. Zkusím to tedy v nouzovém režimu.
Re: Prosím o kontrolu logu, počítač hrozně zlobí
Fajn, kdyby neslo, tak napiste a zkusime neco jineho...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, počítač hrozně zlobí
Tak v nouzovém režimu se mi povedlo ComboFix spustit, běžel snad půl hodinky - potom se restartoval a samozřejmě se pustil v normálním režimu a zbytek tedy už nedojel - obrazovka napsala že vytváří log ale vytvářela jej asi půl hodiny a nic. Takže jsem to nakonec vypnula - log bohužel nemám. Ovšem vypadá to, že je po problému. Počítač zatím jede v pořádku a předchozí chyby nevykazuje. Děkuji mockrát za pomoc!!!!
Re: Prosím o kontrolu logu, počítač hrozně zlobí
No jeste hotovo urcite nemame 
Zkuste spustit CF jeste jednou, treba se ted pohne - pokud neda log, zabalte mi prosim obsah slozky c:\qoobox do raru a uploadnete sem http://vyosek.ic.cz/havet/uploader.php A pokud nedal log, tak udelejte jeste OTL - nize Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
CREATERESTOREPOINT netsvcs drivers32 savembr:0 /md5start atapi.sys autochk.exe cdrom.sys explorer.exe hal.dll scecli.dll svchost.exe tcpip.sys userinit.exe winlogon.exe /md5stop %systemroot%*.* /U /s %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 %SYSTEMDRIVE%\*.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s %SystemDrive%\PhysicalMBR.bin /md5 *crack* /s *keygen* /s *loader* /s- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu, počítač hrozně zlobí
SCAN OTL:
OTL logfile created on: 1.12.2011 11:25:56 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\user\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,16 Gb Available Physical Memory | 57,94% Memory free
3,85 Gb Paging File | 3,09 Gb Available in Paging File | 80,19% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 134,93 Gb Total Space | 97,05 Gb Free Space | 71,93% Space Free | Partition Type: NTFS
Drive D: | 97,95 Gb Total Space | 96,32 Gb Free Space | 98,34% Space Free | Partition Type: NTFS
Drive S: | 465,66 Gb Total Space | 246,30 Gb Free Space | 52,89% Space Free | Partition Type: NTFS
Drive Z: | 465,66 Gb Total Space | 246,30 Gb Free Space | 52,89% Space Free | Partition Type: NTFS
Computer Name: ASISTENTKA | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011.12.01 10:56:05 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
PRC - [2011.11.09 14:23:53 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.11.07 18:26:58 | 000,820,309 | ---- | M] ( ) -- C:\Program Files\Miranda IM\miranda32.exe
PRC - [2011.06.15 14:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011.04.27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010.06.08 11:07:08 | 001,255,144 | ---- | M] () -- C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
PRC - [2010.06.08 11:07:08 | 000,592,104 | ---- | M] () -- C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
PRC - [2010.05.14 11:44:46 | 000,501,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2009.05.29 09:07:49 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
PRC - [2008.09.30 11:48:28 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2008.04.14 13:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.01.11 18:54:00 | 000,623,992 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
========== Modules (No Company Name) ==========
MOD - [2011.11.21 09:59:02 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011.11.09 14:23:52 | 001,989,592 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.11.07 18:28:02 | 000,090,201 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\srmm.dll
MOD - [2011.11.07 18:26:28 | 000,054,361 | ---- | M] () -- C:\Program Files\Miranda IM\zlib.dll
MOD - [2011.11.07 18:26:16 | 000,338,527 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\ICQ.dll
MOD - [2011.11.07 18:26:02 | 000,036,962 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\dbx_mmap.dll
MOD - [2011.11.07 18:25:50 | 000,061,539 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\clist_classic.dll
MOD - [2011.11.07 18:25:46 | 000,245,849 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\chat.dll
MOD - [2011.11.07 18:25:32 | 000,202,846 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\Aim.dll
MOD - [2011.11.07 18:25:08 | 000,378,458 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\IRC.dll
MOD - [2011.10.13 10:47:36 | 011,800,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\60df958ca96c9b8945f836759b6abd34\System.Web.ni.dll
MOD - [2011.10.13 10:46:16 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\bce0720436dc6cb76006377f295ea365\System.Configuration.ni.dll
MOD - [2011.10.13 10:45:38 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\d86a3346c3d90ff12d0df9d7726f3ece\Accessibility.ni.dll
MOD - [2011.10.13 08:23:15 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll
MOD - [2011.10.13 08:23:02 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll
MOD - [2011.10.13 08:22:44 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll
MOD - [2011.10.12 16:47:39 | 007,950,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll
MOD - [2011.10.12 16:47:30 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MOD - [2011.10.12 16:46:42 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2010.09.10 21:21:04 | 000,270,336 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2010.08.04 15:58:06 | 000,016,384 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2010.06.08 11:07:08 | 001,255,144 | ---- | M] () -- C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
MOD - [2010.06.08 11:07:08 | 000,592,104 | ---- | M] () -- C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
MOD - [2010.06.08 11:07:08 | 000,045,056 | ---- | M] () -- C:\Program Files\CIGLER SOFTWARE\NetLicence\Mtp32.dll
MOD - [2010.03.16 12:22:12 | 000,014,848 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AxInterop.WBOCXLib.dll
MOD - [2008.04.14 13:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2001.10.28 17:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- -- (mi-raysat_3dsmax9_32) mental ray 3.5 Satellite (32-bit)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.04.27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010.06.08 11:07:08 | 000,592,104 | ---- | M] () [Auto | Running] -- C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe -- (SWLckServer)
SRV - [2009.05.29 09:07:49 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Running] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008.09.30 11:48:28 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
========== Driver Services (SafeList) ==========
DRV - [2011.12.01 10:31:08 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{D4E41694-23BE-414D-9E85-2807C19E185E}\MpKslfbfe95e2.sys -- (MpKslfbfe95e2)
DRV - [2011.11.30 16:46:22 | 000,111,872 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TrueSight.sys -- (TrueSight)
DRV - [2010.09.11 03:19:16 | 005,417,472 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010.02.11 13:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2008.09.01 12:18:20 | 000,047,616 | ---- | M] (Aladdin Knowledge Systems) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Haspnt.sys -- (Haspnt)
DRV - [2007.11.14 20:48:20 | 000,084,992 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2007.08.28 09:55:10 | 004,609,024 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.04.14 09:28:00 | 000,094,592 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2006.11.22 09:01:48 | 000,693,760 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2006.07.01 21:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2002.09.16 17:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [2001.06.21 20:39:02 | 000,073,728 | ---- | M] (Rainbow Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel)
DRV - [2001.06.21 20:39:02 | 000,020,032 | R--- | M] (Rainbow Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SNTNLUSB.SYS -- (Sntnlusb)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://klient4.rb.cz/ebts/version_02/cz/banka3.html
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.order.1: "Ask"
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz"
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.6.2
FF - prefs.js..extensions.enabledItems: grabthemall@zelazko.info:0.6.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: seo@profesional:1.1.1
FF - prefs.js..extensions.enabledItems: {3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}:0.8.6.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {02450954-cdd9-410f-b1da-db804e18c671}:0.96.3
FF - prefs.js..extensions.enabledItems: {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.5
FF - prefs.js..keyword.URL: "http://www.google.com/search?sourceid=n ... t&hl=cs&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.11.09 14:23:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.04.08 14:09:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
[2008.08.29 14:56:01 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Extensions
[2011.11.24 11:46:11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions
[2011.01.24 10:43:57 | 000,000,000 | ---D | M] (Screengrab) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions\{02450954-cdd9-410f-b1da-db804e18c671}
[2011.11.24 11:46:14 | 000,000,000 | ---D | M] (Html Validator) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}
[2009.08.25 08:02:40 | 000,000,000 | ---D | M] ("Naver") -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions\navertheme@nhncorp.com
[2009.08.25 08:02:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions\navertheme@nhncorp.com\chrome\mozapps\extensions
[2008.12.03 11:58:40 | 000,000,681 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\searchplugins\ask.xml
[2011.11.09 14:23:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\JBHTQ7S5.DEFAULT\EXTENSIONS\{3B56BCC7-54E5-44A2-9B44-66C3EF58C13E}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\JBHTQ7S5.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\JBHTQ7S5.DEFAULT\EXTENSIONS\GRABTHEMALL@ZELAZKO.INFO.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\JBHTQ7S5.DEFAULT\EXTENSIONS\SEO@PROFESIONAL.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\JBHTQ7S5.DEFAULT\EXTENSIONS\SEOSTATUS@RUBYWEB.XPI
[2011.11.09 14:23:54 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010.11.12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.10.03 16:48:19 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.10.03 16:48:19 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.10.03 16:48:19 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.10.03 16:48:19 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.10.03 16:48:19 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\user\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Documents and Settings\user\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\user\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\gcswf32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.230.5 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U23 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\user\Local Settings\Data aplikac\u00ED\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\Program Files\Yahoo!\Common\npyaxmpb.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
O1 HOSTS File: ([2011.12.01 10:19:36 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [ATICustomerCare] C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NetLockMngr] C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk = C:\WINDOWS\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe (Adobe Systems Incorporated)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést výběr do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést výběr do existujícího PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Přidat do stávajícího PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E5353454-3FDD-4121-949B-F422AA94AE86}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\user\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.08.28 16:56:30 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: SENTINEL - C:\WINDOWS\System32\SNTI386.DLL (Rainbow Technologies, Inc.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2011.12.01 10:55:57 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
[2011.12.01 10:12:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011.12.01 09:37:45 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.12.01 09:30:04 | 000,000,000 | ---D | C] -- C:\ComboFix
[2011.11.30 17:14:17 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011.11.30 17:14:17 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011.11.30 17:14:17 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011.11.30 17:14:17 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011.11.30 17:12:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.11.30 17:07:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Data aplikací\Windows Search
[2011.11.30 17:03:48 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.11.30 17:03:27 | 000,000,000 | R--D | C] -- C:\Documents and Settings\user\Dokumenty\Filmy
[2011.11.30 16:57:46 | 004,323,419 | R--- | C] (Swearware) -- C:\Documents and Settings\user\Plocha\ComboFix.exe
[2011.11.30 16:42:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Plocha\RK_Quarantine
[2011.11.30 15:40:33 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.11.30 15:40:32 | 000,000,000 | ---D | C] -- C:\rsit
[2011.11.30 14:07:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Recent
[2011.11.24 12:58:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Data aplikací\Windows Desktop Search
[2011.11.24 12:42:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Adobe
[2011.11.24 12:42:00 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2011.11.24 12:41:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2011.08.23 00:41:24 | 001,106,114 | -H-- | C] (Atcufm zqkxlw) -- C:\Documents and Settings\All Users\Data aplikací\viresosimarj.dat
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2011.12.01 11:27:47 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.12.01 11:18:41 | 000,026,743 | ---- | M] () -- C:\Documents and Settings\user\Plocha\MONEY S3 - KNIHVFAK.FRM.pdf
[2011.12.01 11:17:02 | 000,126,023 | ---- | M] () -- C:\Documents and Settings\user\Plocha\FV11127.pdf
[2011.12.01 11:16:15 | 000,126,462 | ---- | M] () -- C:\Documents and Settings\user\Plocha\FV11126.pdf
[2011.12.01 11:15:17 | 000,126,054 | ---- | M] () -- C:\Documents and Settings\user\Plocha\FV11125.pdf
[2011.12.01 11:13:53 | 000,125,896 | ---- | M] () -- C:\Documents and Settings\user\Plocha\FV11124.pdf
[2011.12.01 11:12:59 | 000,126,075 | ---- | M] () -- C:\Documents and Settings\user\Plocha\FV11123.pdf
[2011.12.01 10:56:05 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
[2011.12.01 10:52:01 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.12.01 10:36:02 | 000,001,022 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-1682526488-682003330-1004UA.job
[2011.12.01 10:20:40 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011.12.01 10:19:57 | 000,002,337 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk
[2011.12.01 10:19:36 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.12.01 10:19:03 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.12.01 10:15:33 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.12.01 09:38:10 | 000,000,340 | RHS- | M] () -- C:\boot.ini
[2011.12.01 09:25:47 | 076,004,920 | ---- | M] () -- C:\WINDOWS\System32\osaarcute23.dat
[2011.12.01 09:25:12 | 076,004,920 | -H-- | M] () -- C:\Documents and Settings\All Users\Data aplikací\jramisoseriv.dat
[2011.12.01 09:10:09 | 004,323,419 | R--- | M] (Swearware) -- C:\Documents and Settings\user\Plocha\ComboFix.exe
[2011.11.30 16:46:22 | 000,111,872 | ---- | M] () -- C:\WINDOWS\System32\drivers\TrueSight.sys
[2011.11.30 16:40:46 | 000,766,976 | ---- | M] () -- C:\Documents and Settings\user\Plocha\RogueKiller.exe
[2011.11.30 15:40:29 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\user\Plocha\RSIT.exe
[2011.11.30 14:44:14 | 076,004,920 | ---- | M] () -- C:\WINDOWS\System32\osamiaejmid.dat
[2011.11.30 14:42:02 | 000,046,592 | ---- | M] () -- C:\Documents and Settings\user\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.11.30 14:36:01 | 000,000,970 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-1682526488-682003330-1004Core.job
[2011.11.30 14:06:40 | 076,004,920 | ---- | M] () -- C:\WINDOWS\System32\ewqilaiuqmoc.dat
[2011.11.30 14:05:11 | 512,238,592 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\actualnet.pst
[2011.11.30 14:05:11 | 000,271,360 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\archive.pst
[2011.11.30 12:16:10 | 000,319,606 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\cc_20111130_121418.reg
[2011.11.29 12:03:32 | 004,712,108 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\kašparek.psd
[2011.11.29 11:48:24 | 000,136,494 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\flamin-pinup-devil-red-31000.jpg
[2011.11.29 11:17:51 | 000,230,634 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\768a650d4b02bfe.jpg
[2011.11.29 11:17:41 | 000,258,552 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\2b31cdf4cca29ff.jpg
[2011.11.29 11:17:25 | 000,103,516 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\430819057b195f0e.jpg
[2011.11.29 11:17:05 | 000,245,651 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\59ecc5a680770c2.jpg
[2011.11.29 11:15:47 | 000,297,828 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\417f1d806dcf7463.jpg
[2011.11.29 11:15:26 | 000,019,144 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\kasparek-v4.jpg
[2011.11.29 09:47:31 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.11.25 11:08:30 | 000,080,587 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\27192_1408338976769_1481284566_31082498_1079870_n.jpg
[2011.11.25 11:08:24 | 000,061,292 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\27192_1408339016770_1481284566_31082499_649934_n.jpg
[2011.11.25 11:08:13 | 000,062,448 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\36122_1509410023482_1481284566_31330379_3363808_n.jpg
[2011.11.24 12:42:14 | 000,001,779 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
[2011.11.24 12:42:08 | 000,500,866 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.11.24 12:42:08 | 000,106,340 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.11.24 11:45:42 | 003,444,440 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\HappyChristmas.mp3
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011.12.01 11:27:47 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.12.01 11:18:41 | 000,026,743 | ---- | C] () -- C:\Documents and Settings\user\Plocha\MONEY S3 - KNIHVFAK.FRM.pdf
[2011.12.01 11:16:57 | 000,126,023 | ---- | C] () -- C:\Documents and Settings\user\Plocha\FV11127.pdf
[2011.12.01 11:16:10 | 000,126,462 | ---- | C] () -- C:\Documents and Settings\user\Plocha\FV11126.pdf
[2011.12.01 11:15:12 | 000,126,054 | ---- | C] () -- C:\Documents and Settings\user\Plocha\FV11125.pdf
[2011.12.01 11:13:48 | 000,125,896 | ---- | C] () -- C:\Documents and Settings\user\Plocha\FV11124.pdf
[2011.12.01 11:12:53 | 000,126,075 | ---- | C] () -- C:\Documents and Settings\user\Plocha\FV11123.pdf
[2011.12.01 09:38:08 | 000,000,224 | ---- | C] () -- C:\Boot.bak
[2011.12.01 09:37:48 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2011.12.01 09:25:47 | 076,004,920 | ---- | C] () -- C:\WINDOWS\System32\osaarcute23.dat
[2011.11.30 17:14:17 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011.11.30 17:14:17 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011.11.30 17:14:17 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011.11.30 17:14:17 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011.11.30 17:14:17 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011.11.30 16:42:46 | 000,111,872 | ---- | C] () -- C:\WINDOWS\System32\drivers\TrueSight.sys
[2011.11.30 16:40:41 | 000,766,976 | ---- | C] () -- C:\Documents and Settings\user\Plocha\RogueKiller.exe
[2011.11.30 15:39:37 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\user\Plocha\RSIT.exe
[2011.11.30 14:44:14 | 076,004,920 | ---- | C] () -- C:\WINDOWS\System32\osamiaejmid.dat
[2011.11.30 14:06:40 | 076,004,920 | ---- | C] () -- C:\WINDOWS\System32\ewqilaiuqmoc.dat
[2011.11.30 12:14:19 | 000,319,606 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\cc_20111130_121418.reg
[2011.11.29 12:03:30 | 004,712,108 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\kašparek.psd
[2011.11.29 11:48:24 | 000,136,494 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\flamin-pinup-devil-red-31000.jpg
[2011.11.29 11:17:51 | 000,230,634 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\768a650d4b02bfe.jpg
[2011.11.29 11:17:40 | 000,258,552 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\2b31cdf4cca29ff.jpg
[2011.11.29 11:17:24 | 000,103,516 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\430819057b195f0e.jpg
[2011.11.29 11:17:04 | 000,245,651 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\59ecc5a680770c2.jpg
[2011.11.29 11:15:46 | 000,297,828 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\417f1d806dcf7463.jpg
[2011.11.29 11:15:26 | 000,019,144 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\kasparek-v4.jpg
[2011.11.25 11:08:30 | 000,080,587 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\27192_1408338976769_1481284566_31082498_1079870_n.jpg
[2011.11.25 11:08:24 | 000,061,292 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\27192_1408339016770_1481284566_31082499_649934_n.jpg
[2011.11.25 11:08:12 | 000,062,448 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\36122_1509410023482_1481284566_31330379_3363808_n.jpg
[2011.11.24 12:42:14 | 000,001,795 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Windows Search.lnk
[2011.11.24 12:42:14 | 000,001,779 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
[2011.08.23 00:41:24 | 076,004,920 | -H-- | C] () -- C:\Documents and Settings\All Users\Data aplikací\jramisoseriv.dat
[2011.04.29 09:53:15 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.02.08 15:49:16 | 000,072,192 | ---- | C] () -- C:\WINDOWS\unlite3.exe
[2011.01.21 17:33:23 | 004,940,950 | ---- | C] () -- C:\Program Files\03. Oasis - Stop Crying Your Heart Out (demo).mp3
[2011.01.10 11:54:41 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2011.01.05 14:59:11 | 000,004,670 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2010.09.27 11:43:42 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2010.09.27 11:43:42 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2010.09.27 11:43:42 | 000,224,342 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010.09.27 11:43:42 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2010.09.27 11:43:42 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2010.09.27 11:03:44 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2009.07.30 11:27:50 | 000,077,788 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009.06.01 17:18:42 | 000,004,767 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2009.05.29 12:04:31 | 000,000,139 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini
[2009.05.29 12:03:21 | 000,000,756 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2009.05.29 12:00:47 | 000,168,292 | ---- | C] () -- C:\WINDOWS\hppins09.dat
[2009.05.29 12:00:47 | 000,004,144 | ---- | C] () -- C:\WINDOWS\hppmdl09.dat
[2009.05.29 12:00:32 | 000,000,621 | ---- | C] () -- C:\WINDOWS\System32\hppapr09.dat
[2009.03.25 10:12:29 | 000,021,888 | ---- | C] () -- C:\Documents and Settings\user\Data aplikací\Hodnoty oddělené čárkami (Windows).ADR
[2008.10.10 08:15:21 | 000,046,592 | ---- | C] () -- C:\Documents and Settings\user\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.10.07 09:11:40 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.09.09 13:35:17 | 000,005,108 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008.09.02 12:49:25 | 000,000,526 | R--- | C] () -- C:\WINDOWS\System32\hppapr02.DAT
[2008.09.02 12:49:24 | 000,237,568 | R--- | C] () -- C:\WINDOWS\System32\hppapr02.DLL
[2008.09.01 12:18:20 | 000,000,383 | ---- | C] () -- C:\WINDOWS\System32\haspdos.sys
[2008.08.29 15:29:26 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2008.08.29 14:56:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008.08.29 14:35:31 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe
[2008.08.28 18:45:14 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.08.28 18:42:32 | 001,671,784 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008.08.28 17:37:11 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2008.08.28 17:26:58 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.08.28 17:22:20 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2008.08.28 16:58:04 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008.08.28 16:54:11 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008.05.26 22:22:14 | 000,015,552 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008.05.26 22:22:10 | 000,021,464 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008.05.26 22:22:04 | 000,014,910 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008.05.26 21:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008.05.26 21:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008.04.14 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008.04.14 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008.04.14 13:00:00 | 000,500,866 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2008.04.14 13:00:00 | 000,483,026 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008.04.14 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008.04.14 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2008.04.14 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008.04.14 13:00:00 | 000,106,340 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2008.04.14 13:00:00 | 000,086,976 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008.04.14 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008.04.14 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2008.04.14 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008.04.14 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008.04.14 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008.04.14 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008.04.14 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2001.07.07 03:00:00 | 000,003,165 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
========== LOP Check ==========
[2009.07.29 10:13:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2010.09.27 10:35:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Autodesk
[2009.10.12 09:35:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.01.21 16:27:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Keronsoft
[2010.09.27 11:01:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tablet
[2011.08.29 16:45:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\tmp
[2011.10.31 17:07:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Zoner Software a. s
[2009.06.01 08:05:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009.07.29 10:18:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ashampoo
[2009.10.12 09:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ESET
[2011.01.21 16:32:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\FreeAudioPack
[2011.01.06 10:30:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\GrabPro
[2011.06.07 13:12:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Miranda
[2008.10.20 08:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Opera
[2011.05.31 12:29:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Orbit
[2011.03.09 09:35:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PDM
[2011.06.07 10:05:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PriceGong
[2011.01.06 10:30:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ProgSense
[2009.03.19 17:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Thunderbird
[2011.06.07 10:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\uTorrent
[2009.03.04 13:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\VitySoft
[2011.11.24 12:58:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Windows Desktop Search
[2011.11.30 17:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Windows Search
[2011.11.03 16:08:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Zoner InShop Manager
[2011.12.01 10:20:40 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: ATAPI.SYS >
[2008.04.14 13:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.14 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2008.04.14 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\dllcache\autochk.exe
< MD5 for: CDROM.SYS >
[2008.04.14 13:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 13:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2008.04.14 13:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 13:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 13:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\system32\dllcache\explorer.exe
< MD5 for: HAL.DLL >
[2008.04.14 13:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 13:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\hal.dll
< MD5 for: SCECLI.DLL >
[2008.04.14 13:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 13:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2008.04.14 13:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SVCHOST.EXE >
[2008.04.14 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2008.04.14 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 13:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 13:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\dllcache\userinit.exe
[2008.04.14 13:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2008.04.14 13:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 13:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008.04.14 13:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< >
< %systemroot%*.* /U /s >
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[9 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2009.08.20 14:26:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Adobe
[2008.09.02 12:27:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\AdobeUM
[2009.07.30 11:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Apple Computer
[2009.07.29 10:18:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ashampoo
[2008.08.28 17:37:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ATI
[2009.10.12 09:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ESET
[2011.01.21 16:32:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\FreeAudioPack
[2009.03.12 15:05:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Google
[2011.01.06 10:30:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\GrabPro
[2008.08.28 17:11:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Identities
[2008.08.28 17:13:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\InstallShield
[2008.09.01 09:06:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Macromedia
[2011.01.17 17:26:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Media Player Classic
[2011.11.03 17:01:19 | 000,000,000 | --SD | M] -- C:\Documents and Settings\user\Data aplikací\Microsoft
[2011.06.07 13:12:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Miranda
[2009.03.19 17:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla
[2009.06.01 18:08:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Nero
[2008.10.20 08:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Opera
[2011.05.31 12:29:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Orbit
[2011.03.09 09:35:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PDM
[2011.06.07 10:05:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PriceGong
[2011.01.06 10:30:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ProgSense
[2008.12.29 12:56:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PSpad
[2011.12.01 11:20:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Skype
[2011.09.30 08:36:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\skypePM
[2008.09.30 09:11:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Sun
[2009.03.19 17:29:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Talkback
[2009.03.19 17:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Thunderbird
[2011.06.07 10:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\uTorrent
[2009.03.04 13:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\VitySoft
[2011.10.18 10:30:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\vlc
[2011.11.24 12:58:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Windows Desktop Search
[2011.11.30 17:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Windows Search
[2008.09.09 13:14:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\WinRAR
[2011.11.03 16:08:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Zoner InShop Manager
< %APPDATA%\*.exe /s >
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job >
[2011.12.01 10:19:03 | 000,000,932 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2011.12.01 10:52:01 | 000,000,936 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2011.11.30 14:36:01 | 000,000,970 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-1682526488-682003330-1004Core.job
[2011.12.01 11:36:01 | 000,001,022 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-1682526488-682003330-1004UA.job
[2011.12.01 10:20:40 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2008.08.28 18:41:51 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2008.08.28 18:41:50 | 001,069,056 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2008.08.28 18:41:50 | 000,487,424 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
[2011.11.30 16:46:22 | 000,111,872 | ---- | M] () -- C:\WINDOWS\system32\drivers\TrueSight.sys
< %systemroot%\system32\*.* /3 >
[2011.11.30 14:06:40 | 076,004,920 | ---- | M] () -- C:\WINDOWS\system32\ewqilaiuqmoc.dat
[2011.12.01 09:25:47 | 076,004,920 | ---- | M] () -- C:\WINDOWS\system32\osaarcute23.dat
[2011.11.30 14:44:14 | 076,004,920 | ---- | M] () -- C:\WINDOWS\system32\osamiaejmid.dat
[2011.11.29 09:47:31 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized -- [2009.01.29 13:01:36 | 023,975,720 | R--- | M] (Skype Technologies S.A.)
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 13:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.12.01 11:27:47 | 000,000,512 | ---- | M] () MD5=3B265E1A9C25ED14123722DA09AC4C30 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2007.05.04 00:07:02 | 000,003,556 | ---- | M] () -- \Program Files\Adobe\Adobe Dreamweaver CS3\configuration\Content\Reference\PHP\CrackF.html
< *keygen* /s >
[2007.05.04 00:07:00 | 000,013,367 | ---- | M] () -- \Program Files\Adobe\Adobe Dreamweaver CS3\configuration\Content\Reference\HTML\KEYGEN.html
< *loader* /s >
[2008.04.16 13:41:06 | 000,178,068 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\fl\containers\UILoader.html
[2008.04.16 13:41:20 | 000,016,942 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\fl\containers\examples\UILoaderExample.swf
[2008.04.16 13:41:54 | 000,115,985 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\display\Loader.html
[2008.04.16 13:41:06 | 000,086,633 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\display\LoaderInfo.html
[2008.04.16 13:41:06 | 000,026,742 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\media\SoundLoaderContext.html
[2008.04.16 13:41:20 | 000,065,232 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\net\URLLoader.html
[2008.04.16 13:41:04 | 000,022,343 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\net\URLLoaderDataFormat.html
[2008.04.16 13:41:52 | 000,035,457 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\system\LoaderContext.html
[2007.05.09 15:51:14 | 000,025,994 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\images\loaderInfo_object.jpg
[2007.05.09 15:52:02 | 000,040,276 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ProgrammingActionScript3\images\loaderInfo_object.png
[2008.09.19 12:55:44 | 000,000,232 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Nero\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2011.05.31 08:16:47 | 000,022,486 | ---- | M] () -- \Documents and Settings\user\Data aplikací\Orbit\icon\Orbit Downloader.ico
[2011.01.25 13:23:02 | 000,000,348 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\fotofolio-landscape-1.2.2\fotofolio-landscape\libs\wpop\assets\js\webfont-loader.js
[2011.06.08 17:08:42 | 000,003,208 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\dmslider\images\loader.gif
[2011.01.31 15:33:42 | 000,002,545 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\dark_rounded\loader.gif
[2011.01.31 15:33:42 | 000,002,545 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\dark_square\loader.gif
[2011.03.17 05:06:28 | 000,006,331 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\default\loader.gif
[2011.01.31 15:33:42 | 000,002,545 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\facebook\loader.gif
[2011.01.31 15:33:42 | 000,002,545 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\light_rounded\loader.gif
[2011.01.31 15:33:42 | 000,002,545 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\light_square\loader.gif
[2011.07.21 20:43:12 | 000,035,727 | ---- | M] () -- \Documents and Settings\user\Dokumenty\wordpress-3.2.1-cs_CZ\wordpress\wp-includes\script-loader.php
[2011.07.21 20:43:14 | 000,001,893 | ---- | M] () -- \Documents and Settings\user\Dokumenty\wordpress-3.2.1-cs_CZ\wordpress\wp-includes\template-loader.php
[2005.06.20 23:45:24 | 000,000,544 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\cs\Configuration\Classes\FP7\MovieClipLoader.as
[2005.06.20 23:45:26 | 000,000,544 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\cs\Configuration\Classes\FP8\MovieClipLoader.as
[2006.10.30 19:09:08 | 000,000,576 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\cs\Configuration\Classes\FP9\MovieClipLoader.as
[2005.07.13 20:06:52 | 000,010,454 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\cs\Configuration\Classes\mx\controls\Loader.as
[2005.06.20 14:45:24 | 000,000,544 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\en\Configuration\Classes\FP7\MovieClipLoader.as
[2005.06.20 14:45:26 | 000,000,544 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\en\Configuration\Classes\FP8\MovieClipLoader.as
[2006.10.30 11:09:08 | 000,000,576 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\en\Configuration\Classes\FP9\MovieClipLoader.as
[2005.07.13 11:06:52 | 000,010,454 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\en\Configuration\Classes\mx\controls\Loader.as
[2003.09.25 10:28:40 | 011,015,680 | ---- | M] () -- \Documents and Settings\user\Plocha\ACTUAL NET marketing\Archiv actualnet\STARENaše grafické podklady\Stažene obrazky\grafika\Grafika_archiv_podklady\macromedia_flash\CDV\AVIs\Vytvoření preloaderu.avi
[2003.08.10 02:03:14 | 000,361,984 | ---- | M] () -- \Documents and Settings\user\Plocha\ACTUAL NET marketing\Archiv actualnet\STARENaše grafické podklady\Stažene obrazky\grafika\Grafika_archiv_podklady\macromedia_flash\CDV\Soubory\Vytvoření preloaderu\Vytvoření preloaderu - výchozí.fla
[2003.08.10 01:54:58 | 000,364,032 | ---- | M] () -- \Documents and Settings\user\Plocha\ACTUAL NET marketing\Archiv actualnet\STARENaše grafické podklady\Stažene obrazky\grafika\Grafika_archiv_podklady\macromedia_flash\CDV\Soubory\Vytvoření preloaderu\Vytvoření preloaderu - výstup.fla
[2003.08.10 01:54:20 | 000,297,518 | ---- | M] () -- \Documents and Settings\user\Plocha\ACTUAL NET marketing\Archiv actualnet\STARENaše grafické podklady\Stažene obrazky\grafika\Grafika_archiv_podklady\macromedia_flash\CDV\Soubory\Vytvoření preloaderu\Vytvoření preloaderu - výstup.swf
[2011.07.21 20:43:12 | 000,035,727 | ---- | M] () -- \Documents and Settings\user\Plocha\PETRA\wordpress-3.2.1-cs_CZ\wordpress\wp-includes\script-loader.php
[2011.07.21 20:43:14 | 000,001,893 | ---- | M] () -- \Documents and Settings\user\Plocha\PETRA\wordpress-3.2.1-cs_CZ\wordpress\wp-includes\template-loader.php
[2007.11.06 10:36:18 | 004,937,640 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\Photodownloader.exe
[2007.03.14 16:07:28 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\de_de\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\en_us\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\es_es\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\it_it\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\no_no\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2007.03.14 16:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2007.03.14 16:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2007.03.14 16:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2007.05.04 00:09:24 | 000,037,112 | ---- | M] () -- \Program Files\Adobe\Adobe Dreamweaver CS3\configuration\Shared\MM\Media\FLVLoader.swf
[2007.02.06 05:11:36 | 000,025,485 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\Configuration\Component Source\ActionScript 3.0\User Interface\fl\containers\UILoader.as
[2007.01.05 20:36:38 | 000,044,966 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\Configuration\Components\User Interface\Loader.swc
[2005.06.20 23:45:24 | 000,000,544 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\First Run\Classes\FP7\MovieClipLoader.as
[2005.06.20 23:45:26 | 000,000,544 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\First Run\Classes\FP8\MovieClipLoader.as
[2006.10.30 19:09:08 | 000,000,576 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\First Run\Classes\FP9\MovieClipLoader.as
[2005.07.13 20:06:52 | 000,010,454 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\First Run\Classes\mx\controls\Loader.as
[2008.11.26 14:36:28 | 000,002,754 | ---- | M] () -- \Program Files\Adobe\Adobe InDesign CS3\Scripts\Export As Xhtml\Startup Scripts\XHTMLExportMenuItemLoader.jsx
[2008.11.26 14:36:30 | 000,002,292 | ---- | M] () -- \Program Files\Adobe\Adobe InDesign CS3\Scripts\XHTML For Digital Editions\Startup Scripts\OEBExportMenuItemLoader.jsx
[2007.02.19 16:59:40 | 000,011,309 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\WorkflowScriptLoader.jsx
[2007.02.19 16:59:40 | 000,001,240 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_da_DK.dat
[2007.02.19 16:59:40 | 000,001,268 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_de_DE.dat
[2007.02.19 16:59:40 | 000,001,172 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_en_US.dat
[2007.02.19 16:59:40 | 000,001,342 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_es_ES.dat
[2007.02.19 16:59:40 | 000,001,310 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_fr_FR.dat
[2007.02.19 16:59:40 | 000,001,282 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_it_IT.dat
[2007.02.19 16:59:40 | 000,001,016 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_ja_JP.dat
[2007.02.19 16:59:40 | 000,000,966 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_ko_KR.dat
[2007.02.19 16:59:40 | 000,001,198 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_nl_NL.dat
[2007.02.19 16:59:40 | 000,001,174 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_sv_SE.dat
[2007.02.19 16:59:40 | 000,000,882 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_zh_CN.dat
[2007.02.19 16:59:40 | 000,000,890 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_zh_TW.dat
[2007.03.14 16:10:18 | 000,088,333 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ar_AE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:20 | 000,025,188 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\cs_CZ\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:26 | 000,032,022 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\da_DK\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:28 | 000,032,216 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\de_DE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:30 | 000,027,655 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\el_GR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:36 | 000,030,891 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:38 | 000,032,399 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\es_ES\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:42 | 000,032,333 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\fi_FI\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:42 | 000,032,393 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\fr_FR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:46 | 000,022,871 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\he_IL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:48 | 000,025,272 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\hu_HU\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:50 | 000,032,109 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\it_IT\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:50 | 000,032,441 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ja_JP\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:52 | 000,032,499 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ko_KR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:54 | 000,032,074 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\nb_NO\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:56 | 000,032,110 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\nl_NL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:58 | 000,024,996 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\pl_PL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:00 | 000,031,772 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\pt_BR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:02 | 000,024,463 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ro_RO\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:04 | 000,025,054 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ru_RU\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:06 | 000,032,171 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\sv_SE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:06 | 000,024,411 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\tr_TR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:08 | 000,025,525 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\uk_UA\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:10 | 000,032,741 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\zh_CN\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:10 | 000,032,833 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\zh_TW\Bridge\2.0\images\br_photo_downloader.png
[2007.07.06 16:47:00 | 000,004,629 | ---- | M] () -- \Program Files\Common Files\Adobe\Startup Scripts CS3\Adobe Version Cue\VersionCueSDKLoader.jsx
[2006.10.26 12:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 12:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2005.10.14 02:49:48 | 000,017,624 | ---- | M] () -- \Program Files\Microsoft SQL Server\90\Tools\Binn\SqlResourceLoader.dll
[2005.10.14 02:49:48 | 000,017,624 | ---- | M] () -- \Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SqlResourceLoader.dll
[2006.12.23 16:37:56 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2009.03.06 10:52:28 | 000,082,784 | ---- | M] () -- \WINDOWS\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2002.12.11 23:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 13:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[1996.10.15 08:53:16 | 000,078,848 | ---- | M] () -- \WINDOWS\system32\INLOADER.DLL
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2008.04.14 13:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
[2011.07.21 21:43:12 | 000,035,727 | ---- | M] () -- \wordpress-3.2.1-cs_CZ\wordpress\wp-includes\script-loader.php
[2011.07.21 21:43:14 | 000,001,893 | ---- | M] () -- \wordpress-3.2.1-cs_CZ\wordpress\wp-includes\template-loader.php
[2011.10.12 10:09:29 | 000,000,673 | ---- | M] () -- \zaloha\wp-content\plugins\nextgen-gallery\images\ajax-loader.gif
[2011.10.12 10:09:29 | 000,006,820 | ---- | M] () -- \zaloha\wp-content\plugins\nextgen-gallery\images\loader.gif
[2011.10.12 09:35:54 | 000,032,349 | ---- | M] () -- \zaloha\wp-includes\script-loader.php
[2011.10.12 09:36:00 | 000,001,893 | ---- | M] () -- \zaloha\wp-includes\template-loader.php
< End of report >
OTL logfile created on: 1.12.2011 11:25:56 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\user\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,16 Gb Available Physical Memory | 57,94% Memory free
3,85 Gb Paging File | 3,09 Gb Available in Paging File | 80,19% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 134,93 Gb Total Space | 97,05 Gb Free Space | 71,93% Space Free | Partition Type: NTFS
Drive D: | 97,95 Gb Total Space | 96,32 Gb Free Space | 98,34% Space Free | Partition Type: NTFS
Drive S: | 465,66 Gb Total Space | 246,30 Gb Free Space | 52,89% Space Free | Partition Type: NTFS
Drive Z: | 465,66 Gb Total Space | 246,30 Gb Free Space | 52,89% Space Free | Partition Type: NTFS
Computer Name: ASISTENTKA | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011.12.01 10:56:05 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
PRC - [2011.11.09 14:23:53 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.11.07 18:26:58 | 000,820,309 | ---- | M] ( ) -- C:\Program Files\Miranda IM\miranda32.exe
PRC - [2011.06.15 14:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011.04.27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010.06.08 11:07:08 | 001,255,144 | ---- | M] () -- C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
PRC - [2010.06.08 11:07:08 | 000,592,104 | ---- | M] () -- C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
PRC - [2010.05.14 11:44:46 | 000,501,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2009.05.29 09:07:49 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
PRC - [2008.09.30 11:48:28 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2008.04.14 13:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.01.11 18:54:00 | 000,623,992 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
========== Modules (No Company Name) ==========
MOD - [2011.11.21 09:59:02 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011.11.09 14:23:52 | 001,989,592 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.11.07 18:28:02 | 000,090,201 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\srmm.dll
MOD - [2011.11.07 18:26:28 | 000,054,361 | ---- | M] () -- C:\Program Files\Miranda IM\zlib.dll
MOD - [2011.11.07 18:26:16 | 000,338,527 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\ICQ.dll
MOD - [2011.11.07 18:26:02 | 000,036,962 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\dbx_mmap.dll
MOD - [2011.11.07 18:25:50 | 000,061,539 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\clist_classic.dll
MOD - [2011.11.07 18:25:46 | 000,245,849 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\chat.dll
MOD - [2011.11.07 18:25:32 | 000,202,846 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\Aim.dll
MOD - [2011.11.07 18:25:08 | 000,378,458 | ---- | M] () -- C:\Program Files\Miranda IM\Plugins\IRC.dll
MOD - [2011.10.13 10:47:36 | 011,800,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\60df958ca96c9b8945f836759b6abd34\System.Web.ni.dll
MOD - [2011.10.13 10:46:16 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\bce0720436dc6cb76006377f295ea365\System.Configuration.ni.dll
MOD - [2011.10.13 10:45:38 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\d86a3346c3d90ff12d0df9d7726f3ece\Accessibility.ni.dll
MOD - [2011.10.13 08:23:15 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll
MOD - [2011.10.13 08:23:02 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll
MOD - [2011.10.13 08:22:44 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll
MOD - [2011.10.12 16:47:39 | 007,950,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll
MOD - [2011.10.12 16:47:30 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MOD - [2011.10.12 16:46:42 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2010.09.10 21:21:04 | 000,270,336 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2010.08.04 15:58:06 | 000,016,384 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2010.06.08 11:07:08 | 001,255,144 | ---- | M] () -- C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
MOD - [2010.06.08 11:07:08 | 000,592,104 | ---- | M] () -- C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
MOD - [2010.06.08 11:07:08 | 000,045,056 | ---- | M] () -- C:\Program Files\CIGLER SOFTWARE\NetLicence\Mtp32.dll
MOD - [2010.03.16 12:22:12 | 000,014,848 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AxInterop.WBOCXLib.dll
MOD - [2008.04.14 13:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2001.10.28 17:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- -- (mi-raysat_3dsmax9_32) mental ray 3.5 Satellite (32-bit)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.04.27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010.06.08 11:07:08 | 000,592,104 | ---- | M] () [Auto | Running] -- C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe -- (SWLckServer)
SRV - [2009.05.29 09:07:49 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Running] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008.09.30 11:48:28 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
========== Driver Services (SafeList) ==========
DRV - [2011.12.01 10:31:08 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{D4E41694-23BE-414D-9E85-2807C19E185E}\MpKslfbfe95e2.sys -- (MpKslfbfe95e2)
DRV - [2011.11.30 16:46:22 | 000,111,872 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TrueSight.sys -- (TrueSight)
DRV - [2010.09.11 03:19:16 | 005,417,472 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010.02.11 13:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2008.09.01 12:18:20 | 000,047,616 | ---- | M] (Aladdin Knowledge Systems) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Haspnt.sys -- (Haspnt)
DRV - [2007.11.14 20:48:20 | 000,084,992 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2007.08.28 09:55:10 | 004,609,024 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.04.14 09:28:00 | 000,094,592 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2006.11.22 09:01:48 | 000,693,760 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2006.07.01 21:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2002.09.16 17:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [2001.06.21 20:39:02 | 000,073,728 | ---- | M] (Rainbow Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel)
DRV - [2001.06.21 20:39:02 | 000,020,032 | R--- | M] (Rainbow Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SNTNLUSB.SYS -- (Sntnlusb)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://klient4.rb.cz/ebts/version_02/cz/banka3.html
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.order.1: "Ask"
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz"
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.6.2
FF - prefs.js..extensions.enabledItems: grabthemall@zelazko.info:0.6.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: seo@profesional:1.1.1
FF - prefs.js..extensions.enabledItems: {3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}:0.8.6.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {02450954-cdd9-410f-b1da-db804e18c671}:0.96.3
FF - prefs.js..extensions.enabledItems: {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.5
FF - prefs.js..keyword.URL: "http://www.google.com/search?sourceid=n ... t&hl=cs&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\user\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.11.09 14:23:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.04.08 14:09:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
[2008.08.29 14:56:01 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Extensions
[2011.11.24 11:46:11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions
[2011.01.24 10:43:57 | 000,000,000 | ---D | M] (Screengrab) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions\{02450954-cdd9-410f-b1da-db804e18c671}
[2011.11.24 11:46:14 | 000,000,000 | ---D | M] (Html Validator) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}
[2009.08.25 08:02:40 | 000,000,000 | ---D | M] ("Naver") -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions\navertheme@nhncorp.com
[2009.08.25 08:02:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\extensions\navertheme@nhncorp.com\chrome\mozapps\extensions
[2008.12.03 11:58:40 | 000,000,681 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\Firefox\Profiles\jbhtq7s5.default\searchplugins\ask.xml
[2011.11.09 14:23:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\JBHTQ7S5.DEFAULT\EXTENSIONS\{3B56BCC7-54E5-44A2-9B44-66C3EF58C13E}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\JBHTQ7S5.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\JBHTQ7S5.DEFAULT\EXTENSIONS\GRABTHEMALL@ZELAZKO.INFO.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\JBHTQ7S5.DEFAULT\EXTENSIONS\SEO@PROFESIONAL.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\JBHTQ7S5.DEFAULT\EXTENSIONS\SEOSTATUS@RUBYWEB.XPI
[2011.11.09 14:23:54 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010.11.12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.10.03 16:48:19 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.10.03 16:48:19 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.10.03 16:48:19 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.10.03 16:48:19 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.10.03 16:48:19 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\user\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Documents and Settings\user\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\user\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\gcswf32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.230.5 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U23 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\user\Local Settings\Data aplikac\u00ED\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\Program Files\Yahoo!\Common\npyaxmpb.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
O1 HOSTS File: ([2011.12.01 10:19:36 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [ATICustomerCare] C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NetLockMngr] C:\Program Files\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk = C:\WINDOWS\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe (Adobe Systems Incorporated)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést výběr do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést výběr do existujícího PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Přidat do stávajícího PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E5353454-3FDD-4121-949B-F422AA94AE86}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\user\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.08.28 16:56:30 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: SENTINEL - C:\WINDOWS\System32\SNTI386.DLL (Rainbow Technologies, Inc.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2011.12.01 10:55:57 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
[2011.12.01 10:12:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011.12.01 09:37:45 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.12.01 09:30:04 | 000,000,000 | ---D | C] -- C:\ComboFix
[2011.11.30 17:14:17 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011.11.30 17:14:17 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011.11.30 17:14:17 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011.11.30 17:14:17 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011.11.30 17:12:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.11.30 17:07:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Data aplikací\Windows Search
[2011.11.30 17:03:48 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.11.30 17:03:27 | 000,000,000 | R--D | C] -- C:\Documents and Settings\user\Dokumenty\Filmy
[2011.11.30 16:57:46 | 004,323,419 | R--- | C] (Swearware) -- C:\Documents and Settings\user\Plocha\ComboFix.exe
[2011.11.30 16:42:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Plocha\RK_Quarantine
[2011.11.30 15:40:33 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.11.30 15:40:32 | 000,000,000 | ---D | C] -- C:\rsit
[2011.11.30 14:07:01 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Recent
[2011.11.24 12:58:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Data aplikací\Windows Desktop Search
[2011.11.24 12:42:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Adobe
[2011.11.24 12:42:00 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2011.11.24 12:41:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2011.08.23 00:41:24 | 001,106,114 | -H-- | C] (Atcufm zqkxlw) -- C:\Documents and Settings\All Users\Data aplikací\viresosimarj.dat
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2011.12.01 11:27:47 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.12.01 11:18:41 | 000,026,743 | ---- | M] () -- C:\Documents and Settings\user\Plocha\MONEY S3 - KNIHVFAK.FRM.pdf
[2011.12.01 11:17:02 | 000,126,023 | ---- | M] () -- C:\Documents and Settings\user\Plocha\FV11127.pdf
[2011.12.01 11:16:15 | 000,126,462 | ---- | M] () -- C:\Documents and Settings\user\Plocha\FV11126.pdf
[2011.12.01 11:15:17 | 000,126,054 | ---- | M] () -- C:\Documents and Settings\user\Plocha\FV11125.pdf
[2011.12.01 11:13:53 | 000,125,896 | ---- | M] () -- C:\Documents and Settings\user\Plocha\FV11124.pdf
[2011.12.01 11:12:59 | 000,126,075 | ---- | M] () -- C:\Documents and Settings\user\Plocha\FV11123.pdf
[2011.12.01 10:56:05 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
[2011.12.01 10:52:01 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.12.01 10:36:02 | 000,001,022 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-1682526488-682003330-1004UA.job
[2011.12.01 10:20:40 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011.12.01 10:19:57 | 000,002,337 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Acrobat Speed Launcher.lnk
[2011.12.01 10:19:36 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.12.01 10:19:03 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.12.01 10:15:33 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.12.01 09:38:10 | 000,000,340 | RHS- | M] () -- C:\boot.ini
[2011.12.01 09:25:47 | 076,004,920 | ---- | M] () -- C:\WINDOWS\System32\osaarcute23.dat
[2011.12.01 09:25:12 | 076,004,920 | -H-- | M] () -- C:\Documents and Settings\All Users\Data aplikací\jramisoseriv.dat
[2011.12.01 09:10:09 | 004,323,419 | R--- | M] (Swearware) -- C:\Documents and Settings\user\Plocha\ComboFix.exe
[2011.11.30 16:46:22 | 000,111,872 | ---- | M] () -- C:\WINDOWS\System32\drivers\TrueSight.sys
[2011.11.30 16:40:46 | 000,766,976 | ---- | M] () -- C:\Documents and Settings\user\Plocha\RogueKiller.exe
[2011.11.30 15:40:29 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\user\Plocha\RSIT.exe
[2011.11.30 14:44:14 | 076,004,920 | ---- | M] () -- C:\WINDOWS\System32\osamiaejmid.dat
[2011.11.30 14:42:02 | 000,046,592 | ---- | M] () -- C:\Documents and Settings\user\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.11.30 14:36:01 | 000,000,970 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-1682526488-682003330-1004Core.job
[2011.11.30 14:06:40 | 076,004,920 | ---- | M] () -- C:\WINDOWS\System32\ewqilaiuqmoc.dat
[2011.11.30 14:05:11 | 512,238,592 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\actualnet.pst
[2011.11.30 14:05:11 | 000,271,360 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\archive.pst
[2011.11.30 12:16:10 | 000,319,606 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\cc_20111130_121418.reg
[2011.11.29 12:03:32 | 004,712,108 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\kašparek.psd
[2011.11.29 11:48:24 | 000,136,494 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\flamin-pinup-devil-red-31000.jpg
[2011.11.29 11:17:51 | 000,230,634 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\768a650d4b02bfe.jpg
[2011.11.29 11:17:41 | 000,258,552 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\2b31cdf4cca29ff.jpg
[2011.11.29 11:17:25 | 000,103,516 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\430819057b195f0e.jpg
[2011.11.29 11:17:05 | 000,245,651 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\59ecc5a680770c2.jpg
[2011.11.29 11:15:47 | 000,297,828 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\417f1d806dcf7463.jpg
[2011.11.29 11:15:26 | 000,019,144 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\kasparek-v4.jpg
[2011.11.29 09:47:31 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.11.25 11:08:30 | 000,080,587 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\27192_1408338976769_1481284566_31082498_1079870_n.jpg
[2011.11.25 11:08:24 | 000,061,292 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\27192_1408339016770_1481284566_31082499_649934_n.jpg
[2011.11.25 11:08:13 | 000,062,448 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\36122_1509410023482_1481284566_31330379_3363808_n.jpg
[2011.11.24 12:42:14 | 000,001,779 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
[2011.11.24 12:42:08 | 000,500,866 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.11.24 12:42:08 | 000,106,340 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.11.24 11:45:42 | 003,444,440 | ---- | M] () -- C:\Documents and Settings\user\Dokumenty\HappyChristmas.mp3
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011.12.01 11:27:47 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.12.01 11:18:41 | 000,026,743 | ---- | C] () -- C:\Documents and Settings\user\Plocha\MONEY S3 - KNIHVFAK.FRM.pdf
[2011.12.01 11:16:57 | 000,126,023 | ---- | C] () -- C:\Documents and Settings\user\Plocha\FV11127.pdf
[2011.12.01 11:16:10 | 000,126,462 | ---- | C] () -- C:\Documents and Settings\user\Plocha\FV11126.pdf
[2011.12.01 11:15:12 | 000,126,054 | ---- | C] () -- C:\Documents and Settings\user\Plocha\FV11125.pdf
[2011.12.01 11:13:48 | 000,125,896 | ---- | C] () -- C:\Documents and Settings\user\Plocha\FV11124.pdf
[2011.12.01 11:12:53 | 000,126,075 | ---- | C] () -- C:\Documents and Settings\user\Plocha\FV11123.pdf
[2011.12.01 09:38:08 | 000,000,224 | ---- | C] () -- C:\Boot.bak
[2011.12.01 09:37:48 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2011.12.01 09:25:47 | 076,004,920 | ---- | C] () -- C:\WINDOWS\System32\osaarcute23.dat
[2011.11.30 17:14:17 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011.11.30 17:14:17 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011.11.30 17:14:17 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011.11.30 17:14:17 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011.11.30 17:14:17 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011.11.30 16:42:46 | 000,111,872 | ---- | C] () -- C:\WINDOWS\System32\drivers\TrueSight.sys
[2011.11.30 16:40:41 | 000,766,976 | ---- | C] () -- C:\Documents and Settings\user\Plocha\RogueKiller.exe
[2011.11.30 15:39:37 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\user\Plocha\RSIT.exe
[2011.11.30 14:44:14 | 076,004,920 | ---- | C] () -- C:\WINDOWS\System32\osamiaejmid.dat
[2011.11.30 14:06:40 | 076,004,920 | ---- | C] () -- C:\WINDOWS\System32\ewqilaiuqmoc.dat
[2011.11.30 12:14:19 | 000,319,606 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\cc_20111130_121418.reg
[2011.11.29 12:03:30 | 004,712,108 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\kašparek.psd
[2011.11.29 11:48:24 | 000,136,494 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\flamin-pinup-devil-red-31000.jpg
[2011.11.29 11:17:51 | 000,230,634 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\768a650d4b02bfe.jpg
[2011.11.29 11:17:40 | 000,258,552 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\2b31cdf4cca29ff.jpg
[2011.11.29 11:17:24 | 000,103,516 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\430819057b195f0e.jpg
[2011.11.29 11:17:04 | 000,245,651 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\59ecc5a680770c2.jpg
[2011.11.29 11:15:46 | 000,297,828 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\417f1d806dcf7463.jpg
[2011.11.29 11:15:26 | 000,019,144 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\kasparek-v4.jpg
[2011.11.25 11:08:30 | 000,080,587 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\27192_1408338976769_1481284566_31082498_1079870_n.jpg
[2011.11.25 11:08:24 | 000,061,292 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\27192_1408339016770_1481284566_31082499_649934_n.jpg
[2011.11.25 11:08:12 | 000,062,448 | ---- | C] () -- C:\Documents and Settings\user\Dokumenty\36122_1509410023482_1481284566_31330379_3363808_n.jpg
[2011.11.24 12:42:14 | 000,001,795 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Windows Search.lnk
[2011.11.24 12:42:14 | 000,001,779 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
[2011.08.23 00:41:24 | 076,004,920 | -H-- | C] () -- C:\Documents and Settings\All Users\Data aplikací\jramisoseriv.dat
[2011.04.29 09:53:15 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.02.08 15:49:16 | 000,072,192 | ---- | C] () -- C:\WINDOWS\unlite3.exe
[2011.01.21 17:33:23 | 004,940,950 | ---- | C] () -- C:\Program Files\03. Oasis - Stop Crying Your Heart Out (demo).mp3
[2011.01.10 11:54:41 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2011.01.05 14:59:11 | 000,004,670 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2010.09.27 11:43:42 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2010.09.27 11:43:42 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2010.09.27 11:43:42 | 000,224,342 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010.09.27 11:43:42 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2010.09.27 11:43:42 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2010.09.27 11:03:44 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2009.07.30 11:27:50 | 000,077,788 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009.06.01 17:18:42 | 000,004,767 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2009.05.29 12:04:31 | 000,000,139 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini
[2009.05.29 12:03:21 | 000,000,756 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2009.05.29 12:00:47 | 000,168,292 | ---- | C] () -- C:\WINDOWS\hppins09.dat
[2009.05.29 12:00:47 | 000,004,144 | ---- | C] () -- C:\WINDOWS\hppmdl09.dat
[2009.05.29 12:00:32 | 000,000,621 | ---- | C] () -- C:\WINDOWS\System32\hppapr09.dat
[2009.03.25 10:12:29 | 000,021,888 | ---- | C] () -- C:\Documents and Settings\user\Data aplikací\Hodnoty oddělené čárkami (Windows).ADR
[2008.10.10 08:15:21 | 000,046,592 | ---- | C] () -- C:\Documents and Settings\user\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.10.07 09:11:40 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.09.09 13:35:17 | 000,005,108 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008.09.02 12:49:25 | 000,000,526 | R--- | C] () -- C:\WINDOWS\System32\hppapr02.DAT
[2008.09.02 12:49:24 | 000,237,568 | R--- | C] () -- C:\WINDOWS\System32\hppapr02.DLL
[2008.09.01 12:18:20 | 000,000,383 | ---- | C] () -- C:\WINDOWS\System32\haspdos.sys
[2008.08.29 15:29:26 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2008.08.29 14:56:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008.08.29 14:35:31 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe
[2008.08.28 18:45:14 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.08.28 18:42:32 | 001,671,784 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008.08.28 17:37:11 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2008.08.28 17:26:58 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.08.28 17:22:20 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2008.08.28 16:58:04 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008.08.28 16:54:11 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008.05.26 22:22:14 | 000,015,552 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008.05.26 22:22:10 | 000,021,464 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008.05.26 22:22:04 | 000,014,910 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008.05.26 21:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008.05.26 21:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008.04.14 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008.04.14 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008.04.14 13:00:00 | 000,500,866 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2008.04.14 13:00:00 | 000,483,026 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008.04.14 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008.04.14 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2008.04.14 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008.04.14 13:00:00 | 000,106,340 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2008.04.14 13:00:00 | 000,086,976 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008.04.14 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008.04.14 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2008.04.14 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008.04.14 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008.04.14 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008.04.14 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008.04.14 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2001.07.07 03:00:00 | 000,003,165 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
========== LOP Check ==========
[2009.07.29 10:13:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2010.09.27 10:35:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Autodesk
[2009.10.12 09:35:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.01.21 16:27:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Keronsoft
[2010.09.27 11:01:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tablet
[2011.08.29 16:45:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\tmp
[2011.10.31 17:07:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Zoner Software a. s
[2009.06.01 08:05:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009.07.29 10:18:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ashampoo
[2009.10.12 09:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ESET
[2011.01.21 16:32:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\FreeAudioPack
[2011.01.06 10:30:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\GrabPro
[2011.06.07 13:12:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Miranda
[2008.10.20 08:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Opera
[2011.05.31 12:29:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Orbit
[2011.03.09 09:35:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PDM
[2011.06.07 10:05:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PriceGong
[2011.01.06 10:30:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ProgSense
[2009.03.19 17:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Thunderbird
[2011.06.07 10:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\uTorrent
[2009.03.04 13:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\VitySoft
[2011.11.24 12:58:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Windows Desktop Search
[2011.11.30 17:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Windows Search
[2011.11.03 16:08:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Zoner InShop Manager
[2011.12.01 10:20:40 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: ATAPI.SYS >
[2008.04.14 13:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.14 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2008.04.14 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\dllcache\autochk.exe
< MD5 for: CDROM.SYS >
[2008.04.14 13:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 13:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2008.04.14 13:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 13:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 13:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\system32\dllcache\explorer.exe
< MD5 for: HAL.DLL >
[2008.04.14 13:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 13:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\hal.dll
< MD5 for: SCECLI.DLL >
[2008.04.14 13:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 13:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2008.04.14 13:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SVCHOST.EXE >
[2008.04.14 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2008.04.14 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 13:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 13:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\dllcache\userinit.exe
[2008.04.14 13:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2008.04.14 13:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 13:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008.04.14 13:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< >
< %systemroot%*.* /U /s >
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[9 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2009.08.20 14:26:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Adobe
[2008.09.02 12:27:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\AdobeUM
[2009.07.30 11:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Apple Computer
[2009.07.29 10:18:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Ashampoo
[2008.08.28 17:37:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ATI
[2009.10.12 09:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ESET
[2011.01.21 16:32:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\FreeAudioPack
[2009.03.12 15:05:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Google
[2011.01.06 10:30:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\GrabPro
[2008.08.28 17:11:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Identities
[2008.08.28 17:13:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\InstallShield
[2008.09.01 09:06:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Macromedia
[2011.01.17 17:26:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Media Player Classic
[2011.11.03 17:01:19 | 000,000,000 | --SD | M] -- C:\Documents and Settings\user\Data aplikací\Microsoft
[2011.06.07 13:12:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Miranda
[2009.03.19 17:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Mozilla
[2009.06.01 18:08:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Nero
[2008.10.20 08:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Opera
[2011.05.31 12:29:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Orbit
[2011.03.09 09:35:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PDM
[2011.06.07 10:05:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PriceGong
[2011.01.06 10:30:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ProgSense
[2008.12.29 12:56:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PSpad
[2011.12.01 11:20:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Skype
[2011.09.30 08:36:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\skypePM
[2008.09.30 09:11:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Sun
[2009.03.19 17:29:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Talkback
[2009.03.19 17:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Thunderbird
[2011.06.07 10:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\uTorrent
[2009.03.04 13:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\VitySoft
[2011.10.18 10:30:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\vlc
[2011.11.24 12:58:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Windows Desktop Search
[2011.11.30 17:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Windows Search
[2008.09.09 13:14:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\WinRAR
[2011.11.03 16:08:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Zoner InShop Manager
< %APPDATA%\*.exe /s >
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job >
[2011.12.01 10:19:03 | 000,000,932 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2011.12.01 10:52:01 | 000,000,936 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2011.11.30 14:36:01 | 000,000,970 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-1682526488-682003330-1004Core.job
[2011.12.01 11:36:01 | 000,001,022 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-1682526488-682003330-1004UA.job
[2011.12.01 10:20:40 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2008.08.28 18:41:51 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2008.08.28 18:41:50 | 001,069,056 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2008.08.28 18:41:50 | 000,487,424 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
[2011.11.30 16:46:22 | 000,111,872 | ---- | M] () -- C:\WINDOWS\system32\drivers\TrueSight.sys
< %systemroot%\system32\*.* /3 >
[2011.11.30 14:06:40 | 076,004,920 | ---- | M] () -- C:\WINDOWS\system32\ewqilaiuqmoc.dat
[2011.12.01 09:25:47 | 076,004,920 | ---- | M] () -- C:\WINDOWS\system32\osaarcute23.dat
[2011.11.30 14:44:14 | 076,004,920 | ---- | M] () -- C:\WINDOWS\system32\osamiaejmid.dat
[2011.11.29 09:47:31 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized -- [2009.01.29 13:01:36 | 023,975,720 | R--- | M] (Skype Technologies S.A.)
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 13:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.12.01 11:27:47 | 000,000,512 | ---- | M] () MD5=3B265E1A9C25ED14123722DA09AC4C30 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2007.05.04 00:07:02 | 000,003,556 | ---- | M] () -- \Program Files\Adobe\Adobe Dreamweaver CS3\configuration\Content\Reference\PHP\CrackF.html
< *keygen* /s >
[2007.05.04 00:07:00 | 000,013,367 | ---- | M] () -- \Program Files\Adobe\Adobe Dreamweaver CS3\configuration\Content\Reference\HTML\KEYGEN.html
< *loader* /s >
[2008.04.16 13:41:06 | 000,178,068 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\fl\containers\UILoader.html
[2008.04.16 13:41:20 | 000,016,942 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\fl\containers\examples\UILoaderExample.swf
[2008.04.16 13:41:54 | 000,115,985 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\display\Loader.html
[2008.04.16 13:41:06 | 000,086,633 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\display\LoaderInfo.html
[2008.04.16 13:41:06 | 000,026,742 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\media\SoundLoaderContext.html
[2008.04.16 13:41:20 | 000,065,232 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\net\URLLoader.html
[2008.04.16 13:41:04 | 000,022,343 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\net\URLLoaderDataFormat.html
[2008.04.16 13:41:52 | 000,035,457 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\flash\system\LoaderContext.html
[2007.05.09 15:51:14 | 000,025,994 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ActionScriptLangRefV3\images\loaderInfo_object.jpg
[2007.05.09 15:52:02 | 000,040,276 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Adobe\Flash CS3\cs\Configuration\HelpPanel\Help\ProgrammingActionScript3\images\loaderInfo_object.png
[2008.09.19 12:55:44 | 000,000,232 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Nero\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2011.05.31 08:16:47 | 000,022,486 | ---- | M] () -- \Documents and Settings\user\Data aplikací\Orbit\icon\Orbit Downloader.ico
[2011.01.25 13:23:02 | 000,000,348 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\fotofolio-landscape-1.2.2\fotofolio-landscape\libs\wpop\assets\js\webfont-loader.js
[2011.06.08 17:08:42 | 000,003,208 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\dmslider\images\loader.gif
[2011.01.31 15:33:42 | 000,002,545 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\dark_rounded\loader.gif
[2011.01.31 15:33:42 | 000,002,545 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\dark_square\loader.gif
[2011.03.17 05:06:28 | 000,006,331 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\default\loader.gif
[2011.01.31 15:33:42 | 000,002,545 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\facebook\loader.gif
[2011.01.31 15:33:42 | 000,002,545 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\light_rounded\loader.gif
[2011.01.31 15:33:42 | 000,002,545 | ---- | M] () -- \Documents and Settings\user\Dokumenty\š\TouchSense\TouchSense Package\touchsense\images\prettyPhoto\light_square\loader.gif
[2011.07.21 20:43:12 | 000,035,727 | ---- | M] () -- \Documents and Settings\user\Dokumenty\wordpress-3.2.1-cs_CZ\wordpress\wp-includes\script-loader.php
[2011.07.21 20:43:14 | 000,001,893 | ---- | M] () -- \Documents and Settings\user\Dokumenty\wordpress-3.2.1-cs_CZ\wordpress\wp-includes\template-loader.php
[2005.06.20 23:45:24 | 000,000,544 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\cs\Configuration\Classes\FP7\MovieClipLoader.as
[2005.06.20 23:45:26 | 000,000,544 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\cs\Configuration\Classes\FP8\MovieClipLoader.as
[2006.10.30 19:09:08 | 000,000,576 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\cs\Configuration\Classes\FP9\MovieClipLoader.as
[2005.07.13 20:06:52 | 000,010,454 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\cs\Configuration\Classes\mx\controls\Loader.as
[2005.06.20 14:45:24 | 000,000,544 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\en\Configuration\Classes\FP7\MovieClipLoader.as
[2005.06.20 14:45:26 | 000,000,544 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\en\Configuration\Classes\FP8\MovieClipLoader.as
[2006.10.30 11:09:08 | 000,000,576 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\en\Configuration\Classes\FP9\MovieClipLoader.as
[2005.07.13 11:06:52 | 000,010,454 | ---- | M] () -- \Documents and Settings\user\Local Settings\Data aplikací\Adobe\Flash CS3\en\Configuration\Classes\mx\controls\Loader.as
[2003.09.25 10:28:40 | 011,015,680 | ---- | M] () -- \Documents and Settings\user\Plocha\ACTUAL NET marketing\Archiv actualnet\STARENaše grafické podklady\Stažene obrazky\grafika\Grafika_archiv_podklady\macromedia_flash\CDV\AVIs\Vytvoření preloaderu.avi
[2003.08.10 02:03:14 | 000,361,984 | ---- | M] () -- \Documents and Settings\user\Plocha\ACTUAL NET marketing\Archiv actualnet\STARENaše grafické podklady\Stažene obrazky\grafika\Grafika_archiv_podklady\macromedia_flash\CDV\Soubory\Vytvoření preloaderu\Vytvoření preloaderu - výchozí.fla
[2003.08.10 01:54:58 | 000,364,032 | ---- | M] () -- \Documents and Settings\user\Plocha\ACTUAL NET marketing\Archiv actualnet\STARENaše grafické podklady\Stažene obrazky\grafika\Grafika_archiv_podklady\macromedia_flash\CDV\Soubory\Vytvoření preloaderu\Vytvoření preloaderu - výstup.fla
[2003.08.10 01:54:20 | 000,297,518 | ---- | M] () -- \Documents and Settings\user\Plocha\ACTUAL NET marketing\Archiv actualnet\STARENaše grafické podklady\Stažene obrazky\grafika\Grafika_archiv_podklady\macromedia_flash\CDV\Soubory\Vytvoření preloaderu\Vytvoření preloaderu - výstup.swf
[2011.07.21 20:43:12 | 000,035,727 | ---- | M] () -- \Documents and Settings\user\Plocha\PETRA\wordpress-3.2.1-cs_CZ\wordpress\wp-includes\script-loader.php
[2011.07.21 20:43:14 | 000,001,893 | ---- | M] () -- \Documents and Settings\user\Plocha\PETRA\wordpress-3.2.1-cs_CZ\wordpress\wp-includes\template-loader.php
[2007.11.06 10:36:18 | 004,937,640 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\Photodownloader.exe
[2007.03.14 16:07:28 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\de_de\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\en_us\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\es_es\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\it_it\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\no_no\Photodownloader.ini
[2007.03.14 16:07:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2007.03.14 16:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2007.03.14 16:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2007.03.14 16:07:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2007.05.04 00:09:24 | 000,037,112 | ---- | M] () -- \Program Files\Adobe\Adobe Dreamweaver CS3\configuration\Shared\MM\Media\FLVLoader.swf
[2007.02.06 05:11:36 | 000,025,485 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\Configuration\Component Source\ActionScript 3.0\User Interface\fl\containers\UILoader.as
[2007.01.05 20:36:38 | 000,044,966 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\Configuration\Components\User Interface\Loader.swc
[2005.06.20 23:45:24 | 000,000,544 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\First Run\Classes\FP7\MovieClipLoader.as
[2005.06.20 23:45:26 | 000,000,544 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\First Run\Classes\FP8\MovieClipLoader.as
[2006.10.30 19:09:08 | 000,000,576 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\First Run\Classes\FP9\MovieClipLoader.as
[2005.07.13 20:06:52 | 000,010,454 | ---- | M] () -- \Program Files\Adobe\Adobe Flash CS3\cs\First Run\Classes\mx\controls\Loader.as
[2008.11.26 14:36:28 | 000,002,754 | ---- | M] () -- \Program Files\Adobe\Adobe InDesign CS3\Scripts\Export As Xhtml\Startup Scripts\XHTMLExportMenuItemLoader.jsx
[2008.11.26 14:36:30 | 000,002,292 | ---- | M] () -- \Program Files\Adobe\Adobe InDesign CS3\Scripts\XHTML For Digital Editions\Startup Scripts\OEBExportMenuItemLoader.jsx
[2007.02.19 16:59:40 | 000,011,309 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\WorkflowScriptLoader.jsx
[2007.02.19 16:59:40 | 000,001,240 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_da_DK.dat
[2007.02.19 16:59:40 | 000,001,268 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_de_DE.dat
[2007.02.19 16:59:40 | 000,001,172 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_en_US.dat
[2007.02.19 16:59:40 | 000,001,342 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_es_ES.dat
[2007.02.19 16:59:40 | 000,001,310 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_fr_FR.dat
[2007.02.19 16:59:40 | 000,001,282 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_it_IT.dat
[2007.02.19 16:59:40 | 000,001,016 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_ja_JP.dat
[2007.02.19 16:59:40 | 000,000,966 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_ko_KR.dat
[2007.02.19 16:59:40 | 000,001,198 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_nl_NL.dat
[2007.02.19 16:59:40 | 000,001,174 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_sv_SE.dat
[2007.02.19 16:59:40 | 000,000,882 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_zh_CN.dat
[2007.02.19 16:59:40 | 000,000,890 | ---- | M] () -- \Program Files\Common Files\Adobe\Bridge CS3 Extensions\Adobe Workflow Automation\Resources\WorkflowScriptLoader\WorkflowScriptLoader_zh_TW.dat
[2007.03.14 16:10:18 | 000,088,333 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ar_AE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:20 | 000,025,188 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\cs_CZ\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:26 | 000,032,022 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\da_DK\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:28 | 000,032,216 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\de_DE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:30 | 000,027,655 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\el_GR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:36 | 000,030,891 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\en_US\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:38 | 000,032,399 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\es_ES\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:42 | 000,032,333 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\fi_FI\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:42 | 000,032,393 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\fr_FR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:46 | 000,022,871 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\he_IL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:48 | 000,025,272 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\hu_HU\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:50 | 000,032,109 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\it_IT\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:50 | 000,032,441 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ja_JP\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:52 | 000,032,499 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ko_KR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:54 | 000,032,074 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\nb_NO\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:56 | 000,032,110 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\nl_NL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:10:58 | 000,024,996 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\pl_PL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:00 | 000,031,772 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\pt_BR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:02 | 000,024,463 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ro_RO\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:04 | 000,025,054 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\ru_RU\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:06 | 000,032,171 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\sv_SE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:06 | 000,024,411 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\tr_TR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:08 | 000,025,525 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\uk_UA\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:10 | 000,032,741 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\zh_CN\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 16:11:10 | 000,032,833 | ---- | M] () -- \Program Files\Common Files\Adobe\Help\zh_TW\Bridge\2.0\images\br_photo_downloader.png
[2007.07.06 16:47:00 | 000,004,629 | ---- | M] () -- \Program Files\Common Files\Adobe\Startup Scripts CS3\Adobe Version Cue\VersionCueSDKLoader.jsx
[2006.10.26 12:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 12:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2005.10.14 02:49:48 | 000,017,624 | ---- | M] () -- \Program Files\Microsoft SQL Server\90\Tools\Binn\SqlResourceLoader.dll
[2005.10.14 02:49:48 | 000,017,624 | ---- | M] () -- \Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SqlResourceLoader.dll
[2006.12.23 16:37:56 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2009.03.06 10:52:28 | 000,082,784 | ---- | M] () -- \WINDOWS\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2002.12.11 23:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 13:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[1996.10.15 08:53:16 | 000,078,848 | ---- | M] () -- \WINDOWS\system32\INLOADER.DLL
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2008.04.14 13:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
[2011.07.21 21:43:12 | 000,035,727 | ---- | M] () -- \wordpress-3.2.1-cs_CZ\wordpress\wp-includes\script-loader.php
[2011.07.21 21:43:14 | 000,001,893 | ---- | M] () -- \wordpress-3.2.1-cs_CZ\wordpress\wp-includes\template-loader.php
[2011.10.12 10:09:29 | 000,000,673 | ---- | M] () -- \zaloha\wp-content\plugins\nextgen-gallery\images\ajax-loader.gif
[2011.10.12 10:09:29 | 000,006,820 | ---- | M] () -- \zaloha\wp-content\plugins\nextgen-gallery\images\loader.gif
[2011.10.12 09:35:54 | 000,032,349 | ---- | M] () -- \zaloha\wp-includes\script-loader.php
[2011.10.12 09:36:00 | 000,001,893 | ---- | M] () -- \zaloha\wp-includes\template-loader.php
< End of report >
Re: Prosím o kontrolu logu, počítač hrozně zlobí
SCAN Extras:
OTL Extras logfile created on: 1.12.2011 11:25:56 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\user\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,16 Gb Available Physical Memory | 57,94% Memory free
3,85 Gb Paging File | 3,09 Gb Available in Paging File | 80,19% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 134,93 Gb Total Space | 97,05 Gb Free Space | 71,93% Space Free | Partition Type: NTFS
Drive D: | 97,95 Gb Total Space | 96,32 Gb Free Space | 98,34% Space Free | Partition Type: NTFS
Drive S: | 465,66 Gb Total Space | 246,30 Gb Free Space | 52,89% Space Free | Partition Type: NTFS
Drive Z: | 465,66 Gb Total Space | 246,30 Gb Free Space | 52,89% Space Free | Partition Type: NTFS
Computer Name: ASISTENTKA | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"511:TCP" = 511:TCP:*:Enabled:Sít pro Mney
"511:UDP" = 511:UDP:*:Enabled:Síť pro Money UPD
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Java\jre6\launch4j-tmp\frd.exe" = C:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\HP_CP1510_Default_Install_4.0\setup\hppniprint01.exe" = C:\HP_CP1510_Default_Install_4.0\setup\hppniprint01.exe:*:Enabled:hppniprint01.exe
"C:\HP_CP1510_Default_Install_4.0\setup\hppniprint64.exe" = C:\HP_CP1510_Default_Install_4.0\setup\hppniprint64.exe:*:Enabled:hppniprint64.exe
"C:\HP_CP1510_Default_Install_4.0\setup\hppnicifs01.exe" = C:\HP_CP1510_Default_Install_4.0\setup\hppnicifs01.exe:*:Enabled:hppnicifs01.exe
"C:\HP_CP1510_Default_Install_4.0\setup\hpbtpg.exe" = C:\HP_CP1510_Default_Install_4.0\setup\hpbtpg.exe:*:Enabled:hpbtpg.exe
"C:\HP_CP1510_Default_Install_4.0\setup\LaunchApp.exe" = C:\HP_CP1510_Default_Install_4.0\setup\LaunchApp.exe:*:Enabled:launchapp.exe
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser
"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit -- (Ghisler Software GmbH)
"C:\Documents and Settings\user\Plocha\miranda\miranda32.exe" = C:\Documents and Settings\user\Plocha\miranda\miranda32.exe:*:Enabled:Miranda IM
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe" = C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Documents and Settings\user\Plocha\bulanci.exe" = C:\Documents and Settings\user\Plocha\bulanci.exe:*:Enabled:bulanci
"C:\Program Files\Miranda IM\miranda32.exe" = C:\Program Files\Miranda IM\miranda32.exe:*:Enabled:Miranda IM -- ( )
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{02627ee5-eaca-4742-a9cc-e687631773e4}" = Nero ShowTime
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{086a7d8c-0a38-4c7f-819a-620275550d5c}" = Nero BurningROM
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{135908ad-2762-447d-a279-d9109bcfc656}" = Nero 9 Trial
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1c00c7c5-e615-4139-b817-7f4003de68c0}" = Nero PhotoSnap Help
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20400dbd-e6db-45b8-9b6b-1dd7033818ec}" = Nero InfoTool
"{223C0721-A6B0-4853-88C0-331029841734}" = HP Color LaserJet CP1510 Series 4.0
"{2348b586-c9ae-46ce-936c-a68e9426e214}" = Nero StartSmart Help
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java(TM) 6 Update 23
"{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition
"{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}" = PDF Settings
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (INSHOPSERVER)
"{33cf58f5-48d8-4575-83d6-96f574e4d83a}" = Nero DriveSpeed
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{359cfc0a-beb1-440d-95ba-cf63a86da34f}" = Nero Recode
"{368ba326-73ad-4351-84ed-3c0a7a52cc53}" = Nero Rescue Agent
"{414C803A-6115-4DB6-BD4E-FD81EA6BC71C}" = Product_SF_Min_QFolder
"{43e39830-1826-415d-8bae-86845787b54b}" = Nero Vision
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client CS-CZ Language Pack
"{5178C1BB-1EB1-4468-894B-7DE964DDCAA2}" = Adobe Photoshop CS3
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{595a3116-40bb-4e0f-a2e8-d7951da56270}" = NeroExpress
"{5d9be3c1-8ba4-4e7e-82fd-9f74fa6815d1}" = Nero Vision
"{5e08ecd1-c98e-4711-bf65-8fd736b3f969}" = Nero RescueAgent Help
"{60c731fb-c951-41ce-ad41-8e54c8594609}" = Nero Disc Copy Gadget Help
"{6179A7D2-A668-4F1D-BC9A-DCC6A10C7871}" = Adobe Color NA Extra Settings
"{62ac81f6-bdd3-4110-9d36-3e9eaab40999}" = Nero CoverDesigner
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6B708481-748A-4EB4-97C1-CD386244FF77}" = Adobe MotionPicture Color Files
"{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}" = AHV content for Acrobat and Flash
"{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic
"{6D12B99F-EAAA-49D8-8E2F-74FA7459CCB2}" = Adobe Asset Services CS3
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{739CE62B-2893-4D89-8BF8-9B4034633DB6}" = Adobe Setup
"{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}" = Microsoft SQL Server Native Client
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7748ac8c-18e3-43bb-959b-088faea16fb2}" = Nero StartSmart
"{77e33d87-255e-413e-9c8d-eed2a7f9bebf}" = Nero Live Help
"{7829db6f-a066-4e40-8912-cb07887c20bb}" = Nero BurnRights
"{786C5747-1437-443D-B06E-79A00FE45110}" = Adobe Stock Photos 1.0
"{7C8B5E63-821A-4DFB-BDFA-19854D88EC5C}" = 3dsmax ancillary install
"{7D7715C0-9C0F-3F08-D326-1C6268AC5530}" = ATI Catalyst Install Manager
"{7EDFCB74-81C0-4FB6-9FDF-1BC7CD098638}" = Adobe InDesign CS3
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{83202942-84b3-4c50-8622-b8c0aa2d2885}" = Nero Express
"{869200db-287a-4dc0-b02b-2b6787fbcd4c}" = Nero DiscSpeed
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87AE7C09-B0B4-4BAC-AADB-50A1EAD03768}" = Adobe Flash Video Encoder
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{914CEAB8-B2B7-1CCB-D0D4-5C472EAD6AAC}" = CCC Help English
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{98a67610-a3b5-4098-a423-3708040026d3}" = "Nero SoundTrax Help
"{995F2783-8311-49BF-833E-DB659774B4F6}" = hppFonts
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9DE3F260-B88E-42CE-90E7-73C78C37D95E}" = 32 Bit HP BiDi Channel Components Installer
"{9e82b934-9a25-445b-b8df-8012808074ac}" = Nero PhotoSnap
"{a209525b-3377-43f4-b886-32f6b6e7356f}" = Nero WaveEditor
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-1029-0000-7760-000000000003}" = Adobe Acrobat 8 Professional - Czech, Greek, Hungarian, Polish, Slovak
"{ad6bc5cc-2ef0-49c4-b33d-cdc8b2c4dc80}" = Nero Recode Help
"{AE6BE2FE-5D3D-4FA0-98BC-57B7B78493F4}" = Adobe Flash CS3
"{b1adf008-e898-4fe2-8a1f-690d9a06acaf}" = DolbyFiles
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B671CBFD-4109-4D35-9252-3062D3CCB7B2}" = Adobe SING CS3
"{B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E}" = Adobe BridgeTalk Plugin CS3
"{b78120a0-cf84-4366-a393-4d0a59bc546c}" = Menu Templates - Starter Kit
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BD087F50-46B2-43E4-BD73-5DB3DC20B47C}" = Adobe Color EU Recommended Settings
"{BD31FF1E-088E-A139-C772-7A5777529042}" = Catalyst Control Center Graphics Previews Common
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{c5a7cb6c-e76d-408f-ba0e-85605420fe9d}" = SoundTrax
"{C5BD220A-EFE8-48A5-B70E-9503D535FACE}" = Adobe WAS CS3
"{cc019e3f-59d2-4486-8d4b-878105b62a71}" = Nero DiscSpeed
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{ce96f5a5-584d-4f8f-aa3e-9baed413db72}" = Nero CoverDesigner Help
"{d025a639-b9c9-417d-8531-208859000af8}" = NeroBurningROM
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D6CD1A90-1421-4F19-AFD8-BE4E28A1D6D5}" = Adobe Illustrator CS3
"{D92B72E2-C854-4738-8ED6-4C3661CC17AE}" = Adobe Color JA Extra Settings
"{d9dcf92e-72eb-412d-ac71-3b01276e5f8b}" = Nero ShowTime
"{DDA34038-89BD-4804-B0B8-DC48D5DFB463}" = Catalyst Control Center - Branding
"{DEB7B7C6-C931-08C3-1059-60C0AF3FB781}" = ccc-utility
"{DEEDF1BA-ADD7-6EA0-D017-A89ACAD64E9F}" = ccc-core-static
"{df6a95f5-adc1-406a-bdc6-2aa7cc0182aa}" = Nero Live
"{e498385e-1c51-459a-b45f-1721e37aa1a0}" = Movie Templates - Starter Kit
"{e5c7d048-f9b4-4219-b323-8bdb01a2563d}" = Nero DriveSpeed
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E7084B89-69E0-46B3-A118-8F99D06988CD}" = Microsoft SQL Server VSS Writer
"{e8631efb-6b9a-426c-b1ce-e7173ca26bf8}" = Nero WaveEditor Help
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0
"{EA7B3CC4-366D-4CF6-8350-FD7A7034116E}" = Adobe InDesign CS3 Icon Handler
"{ED95B55C-4759-4242-85DE-EAD1DA7AB090}" = Adobe Dreamweaver CS3
"{F0703991-E476-4997-98C6-239E67FC9944}" = Adobe Creative Suite 3 Design Premium
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{f1861f30-3419-44db-b2a1-c274825698b3}" = Nero Disc Copy Gadget
"{f4041dce-3fe1-4e18-8a9e-9de65231ee36}" = Nero ControlCenter
"{f6bdd7c5-89ed-4569-9318-469aa9732572}" = Nero BurnRights
"{F943B1DF-711F-7D8E-3257-ED05026895E1}" = Catalyst Control Center InstallProxy
"{fbcdfd61-7dcf-4e71-9226-873ba0053139}" = Nero InfoTool
"Adobe Acrobat 8 Professional - Czech, Greek, Hungarian, Polish, Slovak" = Adobe Acrobat 8.1.2 Professional
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"Adobe_1e533f03b8b42b2b6a1aba5a0b9d358" = Přidat nebo odebrat Adobe Creative Suite 3 Design Premium
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"CCleaner" = CCleaner (remove only)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Miranda IM" = Miranda IM 0.9.34
"Money S3" = Ekonomický systém Money S3
"Mozilla Firefox 8.0 (x86 cs)" = Mozilla Firefox 8.0 (x86 cs)
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"PSPad editor_is1" = PSPad editor
"Rainbow Sentinel Driver" = Sentinel System Driver
"Správce síťových licencí produktů CÍGLER SOFTWARE" = Správce síťových licencí produktů CÍGLER SOFTWARE
"TopStyle Lite (Version 3.0)" = TopStyle Lite (Version 3.0)
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player 1.1.5
"WinRAR archiver" = WinRAR
"Xenu's Link Sleuth" = Xenu's Link Sleuth
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 30.11.2011 9:38:47 | Computer Name = ASISTENTKA | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace Acrobat.exe, verze 8.1.0.137, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 30.11.2011 9:40:21 | Computer Name = ASISTENTKA | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 2152759308, P2 unspecified, P3 scanfile,
P4 3.0.8402.0, P5 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.
Error - 30.11.2011 9:52:38 | Computer Name = ASISTENTKA | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application ccc.exe, version 2.0.0.0, stamp 49ef8e09, faulting
module mscorwks.dll, version 2.0.50727.3625, stamp 4e154c98, debug? 0, fault address
0x000b0dce.
Error - 30.11.2011 9:55:53 | Computer Name = ASISTENTKA | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 2152759308, P2 unspecified, P3 scanfile,
P4 3.0.8402.0, P5 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.
Error - 30.11.2011 10:02:58 | Computer Name = ASISTENTKA | Source = Application Error | ID = 1000
Description = Chybující aplikace Acrobat.exe, verze 8.1.0.137, chybující modul unknown,
verze 0.0.0.0, adresa chyby 0x24001f55.
Error - 30.11.2011 10:03:49 | Computer Name = ASISTENTKA | Source = Application Error | ID = 1001
Description = Chybný blok 46216328
Error - 30.11.2011 10:42:16 | Computer Name = ASISTENTKA | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 8.0.6001.18702, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x027a1d26.
Error - 30.11.2011 10:43:11 | Computer Name = ASISTENTKA | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 8.0.6001.18702, chybující modul
wininet.dll, verze 8.0.6001.19131, adresa chyby 0x0001d50a.
Error - 30.11.2011 10:43:25 | Computer Name = ASISTENTKA | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 8.0.6001.18702, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x02951d26.
Error - 1.12.2011 5:32:15 | Computer Name = ASISTENTKA | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 2152759308, P2 unspecified, P3 scanfile,
P4 3.0.8402.0, P5 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.
[ OSession Events ]
Error - 19.10.2009 3:57:09 | Computer Name = MARTINA | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7
seconds with 0 seconds of active time. This session ended with a crash.
Error - 19.10.2009 3:59:13 | Computer Name = MARTINA | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7
seconds with 0 seconds of active time. This session ended with a crash.
Error - 31.1.2011 6:31:38 | Computer Name = ASISTENTKA | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 27
seconds with 0 seconds of active time. This session ended with a crash.
Error - 13.6.2011 10:03:11 | Computer Name = ASISTENTKA | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 489
seconds with 240 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 30.11.2011 10:01:09 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10010
Description = Server {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E} se v daném časovém limitu
neregistroval u služby DCOM.
Error - 30.11.2011 10:54:30 | Computer Name = ASISTENTKA | Source = BROWSER | ID = 8032
Description = Službě Browser se při přenosu \Device\NetBT_Tcpip_{E5353454-3FDD-4121-949B-F422AA94AE86}
příliš často nezdařilo načíst záložní seznam. Záložní prohledávač bude ukončen.
Error - 1.12.2011 4:27:01 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 1.12.2011 4:27:08 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 1.12.2011 4:28:09 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 1.12.2011 4:28:19 | Computer Name = ASISTENTKA | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: AmdK8 Fips MpFilter
Error - 1.12.2011 5:14:36 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 1.12.2011 5:14:45 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 1.12.2011 5:15:48 | Computer Name = ASISTENTKA | Source = Service Control Manager | ID = 7000
Description = Služba DS1410D neuspěla při spuštění v důsledku následující chyby:
%%2
Error - 1.12.2011 6:18:38 | Computer Name = ASISTENTKA | Source = BROWSER | ID = 8032
Description = Službě Browser se při přenosu \Device\NetBT_Tcpip_{E5353454-3FDD-4121-949B-F422AA94AE86}
příliš často nezdařilo načíst záložní seznam. Záložní prohledávač bude ukončen.
< End of report >
OTL Extras logfile created on: 1.12.2011 11:25:56 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\user\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,16 Gb Available Physical Memory | 57,94% Memory free
3,85 Gb Paging File | 3,09 Gb Available in Paging File | 80,19% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 134,93 Gb Total Space | 97,05 Gb Free Space | 71,93% Space Free | Partition Type: NTFS
Drive D: | 97,95 Gb Total Space | 96,32 Gb Free Space | 98,34% Space Free | Partition Type: NTFS
Drive S: | 465,66 Gb Total Space | 246,30 Gb Free Space | 52,89% Space Free | Partition Type: NTFS
Drive Z: | 465,66 Gb Total Space | 246,30 Gb Free Space | 52,89% Space Free | Partition Type: NTFS
Computer Name: ASISTENTKA | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"511:TCP" = 511:TCP:*:Enabled:Sít pro Mney
"511:UDP" = 511:UDP:*:Enabled:Síť pro Money UPD
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Java\jre6\launch4j-tmp\frd.exe" = C:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\HP_CP1510_Default_Install_4.0\setup\hppniprint01.exe" = C:\HP_CP1510_Default_Install_4.0\setup\hppniprint01.exe:*:Enabled:hppniprint01.exe
"C:\HP_CP1510_Default_Install_4.0\setup\hppniprint64.exe" = C:\HP_CP1510_Default_Install_4.0\setup\hppniprint64.exe:*:Enabled:hppniprint64.exe
"C:\HP_CP1510_Default_Install_4.0\setup\hppnicifs01.exe" = C:\HP_CP1510_Default_Install_4.0\setup\hppnicifs01.exe:*:Enabled:hppnicifs01.exe
"C:\HP_CP1510_Default_Install_4.0\setup\hpbtpg.exe" = C:\HP_CP1510_Default_Install_4.0\setup\hpbtpg.exe:*:Enabled:hpbtpg.exe
"C:\HP_CP1510_Default_Install_4.0\setup\LaunchApp.exe" = C:\HP_CP1510_Default_Install_4.0\setup\LaunchApp.exe:*:Enabled:launchapp.exe
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser
"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit -- (Ghisler Software GmbH)
"C:\Documents and Settings\user\Plocha\miranda\miranda32.exe" = C:\Documents and Settings\user\Plocha\miranda\miranda32.exe:*:Enabled:Miranda IM
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe" = C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Documents and Settings\user\Plocha\bulanci.exe" = C:\Documents and Settings\user\Plocha\bulanci.exe:*:Enabled:bulanci
"C:\Program Files\Miranda IM\miranda32.exe" = C:\Program Files\Miranda IM\miranda32.exe:*:Enabled:Miranda IM -- ( )
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{02627ee5-eaca-4742-a9cc-e687631773e4}" = Nero ShowTime
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{086a7d8c-0a38-4c7f-819a-620275550d5c}" = Nero BurningROM
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{135908ad-2762-447d-a279-d9109bcfc656}" = Nero 9 Trial
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1c00c7c5-e615-4139-b817-7f4003de68c0}" = Nero PhotoSnap Help
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20400dbd-e6db-45b8-9b6b-1dd7033818ec}" = Nero InfoTool
"{223C0721-A6B0-4853-88C0-331029841734}" = HP Color LaserJet CP1510 Series 4.0
"{2348b586-c9ae-46ce-936c-a68e9426e214}" = Nero StartSmart Help
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java(TM) 6 Update 23
"{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition
"{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}" = PDF Settings
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (INSHOPSERVER)
"{33cf58f5-48d8-4575-83d6-96f574e4d83a}" = Nero DriveSpeed
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{359cfc0a-beb1-440d-95ba-cf63a86da34f}" = Nero Recode
"{368ba326-73ad-4351-84ed-3c0a7a52cc53}" = Nero Rescue Agent
"{414C803A-6115-4DB6-BD4E-FD81EA6BC71C}" = Product_SF_Min_QFolder
"{43e39830-1826-415d-8bae-86845787b54b}" = Nero Vision
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client CS-CZ Language Pack
"{5178C1BB-1EB1-4468-894B-7DE964DDCAA2}" = Adobe Photoshop CS3
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{595a3116-40bb-4e0f-a2e8-d7951da56270}" = NeroExpress
"{5d9be3c1-8ba4-4e7e-82fd-9f74fa6815d1}" = Nero Vision
"{5e08ecd1-c98e-4711-bf65-8fd736b3f969}" = Nero RescueAgent Help
"{60c731fb-c951-41ce-ad41-8e54c8594609}" = Nero Disc Copy Gadget Help
"{6179A7D2-A668-4F1D-BC9A-DCC6A10C7871}" = Adobe Color NA Extra Settings
"{62ac81f6-bdd3-4110-9d36-3e9eaab40999}" = Nero CoverDesigner
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6B708481-748A-4EB4-97C1-CD386244FF77}" = Adobe MotionPicture Color Files
"{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}" = AHV content for Acrobat and Flash
"{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic
"{6D12B99F-EAAA-49D8-8E2F-74FA7459CCB2}" = Adobe Asset Services CS3
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{739CE62B-2893-4D89-8BF8-9B4034633DB6}" = Adobe Setup
"{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}" = Microsoft SQL Server Native Client
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7748ac8c-18e3-43bb-959b-088faea16fb2}" = Nero StartSmart
"{77e33d87-255e-413e-9c8d-eed2a7f9bebf}" = Nero Live Help
"{7829db6f-a066-4e40-8912-cb07887c20bb}" = Nero BurnRights
"{786C5747-1437-443D-B06E-79A00FE45110}" = Adobe Stock Photos 1.0
"{7C8B5E63-821A-4DFB-BDFA-19854D88EC5C}" = 3dsmax ancillary install
"{7D7715C0-9C0F-3F08-D326-1C6268AC5530}" = ATI Catalyst Install Manager
"{7EDFCB74-81C0-4FB6-9FDF-1BC7CD098638}" = Adobe InDesign CS3
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{83202942-84b3-4c50-8622-b8c0aa2d2885}" = Nero Express
"{869200db-287a-4dc0-b02b-2b6787fbcd4c}" = Nero DiscSpeed
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87AE7C09-B0B4-4BAC-AADB-50A1EAD03768}" = Adobe Flash Video Encoder
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{914CEAB8-B2B7-1CCB-D0D4-5C472EAD6AAC}" = CCC Help English
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{98a67610-a3b5-4098-a423-3708040026d3}" = "Nero SoundTrax Help
"{995F2783-8311-49BF-833E-DB659774B4F6}" = hppFonts
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9DE3F260-B88E-42CE-90E7-73C78C37D95E}" = 32 Bit HP BiDi Channel Components Installer
"{9e82b934-9a25-445b-b8df-8012808074ac}" = Nero PhotoSnap
"{a209525b-3377-43f4-b886-32f6b6e7356f}" = Nero WaveEditor
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-1029-0000-7760-000000000003}" = Adobe Acrobat 8 Professional - Czech, Greek, Hungarian, Polish, Slovak
"{ad6bc5cc-2ef0-49c4-b33d-cdc8b2c4dc80}" = Nero Recode Help
"{AE6BE2FE-5D3D-4FA0-98BC-57B7B78493F4}" = Adobe Flash CS3
"{b1adf008-e898-4fe2-8a1f-690d9a06acaf}" = DolbyFiles
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B671CBFD-4109-4D35-9252-3062D3CCB7B2}" = Adobe SING CS3
"{B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E}" = Adobe BridgeTalk Plugin CS3
"{b78120a0-cf84-4366-a393-4d0a59bc546c}" = Menu Templates - Starter Kit
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BD087F50-46B2-43E4-BD73-5DB3DC20B47C}" = Adobe Color EU Recommended Settings
"{BD31FF1E-088E-A139-C772-7A5777529042}" = Catalyst Control Center Graphics Previews Common
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{c5a7cb6c-e76d-408f-ba0e-85605420fe9d}" = SoundTrax
"{C5BD220A-EFE8-48A5-B70E-9503D535FACE}" = Adobe WAS CS3
"{cc019e3f-59d2-4486-8d4b-878105b62a71}" = Nero DiscSpeed
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{ce96f5a5-584d-4f8f-aa3e-9baed413db72}" = Nero CoverDesigner Help
"{d025a639-b9c9-417d-8531-208859000af8}" = NeroBurningROM
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D6CD1A90-1421-4F19-AFD8-BE4E28A1D6D5}" = Adobe Illustrator CS3
"{D92B72E2-C854-4738-8ED6-4C3661CC17AE}" = Adobe Color JA Extra Settings
"{d9dcf92e-72eb-412d-ac71-3b01276e5f8b}" = Nero ShowTime
"{DDA34038-89BD-4804-B0B8-DC48D5DFB463}" = Catalyst Control Center - Branding
"{DEB7B7C6-C931-08C3-1059-60C0AF3FB781}" = ccc-utility
"{DEEDF1BA-ADD7-6EA0-D017-A89ACAD64E9F}" = ccc-core-static
"{df6a95f5-adc1-406a-bdc6-2aa7cc0182aa}" = Nero Live
"{e498385e-1c51-459a-b45f-1721e37aa1a0}" = Movie Templates - Starter Kit
"{e5c7d048-f9b4-4219-b323-8bdb01a2563d}" = Nero DriveSpeed
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E7084B89-69E0-46B3-A118-8F99D06988CD}" = Microsoft SQL Server VSS Writer
"{e8631efb-6b9a-426c-b1ce-e7173ca26bf8}" = Nero WaveEditor Help
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0
"{EA7B3CC4-366D-4CF6-8350-FD7A7034116E}" = Adobe InDesign CS3 Icon Handler
"{ED95B55C-4759-4242-85DE-EAD1DA7AB090}" = Adobe Dreamweaver CS3
"{F0703991-E476-4997-98C6-239E67FC9944}" = Adobe Creative Suite 3 Design Premium
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{f1861f30-3419-44db-b2a1-c274825698b3}" = Nero Disc Copy Gadget
"{f4041dce-3fe1-4e18-8a9e-9de65231ee36}" = Nero ControlCenter
"{f6bdd7c5-89ed-4569-9318-469aa9732572}" = Nero BurnRights
"{F943B1DF-711F-7D8E-3257-ED05026895E1}" = Catalyst Control Center InstallProxy
"{fbcdfd61-7dcf-4e71-9226-873ba0053139}" = Nero InfoTool
"Adobe Acrobat 8 Professional - Czech, Greek, Hungarian, Polish, Slovak" = Adobe Acrobat 8.1.2 Professional
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"Adobe_1e533f03b8b42b2b6a1aba5a0b9d358" = Přidat nebo odebrat Adobe Creative Suite 3 Design Premium
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"CCleaner" = CCleaner (remove only)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Miranda IM" = Miranda IM 0.9.34
"Money S3" = Ekonomický systém Money S3
"Mozilla Firefox 8.0 (x86 cs)" = Mozilla Firefox 8.0 (x86 cs)
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"PSPad editor_is1" = PSPad editor
"Rainbow Sentinel Driver" = Sentinel System Driver
"Správce síťových licencí produktů CÍGLER SOFTWARE" = Správce síťových licencí produktů CÍGLER SOFTWARE
"TopStyle Lite (Version 3.0)" = TopStyle Lite (Version 3.0)
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player 1.1.5
"WinRAR archiver" = WinRAR
"Xenu's Link Sleuth" = Xenu's Link Sleuth
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 30.11.2011 9:38:47 | Computer Name = ASISTENTKA | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace Acrobat.exe, verze 8.1.0.137, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 30.11.2011 9:40:21 | Computer Name = ASISTENTKA | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 2152759308, P2 unspecified, P3 scanfile,
P4 3.0.8402.0, P5 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.
Error - 30.11.2011 9:52:38 | Computer Name = ASISTENTKA | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application ccc.exe, version 2.0.0.0, stamp 49ef8e09, faulting
module mscorwks.dll, version 2.0.50727.3625, stamp 4e154c98, debug? 0, fault address
0x000b0dce.
Error - 30.11.2011 9:55:53 | Computer Name = ASISTENTKA | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 2152759308, P2 unspecified, P3 scanfile,
P4 3.0.8402.0, P5 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.
Error - 30.11.2011 10:02:58 | Computer Name = ASISTENTKA | Source = Application Error | ID = 1000
Description = Chybující aplikace Acrobat.exe, verze 8.1.0.137, chybující modul unknown,
verze 0.0.0.0, adresa chyby 0x24001f55.
Error - 30.11.2011 10:03:49 | Computer Name = ASISTENTKA | Source = Application Error | ID = 1001
Description = Chybný blok 46216328
Error - 30.11.2011 10:42:16 | Computer Name = ASISTENTKA | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 8.0.6001.18702, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x027a1d26.
Error - 30.11.2011 10:43:11 | Computer Name = ASISTENTKA | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 8.0.6001.18702, chybující modul
wininet.dll, verze 8.0.6001.19131, adresa chyby 0x0001d50a.
Error - 30.11.2011 10:43:25 | Computer Name = ASISTENTKA | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 8.0.6001.18702, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x02951d26.
Error - 1.12.2011 5:32:15 | Computer Name = ASISTENTKA | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 2152759308, P2 unspecified, P3 scanfile,
P4 3.0.8402.0, P5 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.
[ OSession Events ]
Error - 19.10.2009 3:57:09 | Computer Name = MARTINA | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7
seconds with 0 seconds of active time. This session ended with a crash.
Error - 19.10.2009 3:59:13 | Computer Name = MARTINA | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7
seconds with 0 seconds of active time. This session ended with a crash.
Error - 31.1.2011 6:31:38 | Computer Name = ASISTENTKA | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 27
seconds with 0 seconds of active time. This session ended with a crash.
Error - 13.6.2011 10:03:11 | Computer Name = ASISTENTKA | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 489
seconds with 240 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 30.11.2011 10:01:09 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10010
Description = Server {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E} se v daném časovém limitu
neregistroval u služby DCOM.
Error - 30.11.2011 10:54:30 | Computer Name = ASISTENTKA | Source = BROWSER | ID = 8032
Description = Službě Browser se při přenosu \Device\NetBT_Tcpip_{E5353454-3FDD-4121-949B-F422AA94AE86}
příliš často nezdařilo načíst záložní seznam. Záložní prohledávač bude ukončen.
Error - 1.12.2011 4:27:01 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 1.12.2011 4:27:08 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 1.12.2011 4:28:09 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 1.12.2011 4:28:19 | Computer Name = ASISTENTKA | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: AmdK8 Fips MpFilter
Error - 1.12.2011 5:14:36 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 1.12.2011 5:14:45 | Computer Name = ASISTENTKA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 1.12.2011 5:15:48 | Computer Name = ASISTENTKA | Source = Service Control Manager | ID = 7000
Description = Služba DS1410D neuspěla při spuštění v důsledku následující chyby:
%%2
Error - 1.12.2011 6:18:38 | Computer Name = ASISTENTKA | Source = BROWSER | ID = 8032
Description = Službě Browser se při přenosu \Device\NetBT_Tcpip_{E5353454-3FDD-4121-949B-F422AA94AE86}
příliš často nezdařilo načíst záložní seznam. Záložní prohledávač bude ukončen.
< End of report >
Přispějete na provoz fóra?