prosim o kontrolu

[Kodlz]

Logfile of random's system information tool 1.06 (written by random/random)
Run by Karel at 2014-05-17 09:32:22
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 22 GB (29%) free of 78 GB
Total RAM: 3326 MB (31% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9}.job
C:\WINDOWS\tasks\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22}.job
C:\WINDOWS\tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job
C:\WINDOWS\tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904}]
Ó¦Óñ¦Ň»Ľü°˛×°˛ĺĽţ - C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3196\npQQPhoneManagerExt.dll [2014-03-05 139320]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2013-10-04 20145368]
"VX1000"=C:\WINDOWS\vVX1000.exe [2010-05-20 762736]
"LifeCam"=C:\Program Files\Microsoft LifeCam\LifeExp.exe [2010-05-20 119152]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25 1225944]
"WD Spindown Utility"=C:\Program Files\Western Digital Technologies\Spindown\ExSpinDn.exe [2004-08-09 278528]
"WD Button Manager"=C:\WINDOWS\system32\WDBtnMgr.exe [2014-02-26 364544]
"VirtualCloneDrive"=C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-11-16 98304]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-02-10 20922016]
"LClock"=C:\Program Files\LClock\LClock.exe [2004-09-19 65536]
"uTorrent"=C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe [2014-05-15 1272400]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
ImageBrowser EX Agent.lnk - C:\Program Files\Canon\ImageBrowser EX\MFManager.exe
WD Backup Monitor.lnk - C:\Program Files\My Book\WD Backup\uBBMonitor.exe

C:\Documents and Settings\Kaja\Nabídka Start\Programy\Po spuštění
Stardock ObjectDock.lnk - C:\Program Files\Stardock\ObjectDock Plus\ObjectDock.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2012-11-16 192512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Microsoft LifeCam\LifeCam.exe"="C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe"
"C:\Program Files\Microsoft LifeCam\LifeEnC2.exe"="C:\Program Files\Microsoft LifeCam\LifeEnC2.exe:*:Enabled:LifeEnC2.exe"
"C:\Program Files\Microsoft LifeCam\LifeExp.exe"="C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe"
"C:\Program Files\Microsoft LifeCam\LifeTray.exe"="C:\Program Files\Microsoft LifeCam\LifeTray.exe:*:Enabled:LifeTray.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\TeamViewer\TeamViewer.exe"="C:\Program Files\TeamViewer\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe"="C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe:*:Enabled:MyPhoneExplorer"
"C:\Program Files\GIGABYTE\ET6\UpdExe.exe"="C:\Program Files\GIGABYTE\ET6\UpdExe.exe:*:Enabled:Exe File"
"C:\Program Files\GIGABYTE\ET6\GBTUpd.exe"="C:\Program Files\GIGABYTE\ET6\GBTUpd.exe:*:Enabled:GBTUpd.exe"
"C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\utorrent.exe"="C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\utorrent.exe:*:Enabled:µTorrent2"
"C:\Program Files\uTorrent\updates\3.4.0_30620.exe"="C:\Program Files\uTorrent\updates\3.4.0_30620.exe:*:Enabled:µTorrent"
"C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe"="C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\common\Arma 2\arma2.exe"="C:\Program Files\Steam\SteamApps\common\Arma 2\arma2.exe:*:Enabled:Arma 2"
"C:\Program Files\Codemasters\arma\ColdWarAssault.exe"="C:\Program Files\Codemasters\arma\ColdWarAssault.exe:*:Enabled:Cold War Assault"
"C:\Program Files\Codemasters\arma\ColdWarAssault_Server.exe"="C:\Program Files\Codemasters\arma\ColdWarAssault_Server.exe:*:Enabled:Cold War Assault server"
"C:\Program Files\Codemasters\Operation Flashpoint\ColdWarAssault.exe"="C:\Program Files\Codemasters\Operation Flashpoint\ColdWarAssault.exe:*:Enabled:Cold War Assault"
"C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.755\OFP Launcher.exe"="C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.755\OFP Launcher.exe:*:Enabled:OFP Launcher"
"C:\Documents and Settings\Kaja\Plocha\OFP Launcher.exe"="C:\Documents and Settings\Kaja\Plocha\OFP Launcher.exe:*:Enabled:OFP Launcher"
"C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe"="C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe:*:Enabled:????????"
"C:\Program Files\Tencent\QQPhoneManager\QQPhoneManager.exe"="C:\Program Files\Tencent\QQPhoneManager\QQPhoneManager.exe:*:Enabled:Tencent Phone Manager"
"C:\Program Files\Steam\SteamApps\common\Arma 3\arma3.exe"="C:\Program Files\Steam\SteamApps\common\Arma 3\arma3.exe:*:Enabled:Arma 3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe"="C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe:*:Enabled:????????"

======List of files/folders created in the last 1 months======

2014-05-17 09:32:24 ----D---- C:\Program Files\trend micro
2014-05-17 09:32:22 ----D---- C:\rsit
2014-05-16 22:35:51 ----D---- C:\WINDOWS\LastGood
2014-05-14 23:58:08 ----D---- C:\Documents and Settings\Kaja\Data aplikací\AdbDriverInstaller
2014-05-14 23:28:28 ----D---- C:\Program Files\ClockworkMod
2014-05-14 23:10:45 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Tencent
2014-05-14 23:10:27 ----D---- C:\Program Files\Tencent
2014-05-14 23:10:27 ----D---- C:\Program Files\Common Files\Tencent
2014-05-14 22:10:19 ----A---- C:\log.txt
2014-05-14 07:40:28 ----D---- C:\Program Files\Common Files\DESIGNER
2014-05-13 10:28:48 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Comodo
2014-05-13 10:22:25 ----D---- C:\WINDOWS\Minidump
2014-05-12 06:46:34 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2014-05-12 06:46:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-05-11 17:31:34 ----D---- C:\Program Files\Mozilla Firefox
2014-05-11 16:59:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2964358$
2014-05-11 16:59:53 ----D---- C:\WINDOWS\system32\appmgmt
2014-05-11 16:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2936068$
2014-05-11 16:58:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-05-11 16:58:12 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-05-11 16:57:49 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2014-05-06 14:57:48 ----D---- C:\WINDOWS\CSC
2014-05-06 14:57:42 ----A---- C:\WINDOWS\ntbtlog.txt
2014-05-05 12:30:01 ----HDC---- C:\WINDOWS\$NtUninstallwinusb0200$
2014-05-05 12:29:41 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2014-05-05 12:29:30 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2014-05-04 21:40:04 ----A---- C:\WINDOWS\imsins.BAK
2014-04-30 10:10:35 ----D---- C:\Program Files\Mozilla Thunderbird
2014-04-29 19:17:01 ----D---- C:\Program Files\Microsoft Virtual PC
2014-04-29 07:41:44 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Thunderbird
2014-04-29 07:04:31 ----D---- C:\Program Files\CCleaner
2014-04-28 22:17:06 ----D---- C:\AdwCleaner
2014-04-27 22:07:38 ----A---- C:\WINDOWS\system32\certsentry.dll
2014-04-24 00:16:26 ----D---- C:\Program Files\Recuva

======List of files/folders modified in the last 1 months======

2014-05-17 09:32:24 ----RD---- C:\Program Files
2014-05-17 09:28:18 ----D---- C:\Documents and Settings\Kaja\Data aplikací\uTorrent
2014-05-17 09:14:42 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Skype
2014-05-17 08:19:05 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-05-16 22:59:09 ----D---- C:\WINDOWS\Prefetch
2014-05-16 22:59:05 ----D---- C:\WINDOWS\Temp
2014-05-16 22:59:05 ----D---- C:\WINDOWS\system32
2014-05-16 22:55:36 ----HD---- C:\WINDOWS\inf
2014-05-16 22:36:40 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-05-16 22:35:51 ----D---- C:\WINDOWS
2014-05-16 21:38:19 ----D---- C:\Program Files\Steam
2014-05-16 11:52:50 ----D---- C:\WINDOWS\system32\config
2014-05-16 06:18:21 ----D---- C:\WINDOWS\system32\CatRoot2
2014-05-14 23:58:08 ----A---- C:\WINDOWS\system32\WinUSBCoInstaller2.dll
2014-05-14 23:28:35 ----SHD---- C:\WINDOWS\Installer
2014-05-14 23:10:27 ----D---- C:\Program Files\Common Files
2014-05-14 22:25:58 ----D---- C:\WINDOWS\system32\drivers
2014-05-14 19:35:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-14 07:45:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-05-14 07:41:06 ----D---- C:\WINDOWS\Debug
2014-05-14 07:40:59 ----A---- C:\WINDOWS\system32\MRT.exe
2014-05-12 16:59:11 ----D---- C:\Documents and Settings\Kaja\Data aplikací\ZoomBrowser EX
2014-05-12 16:54:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\ZoomBrowser
2014-05-12 06:46:36 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-05-11 18:07:52 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-05-11 17:29:21 ----D---- C:\WINDOWS\Microsoft.NET
2014-05-11 16:59:50 ----RSD---- C:\WINDOWS\assembly
2014-05-11 16:59:14 ----D---- C:\WINDOWS\system32\CatRoot
2014-05-11 16:50:43 ----D---- C:\WINDOWS\system32\cs-cz
2014-05-11 16:50:42 ----D---- C:\WINDOWS\Help
2014-05-11 16:50:42 ----D---- C:\Program Files\Internet Explorer
2014-05-06 15:29:56 ----D---- C:\WINDOWS\ie8updates
2014-05-06 15:21:02 ----D---- C:\WINDOWS\Media
2014-05-05 22:45:49 ----D---- C:\Documents and Settings\Kaja\Data aplikací\MyPhoneExplorer
2014-05-05 12:31:22 ----D---- C:\Program Files\MyPhoneExplorer
2014-05-04 23:12:21 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-30 07:23:32 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-04-29 19:23:11 ----SD---- C:\Documents and Settings\Kaja\Data aplikací\Microsoft
2014-04-29 07:12:38 ----D---- C:\WINDOWS\Logs
2014-04-28 08:08:35 ----D---- C:\WINDOWS\system32\Restore
2014-04-27 22:07:23 ----D---- C:\Program Files\Comodo

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\WINDOWS\System32\DRIVERS\cmderd.sys [2014-04-16 15704]
R1 cmdGuard;COMODO Internet Security Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2014-04-16 607448]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2014-04-16 29912]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2013-03-04 30616]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R1 truecrypt;truecrypt; C:\WINDOWS\System32\drivers\truecrypt.sys [2014-03-15 231760]
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R3 anvsnddrv;AnvSoft Virtual Sound Device; C:\WINDOWS\system32\drivers\anvsnddrv.sys [2011-11-28 32896]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2012-11-16 7874560]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdXP3.sys [2012-05-14 103040]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2013-11-05 5589720]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2009-07-01 66688]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2009-07-01 13824]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys [2013-10-17 25088]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-14 17152]
R3 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2013-07-24 30720]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
R3 VX1000;VX-1000; C:\WINDOWS\system32\DRIVERS\VX1000.sys [2010-05-20 1961072]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 awUSB;awUSB; C:\WINDOWS\system32\DRIVERS\USBDrv.sys [2014-05-14 13824]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 etdrv;etdrv; \??\C:\WINDOWS\etdrv.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
S3 OSFMount;OSFMount; \??\C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.777\bin\OSFMount.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WinUSB;Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2009-07-13 34944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2012-11-16 643072]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2006-03-30 96341]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-04-16 5306504]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2014-04-24 2135232]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2009-07-23 387616]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2014-02-19 239680]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS32.exe [2010-05-20 139632]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2009-07-23 178720]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-23 1259296]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2014-02-17 4915040]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2009-07-08 168004]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14 257712]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 1663192]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-11 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Márty84]

Zdravim

Aktualizujem skener
Smazte RSIT a slozku C:\Program Files\trend micro , pokud ji najdete.
Pak stahnete nove RSIT http://images.malwareremoval.com/random/RSIT.exe a dejte log z nej.

[Kodlz]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Karel at 2014-05-18 09:26:21
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 22 GB (28%) free of 78 GB
Total RAM: 3326 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:26:35, on 18.5.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\vVX1000.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\Western Digital Technologies\Spindown\ExSpinDn.exe
C:\WINDOWS\system32\WDBtnMgr.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\LClock\LClock.exe
C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe
C:\Program Files\Canon\ImageBrowser EX\MFManager.exe
C:\Program Files\My Book\WD Backup\uBBMonitor.exe
C:\Program Files\Comodo\Dragon\dragon_updater.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\TeamViewer_Service.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe
C:\Program Files\Stardock\ObjectDock Plus\ObjectDock.exe
C:\Program Files\Stardock\ObjectDock Plus\ObjectDockTray.exe
C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\RSIT(1).exe
C:\Program Files\trend micro\Karel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: QPMIEHelper - {50F4150A-48B2-417A-BE4C-C83F580FB904} - C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3196\npQQPhoneManagerExt.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [VX1000] C:\WINDOWS\vVX1000.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: [WD Spindown Utility] "C:\Program Files\Western Digital Technologies\Spindown\ExSpinDn.exe"
O4 - HKLM\..\Run: [WD Button Manager] WDBtnMgr.exe
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [LClock] C:\Program Files\LClock\LClock.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-842925246-1897051121-839522115-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock Plus\ObjectDock.exe
O4 - Global Startup: ImageBrowser EX Agent.lnk = C:\Program Files\Canon\ImageBrowser EX\MFManager.exe
O4 - Global Startup: WD Backup Monitor.lnk = C:\Program Files\My Book\WD Backup\uBBMonitor.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 3287838062
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Corporation - C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe

--
End of file - 8813 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9}.job
C:\WINDOWS\tasks\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22}.job
C:\WINDOWS\tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job
C:\WINDOWS\tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default

prefs.js - "browser.startup.homepage" - "www.centrum.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@qq.com/npAndroidAssistant]
"Description"=QQPhoneManager Onekey-Install plug-in for Android Phones
"Path"=C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3196\npQQPhoneManagerExt.dll


C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions\
cs@dictionaries.addons.mozilla.org
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\searchplugins\
google-news-cs.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904}]
Ó¦Óñ¦Ň»Ľü°˛×°˛ĺĽţ - C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3196\npQQPhoneManagerExt.dll [2014-03-05 139320]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2013-10-04 20145368]
"VX1000"=C:\WINDOWS\vVX1000.exe [2010-05-20 762736]
"LifeCam"=C:\Program Files\Microsoft LifeCam\LifeExp.exe [2010-05-20 119152]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25 1225944]
"WD Spindown Utility"=C:\Program Files\Western Digital Technologies\Spindown\ExSpinDn.exe [2004-08-09 278528]
"WD Button Manager"=C:\WINDOWS\system32\WDBtnMgr.exe [2014-02-26 364544]
"VirtualCloneDrive"=C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-11-16 98304]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-02-10 20922016]
"LClock"=C:\Program Files\LClock\LClock.exe [2004-09-19 65536]
"uTorrent"=C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe [2014-05-15 1272400]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
ImageBrowser EX Agent.lnk - C:\Program Files\Canon\ImageBrowser EX\MFManager.exe
WD Backup Monitor.lnk - C:\Program Files\My Book\WD Backup\uBBMonitor.exe

C:\Documents and Settings\Kaja\Nabídka Start\Programy\Po spuštění
Stardock ObjectDock.lnk - C:\Program Files\Stardock\ObjectDock Plus\ObjectDock.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2012-11-16 192512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Microsoft LifeCam\LifeCam.exe"="C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe"
"C:\Program Files\Microsoft LifeCam\LifeEnC2.exe"="C:\Program Files\Microsoft LifeCam\LifeEnC2.exe:*:Enabled:LifeEnC2.exe"
"C:\Program Files\Microsoft LifeCam\LifeExp.exe"="C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe"
"C:\Program Files\Microsoft LifeCam\LifeTray.exe"="C:\Program Files\Microsoft LifeCam\LifeTray.exe:*:Enabled:LifeTray.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:μTorrent"
"C:\Program Files\TeamViewer\TeamViewer.exe"="C:\Program Files\TeamViewer\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe"="C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe:*:Enabled:MyPhoneExplorer"
"C:\Program Files\GIGABYTE\ET6\UpdExe.exe"="C:\Program Files\GIGABYTE\ET6\UpdExe.exe:*:Enabled:Exe File"
"C:\Program Files\GIGABYTE\ET6\GBTUpd.exe"="C:\Program Files\GIGABYTE\ET6\GBTUpd.exe:*:Enabled:GBTUpd.exe"
"C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\utorrent.exe"="C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\utorrent.exe:*:Enabled:μTorrent2"
"C:\Program Files\uTorrent\updates\3.4.0_30620.exe"="C:\Program Files\uTorrent\updates\3.4.0_30620.exe:*:Enabled:μTorrent"
"C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe"="C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:μTorrent"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\common\Arma 2\arma2.exe"="C:\Program Files\Steam\SteamApps\common\Arma 2\arma2.exe:*:Enabled:Arma 2"
"C:\Program Files\Codemasters\arma\ColdWarAssault.exe"="C:\Program Files\Codemasters\arma\ColdWarAssault.exe:*:Enabled:Cold War Assault"
"C:\Program Files\Codemasters\arma\ColdWarAssault_Server.exe"="C:\Program Files\Codemasters\arma\ColdWarAssault_Server.exe:*:Enabled:Cold War Assault server"
"C:\Program Files\Codemasters\Operation Flashpoint\ColdWarAssault.exe"="C:\Program Files\Codemasters\Operation Flashpoint\ColdWarAssault.exe:*:Enabled:Cold War Assault"
"C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.755\OFP Launcher.exe"="C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.755\OFP Launcher.exe:*:Enabled:OFP Launcher"
"C:\Documents and Settings\Kaja\Plocha\OFP Launcher.exe"="C:\Documents and Settings\Kaja\Plocha\OFP Launcher.exe:*:Enabled:OFP Launcher"
"C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe"="C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe:*:Enabled:腾讯产品下载组件"
"C:\Program Files\Tencent\QQPhoneManager\QQPhoneManager.exe"="C:\Program Files\Tencent\QQPhoneManager\QQPhoneManager.exe:*:Enabled:Tencent Phone Manager"
"C:\Program Files\Steam\SteamApps\common\Arma 3\arma3.exe"="C:\Program Files\Steam\SteamApps\common\Arma 3\arma3.exe:*:Enabled:Arma 3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe"="C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe:*:Enabled:腾讯产品下载组件"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-05-18 09:26:22 ----D---- C:\Program Files\trend micro
2014-05-17 15:33:23 ----D---- C:\Documents and Settings\Kaja\Data aplikací\VSO
2014-05-17 15:33:04 ----D---- C:\Program Files\VSO
2014-05-17 14:34:29 ----HDC---- C:\WINDOWS\$NtUninstallKB952011$
2014-05-17 14:32:54 ----D---- C:\Program Files\Google
2014-05-17 09:32:22 ----D---- C:\rsit
2014-05-16 22:35:51 ----D---- C:\WINDOWS\LastGood
2014-05-15 15:15:41 ----ASH---- C:\hiberfil.sys
2014-05-14 23:58:08 ----D---- C:\Documents and Settings\Kaja\Data aplikací\AdbDriverInstaller
2014-05-14 23:28:28 ----D---- C:\Program Files\ClockworkMod
2014-05-14 23:10:45 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Tencent
2014-05-14 23:10:27 ----D---- C:\Program Files\Tencent
2014-05-14 23:10:27 ----D---- C:\Program Files\Common Files\Tencent
2014-05-14 22:10:19 ----A---- C:\log.txt
2014-05-14 22:10:16 ----A---- C:\WINDOWS\system32\drivers\USBDrv.sys
2014-05-14 07:40:28 ----D---- C:\Program Files\Common Files\DESIGNER
2014-05-13 10:28:48 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Comodo
2014-05-13 10:22:25 ----D---- C:\WINDOWS\Minidump
2014-05-12 06:46:34 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2014-05-12 06:46:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-05-11 17:31:34 ----D---- C:\Program Files\Mozilla Firefox
2014-05-11 16:59:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2964358$
2014-05-11 16:59:53 ----D---- C:\WINDOWS\system32\appmgmt
2014-05-11 16:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2936068$
2014-05-11 16:58:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-05-11 16:58:12 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-05-11 16:57:49 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2014-05-06 14:57:48 ----D---- C:\WINDOWS\CSC
2014-05-06 14:57:42 ----A---- C:\WINDOWS\ntbtlog.txt
2014-05-05 12:30:01 ----HDC---- C:\WINDOWS\$NtUninstallwinusb0200$
2014-05-05 12:29:41 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2014-05-05 12:29:30 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2014-05-04 21:40:04 ----A---- C:\WINDOWS\imsins.BAK
2014-05-04 21:39:10 ----A---- C:\WINDOWS\system32\drivers\VMM.sys
2014-04-30 10:10:35 ----D---- C:\Program Files\Mozilla Thunderbird
2014-04-29 19:17:01 ----D---- C:\Program Files\Microsoft Virtual PC
2014-04-29 07:41:44 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Thunderbird
2014-04-29 07:04:31 ----D---- C:\Program Files\CCleaner
2014-04-28 22:17:06 ----D---- C:\AdwCleaner
2014-04-27 22:07:38 ----A---- C:\WINDOWS\system32\certsentry.dll
2014-04-24 00:16:26 ----D---- C:\Program Files\Recuva

======List of files/folders modified in the last 1 month======

2014-05-18 09:26:28 ----D---- C:\WINDOWS\Prefetch
2014-05-18 09:26:22 ----RD---- C:\Program Files
2014-05-18 09:25:50 ----D---- C:\Documents and Settings\Kaja\Data aplikací\uTorrent
2014-05-18 09:24:01 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Skype
2014-05-17 16:57:49 ----D---- C:\WINDOWS\Temp
2014-05-17 14:34:48 ----HD---- C:\WINDOWS\inf
2014-05-17 14:34:42 ----D---- C:\WINDOWS
2014-05-17 14:34:39 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-05-17 14:34:39 ----D---- C:\WINDOWS\system32
2014-05-17 13:32:59 ----D---- C:\Program Files\Steam
2014-05-17 08:19:05 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-05-16 22:36:40 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-05-16 11:52:50 ----D---- C:\WINDOWS\system32\config
2014-05-16 06:18:21 ----D---- C:\WINDOWS\system32\CatRoot2
2014-05-14 23:58:08 ----A---- C:\WINDOWS\system32\WinUSBCoInstaller2.dll
2014-05-14 23:28:35 ----SHD---- C:\WINDOWS\Installer
2014-05-14 23:10:27 ----D---- C:\Program Files\Common Files
2014-05-14 22:25:58 ----D---- C:\WINDOWS\system32\drivers
2014-05-14 19:35:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-14 07:45:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-05-14 07:41:06 ----D---- C:\WINDOWS\Debug
2014-05-14 07:40:59 ----A---- C:\WINDOWS\system32\MRT.exe
2014-05-12 16:59:11 ----D---- C:\Documents and Settings\Kaja\Data aplikací\ZoomBrowser EX
2014-05-12 16:54:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\ZoomBrowser
2014-05-12 09:48:58 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-05-11 17:29:21 ----D---- C:\WINDOWS\Microsoft.NET
2014-05-11 16:59:50 ----RSD---- C:\WINDOWS\assembly
2014-05-11 16:59:14 ----D---- C:\WINDOWS\system32\CatRoot
2014-05-11 16:50:43 ----D---- C:\WINDOWS\system32\cs-cz
2014-05-11 16:50:42 ----D---- C:\WINDOWS\Help
2014-05-11 16:50:42 ----D---- C:\Program Files\Internet Explorer
2014-05-06 15:29:56 ----D---- C:\WINDOWS\ie8updates
2014-05-06 15:21:02 ----D---- C:\WINDOWS\Media
2014-05-05 22:45:49 ----D---- C:\Documents and Settings\Kaja\Data aplikací\MyPhoneExplorer
2014-05-05 12:31:22 ----D---- C:\Program Files\MyPhoneExplorer
2014-05-04 23:12:21 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-30 07:23:32 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-04-29 19:23:11 ----SD---- C:\Documents and Settings\Kaja\Data aplikací\Microsoft
2014-04-29 07:12:38 ----D---- C:\WINDOWS\Logs
2014-04-28 08:08:35 ----D---- C:\WINDOWS\system32\Restore
2014-04-27 22:07:23 ----D---- C:\Program Files\Comodo

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2014-04-16 104920]
R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2009-06-30 164896]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI NEC FireWarden; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\WINDOWS\System32\DRIVERS\cmderd.sys [2014-04-16 15704]
R1 cmdGuard;COMODO Internet Security Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2014-04-16 607448]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2014-04-16 29912]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2013-03-04 30616]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R1 truecrypt;truecrypt; C:\WINDOWS\System32\drivers\truecrypt.sys [2014-03-15 231760]
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R3 anvsnddrv;AnvSoft Virtual Sound Device; C:\WINDOWS\system32\drivers\anvsnddrv.sys [2011-11-28 32896]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2012-11-16 7874560]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdXP3.sys [2012-05-14 103040]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2013-11-05 5589720]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2009-07-01 66688]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2009-07-01 13824]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys [2013-10-17 25088]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2013-07-24 30720]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
R3 VX1000;VX-1000; C:\WINDOWS\system32\DRIVERS\VX1000.sys [2010-05-20 1961072]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 awUSB;awUSB; C:\WINDOWS\system32\DRIVERS\USBDrv.sys [2014-05-14 13824]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 etdrv;etdrv; \??\C:\WINDOWS\etdrv.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
S3 OSFMount;OSFMount; \??\C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.777\bin\OSFMount.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WinUSB;Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2009-07-13 34944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2012-11-16 643072]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2006-03-30 96341]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-04-16 5306504]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2014-04-24 2135232]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2009-07-23 387616]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2014-02-19 239680]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS32.exe [2010-05-20 139632]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2009-07-23 178720]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-23 1259296]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2014-02-17 4915040]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2009-07-08 168004]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14 257712]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 1663192]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-03-11 136120]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-11 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Márty84]

Je s pc nejaky konkretni problem, nebo jde ciste jen o prevenci?


Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Spustte ho.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

[Kodlz]

je to jen preventivni.
ikdyz ve FB mi obcas vyskoci okenko na overeni emailu a pta se me to na heslo k FB, alekdyz to dam zrusit tak mi FB funguje dal.

# AdwCleaner v3.210 - Report created 19/05/2014 at 21:38:44
# Updated 19/05/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Karel - MOJE-PC
# Running from : C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\adwcleaner_3.210.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\Tencent
[!] Folder Deleted : C:\Program Files\Common Files\Tencent
[!] Folder Deleted : C:\Documents and Settings\Kaja\Data aplikací\Tencent

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List [C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Tencent\QQPhoneManager\QQPhoneManager.exe]
Key Deleted : HKCU\Software\TENCENT

***** [ Browsers ] *****

-\\ Internet Explorer v6.0.2900.5512


-\\ Mozilla Firefox v29.0.1 (cs)

[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


[ File : C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [1654 octets] - [28/04/2014 23:40:58]
AdwCleaner[R1].txt - [2868 octets] - [19/05/2014 21:36:59]
AdwCleaner[S0].txt - [1493 octets] - [28/04/2014 23:43:13]
AdwCleaner[S1].txt - [2811 octets] - [19/05/2014 21:38:44]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2871 octets] ##########

[Márty84]

Udelejte !!!kompletni!!! kontrolu s MBAM http://www.bleepingcomputer.com/downloa ... re/dl/241/ a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce. Navod zde http://forum.viry.cz/viewtopic.php?f=29&t=115222

[Kodlz]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.05.20.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Karel :: MOJE-PC [administrátor]

Ochrana: Povolena

20.5.2014 14:57:11
MBAM-log-2014-05-20 (16-25-14).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 325732
Uplynulý čas: 1 hodin, 27 minut, 8 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 2
C:\Documents and Settings\All Users\Data aplikací\Comodo\Cis\Quarantine\data\{77AF75B3-E232-41AE-B193-2D0AD81357E1} (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Data aplikací\Comodo\Cis\Quarantine\data\{BD6BE041-5DB2-437E-8A3E-BC6E51E97329} (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

(konec)

[Márty84]

MBAM odinstalujte (ty nalezy uz jsou v karantene Comoda, cili neskodne)


Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu a spustte.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

[Kodlz]

takze vsechno je ciste?
dekuji moc za kontrolu.

[Márty84]

Nemate zac!

Havet tam nevidim, ale chtel jsem jeste kouknout na brzdy a zbytecnosti...

No ale pokud vam to takto staci Cili chcete tema uzavrit?

[Kodlz]

sem vcera v rychlosti odepisoval a prehledl jsem Vas druhy odstavec.

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Karel [Práva správce]
Mód : Kontrola -- Datum : 05/21/2014 07:31:49
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[SVCHOST] svchost.exe -- C:\WINDOWS\system32\svchost.exe [7] -> SMAZÁNO [TermProc]
[SVCHOST] svchost.exe -- C:\WINDOWS\system32\svchost.exe [7] -> SMAZÁNO [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 1 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 3 ¤¤¤
[All Users][SUSP UNIC] ImageBrowser EX Agent.lnk : C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ImageBrowser EX Agent.lnk @C:\PROGRA~1\Canon\IMAGEB~1\MFMANA~1.EXE [-][-] -> NALEZENO
[All Users][SUSP UNIC] WD Backup Monitor.lnk : C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\WD Backup Monitor.lnk @C:\PROGRA~1\MYBOOK~1\WDBACK~1\UBBMON~1.EXE [-][-] -> NALEZENO
[Kaja][SUSP UNIC] Stardock ObjectDock.lnk : C:\Documents and Settings\Kaja\Nabídka Start\Programy\Po spuštění\Stardock ObjectDock.lnk @C:\PROGRA~1\Stardock\OBJECT~1\OBJECT~1.EXE [-][7] -> NALEZENO

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) Maxtor 6 Y080M0 SCSI Disk Device +++++
--- User ---
[MBR] d8355290a324584a323b26ca900f3a0d
[BSP] 577609119b7b99ba6c644c240723b6b8 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 78152 MB
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 160055595 | Size: 14 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x1] Nesprávná funkce. )

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) Maxtor 6 L080M0 SCSI Disk Device +++++
--- User ---
[MBR] ace6af52692d167a8fe45dbd26e02f82
[BSP] 1711b488eb3ad731dfb9b09c66f65330 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 78154 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x1] Nesprávná funkce. )

Dokončeno : << RKreport[0]_S_05212014_073149.txt >>

[Márty84]

Dejte novy log z RSIT

a k tomu

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe , ulozte na plochu a spustte.
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

[Kodlz]

RSIT:


Logfile of random's system information tool 1.09 (written by random/random)
Run by Karel at 2014-05-21 12:02:30
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 21 GB (26%) free of 78 GB
Total RAM: 3326 MB (33% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:02:35, on 21.5.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\vVX1000.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\Western Digital Technologies\Spindown\ExSpinDn.exe
C:\WINDOWS\system32\WDBtnMgr.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\LClock\LClock.exe
C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe
C:\Program Files\Canon\ImageBrowser EX\MFManager.exe
C:\Program Files\My Book\WD Backup\uBBMonitor.exe
C:\Program Files\Comodo\Dragon\dragon_updater.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\TeamViewer_Service.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\Dragon\dragon.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
C:\Program Files\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe
C:\Program Files\Stardock\ObjectDock Plus\ObjectDock.exe
C:\Program Files\Stardock\ObjectDock Plus\ObjectDockTray.exe
C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\RSIT(1).exe
C:\Program Files\trend micro\Karel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: QPMIEHelper - {50F4150A-48B2-417A-BE4C-C83F580FB904} - C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3196\npQQPhoneManagerExt.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [VX1000] C:\WINDOWS\vVX1000.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: [WD Spindown Utility] "C:\Program Files\Western Digital Technologies\Spindown\ExSpinDn.exe"
O4 - HKLM\..\Run: [WD Button Manager] WDBtnMgr.exe
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [LClock] C:\Program Files\LClock\LClock.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-842925246-1897051121-839522115-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock Plus\ObjectDock.exe
O4 - Global Startup: ImageBrowser EX Agent.lnk = C:\Program Files\Canon\ImageBrowser EX\MFManager.exe
O4 - Global Startup: WD Backup Monitor.lnk = C:\Program Files\My Book\WD Backup\uBBMonitor.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 3287838062
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Corporation - C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe

--
End of file - 8775 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9}.job
C:\WINDOWS\tasks\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22}.job
C:\WINDOWS\tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job
C:\WINDOWS\tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default

prefs.js - "browser.startup.homepage" - "www.centrum.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@qq.com/npAndroidAssistant]
"Description"=QQPhoneManager Onekey-Install plug-in for Android Phones
"Path"=C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3196\npQQPhoneManagerExt.dll


C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions\
cs@dictionaries.addons.mozilla.org
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\searchplugins\
google-news-cs.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904}]
Ó¦Óñ¦Ň»Ľü°˛×°˛ĺĽţ - C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3196\npQQPhoneManagerExt.dll [2014-03-05 139320]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2013-10-04 20145368]
"VX1000"=C:\WINDOWS\vVX1000.exe [2010-05-20 762736]
"LifeCam"=C:\Program Files\Microsoft LifeCam\LifeExp.exe [2010-05-20 119152]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25 1225944]
"WD Spindown Utility"=C:\Program Files\Western Digital Technologies\Spindown\ExSpinDn.exe [2004-08-09 278528]
"WD Button Manager"=C:\WINDOWS\system32\WDBtnMgr.exe [2014-02-26 364544]
"VirtualCloneDrive"=C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-11-16 98304]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-02-10 20922016]
"LClock"=C:\Program Files\LClock\LClock.exe [2004-09-19 65536]
"uTorrent"=C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe [2014-05-15 1272400]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
ImageBrowser EX Agent.lnk - C:\Program Files\Canon\ImageBrowser EX\MFManager.exe
WD Backup Monitor.lnk - C:\Program Files\My Book\WD Backup\uBBMonitor.exe

C:\Documents and Settings\Kaja\Nabídka Start\Programy\Po spuštění
Stardock ObjectDock.lnk - C:\Program Files\Stardock\ObjectDock Plus\ObjectDock.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2012-11-16 192512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Microsoft LifeCam\LifeCam.exe"="C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe"
"C:\Program Files\Microsoft LifeCam\LifeEnC2.exe"="C:\Program Files\Microsoft LifeCam\LifeEnC2.exe:*:Enabled:LifeEnC2.exe"
"C:\Program Files\Microsoft LifeCam\LifeExp.exe"="C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe"
"C:\Program Files\Microsoft LifeCam\LifeTray.exe"="C:\Program Files\Microsoft LifeCam\LifeTray.exe:*:Enabled:LifeTray.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:μTorrent"
"C:\Program Files\TeamViewer\TeamViewer.exe"="C:\Program Files\TeamViewer\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe"="C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe:*:Enabled:MyPhoneExplorer"
"C:\Program Files\GIGABYTE\ET6\UpdExe.exe"="C:\Program Files\GIGABYTE\ET6\UpdExe.exe:*:Enabled:Exe File"
"C:\Program Files\GIGABYTE\ET6\GBTUpd.exe"="C:\Program Files\GIGABYTE\ET6\GBTUpd.exe:*:Enabled:GBTUpd.exe"
"C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\utorrent.exe"="C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\utorrent.exe:*:Enabled:μTorrent2"
"C:\Program Files\uTorrent\updates\3.4.0_30620.exe"="C:\Program Files\uTorrent\updates\3.4.0_30620.exe:*:Enabled:μTorrent"
"C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe"="C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:μTorrent"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\common\Arma 2\arma2.exe"="C:\Program Files\Steam\SteamApps\common\Arma 2\arma2.exe:*:Enabled:Arma 2"
"C:\Program Files\Codemasters\arma\ColdWarAssault.exe"="C:\Program Files\Codemasters\arma\ColdWarAssault.exe:*:Enabled:Cold War Assault"
"C:\Program Files\Codemasters\arma\ColdWarAssault_Server.exe"="C:\Program Files\Codemasters\arma\ColdWarAssault_Server.exe:*:Enabled:Cold War Assault server"
"C:\Program Files\Codemasters\Operation Flashpoint\ColdWarAssault.exe"="C:\Program Files\Codemasters\Operation Flashpoint\ColdWarAssault.exe:*:Enabled:Cold War Assault"
"C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.755\OFP Launcher.exe"="C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.755\OFP Launcher.exe:*:Enabled:OFP Launcher"
"C:\Documents and Settings\Kaja\Plocha\OFP Launcher.exe"="C:\Documents and Settings\Kaja\Plocha\OFP Launcher.exe:*:Enabled:OFP Launcher"
"C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe"="C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe:*:Enabled:腾讯产品下载组件"
"C:\Program Files\Tencent\QQPhoneManager\QQPhoneManager.exe"="C:\Program Files\Tencent\QQPhoneManager\QQPhoneManager.exe:*:Enabled:Tencent Phone Manager"
"C:\Program Files\Steam\SteamApps\common\Arma 3\arma3.exe"="C:\Program Files\Steam\SteamApps\common\Arma 3\arma3.exe:*:Enabled:Arma 3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe"="C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe:*:Enabled:腾讯产品下载组件"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-05-21 07:29:49 ----A---- C:\WINDOWS\system32\TrueSight.sys
2014-05-20 14:54:00 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Malwarebytes
2014-05-20 14:53:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-05-20 14:53:36 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-05-18 09:26:22 ----D---- C:\Program Files\trend micro
2014-05-17 15:33:23 ----D---- C:\Documents and Settings\Kaja\Data aplikací\VSO
2014-05-17 15:33:04 ----D---- C:\Program Files\VSO
2014-05-17 14:34:29 ----HDC---- C:\WINDOWS\$NtUninstallKB952011$
2014-05-17 14:32:54 ----D---- C:\Program Files\Google
2014-05-17 09:32:22 ----D---- C:\rsit
2014-05-15 15:15:41 ----ASH---- C:\hiberfil.sys
2014-05-14 23:58:08 ----D---- C:\Documents and Settings\Kaja\Data aplikací\AdbDriverInstaller
2014-05-14 23:28:28 ----D---- C:\Program Files\ClockworkMod
2014-05-14 23:10:45 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Tencent
2014-05-14 23:10:27 ----D---- C:\Program Files\Common Files\Tencent
2014-05-14 22:10:19 ----A---- C:\log.txt
2014-05-14 22:10:16 ----A---- C:\WINDOWS\system32\drivers\USBDrv.sys
2014-05-14 07:40:28 ----D---- C:\Program Files\Common Files\DESIGNER
2014-05-13 10:28:48 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Comodo
2014-05-13 10:22:25 ----D---- C:\WINDOWS\Minidump
2014-05-12 06:46:34 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2014-05-12 06:46:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-05-11 17:31:34 ----D---- C:\Program Files\Mozilla Firefox
2014-05-11 16:59:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2964358$
2014-05-11 16:59:53 ----D---- C:\WINDOWS\system32\appmgmt
2014-05-11 16:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2936068$
2014-05-11 16:58:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-05-11 16:58:12 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-05-11 16:57:49 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2014-05-06 14:57:48 ----D---- C:\WINDOWS\CSC
2014-05-06 14:57:42 ----A---- C:\WINDOWS\ntbtlog.txt
2014-05-05 12:30:01 ----HDC---- C:\WINDOWS\$NtUninstallwinusb0200$
2014-05-05 12:29:41 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2014-05-05 12:29:30 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2014-05-04 21:40:04 ----A---- C:\WINDOWS\imsins.BAK
2014-05-04 21:39:10 ----A---- C:\WINDOWS\system32\drivers\VMM.sys
2014-04-30 10:10:35 ----D---- C:\Program Files\Mozilla Thunderbird
2014-04-29 19:17:01 ----D---- C:\Program Files\Microsoft Virtual PC
2014-04-29 07:41:44 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Thunderbird
2014-04-29 07:04:31 ----D---- C:\Program Files\CCleaner
2014-04-28 22:17:06 ----D---- C:\AdwCleaner
2014-04-27 22:07:38 ----A---- C:\WINDOWS\system32\certsentry.dll
2014-04-24 00:16:26 ----D---- C:\Program Files\Recuva

======List of files/folders modified in the last 1 month======

2014-05-21 11:58:48 ----D---- C:\Documents and Settings\Kaja\Data aplikací\uTorrent
2014-05-21 11:40:39 ----D---- C:\Documents and Settings\Kaja\Data aplikací\Skype
2014-05-21 09:46:30 ----D---- C:\WINDOWS\Prefetch
2014-05-21 07:31:46 ----D---- C:\WINDOWS\system32\drivers
2014-05-21 07:29:49 ----D---- C:\WINDOWS\system32
2014-05-20 21:36:17 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-05-20 21:23:30 ----D---- C:\WINDOWS\Temp
2014-05-20 20:56:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\ZoomBrowser
2014-05-20 20:56:49 ----D---- C:\Documents and Settings\Kaja\Data aplikací\ZoomBrowser EX
2014-05-20 15:26:50 ----D---- C:\Program Files\Age of Empires II HD
2014-05-20 14:53:36 ----RD---- C:\Program Files
2014-05-19 21:43:01 ----D---- C:\WINDOWS\system32\CatRoot2
2014-05-18 22:52:34 ----D---- C:\WINDOWS
2014-05-17 14:34:48 ----HD---- C:\WINDOWS\inf
2014-05-17 14:34:39 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-05-17 13:32:59 ----D---- C:\Program Files\Steam
2014-05-16 22:36:40 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-05-16 11:52:50 ----D---- C:\WINDOWS\system32\config
2014-05-14 23:58:08 ----A---- C:\WINDOWS\system32\WinUSBCoInstaller2.dll
2014-05-14 23:28:35 ----SHD---- C:\WINDOWS\Installer
2014-05-14 23:10:27 ----D---- C:\Program Files\Common Files
2014-05-14 19:35:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-14 07:45:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-05-14 07:41:06 ----D---- C:\WINDOWS\Debug
2014-05-14 07:40:59 ----A---- C:\WINDOWS\system32\MRT.exe
2014-05-12 09:48:58 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-05-11 17:29:21 ----D---- C:\WINDOWS\Microsoft.NET
2014-05-11 16:59:50 ----RSD---- C:\WINDOWS\assembly
2014-05-11 16:59:14 ----D---- C:\WINDOWS\system32\CatRoot
2014-05-11 16:50:43 ----D---- C:\WINDOWS\system32\cs-cz
2014-05-11 16:50:42 ----D---- C:\WINDOWS\Help
2014-05-11 16:50:42 ----D---- C:\Program Files\Internet Explorer
2014-05-06 15:29:56 ----D---- C:\WINDOWS\ie8updates
2014-05-06 15:21:02 ----D---- C:\WINDOWS\Media
2014-05-05 22:45:49 ----D---- C:\Documents and Settings\Kaja\Data aplikací\MyPhoneExplorer
2014-05-05 12:31:22 ----D---- C:\Program Files\MyPhoneExplorer
2014-05-04 23:12:21 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-30 07:23:32 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-04-29 19:23:11 ----SD---- C:\Documents and Settings\Kaja\Data aplikací\Microsoft
2014-04-29 07:12:38 ----D---- C:\WINDOWS\Logs
2014-04-28 08:08:35 ----D---- C:\WINDOWS\system32\Restore
2014-04-27 22:07:23 ----D---- C:\Program Files\Comodo

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2014-04-16 104920]
R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2009-06-30 164896]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI NEC FireWarden; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\WINDOWS\System32\DRIVERS\cmderd.sys [2014-04-16 15704]
R1 cmdGuard;COMODO Internet Security Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2014-04-16 607448]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2014-04-16 29912]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2013-03-04 30616]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R1 truecrypt;truecrypt; C:\WINDOWS\System32\drivers\truecrypt.sys [2014-03-15 231760]
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R3 anvsnddrv;AnvSoft Virtual Sound Device; C:\WINDOWS\system32\drivers\anvsnddrv.sys [2011-11-28 32896]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2012-11-16 7874560]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdXP3.sys [2012-05-14 103040]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2013-11-05 5589720]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2009-07-01 66688]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2009-07-01 13824]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys [2013-10-17 25088]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2013-07-24 30720]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
R3 VX1000;VX-1000; C:\WINDOWS\system32\DRIVERS\VX1000.sys [2010-05-20 1961072]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 awUSB;awUSB; C:\WINDOWS\system32\DRIVERS\USBDrv.sys [2014-05-14 13824]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 etdrv;etdrv; \??\C:\WINDOWS\etdrv.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
S3 OSFMount;OSFMount; \??\C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.777\bin\OSFMount.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 TrueSight;TrueSight; \??\C:\WINDOWS\system32\TrueSight.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WinUSB;Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2009-07-13 34944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2012-11-16 643072]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2006-03-30 96341]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-04-16 5306504]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2014-04-24 2135232]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2009-07-23 387616]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2014-02-19 239680]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS32.exe [2010-05-20 139632]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2009-07-23 178720]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-23 1259296]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2014-02-17 4915040]
R3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 1663192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2009-07-08 168004]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14 257712]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-03-11 136120]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-11 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Kodlz]

OTL:


OTL logfile created on: 21.5.2014 12:04:42 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 1,05 Gb Available Physical Memory | 32,23% Memory free
9,20 Gb Paging File | 5,79 Gb Available in Paging File | 62,89% Paging File free
Paging file location(s): C:\pagefile.sys 256 256D:\pagefil [Binary data over 200 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 76,32 Gb Total Space | 20,06 Gb Free Space | 26,29% Space Free | Partition Type: NTFS
Drive D: | 76,32 Gb Total Space | 2,92 Gb Free Space | 3,83% Space Free | Partition Type: NTFS

Computer Name: MOJE-PC | User Name: Karel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.05.21 12:03:47 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\OTL(1).exe
PRC - [2014.05.21 07:27:46 | 003,972,608 | ---- | M] () -- C:\Documents and Settings\Kaja\Plocha\RogueKiller.exe
PRC - [2014.05.15 08:57:01 | 001,272,400 | ---- | M] (BitTorrent Inc.) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe
PRC - [2014.05.11 17:32:22 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2014.04.30 10:10:49 | 000,390,256 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Thunderbird\thunderbird.exe
PRC - [2014.04.24 01:54:16 | 002,135,232 | ---- | M] () -- C:\Program Files\Comodo\Dragon\dragon_updater.exe
PRC - [2014.04.24 01:54:14 | 001,260,736 | ---- | M] (Comodo) -- C:\Program Files\Comodo\Dragon\dragon.exe
PRC - [2014.04.16 23:12:44 | 005,306,504 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
PRC - [2014.03.25 21:22:15 | 001,663,192 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cmdvirth.exe
PRC - [2014.03.25 21:22:14 | 007,555,288 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cis.exe
PRC - [2014.03.25 21:22:14 | 001,864,408 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
PRC - [2014.03.25 21:22:14 | 001,225,944 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cistray.exe
PRC - [2014.02.26 14:58:42 | 000,364,544 | ---- | M] (Western Digital Technologies, Inc.) -- C:\WINDOWS\system32\WDBtnMgr.exe
PRC - [2014.02.19 19:40:02 | 000,239,680 | ---- | M] (Foxit Corporation) -- C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
PRC - [2014.02.17 15:09:48 | 004,915,040 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe
PRC - [2014.02.06 20:00:00 | 005,857,792 | ---- | M] (MPC-HC Team) -- C:\Program Files\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe
PRC - [2013.10.03 11:42:30 | 000,069,120 | ---- | M] () -- C:\Program Files\Canon\ImageBrowser EX\MFManager.exe
PRC - [2013.03.23 02:22:24 | 001,259,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2011.11.12 02:49:56 | 004,152,536 | ---- | M] (Stardock) -- C:\Program Files\Stardock\ObjectDock Plus\ObjectDock.exe
PRC - [2011.11.11 18:16:58 | 000,296,960 | ---- | M] (Microsoft) -- C:\Program Files\Stardock\ObjectDock Plus\ObjectDockTray.exe
PRC - [2010.05.20 16:27:24 | 000,762,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\vVX1000.exe
PRC - [2010.05.20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2009.07.23 18:23:56 | 000,178,720 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
PRC - [2009.07.23 18:23:54 | 000,387,616 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
PRC - [2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.09.07 16:21:38 | 000,098,304 | ---- | M] (ArcSoft, Inc.) -- C:\Program Files\My Book\WD Backup\uBBMonitor.exe
PRC - [2006.03.30 10:15:44 | 000,096,341 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe
PRC - [2004.09.19 20:27:44 | 000,065,536 | ---- | M] () -- C:\Program Files\LClock\LClock.exe
PRC - [2004.08.09 16:15:42 | 000,278,528 | ---- | M] (Western Digital Technologies, Inc.) -- C:\Program Files\Western Digital Technologies\Spindown\ExSpinDn.exe


========== Modules (No Company Name) ==========

MOD - [2014.05.14 19:35:10 | 016,361,136 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll
MOD - [2014.05.11 17:32:15 | 003,839,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2014.04.30 10:10:52 | 003,019,888 | ---- | M] () -- C:\Program Files\Mozilla Thunderbird\mozjs.dll
MOD - [2014.04.30 10:10:52 | 000,158,832 | ---- | M] () -- C:\Program Files\Mozilla Thunderbird\nsldap32v60.dll
MOD - [2014.04.30 10:10:52 | 000,023,152 | ---- | M] () -- C:\Program Files\Mozilla Thunderbird\nsldappr32v60.dll
MOD - [2014.04.24 01:55:00 | 000,895,680 | ---- | M] () -- C:\Program Files\Comodo\Dragon\ffmpegsumo.dll
MOD - [2014.04.24 01:54:18 | 000,052,416 | ---- | M] () -- C:\Program Files\Comodo\Dragon\chrome_elf.dll
MOD - [2014.04.24 01:54:16 | 002,135,232 | ---- | M] () -- C:\Program Files\Comodo\Dragon\dragon_updater.exe
MOD - [2014.02.26 14:49:50 | 000,807,936 | ---- | M] () -- C:\Program Files\Stardock\ObjectDock Plus\CrashRpt.dll
MOD - [2014.02.25 17:27:30 | 000,440,832 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\ObjectDockTray\8d50e4f8745fecb058d27b89a52700ab\ObjectDockTray.ni.exe
MOD - [2014.02.25 17:27:29 | 000,440,832 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\RenderPanel\ba8e723490bd3b9b3fd03662e681472f\RenderPanel.ni.dll
MOD - [2014.02.25 17:27:24 | 000,771,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\fd639d8d8def70deaf3b26cd073577f3\System.Runtime.Remoting.ni.dll
MOD - [2014.02.25 12:30:58 | 000,762,880 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\8556fa9ad747e43a85e107dbeb42659e\System.Runtime.Remoting.ni.dll
MOD - [2014.02.25 12:30:16 | 011,906,048 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\f0b0625c2db624ba9c97ad1b12490d79\System.Web.ni.dll
MOD - [2014.02.25 12:29:08 | 000,978,944 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b6e70acd99dc22e29b7fc8f9ac340c4\System.Configuration.ni.dll
MOD - [2014.02.25 12:28:38 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\06b454361516e65eca55a743cd93cefc\Accessibility.ni.dll
MOD - [2014.02.25 12:27:16 | 005,462,016 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\7faf645dc46781225cb722edf9e1e738\System.Xml.ni.dll
MOD - [2014.02.25 12:27:12 | 012,434,432 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1cdfe1998ad6794db3237006906c6fa2\System.Windows.Forms.ni.dll
MOD - [2014.02.25 12:27:01 | 001,593,344 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\424bff3295c6e7539cc6df62b9425bd0\System.Drawing.ni.dll
MOD - [2014.02.25 12:24:38 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\4b0455ae94e3cecca4bb3ba8c96828c9\System.ni.dll
MOD - [2014.02.25 12:24:32 | 011,497,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\dae02331a443fb52216ca83292cb2f21\mscorlib.ni.dll
MOD - [2014.02.25 12:21:53 | 013,199,360 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\2781e84862746a34f026d0ee179eed2b\System.Windows.Forms.ni.dll
MOD - [2014.02.25 12:21:44 | 001,667,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\243ff1822abc8282cb8fee37538170b4\System.Drawing.ni.dll
MOD - [2014.02.25 12:21:37 | 005,628,928 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\850fa7110c7423c324762c1ad3130219\System.Xml.ni.dll
MOD - [2014.02.25 12:21:27 | 009,099,776 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\4c906eb82e6f56aea01b2a7291fab7ea\System.ni.dll
MOD - [2014.02.25 12:21:18 | 014,416,896 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\4e62d1d9b7dd2c2d14915abb73c22d50\mscorlib.ni.dll
MOD - [2014.02.25 11:12:36 | 000,425,984 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2014.02.25 11:12:34 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2014.02.06 20:00:00 | 000,232,448 | ---- | M] () -- C:\Program Files\K-Lite Codec Pack\Filters\LAV\libbluray.dll
MOD - [2013.12.04 22:23:49 | 000,348,160 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2013.10.03 11:42:30 | 000,112,128 | ---- | M] () -- C:\Program Files\Canon\ImageBrowser EX\MFMFileSystemWatcher.dll
MOD - [2013.10.03 11:42:30 | 000,069,120 | ---- | M] () -- C:\Program Files\Canon\ImageBrowser EX\MFManager.exe
MOD - [2013.06.18 15:49:28 | 000,016,384 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2012.11.16 15:44:36 | 000,270,336 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2011.11.12 02:49:56 | 000,626,688 | ---- | M] () -- C:\Program Files\Stardock\ObjectDock Plus\DockShellHook.dll
MOD - [2011.08.11 23:12:25 | 000,053,760 | ---- | M] () -- C:\Program Files\Stardock\ObjectDock Plus\zlib.dll
MOD - [2011.08.11 23:12:13 | 000,091,544 | ---- | M] () -- C:\Program Files\Stardock\ObjectDock Plus\Docklets\Calendar\Calendar.dll
MOD - [2010.03.16 12:22:12 | 000,014,848 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AxInterop.WBOCXLib.dll
MOD - [2009.07.23 18:23:56 | 000,178,720 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
MOD - [2009.07.23 18:23:54 | 000,387,616 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
MOD - [2009.07.23 18:23:48 | 000,436,768 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\SpecialCase.dll
MOD - [2009.07.23 18:23:08 | 000,068,128 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll
MOD - [2008.04.14 09:51:48 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2004.09.19 20:27:44 | 000,065,536 | ---- | M] () -- C:\Program Files\LClock\LClock.exe
MOD - [2004.09.19 20:27:34 | 000,069,632 | ---- | M] () -- C:\Program Files\LClock\LC.dll
MOD - [2004.09.19 20:27:30 | 000,081,920 | ---- | M] () -- C:\Program Files\LClock\Calendar.dll


========== Services (SafeList) ==========

SRV - [2014.05.14 19:35:12 | 000,257,712 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.05.11 17:32:16 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014.04.24 01:54:16 | 002,135,232 | ---- | M] () [Auto | Running] -- C:\Program Files\Comodo\Dragon\dragon_updater.exe -- (DragonUpdater)
SRV - [2014.04.16 23:12:44 | 005,306,504 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2014.03.25 21:22:15 | 001,663,192 | ---- | M] (COMODO) [On_Demand | Running] -- C:\Program Files\Comodo\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV - [2014.02.19 19:40:02 | 000,239,680 | ---- | M] (Foxit Corporation) [Auto | Running] -- C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe -- (FoxitCloudUpdateService)
SRV - [2014.02.17 15:09:48 | 004,915,040 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\TeamViewer_Service.exe -- (TeamViewer9)
SRV - [2013.10.23 09:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.03.23 02:22:24 | 001,259,296 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2011.08.30 16:55:54 | 000,160,256 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)
SRV - [2010.05.20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2009.07.23 18:23:56 | 000,178,720 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV - [2009.07.23 18:23:54 | 000,387,616 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)
SRV - [2006.03.30 10:15:44 | 000,096,341 | ---- | M] (Canon Inc.) [Auto | Running] -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.777\bin\OSFMount.sys -- (OSFMount)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\mcdbus.sys -- (mcdbus)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2014.05.21 07:29:50 | 000,026,624 | ---- | M] () [Kernel | On_Demand | Unknown] -- C:\WINDOWS\system32\TrueSight.sys -- (TrueSight)
DRV - [2014.05.14 22:10:16 | 000,013,824 | ---- | M] (Scott) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBDrv.sys -- (awUSB)
DRV - [2014.05.04 21:39:11 | 000,229,208 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VMM.sys -- (vmm)
DRV - [2014.04.16 23:12:48 | 000,104,920 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\inspect.sys -- (Inspect)
DRV - [2014.04.16 23:12:47 | 000,607,448 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard)
DRV - [2014.04.16 23:12:47 | 000,029,912 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2014.04.16 23:12:47 | 000,015,704 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmderd.sys -- (cmderd)
DRV - [2014.03.15 12:17:48 | 000,231,760 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\truecrypt.sys -- (truecrypt)
DRV - [2014.03.01 14:26:16 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\etdrv.sys -- (etdrv)
DRV - [2014.03.01 13:48:48 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2013.11.05 20:47:54 | 005,589,720 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2013.10.17 17:32:56 | 000,025,088 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV - [2012.11.16 23:04:28 | 007,874,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2012.05.14 08:12:12 | 000,103,040 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService)
DRV - [2011.11.28 15:51:44 | 000,032,896 | ---- | M] (AnvSoft Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\anvsnddrv.sys -- (anvsnddrv)
DRV - [2010.05.20 16:27:26 | 001,961,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VX1000.sys -- (VX1000)
DRV - [2010.02.11 14:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009.11.18 08:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009.11.18 08:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009.07.13 16:51:12 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2009.07.01 12:53:34 | 000,013,824 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2009.07.01 12:53:30 | 000,066,688 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2009.06.30 18:31:00 | 000,164,896 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts)
DRV - [2007.04.16 22:46:00 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2007.01.29 06:20:34 | 000,059,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMNetSrv.sys -- (VPCNetS2)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-842925246-1897051121-839522115-1003\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-842925246-1897051121-839522115-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-842925246-1897051121-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-842925246-1897051121-839522115-1005\..\SearchScopes,DefaultScope =

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.centrum.cz"
FF - prefs.js..extensions.enabledAddons: translator%40zoli.bod:2.1.0.3
FF - prefs.js..extensions.enabledAddons: %7Bdc572301-7619-498c-a57d-39143191b318%7D:0.4.1.3.1
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.22
FF - prefs.js..extensions.enabledAddons: LDSI_plashcor%40gmail.com:1.0.2
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@qq.com/npAndroidAssistant: C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3196\npQQPhoneManagerExt.dll (腾讯公司)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.5.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.5.0\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2014.02.25 13:05:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Extensions
[2014.05.20 20:01:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions
[2014.03.24 20:21:44 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2014.02.25 19:09:34 | 000,000,000 | ---D | M] (ÄŚeskĂ˝ slovnĂ­k pro kontrolu pravopisu) -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions\cs@dictionaries.addons.mozilla.org
[2014.03.06 19:42:59 | 000,040,527 | ---- | M] () (No name found) -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions\about-addons-memory@tn123.org.xpi
[2014.04.02 21:36:00 | 000,129,451 | ---- | M] () (No name found) -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions\LDSI_plashcor@gmail.com.xpi
[2012.10.27 16:00:52 | 000,060,290 | ---- | M] () (No name found) -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions\translator@zoli.bod.xpi
[2014.05.20 20:01:07 | 000,970,181 | ---- | M] () (No name found) -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi
[2014.05.04 18:57:37 | 000,957,880 | ---- | M] () (No name found) -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014.02.23 22:40:32 | 000,787,979 | ---- | M] () (No name found) -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi
[2011.10.02 13:34:46 | 000,002,000 | ---- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\searchplugins\google-news-cs.xml
[2014.05.11 17:31:34 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014.05.11 17:32:23 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\KAJA\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\JLDQGZEO.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\KAJA\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\JLDQGZEO.DEFAULT\EXTENSIONS\{DC572301-7619-498C-A57D-39143191B318}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\KAJA\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\JLDQGZEO.DEFAULT\EXTENSIONS\LDSI_PLASHCOR@GMAIL.COM.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\KAJA\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\JLDQGZEO.DEFAULT\EXTENSIONS\TRANSLATOR@ZOLI.BOD.XPI

O1 HOSTS File: ([2004.08.18 14:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Ó¦Óñ¦Ň»Ľü°˛×°˛ĺĽţ) - {50F4150A-48B2-417A-BE4C-C83F580FB904} - C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3196\npQQPhoneManagerExt.dll (腾讯公司)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\Comodo\COMODO Internet Security\cistray.exe (COMODO)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LifeCam] C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [VX1000] C:\WINDOWS\vVX1000.exe (Microsoft Corporation)
O4 - HKLM..\Run: [WD Button Manager] C:\WINDOWS\System32\WDBtnMgr.exe (Western Digital Technologies, Inc.)
O4 - HKLM..\Run: [WD Spindown Utility] C:\Program Files\Western Digital Technologies\Spindown\ExSpinDn.exe (Western Digital Technologies, Inc.)
O4 - HKU\S-1-5-21-842925246-1897051121-839522115-1003..\Run: [LClock] C:\Program Files\LClock\LClock.exe ()
O4 - HKU\S-1-5-21-842925246-1897051121-839522115-1003..\Run: [uTorrent] C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ImageBrowser EX Agent.lnk = C:\Program Files\Canon\ImageBrowser EX\MFManager.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\WD Backup Monitor.lnk = C:\Program Files\My Book\WD Backup\uBBMonitor.exe (ArcSoft, Inc.)
O4 - Startup: C:\Documents and Settings\Kaja\Nabídka Start\Programy\Po spuštění\Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock Plus\ObjectDock.exe (Stardock)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-842925246-1897051121-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-842925246-1897051121-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 3287720828 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 3287838062 (MUWebControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 88.212.8.8 88.212.8.88
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{655DB8B8-68C6-4B33-9B7C-E6548FE01671}: DhcpNameServer = 88.212.8.8 88.212.8.88
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Kaja\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Kaja\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2014.02.25 02:05:12 | 000,000,000 | -HS- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014.05.21 07:29:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Plocha\RK_Quarantine
[2014.05.20 14:54:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Data aplikací\Malwarebytes
[2014.05.20 14:53:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2014.05.20 14:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2014.05.18 09:26:22 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.05.17 15:33:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Data aplikací\VSO
[2014.05.17 15:33:04 | 000,000,000 | ---D | C] -- C:\Program Files\VSO
[2014.05.17 14:34:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Picasa 3
[2014.05.17 14:33:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Local Settings\Data aplikací\Google
[2014.05.17 14:32:54 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2014.05.17 14:30:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Plocha\foto
[2014.05.17 09:32:22 | 000,000,000 | ---D | C] -- C:\rsit
[2014.05.16 22:34:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\.swt
[2014.05.16 21:41:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Nabídka Start\Programy\Steam
[2014.05.14 23:58:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Data aplikací\AdbDriverInstaller
[2014.05.14 23:28:28 | 000,000,000 | ---D | C] -- C:\Program Files\ClockworkMod
[2014.05.14 23:10:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Data aplikací\Tencent
[2014.05.14 23:10:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Tencent
[2014.05.14 22:10:16 | 000,013,824 | ---- | C] (Scott) -- C:\WINDOWS\System32\drivers\USBDrv.sys
[2014.05.14 22:06:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Plocha\prestigio
[2014.05.14 07:40:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2014.05.13 10:28:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Data aplikací\Comodo
[2014.05.13 10:22:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2014.05.11 17:31:34 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014.05.11 16:59:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2014.05.06 14:57:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\CSC
[2014.05.05 12:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\.android
[2014.05.05 12:31:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\MyPhoneExplorer
[2014.05.05 12:29:41 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2014.05.04 21:39:10 | 000,229,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\VMM.sys
[2014.04.30 10:10:35 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2014.04.29 19:23:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Dokumenty\My Virtual Machines
[2014.04.29 19:17:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Virtual PC
[2014.04.29 07:41:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Local Settings\Data aplikací\Thunderbird
[2014.04.29 07:41:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kaja\Data aplikací\Thunderbird
[2014.04.29 07:26:28 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Kaja\Recent
[2014.04.29 07:04:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
[2014.04.29 07:04:31 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014.04.28 22:17:06 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014.04.28 13:09:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\COMODO
[2014.04.27 22:07:38 | 000,048,392 | ---- | C] (COMODO CA Limited) -- C:\WINDOWS\System32\certsentry.dll
[2014.04.24 00:16:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Recuva
[2014.04.24 00:16:26 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014.05.21 12:10:23 | 000,000,440 | ---- | M] () -- C:\WINDOWS\tasks\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9}.job
[2014.05.21 12:08:17 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.05.21 12:05:54 | 001,474,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2014.05.21 11:33:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014.05.21 10:31:04 | 000,000,440 | ---- | M] () -- C:\WINDOWS\tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job
[2014.05.21 07:29:50 | 000,026,624 | ---- | M] () -- C:\WINDOWS\System32\TrueSight.sys
[2014.05.21 07:27:46 | 003,972,608 | ---- | M] () -- C:\Documents and Settings\Kaja\Plocha\RogueKiller.exe
[2014.05.21 06:05:47 | 001,797,868 | ---- | M] () -- C:\WINDOWS\System32\drivers\fvstore.dat
[2014.05.20 16:31:01 | 000,000,440 | ---- | M] () -- C:\WINDOWS\tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job
[2014.05.19 21:42:39 | 000,000,440 | ---- | M] () -- C:\WINDOWS\tasks\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22}.job
[2014.05.19 21:42:34 | 000,012,984 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014.05.19 21:40:21 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014.05.19 21:40:14 | 3488,075,776 | -HS- | M] () -- C:\hiberfil.sys
[2014.05.17 15:33:07 | 000,000,773 | ---- | M] () -- C:\Documents and Settings\Kaja\Plocha\VSO Image Resizer.lnk
[2014.05.16 22:03:44 | 000,069,495 | ---- | M] () -- C:\Documents and Settings\Kaja\Dokumenty\steam.pdf
[2014.05.16 21:42:02 | 000,000,078 | ---- | M] () -- C:\Documents and Settings\Kaja\Plocha\Arma Cold War Assault.url
[2014.05.16 21:41:00 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Kaja\Plocha\Arma 3.url
[2014.05.15 08:57:04 | 000,000,810 | ---- | M] () -- C:\Documents and Settings\Kaja\Plocha\µTorrent.lnk
[2014.05.14 23:58:08 | 000,851,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WinUSBCoInstaller2.dll
[2014.05.14 22:10:16 | 000,013,824 | ---- | M] (Scott) -- C:\WINDOWS\System32\drivers\USBDrv.sys
[2014.05.14 22:10:16 | 000,002,976 | ---- | M] () -- C:\WINDOWS\System32\drivers\USBDrv.inf
[2014.05.14 19:35:11 | 000,692,400 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2014.05.14 19:35:11 | 000,070,832 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2014.05.13 15:19:53 | 000,590,616 | ---- | M] () -- C:\Documents and Settings\Kaja\Plocha\Storage and Back up Admin.pdf
[2014.05.12 06:46:37 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2014.05.06 15:00:05 | 000,001,984 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2014.05.05 22:40:00 | 000,068,420 | ---- | M] () -- C:\Documents and Settings\Kaja\Dokumenty\SMS Export 2014-05-05 00.00.sms
[2014.05.05 22:34:21 | 000,083,171 | ---- | M] () -- C:\Documents and Settings\Kaja\Dokumenty\pb.vcf
[2014.05.05 12:31:22 | 000,001,744 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\MyPhoneExplorer.lnk
[2014.05.05 12:30:14 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf
[2014.05.05 12:29:57 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2014.05.04 23:12:21 | 000,482,478 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2014.05.04 23:12:21 | 000,478,874 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2014.05.04 23:12:21 | 000,093,196 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2014.05.04 23:12:21 | 000,080,552 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2014.05.04 21:39:11 | 000,229,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\VMM.sys
[2014.04.30 07:23:32 | 003,115,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2014.04.29 19:09:44 | 000,000,418 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol
[2014.04.29 07:27:14 | 000,047,296 | ---- | M] () -- C:\Documents and Settings\Kaja\Dokumenty\cc_20140429_072711.reg
[2014.04.29 07:04:33 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2014.04.27 22:07:38 | 000,048,392 | ---- | M] (COMODO CA Limited) -- C:\WINDOWS\System32\certsentry.dll
[2014.04.24 00:16:27 | 000,001,512 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Recuva.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014.05.21 12:08:17 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.05.21 07:29:49 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\TrueSight.sys
[2014.05.21 07:27:41 | 003,972,608 | ---- | C] () -- C:\Documents and Settings\Kaja\Plocha\RogueKiller.exe
[2014.05.17 15:33:07 | 000,000,773 | ---- | C] () -- C:\Documents and Settings\Kaja\Plocha\VSO Image Resizer.lnk
[2014.05.16 22:03:44 | 000,069,495 | ---- | C] () -- C:\Documents and Settings\Kaja\Dokumenty\steam.pdf
[2014.05.16 21:42:02 | 000,000,078 | ---- | C] () -- C:\Documents and Settings\Kaja\Plocha\Arma Cold War Assault.url
[2014.05.16 21:41:00 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Kaja\Plocha\Arma 3.url
[2014.05.15 15:15:41 | 3488,075,776 | -HS- | C] () -- C:\hiberfil.sys
[2014.05.15 08:57:04 | 000,000,810 | ---- | C] () -- C:\Documents and Settings\Kaja\Plocha\µTorrent.lnk
[2014.05.14 22:10:16 | 000,002,976 | ---- | C] () -- C:\WINDOWS\System32\drivers\USBDrv.inf
[2014.05.13 15:19:53 | 000,590,616 | ---- | C] () -- C:\Documents and Settings\Kaja\Plocha\Storage and Back up Admin.pdf
[2014.05.05 22:40:00 | 000,068,420 | ---- | C] () -- C:\Documents and Settings\Kaja\Dokumenty\SMS Export 2014-05-05 00.00.sms
[2014.05.05 22:34:21 | 000,083,171 | ---- | C] () -- C:\Documents and Settings\Kaja\Dokumenty\pb.vcf
[2014.05.05 12:31:22 | 000,001,744 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\MyPhoneExplorer.lnk
[2014.05.05 12:30:14 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf
[2014.05.05 12:29:57 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2014.05.04 21:40:04 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2014.04.29 19:17:08 | 000,001,630 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Virtual PC.lnk
[2014.04.29 07:34:02 | 000,001,674 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Thunderbird.lnk
[2014.04.29 07:27:12 | 000,047,296 | ---- | C] () -- C:\Documents and Settings\Kaja\Dokumenty\cc_20140429_072711.reg
[2014.04.29 07:04:32 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2014.04.24 00:16:27 | 000,001,512 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Recuva.lnk
[2014.04.09 21:52:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2014.04.09 21:52:30 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2014.04.09 21:52:30 | 000,618,823 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2014.04.09 21:52:30 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2014.04.07 09:28:16 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\Kaja\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.03.05 13:01:29 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2014.03.01 01:40:30 | 000,024,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\GVTDrv.sys
[2014.02.28 11:39:37 | 001,797,868 | ---- | C] () -- C:\WINDOWS\System32\drivers\fvstore.dat
[2014.02.25 17:28:53 | 001,474,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2014.02.25 17:28:17 | 000,355,128 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2014.02.25 15:52:17 | 000,000,418 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol
[2014.02.25 14:27:46 | 000,218,200 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2014.02.25 14:16:58 | 000,015,498 | ---- | C] () -- C:\WINDOWS\VX1000.ini
[2014.02.25 14:12:32 | 000,026,084 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT
[2014.02.25 11:27:26 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\Kaja\Local Settings\Data aplikací\fusioncache.dat
[2014.02.25 10:59:51 | 000,006,136 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2014.02.25 10:32:57 | 001,072,544 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2014.02.25 10:32:57 | 001,072,544 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2014.02.25 10:32:57 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2014.02.25 10:16:17 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2014.02.25 02:44:13 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2014.02.25 02:42:51 | 000,201,736 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2014.02.25 02:07:10 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2014.02.25 02:01:36 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2013.03.23 02:22:30 | 002,816,504 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data

========== ZeroAccess Check ==========

[2014.02.25 10:22:58 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2014.02.25 05:30:37 | 001,510,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 12:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 09:52:06 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014.04.13 13:39:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Age of Empires II HD - Slovencina
[2014.04.17 08:54:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BlueStacksSetup
[2014.02.25 16:55:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Canon_Inc_IC
[2014.04.14 17:11:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Package Cache
[2014.02.25 16:26:26 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Data aplikací\Shared Space
[2014.04.12 23:47:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Steam
[2014.05.14 23:58:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\AdbDriverInstaller
[2014.02.25 16:47:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\AnvSoft
[2014.02.25 17:02:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Canon_Inc_IC
[2014.03.25 18:19:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Foxit Software
[2014.02.28 10:33:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\GHISLER
[2014.02.28 09:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\MPC-HC
[2014.05.05 22:45:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\MyPhoneExplorer
[2014.03.15 12:32:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Opera Software
[2014.02.25 17:27:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Stardock
[2014.04.16 15:35:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\TeamViewer
[2014.05.19 21:38:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Tencent
[2014.04.29 07:41:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Thunderbird
[2014.03.15 12:57:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\TrueCrypt
[2014.04.07 10:19:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Two Pilots
[2014.05.21 12:08:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent
[2014.05.17 15:37:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\VSO
[2014.02.25 17:21:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Foxit Software

========== Purity Check ==========



========== Custom Scans ==========

< >
[2014.02.25 02:02:47 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2014.02.25 02:07:59 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2014.02.25 17:31:27 | 000,000,440 | ---- | C] () -- C:\WINDOWS\Tasks\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22}.job
[2014.02.25 17:31:27 | 000,000,440 | ---- | C] () -- C:\WINDOWS\Tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job
[2014.02.25 17:31:29 | 000,000,440 | ---- | C] () -- C:\WINDOWS\Tasks\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9}.job
[2014.02.25 17:31:30 | 000,000,440 | ---- | C] () -- C:\WINDOWS\Tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job
[2014.03.04 13:09:02 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: AGP440.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 09:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 09:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.18 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2014.03.11 21:34:38 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys
[2004.08.18 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.18 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 09:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 09:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 09:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 09:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.18 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 01:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.14 01:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.18 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.14 01:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2004.08.18 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 08:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 08:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.18 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 09:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 09:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.18 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004.08.18 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 09:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 09:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NVGTS.SYS >
[2009.06.30 18:31:00 | 000,164,896 | ---- | M] (NVIDIA Corporation) MD5=619D8943725402D1179941FD58574CC8 -- C:\WINDOWS\system32\drivers\nvgts.sys
[2009.06.30 18:31:00 | 000,164,896 | ---- | M] (NVIDIA Corporation) MD5=619D8943725402D1179941FD58574CC8 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\nvgts.sys

< MD5 for: SCECLI.DLL >
[2004.08.18 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.18 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 09:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 09:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB2509553$\tcpip.sys
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2004.08.18 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2014.02.25 15:51:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=CBEEBEB899E31EF52B962CB31FC8CA5C -- C:\WINDOWS\system32\drivers\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.18 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.18 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 09:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 09:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[25 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[93 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014.05.14 23:58:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\AdbDriverInstaller
[2014.02.25 15:30:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Adobe
[2014.02.25 16:47:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\AnvSoft
[2014.02.26 15:01:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\ArcSoft
[2014.04.09 22:30:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\ATI
[2014.04.07 09:19:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\CANON INC
[2014.02.25 17:02:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Canon_Inc_IC
[2014.05.13 10:28:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Comodo
[2014.03.25 18:19:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Foxit Software
[2014.02.28 10:33:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\GHISLER
[2014.02.25 02:09:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Identities
[2014.02.25 15:30:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Macromedia
[2014.05.20 14:54:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Malwarebytes
[2014.04.29 19:23:11 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft
[2014.02.25 13:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla
[2014.02.28 09:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\MPC-HC
[2014.05.05 22:45:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\MyPhoneExplorer
[2014.03.15 12:32:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Opera Software
[2014.05.21 12:31:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Skype
[2014.02.25 17:27:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Stardock
[2014.04.16 15:35:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\TeamViewer
[2014.05.19 21:38:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Tencent
[2014.04.29 07:41:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Thunderbird
[2014.03.15 12:57:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\TrueCrypt
[2014.04.07 10:19:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\Two Pilots
[2014.05.21 12:28:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent
[2014.05.17 15:37:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\VSO
[2014.02.25 13:15:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\WinRAR
[2014.05.20 20:58:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kaja\Data aplikací\ZoomBrowser EX

< %APPDATA%\*.exe /s >
[2014.02.26 14:58:46 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft\Installer\{0AB76F69-E761-4CFA-B9B0-A1906B4E9E4B}\ARPPRODUCTICON.exe
[2014.02.26 14:58:46 | 000,008,854 | R--- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft\Installer\{0AB76F69-E761-4CFA-B9B0-A1906B4E9E4B}\Uninstall_WD_Diagnos_0AB76F69E7614CFAB9B0A1906B4E9E4B.exe
[2014.02.26 14:58:46 | 000,040,960 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft\Installer\{0AB76F69-E761-4CFA-B9B0-A1906B4E9E4B}\WinDlg.exe_0AB76F69E7614CFAB9B0A1906B4E9E4B_3.exe
[2014.04.14 22:35:13 | 000,004,846 | R--- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft\Installer\{A1043A35-C96E-4CC1-A1B6-57DC1DF57337}\_0FDFE2AB461D2A051DF423.exe
[2014.04.14 22:35:13 | 000,016,614 | R--- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft\Installer\{A1043A35-C96E-4CC1-A1B6-57DC1DF57337}\_4024D424847D497C59C0AC.exe
[2014.04.14 22:35:13 | 000,016,614 | R--- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft\Installer\{A1043A35-C96E-4CC1-A1B6-57DC1DF57337}\_6FEFF9B68218417F98F549.exe
[2014.02.26 14:54:19 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft\Installer\{BE6F412F-C276-4FD8-B3E1-F996CC172776}\_16496df1.exe
[2014.02.26 14:54:19 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft\Installer\{BE6F412F-C276-4FD8-B3E1-F996CC172776}\_2cd672ae.exe
[2014.02.26 14:54:19 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft\Installer\{BE6F412F-C276-4FD8-B3E1-F996CC172776}\_69525f90.exe
[2014.02.26 14:57:18 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Microsoft\Installer\{FD6C6B7F-5696-48C5-A601-2EE9E50C3D46}\ARPPRODUCTICON.exe
[2009.05.25 08:52:00 | 000,520,621 | ---- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Mozilla\Firefox\Profiles\jldqgzeo.default\sqlite3.exe
[2014.05.14 23:12:06 | 002,915,840 | ---- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\Tencent\QQPhoneManager\Components\ffmpeg.exe
[2014.05.14 23:11:35 | 000,904,760 | ---- | M] (Tencent) -- C:\Documents and Settings\Kaja\Data aplikací\Tencent\QQPhoneManager\Components\QQDownload\Tencentdl.exe
[2014.05.05 05:08:58 | 000,687,160 | ---- | M] (腾讯公司) -- C:\Documents and Settings\Kaja\Data aplikací\Tencent\QQPhoneManager\Components\Update.exe\Update.exe
[2014.05.14 23:12:06 | 000,615,992 | ---- | M] (腾讯公司) -- C:\Documents and Settings\Kaja\Data aplikací\Tencent\QQPhoneManager\Components\Update.exe\2.0.901.3313\Update.exe
[2014.05.15 08:57:01 | 001,272,400 | ---- | M] (BitTorrent Inc.) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe
[2005.10.17 12:12:46 | 000,258,048 | ---- | M] () -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\wget.exe
[2014.02.20 01:00:00 | 001,852,496 | ---- | M] (BitTorrent Inc.) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\updates\3.4.0_30596.exe
[2014.03.11 00:16:41 | 001,446,232 | ---- | M] (BitTorrent Inc.) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\updates\3.4.0_30620.exe
[2014.03.11 11:27:46 | 001,853,008 | ---- | M] (BitTorrent Inc.) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\updates\3.4.0_30635.exe
[2014.03.23 16:50:36 | 001,208,152 | ---- | M] (BitTorrent Inc.) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\updates\3.4.0_30660.exe
[2014.04.04 09:28:55 | 001,264,984 | ---- | M] (BitTorrent Inc.) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\updates\3.4.1_30740.exe
[2014.04.27 18:39:53 | 001,266,520 | ---- | M] (BitTorrent Inc.) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\updates\3.4.1_30888.exe
[2014.05.15 08:56:40 | 001,272,400 | ---- | M] (BitTorrent Inc.) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\updates\3.4.1_31139.exe
[2014.02.20 01:00:00 | 000,114,707 | ---- | M] (VideoLAN) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\vlc\vlc-cache-gen.exe
[2014.02.20 01:00:00 | 000,126,995 | ---- | M] (VideoLAN) -- C:\Documents and Settings\Kaja\Data aplikací\uTorrent\vlc\vlc.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2014.02.25 02:42:07 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2014.02.25 02:42:07 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2014.02.25 02:42:07 | 000,471,040 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2014.05.21 07:29:50 | 000,026,624 | ---- | M] () -- C:\WINDOWS\system32\TrueSight.sys
[2014.05.19 21:42:34 | 000,012,984 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 09:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2014.02.10 18:46:14 | 020,922,016 | R--- | M] (Skype Technologies S.A.)
"LClock" = C:\Program Files\LClock\LClock.exe -- [2004.09.19 20:27:44 | 000,065,536 | ---- | M] ()
"uTorrent" = "C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe" /MINIMIZED -- [2014.05.15 08:57:01 | 001,272,400 | ---- | M] (BitTorrent Inc.)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...

< >

< type c:\boot.ini >> test.txt /c >
No captured output from command...

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.05.21 12:08:17 | 000,000,512 | ---- | M] () MD5=D8355290A324584A323B26CA900F3A0D -- C:\PhysicalMBR.bin

< >

< *crack* /s >

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2014.02.25 17:04:32 | 000,001,025 | ---- | M] () -- \Documents and Settings\All Users\Nabídka Start\Programy\programy\Canon Utilities\Movie Uploader for YouTube\Movie Uploader for YouTube Readme.lnk
[2014.04.24 18:12:30 | 000,002,380 | ---- | M] () -- \Documents and Settings\Kaja\Data aplikací\Thunderbird\Profiles\bkrc8t4d.default\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}\components\calBackendLoader.js
[2014.04.24 18:12:30 | 000,000,249 | ---- | M] () -- \Documents and Settings\Kaja\Data aplikací\Thunderbird\Profiles\bkrc8t4d.default\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}\components\calBackendLoader.manifest
[2014.05.11 17:46:14 | 000,003,208 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Data aplikací\COMODO\Dragon\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.1_0\skin\ajax-loader.gif
[2014.04.28 11:10:54 | 000,019,765 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Data aplikací\COMODO\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\2.1.0.22_0\js\configLoader.js
[2014.04.28 11:10:55 | 000,002,597 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Data aplikací\COMODO\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\2.1.0.22_0\js\scriptLoader.js
[2014.01.28 20:35:56 | 000,072,638 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Data aplikací\Skype\Apps\login\images\loader.gif
[2014.01.28 20:35:56 | 000,003,032 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Data aplikací\Skype\Apps\login\images\loader.png
[2014.01.28 20:35:56 | 000,006,012 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Data aplikací\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.01.28 20:35:56 | 000,021,956 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Data aplikací\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.01.28 20:35:56 | 000,009,772 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Data aplikací\Skype\Apps\login\images\retina\loader@2x.png
[2014.05.19 21:41:44 | 000,001,870 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\N8YZEEWT\AdLoader[1].htm
[2014.05.12 16:01:36 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\N8YZEEWT\AdLoader[1].html
[2014.05.13 10:23:49 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\N8YZEEWT\AdLoader[2].html
[2014.05.13 10:39:04 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\N8YZEEWT\AdLoader[3].html
[2014.05.15 12:13:11 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\N8YZEEWT\AdLoader[4].html
[2014.05.20 21:54:20 | 000,000,907 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\N8YZEEWT\AdLoader[5].html
[2014.05.05 20:03:13 | 000,001,174 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\N8YZEEWT\downloader[1].js
[2014.05.20 21:54:20 | 000,017,912 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\PGQH6ARE\AdLoader-3b8e790904fffcf74f96367cd382e261.min[2].js
[2014.05.20 21:54:20 | 000,001,976 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\PGQH6ARE\AdLoader[1].htm
[2014.05.11 16:52:35 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\PGQH6ARE\AdLoader[1].html
[2014.05.14 16:50:26 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\PGQH6ARE\AdLoader[2].html
[2014.05.19 07:16:48 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\PGQH6ARE\AdLoader[3].html
[2014.05.05 20:03:13 | 000,000,723 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\PGQH6ARE\downloaderror[1].js
[2014.04.29 10:14:26 | 000,112,122 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\SVVPIF1K\AdLoader-7b473315d0084c71df83cdee72aab144.min[1].js
[2014.05.15 10:32:32 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\SVVPIF1K\AdLoader[1].html
[2014.05.15 19:58:41 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\SVVPIF1K\AdLoader[2].html
[2014.05.13 10:28:22 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\ZXVUOQDU\AdLoader[1].html
[2014.05.18 22:51:21 | 000,000,875 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Temporary Internet Files\Content.IE5\ZXVUOQDU\AdLoader[2].html
[2014.01.13 16:13:50 | 000,257,536 | ---- | M] () -- \Program Files\AnvSoft\Any Video Converter Ultimate\avcdownloader.dll
[2013.12.24 15:47:18 | 000,005,932 | ---- | M] () -- \Program Files\AnvSoft\Any Video Converter Ultimate\plugins\loader.avsi
[2013.10.03 11:42:36 | 000,009,216 | ---- | M] () -- \Program Files\Canon\ImageBrowser EX\SLRuntimeLoader.exe
[2012.05.16 16:49:28 | 000,000,244 | ---- | M] () -- \Program Files\Canon\ImageBrowser EX\SLRuntimeLoader.exe.config
[2013.06.05 10:20:20 | 000,921,088 | ---- | M] () -- \Program Files\Canon\ImageBrowser EX\UploaderForFacebook.exe
[2012.06.26 12:28:58 | 000,000,238 | ---- | M] () -- \Program Files\Canon\ImageBrowser EX\UploaderForFacebook.exe.config
[2013.06.05 10:20:20 | 000,011,776 | ---- | M] () -- \Program Files\Canon\ImageBrowser EX\en\UploaderForFacebook.resources.dll
[2011.11.10 21:20:08 | 000,015,435 | ---- | M] () -- \Program Files\Canon\Movie Uploader for YouTube\MovieUploaderForYouTube.chm
[2013.03.26 10:46:54 | 000,932,352 | ---- | M] () -- \Program Files\Canon\Movie Uploader for YouTube\MovieUploaderForYouTube.exe
[2012.06.26 12:28:58 | 000,000,238 | ---- | M] () -- \Program Files\Canon\Movie Uploader for YouTube\MovieUploaderForYouTube.exe.config
[2011.11.10 22:39:54 | 000,037,965 | ---- | M] () -- \Program Files\Canon\Movie Uploader for YouTube\ReadMe(MovieUploaderForYouTube).rtf
[2013.03.26 10:46:54 | 000,011,776 | ---- | M] () -- \Program Files\Canon\Movie Uploader for YouTube\en\MovieUploaderForYouTube.resources.dll
[2013.08.22 09:44:18 | 002,290,256 | ---- | M] () -- \Program Files\Canon\Uploader for CANON iMAGE GATEWAY\UploaderForCiG.exe
[2014.02.25 17:04:42 | 000,000,885 | ---- | M] () -- \Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\Auto Update Interface Library\uninstall_for_Uploader for CANON iMAGE GATEWAY.xml
[2014.02.25 17:04:57 | 000,002,151 | ---- | M] () -- \Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\Image Handling Library Core Common\uninstall_for_Movie Uploader for YouTube.xml
[2014.02.25 17:04:59 | 000,002,217 | ---- | M] () -- \Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\Image Handling Library Core Common\uninstall_for_Uploader for CANON iMAGE GATEWAY.xml
[2014.02.25 17:04:34 | 000,000,797 | ---- | M] () -- \Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\Image Handling Library DC\uninstall_for_Movie Uploader for YouTube.xml
[2014.02.25 17:04:43 | 000,000,815 | ---- | M] () -- \Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\Image Handling Library DC\uninstall_for_Uploader for CANON iMAGE GATEWAY.xml
[2014.02.25 17:04:35 | 000,000,797 | ---- | M] () -- \Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\Image Handling Library DS\uninstall_for_Movie Uploader for YouTube.xml
[2014.02.25 17:04:44 | 000,000,815 | ---- | M] () -- \Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\Image Handling Library DS\uninstall_for_Uploader for CANON iMAGE GATEWAY.xml
[2014.02.25 17:04:37 | 000,000,797 | ---- | M] () -- \Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\Image Handling Library DV\uninstall_for_Movie Uploader for YouTube.xml
[2014.02.25 17:04:45 | 000,000,815 | ---- | M] () -- \Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\Image Handling Library DV\uninstall_for_Uploader for CANON iMAGE GATEWAY.xml
[2014.02.25 17:04:47 | 000,003,308 | ---- | M] () -- \Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\MDL40Core\uninstall_for_Uploader for CANON iMAGE GATEWAY.xml
[2006.10.26 14:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 14:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2014.03.11 21:34:44 | 000,000,702 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_advoptions.fen
[2014.03.11 21:34:44 | 000,000,790 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_debug.fen
[2014.03.11 21:34:44 | 000,000,723 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_download.fen
[2014.03.11 21:34:44 | 000,000,694 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_file_errors.fen
[2014.03.11 21:34:44 | 000,000,634 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_manage_devices.fen
[2014.03.11 21:34:44 | 000,002,398 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_onboard.fen
[2014.03.11 21:34:44 | 000,001,417 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_options.fen
[2014.03.11 21:34:44 | 000,001,330 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_pinwheel_72.png
[2014.03.11 21:34:44 | 000,002,541 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_pinwheel_72x2.png
[2014.03.11 21:34:44 | 000,002,196 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_prefs.fen
[2014.03.11 21:34:44 | 000,000,956 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_quota_error1.fen
[2014.03.11 21:34:44 | 000,001,080 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_quota_error2.fen
[2014.03.11 21:34:44 | 000,001,139 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_quota_error_estimate.fen
[2014.03.11 21:34:44 | 000,002,181 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_welcome.fen
[2013.10.23 22:07:40 | 000,007,825 | ---- | M] () -- \Program Files\Steam\remoteui\static\libs\images\ajax-loader.gif
[2014.05.13 18:18:01 | 000,003,208 | ---- | M] () -- \VTRoot\HarddiskVolume2\Documents and Settings\Kaja\Local Settings\Data aplikací\COMODO\Dragon\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.1_0\skin\ajax-loader.gif
[2014.04.29 10:40:15 | 000,019,765 | ---- | M] () -- \VTRoot\HarddiskVolume2\Documents and Settings\Kaja\Local Settings\Data aplikací\COMODO\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\2.1.0.22_0\js\configLoader.js
[2014.04.29 10:40:15 | 000,002,597 | ---- | M] () -- \VTRoot\HarddiskVolume2\Documents and Settings\Kaja\Local Settings\Data aplikací\COMODO\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\2.1.0.22_0\js\scriptLoader.js
[2004.08.18 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2014.05.21 06:06:12 | 000,028,912 | ---- | M] () -- \WINDOWS\Prefetch\SLRUNTIMELOADER.EXE-0B271355.pf
[2008.04.14 09:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 01:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 01:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 09:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[1 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2014.04.24 18:12:30 | 000,002,957 | ---- | M] () -- \Documents and Settings\Kaja\Data aplikací\Thunderbird\Profiles\bkrc8t4d.default\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}\calendar-js\calIcsSerializer.js
[2014.05.17 14:37:35 | 000,000,024 | ---- | M] () -- \Documents and Settings\Kaja\Local Settings\Data aplikací\Google\Picasa2\cache\cacheindex_serial.pmp
[2014.05.17 15:32:41 | 000,000,779 | ---- | M] () -- \Documents and Settings\Kaja\Recent\serials.txt.lnk
[2013.10.03 11:42:32 | 001,216,512 | ---- | M] () -- \Program Files\Canon\ImageBrowser EX\ServerCommon.xmlserializers.dll
[2014.02.13 23:57:42 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.dll
[2014.03.15 12:01:47 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.ni.dll
[2012.09.27 01:12:26 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2004.08.18 14:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2014.02.25 10:23:38 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.02.25 11:27:14 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014.02.25 11:12:36 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.02.25 12:23:56 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014.02.25 11:12:46 | 000,090,112 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014.02.25 11:57:18 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.02.25 12:30:02 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\6c29ee2bedfe88dcd66993f1af135ad8\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.25 12:28:43 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\9860da66bf0219612908e7412b0a6e2e\System.Runtime.Serialization.ni.dll
[2014.02.25 12:30:59 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\046c2851963b30d0e14194051c03de33\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.02.25 12:30:54 | 002,659,328 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\be0a1bb51a0d8fb41140c8111ed56d19\System.Runtime.Serialization.ni.dll
[2014.02.25 12:32:59 | 000,009,216 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\bc1a3b2de28e513e09fe7322c122144f\System.Xml.Serialization.ni.dll
[2010.03.18 14:16:28 | 001,026,936 | R--- | M] () -- \WINDOWS\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\System.Runtime.Serialization.dll.x86
[2014.02.25 11:16:58 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.02.25 12:26:28 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014.02.25 11:16:57 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2014.02.25 12:26:26 | 001,039,040 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.02.25 12:26:33 | 000,011,120 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2004.07.15 15:31:54 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2003.04.07 20:24:52 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008.07.25 12:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2008.09.10 18:46:28 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.09.27 01:12:26 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.09.11 07:06:54 | 001,039,040 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 14:16:28 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 17:48:20 | 000,011,120 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2010.06.15 03:33:16 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 03:33:16 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2008.04.14 08:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 08:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2007.06.27 19:29:04 | 000,131,072 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\system.runtime.serialization.formatters.soap.dll
[2004.08.18 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2004.08.18 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[1 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2004.08.18 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2004.08.18 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 08:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys

< *w7lxe* /s >

========== Files - Unicode (All) ==========
[2014.05.14 23:12:04 | 000,000,000 | ---D | M](C:\Documents and Settings\Kaja\Data aplikac?) -- C:\Documents and Settings\Kaja\Data aplikac铆
[2014.05.14 23:12:04 | 000,000,000 | ---D | M](C:\Documents and Settings\Kaja\Data aplikac?) -- C:\Documents and Settings\Kaja\Data aplikac铆
[2014.05.14 23:12:04 | 000,000,000 | ---D | C](C:\Documents and Settings\Kaja\Data aplikac?) -- C:\Documents and Settings\Kaja\Data aplikac铆
[2014.05.14 23:11:55 | 000,000,000 | ---D | M](C:\Documents and Settings\Kaja\Data aplikac?Tencent) -- C:\Documents and Settings\Kaja\Data aplikac韁Tencent
[2014.05.14 23:11:55 | 000,000,000 | ---D | M](C:\Documents and Settings\All Users\Data aplikac?Tencent) -- C:\Documents and Settings\All Users\Data aplikac韁Tencent
[2014.05.14 23:11:55 | 000,000,000 | ---D | M](C:\Documents and Settings\Kaja\Data aplikac?Tencent) -- C:\Documents and Settings\Kaja\Data aplikac韁Tencent
[2014.05.14 23:11:55 | 000,000,000 | ---D | M](C:\Documents and Settings\All Users\Data aplikac?Tencent) -- C:\Documents and Settings\All Users\Data aplikac韁Tencent
[2014.05.14 23:11:47 | 000,000,000 | ---D | C](C:\Documents and Settings\Kaja\Data aplikac?Tencent) -- C:\Documents and Settings\Kaja\Data aplikac韁Tencent
[2014.05.14 23:11:47 | 000,000,000 | ---D | C](C:\Documents and Settings\All Users\Data aplikac?Tencent) -- C:\Documents and Settings\All Users\Data aplikac韁Tencent

< End of report >

[Kodlz]

extras:


OTL Extras logfile created on: 21.5.2014 12:04:42 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,25 Gb Total Physical Memory | 1,05 Gb Available Physical Memory | 32,23% Memory free
9,20 Gb Paging File | 5,79 Gb Available in Paging File | 62,89% Paging File free
Paging file location(s): C:\pagefile.sys 256 256D:\pagefil [Binary data over 200 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 76,32 Gb Total Space | 20,06 Gb Free Space | 26,29% Space Free | Partition Type: NTFS
Drive D: | 76,32 Gb Total Space | 2,92 Gb Free Space | 3,83% Space Free | Partition Type: NTFS

Computer Name: MOJE-PC | User Name: Karel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = OperaStable] -- C:\Program Files\Opera\Launcher.exe (Opera Software)
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-842925246-1897051121-839522115-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe" = C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe:*:Enabled:???????? -- (Tencent)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"C:\Program Files\Microsoft LifeCam\LifeCam.exe" = C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe -- (Microsoft Corporation)
"C:\Program Files\Microsoft LifeCam\LifeEnC2.exe" = C:\Program Files\Microsoft LifeCam\LifeEnC2.exe:*:Enabled:LifeEnC2.exe -- (Microsoft Corporation)
"C:\Program Files\Microsoft LifeCam\LifeExp.exe" = C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe -- (Microsoft Corporation)
"C:\Program Files\Microsoft LifeCam\LifeTray.exe" = C:\Program Files\Microsoft LifeCam\LifeTray.exe:*:Enabled:LifeTray.exe -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent
"C:\Program Files\TeamViewer\TeamViewer.exe" = C:\Program Files\TeamViewer\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TeamViewer\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)
"C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe" = C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe:*:Enabled:MyPhoneExplorer -- (F.J. Wechselberger)
"C:\Program Files\GIGABYTE\ET6\UpdExe.exe" = C:\Program Files\GIGABYTE\ET6\UpdExe.exe:*:Enabled:Exe File
"C:\Program Files\GIGABYTE\ET6\GBTUpd.exe" = C:\Program Files\GIGABYTE\ET6\GBTUpd.exe:*:Enabled:GBTUpd.exe
"C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\utorrent.exe" = C:\Documents and Settings\Kaja\Dokumenty\Stažené soubory\utorrent.exe:*:Enabled:µTorrent2
"C:\Program Files\uTorrent\updates\3.4.0_30620.exe" = C:\Program Files\uTorrent\updates\3.4.0_30620.exe:*:Enabled:µTorrent
"C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe" = C:\Documents and Settings\Kaja\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent Inc.)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Steam\SteamApps\common\Arma 2\arma2.exe" = C:\Program Files\Steam\SteamApps\common\Arma 2\arma2.exe:*:Enabled:Arma 2 -- (Bohemia Interactive)
"C:\Program Files\Codemasters\arma\ColdWarAssault.exe" = C:\Program Files\Codemasters\arma\ColdWarAssault.exe:*:Enabled:Cold War Assault
"C:\Program Files\Codemasters\arma\ColdWarAssault_Server.exe" = C:\Program Files\Codemasters\arma\ColdWarAssault_Server.exe:*:Enabled:Cold War Assault server
"C:\Program Files\Codemasters\Operation Flashpoint\ColdWarAssault.exe" = C:\Program Files\Codemasters\Operation Flashpoint\ColdWarAssault.exe:*:Enabled:Cold War Assault -- ()
"C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.755\OFP Launcher.exe" = C:\Documents and Settings\Kaja\Local Settings\Temp\Rar$EXa0.755\OFP Launcher.exe:*:Enabled:OFP Launcher
"C:\Documents and Settings\Kaja\Plocha\OFP Launcher.exe" = C:\Documents and Settings\Kaja\Plocha\OFP Launcher.exe:*:Enabled:OFP Launcher
"C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe" = C:\Program Files\Common Files\Tencent\QQDownload\125\Tencentdl.exe:*:Enabled:???????? -- (Tencent)
"C:\Program Files\Tencent\QQPhoneManager\QQPhoneManager.exe" = C:\Program Files\Tencent\QQPhoneManager\QQPhoneManager.exe:*:Enabled:Tencent Phone Manager
"C:\Program Files\Steam\SteamApps\common\Arma 3\arma3.exe" = C:\Program Files\Steam\SteamApps\common\Arma 3\arma3.exe:*:Enabled:Arma 3 -- (Bohemia Interactive)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0AB76F69-E761-4CFA-B9B0-A1906B4E9E4B}" = WD Diagnostics
"{13F7898A-F39E-F19C-BF0A-3A2422C4579F}" = CCC Help Dutch
"{24777E35-0442-F9F9-4C82-FAD0979D2B24}" = AMD AVIVO Codecs
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{38AB97EF-3D06-194B-6407-6D4ACE925738}" = CCC Help Russian
"{3B244431-0C71-8044-F336-FA2280604BB7}" = Catalyst Control Center Localization All
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3CE9BA35-F974-595D-CD27-3480976B8791}" = CCC Help Chinese Traditional
"{3D6AD258-61EA-35F5-812C-B7A02152996E}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610
"{3EE51BAD-9916-49C7-90BA-3D500B031E0C}_is1" = VSO Image Resizer 2.2.0.4
"{3F4417E8-D9BB-2552-986D-232EDC2A8CC0}" = CCC Help Czech
"{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1" = Foxit Cloud
"{4625C99C-A9F8-D444-6352-092AD46734BD}" = CCC Help Italian
"{4B67EE2A-2C42-B70B-AC3F-B26DF1E64C4F}" = ccc-utility
"{4B6F5F7F-85C1-0397-57C4-E9F8CAD4F7FF}" = CCC Help French
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{5635429F-0E24-476F-6011-C87CB0CEEBEF}" = CCC Help Turkish
"{579EDD1B-20D0-0D10-D1FA-C519ED99A6AC}" = Catalyst Control Center Graphics Previews Common
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{5FC7AB5C-61FC-42DF-A923-5139BCF10D42}" = Microsoft LifeCam
"{69464949-AD9C-4C98-933F-C32FFC86F3C8}" = Doomsday
"{6E698730-AC0A-2414-29E7-6A80AABFA8DB}" = AMD Catalyst Install Manager
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.14
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{7D3C830F-83DA-62EF-D144-B14050D2F257}" = CCC Help Chinese Standard
"{7E24775F-4A1A-8C37-AA6E-C4F0D9CE6B3F}" = CCC Help German
"{86197EF8-3D51-E4B6-7323-09986A560470}" = CCC Help Portuguese
"{88B2ABCF-9C00-47C1-8FC4-369B98845DD7}" = Catalyst Control Center - Branding
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A7CAA24-7B23-410B-A7C3-F994B0944160}" = Microsoft Virtual PC 2007
"{8FB88B36-A320-6325-8DBE-0C4B8DBAB286}" = CCC Help Norwegian
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{901D1D88-408D-48E5-80DD-CC3145BD8456}" = COMODO Internet Security Premium
"{934F70BF-37F9-3C35-4D22-DD8AB0146EFF}" = CCC Help Greek
"{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
"{9E8F3F5F-6067-4578-B2A8-97DD49B918AB}_is1" = Age of Empires II: HD Edition - Slovenčina
"{A1043A35-C96E-4CC1-A1B6-57DC1DF57337}" = OFP Mod Selector
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A351224F-533A-4EED-89F4-0BF3417FD31D}" = WD Backup
"{AAD06DFF-E96F-942E-8145-7FD3BEC9326B}" = CCC Help Polish
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 307.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 136.53
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}" = Microsoft Corporation
"{B3CD98E8-DA7A-CDC4-8367-E5FE201E6611}" = CCC Help Japanese
"{B4AD27A4-886B-CB7B-F929-2ABD9AF8E2CA}" = CCC Help English
"{BE6F412F-C276-4FD8-B3E1-F996CC172776}" = WD Spindown or Stop Utility for External Drive, v1.00
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3D5225A-5794-702D-41EB-37069A5B23C8}" = CCC Help Spanish
"{C468065B-7A72-FDD9-B16C-398F596886E8}" = CCC Help Swedish
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CCAB3C20-F0BC-14C5-2CC5-09F1B35A28EC}" = CCC Help Thai
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D680339B-4B93-2BAD-1A56-B647E77D8909}" = CCC Help Korean
"{D9C4202E-6D51-4B06-A8F1-22316E654BCA}" = Universal Adb Driver
"{DA033D67-F1DA-EAF9-8C16-F4C434E4F238}" = Catalyst Control Center
"{DC31C62B-4845-E020-DF6F-0F1E4F479E04}" = CCC Help Danish
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E7D4E834-93EB-351F-B8FB-82CDAE623003}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F6A761AF-107F-B8B8-B6BC-4CE8758C247D}" = CCC Help Hungarian
"{FD6C6B7F-5696-48C5-A601-2EE9E50C3D46}" = WD Firewire HID Driver
"{FE422A03-5747-271C-68EB-4BFE2C604FA0}" = CCC Help Finnish
"Adobe Flash Player Plugin" = Adobe Flash Player 13 Plugin
"Any Video Converter Ultimate_is1" = Any Video Converter Ultimate 5.5.4
"CAL" = Canon Camera Access Library
"CameraWindowDVC5" = Canon Camera Window DC_DV 5 for ZoomBrowser EX
"CameraWindowDVC6" = Canon Camera Window DC_DV 6 for ZoomBrowser EX
"CameraWindowMC" = Canon Camera Window MC 6 for ZoomBrowser EX
"Canon G.726 WMP-Decoder" = Canon G.726 WMP-Decoder
"CCleaner" = CCleaner
"Comodo Dragon" = Comodo Dragon
"CSCLIB" = Canon Camera Support Core Library
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EOS Utility" = Canon Utilities EOS Utility
"EOS Video Snapshot Task" = Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"Flashtool" = Flashtool
"Foxit Reader_is1" = Foxit Reader
"Hearts of Iron 2 Doomsday_is1" = Hearts of Iron 2 Doomsday Armageddon
"ImageBrowser EX" = Canon Utilities ImageBrowser EX
"InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"KLiteCodecPack_is1" = K-Lite Codec Pack 10.3.0 Standard
"LClock" = LClock
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"MovieEditTask" = Canon MovieEdit Task for ZoomBrowser EX
"MozBackup" = MozBackup 1.5.1
"Mozilla Firefox 29.0.1 (x86 cs)" = Mozilla Firefox 29.0.1 (x86 cs)
"Mozilla Thunderbird 24.5.0 (x86 cs)" = Mozilla Thunderbird 24.5.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MPE" = MyPhoneExplorer
"NVIDIA Drivers" = NVIDIA Drivers
"ObjectDock Plus2.01" = ObjectDock Plus
"Opera 20.0.1387.77" = Opera Stable 20.0.1387.77
"PhotoStitch" = Canon Utilities PhotoStitch
"Picasa 3" = Picasa 3
"QWdlb2ZFbXBpcmVzSUlIRFRoZUZvcmdvdHRlbg==_is1" = Age of Empires II HD The Forgotten Update v3.3
"QWdlIG9mIEVtcGlyZXMgSUkgSEQgKGMpIE1pY3Jvc29mdCBTdHVkaW9z_is1" = Age of Empires II HD (c) Microsoft Studios version 1
"RAW Image Task" = Canon RAW Image Task for ZoomBrowser EX
"Recuva" = Recuva
"RemoteCaptureTask" = Canon RemoteCapture Task for ZoomBrowser EX
"Steam" = Steam
"Steam App 107410" = Arma 3
"Steam App 33910" = Arma 2
"Steam App 65790" = Arma: Cold War Assault
"TeamViewer 9" = TeamViewer 9
"Totalcmd" = Total Commander (Remove or Repair)
"TrueCrypt" = TrueCrypt
"VirtualCloneDrive" = VirtualCloneDrive
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR 5.01 (32-bit)
"winusb0200" = Microsoft WinUsb 2.0
"WMFDist11" = Windows Media Format 11 runtime
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"ZoomBrowser EX" = Canon Utilities ZoomBrowser EX

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-842925246-1897051121-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 21.5.2014 2:01:01 | Computer Name = MOJE-PC | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 21.5.2014 2:01:01 | Computer Name = MOJE-PC | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 21.5.2014 3:25:05 | Computer Name = MOJE-PC | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 21.5.2014 3:25:05 | Computer Name = MOJE-PC | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 21.5.2014 3:42:01 | Computer Name = MOJE-PC | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 21.5.2014 3:42:01 | Computer Name = MOJE-PC | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 21.5.2014 5:13:05 | Computer Name = MOJE-PC | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 21.5.2014 5:13:05 | Computer Name = MOJE-PC | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 21.5.2014 5:23:01 | Computer Name = MOJE-PC | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 21.5.2014 5:23:01 | Computer Name = MOJE-PC | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná
registrace.

[ System Events ]
Error - 13.5.2014 9:25:09 | Computer Name = MOJE-PC | Source = Service Control Manager | ID = 7022
Description = Služba MSCamSvc přestala během spouštění reagovat.

Error - 14.5.2014 15:46:03 | Computer Name = MOJE-PC | Source = Service Control Manager | ID = 7022
Description = Služba MSCamSvc přestala během spouštění reagovat.

Error - 15.5.2014 2:51:09 | Computer Name = MOJE-PC | Source = Service Control Manager | ID = 7022
Description = Služba MSCamSvc přestala během spouštění reagovat.

Error - 15.5.2014 5:46:10 | Computer Name = MOJE-PC | Source = Service Control Manager | ID = 7022
Description = Služba MSCamSvc přestala během spouštění reagovat.

Error - 15.5.2014 9:14:29 | Computer Name = MOJE-PC | Source = Service Control Manager | ID = 7022
Description = Služba MSCamSvc přestala během spouštění reagovat.

Error - 16.5.2014 0:16:37 | Computer Name = MOJE-PC | Source = Service Control Manager | ID = 7022
Description = Služba MSCamSvc přestala během spouštění reagovat.

Error - 17.5.2014 12:14:31 | Computer Name = MOJE-PC | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 192.168.0.101 pro síťovou kartu s adresou 1C6F655ACF60
byla serverem DHCP 192.168.0.1 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).

Error - 18.5.2014 16:52:26 | Computer Name = MOJE-PC | Source = Service Control Manager | ID = 7022
Description = Služba MSCamSvc přestala během spouštění reagovat.

Error - 19.5.2014 1:17:49 | Computer Name = MOJE-PC | Source = Service Control Manager | ID = 7022
Description = Služba MSCamSvc přestala během spouštění reagovat.

Error - 19.5.2014 15:42:33 | Computer Name = MOJE-PC | Source = Service Control Manager | ID = 7022
Description = Služba MSCamSvc přestala během spouštění reagovat.


< End of report >