prosím o kontrolu logu

Mata. · Příspěvekod **Mata.** » 23 říj 2009 11:38

OTL logfile created on: 23.10.2009 11:22:04 - Run 1
OTL by OldTimer - Version 3.0.21.0 Folder = C:\Users\Vista\Desktop\Programy
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,09 Gb Available Physical Memory | 54,51% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 224,08 Gb Total Space | 39,48 Gb Free Space | 17,62% Space Free | Partition Type: NTFS
Drive D: | 8,80 Gb Total Space | 2,72 Gb Free Space | 30,94% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 465,65 Gb Total Space | 189,30 Gb Free Space | 40,65% Space Free | Partition Type: FAT32
I: Drive not present or media not loaded

Computer Name: VISTA-PC
Current User Name: Vista
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009.10.22 21:04:18 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:\Users\Vista\Desktop\Programy\OTL.exe
PRC - [2009.10.17 11:14:52 | 02,025,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgtray.exe
PRC - [2009.10.09 20:24:55 | 00,919,024 | ---- | M] (Google Inc.) -- C:\Users\Vista\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2009.09.15 14:06:50 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.08.16 11:42:40 | 00,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgrsx.exe
PRC - [2009.08.16 11:42:31 | 00,595,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgnsx.exe
PRC - [2009.08.16 11:42:20 | 00,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2009.07.03 11:48:24 | 00,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009.06.01 22:20:12 | 00,222,968 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2009.04.11 08:28:15 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprvse.exe
PRC - [2009.04.11 08:28:11 | 00,217,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
PRC - [2009.04.11 08:28:03 | 01,233,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
PRC - [2009.04.11 08:27:36 | 02,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2009.04.11 08:27:28 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [2009.03.09 17:49:18 | 00,037,888 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
PRC - [2009.03.01 12:59:42 | 00,172,792 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ6.5\ICQ.exe
PRC - [2009.02.16 09:55:38 | 00,087,336 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
PRC - [2009.02.06 14:23:36 | 00,727,720 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2009.02.06 14:23:12 | 02,021,400 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2009.01.15 18:42:46 | 07,430,144 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2009.01.15 18:42:44 | 07,434,240 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2008.07.24 17:02:06 | 00,490,952 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\daemon.exe
PRC - [2008.07.08 17:00:50 | 19,559,720 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe
PRC - [2008.06.24 16:06:06 | 01,840,424 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
PRC - [2008.06.24 16:05:56 | 00,537,896 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
PRC - [2008.06.24 16:05:46 | 00,062,760 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMDllHost.exe
PRC - [2008.06.10 05:27:04 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
PRC - [2008.06.08 09:31:04 | 00,877,864 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
PRC - [2008.02.19 12:22:22 | 00,176,128 | ---- | M] () -- C:\Program Files\TeamViewer3\TeamViewer_Host.exe
PRC - [2008.01.19 09:38:38 | 01,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2008.01.19 09:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
PRC - [2008.01.19 09:33:39 | 00,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2007.09.30 20:34:54 | 00,271,760 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
PRC - [2007.09.30 20:34:54 | 00,112,016 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
PRC - [2007.09.30 20:34:14 | 00,181,544 | ---- | M] (CyberLink Corp.) -- C:\Program Files\HP\QuickPlay\QPService.exe
PRC - [2007.09.24 19:11:42 | 00,566,560 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files\ABBYY FineReader 9.0\NetworkLicenseServer.exe
PRC - [2007.09.20 12:12:02 | 00,671,744 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpAgent.exe
PRC - [2007.09.20 12:02:58 | 00,299,008 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe
PRC - [2007.09.19 18:30:52 | 00,065,536 | ---- | M] (Hewlett-Packard) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
PRC - [2007.09.19 15:31:34 | 00,202,032 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
PRC - [2007.09.15 10:50:54 | 01,021,224 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2007.09.15 10:29:10 | 00,102,400 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2007.09.13 09:47:52 | 00,480,560 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
PRC - [2007.09.05 14:09:54 | 01,620,520 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
PRC - [2007.09.05 14:09:54 | 00,727,592 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2007.09.04 14:54:20 | 00,554,320 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
PRC - [2007.08.23 17:40:48 | 00,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007.08.23 17:36:30 | 00,455,968 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
PRC - [2007.08.17 15:27:00 | 04,702,208 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007.07.25 08:02:44 | 00,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
PRC - [2007.07.25 08:02:42 | 00,174,616 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2007.07.11 16:57:42 | 00,880,640 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
PRC - [2007.06.13 09:16:02 | 00,528,384 | R--- | M] () -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
PRC - [2007.05.16 11:43:06 | 00,677,432 | R--- | M] () -- C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
PRC - [2007.04.12 08:00:00 | 00,182,272 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\spool\drivers\w32x86\3\E_FATICEE.EXE
PRC - [2007.03.16 04:23:20 | 00,983,040 | R--- | M] (Teleca AB) -- C:\Program Files\Common Files\Teleca Shared\Generic.exe
PRC - [2007.01.17 15:34:18 | 00,634,880 | ---- | M] (Motorola Inc.) -- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
PRC - [2007.01.09 12:25:30 | 00,272,024 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe
PRC - [2007.01.08 16:53:06 | 00,311,296 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
PRC - [2006.12.19 10:30:26 | 00,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\Windows\System32\IoctlSvc.exe
PRC - [2006.11.02 11:45:59 | 00,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdSync.exe
PRC - [2006.10.27 01:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2006.05.02 16:41:28 | 00,135,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
PRC - [2005.02.16 23:11:42 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

========== Win32 Services (SafeList) ==========

SRV - [2009.08.16 11:42:20 | 00,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd [Auto | Running])
SRV - [2009.07.03 11:48:24 | 00,182,768 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2009.06.01 22:20:12 | 00,222,968 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service [Auto | Running])
SRV - [2009.04.11 08:28:25 | 01,017,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (Eventlog [Auto | Running])
SRV - [2009.03.30 06:42:14 | 00,066,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2009.02.18 20:39:20 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2009.02.18 20:38:43 | 00,129,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2009.02.18 20:38:42 | 00,879,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009.02.06 14:27:06 | 00,020,680 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv [On_Demand | Stopped])
SRV - [2009.02.06 14:23:36 | 00,727,720 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn [Auto | Running])
SRV - [2008.06.24 16:05:56 | 00,537,896 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Running])
SRV - [2008.06.08 09:31:04 | 00,877,864 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe -- (Nero BackItUp Scheduler 3 [Auto | Running])
SRV - [2008.02.19 12:22:22 | 00,176,128 | ---- | M] () -- C:\Program Files\TeamViewer3\TeamViewer_Host.exe -- (TeamViewer [Auto | Running])
SRV - [2008.01.19 09:38:24 | 00,272,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])
SRV - [2008.01.19 09:36:49 | 00,365,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm [Auto | Running])
SRV - [2008.01.19 09:36:15 | 00,167,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr [Auto | Running])
SRV - [2008.01.19 09:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Running])
SRV - [2008.01.19 09:33:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])
SRV - [2007.09.30 20:34:54 | 00,271,760 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe -- (QPCapSvc [Auto | Running])
SRV - [2007.09.30 20:34:54 | 00,112,016 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe -- (QPSched [Auto | Running])
SRV - [2007.09.24 19:11:42 | 00,566,560 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files\ABBYY FineReader 9.0\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0 [Auto | Running])
SRV - [2007.09.20 12:02:58 | 00,299,008 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe -- (DpHost [Auto | Running])
SRV - [2007.09.19 18:30:52 | 00,065,536 | ---- | M] (Hewlett-Packard) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe -- (HP Health Check Service [Auto | Running])
SRV - [2007.08.23 17:40:48 | 00,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService [Auto | Running])
SRV - [2007.07.25 08:02:44 | 00,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON [Auto | Running])
SRV - [2007.03.05 11:30:06 | 00,110,592 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe -- (Com4Qlb [On_Demand | Stopped])
SRV - [2007.01.19 12:54:14 | 00,097,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Stopped])
SRV - [2007.01.09 12:25:30 | 00,272,024 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe -- (RichVideo [Auto | Running])
SRV - [2006.12.19 10:30:26 | 00,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\Windows\System32\IoctlSvc.exe -- (PLFlash DeviceIoControl Service [Auto | Running])
SRV - [2006.11.02 14:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
SRV - [2006.11.02 14:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])
SRV - [2006.11.02 11:45:35 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\regedt32.exe -- (NOD32FiXTemDono [Auto | Stopped])
SRV - [2006.10.27 01:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])
SRV - [2006.10.26 20:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006.10.26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2006.05.02 16:41:28 | 00,135,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe -- (hpqwmiex [Auto | Running])
SRV - [2004.10.22 04:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2009.08.16 11:42:39 | 00,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\Drivers\avgldx86.sys -- (AvgLdx86 [System | Running])
DRV - [2009.08.16 11:42:39 | 00,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\Drivers\avgmfx86.sys -- (AvgMfx86 [System | Running])
DRV - [2009.07.16 16:00:07 | 00,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\Drivers\avgtdix.sys -- (AvgTdiX [System | Running])
DRV - [2009.04.11 06:46:08 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\usb8023x.sys -- (usb_rndisx [On_Demand | Stopped])
DRV - [2009.02.06 14:24:26 | 00,092,800 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\epfwwfpr.sys -- (epfwwfpr [Auto | Running])
DRV - [2009.02.06 14:23:18 | 00,106,208 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\ehdrv.sys -- (ehdrv [System | Running])
DRV - [2009.02.06 14:19:52 | 00,113,448 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\eamon.sys -- (eamon [Auto | Running])
DRV - [2008.11.08 22:07:51 | 00,717,296 | ---- | M] () -- C:\Windows\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2007.11.07 23:18:54 | 00,007,936 | ---- | M] (Initio Corporation) -- C:\Windows\System32\DRIVERS\inidvd.sys -- (INIDVD [On_Demand | Running])
DRV - [2007.10.31 18:36:32 | 02,252,800 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\NETw4v32.sys -- (NETw4v32 [On_Demand | Running])
DRV - [2007.09.19 22:05:00 | 07,626,400 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm [On_Demand | Running])
DRV - [2007.09.18 15:12:28 | 00,080,936 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwavdt.sys -- (btwavdt [On_Demand | Running])
DRV - [2007.09.18 15:12:28 | 00,080,424 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwaudio.sys -- (btwaudio [On_Demand | Running])
DRV - [2007.09.18 15:12:28 | 00,016,168 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\DRIVERS\btwrchid.sys -- (btwrchid [On_Demand | Running])
DRV - [2007.09.18 01:17:36 | 00,098,816 | ---- | M] (Realtek Corporation ) -- C:\Windows\System32\DRIVERS\Rtlh86.sys -- (RTL8169 [On_Demand | Running])
DRV - [2007.09.15 10:50:56 | 00,191,408 | ---- | M] (Synaptics, Inc.) -- C:\Windows\System32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])
DRV - [2007.08.28 16:47:36 | 00,146,560 | ---- | M] (AuthenTec, Inc.) -- C:\Windows\System32\DRIVERS\ATSwpDrv.sys -- (ATSWPDRV [On_Demand | Running])
DRV - [2007.08.22 20:44:18 | 01,950,552 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2007.07.13 06:35:02 | 00,305,176 | ---- | M] (Intel Corporation) -- C:\Windows\system32\DRIVERS\iaStor.sys -- (iaStor [Boot | Running])
DRV - [2007.07.11 11:30:22 | 00,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Windows\System32\DRIVERS\HpqRemHid.sys -- (HpqRemHid [On_Demand | Running])
DRV - [2007.06.18 18:12:04 | 00,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Windows\System32\DRIVERS\HpqKbFiltr.sys -- (HpqKbFiltr [On_Demand | Running])
DRV - [2007.04.03 14:57:42 | 00,083,336 | ---- | M] (MCCI Corporation) -- C:\Windows\System32\DRIVERS\s116bus.sys -- (s116bus [On_Demand | Stopped])
DRV - [2007.03.21 23:02:04 | 00,037,376 | ---- | M] (REDC) -- C:\Windows\System32\DRIVERS\rixdptsk.sys -- (rismxdp [Auto | Running])
DRV - [2007.02.24 15:42:22 | 00,039,936 | ---- | M] (REDC) -- C:\Windows\System32\DRIVERS\rimmptsk.sys -- (rimmptsk [Auto | Running])
DRV - [2007.01.23 17:40:20 | 00,042,496 | ---- | M] (REDC) -- C:\Windows\System32\DRIVERS\rimsptsk.sys -- (rimsptsk [Auto | Running])
DRV - [2007.01.17 15:38:52 | 00,983,936 | ---- | M] (Motorola Inc.) -- C:\Windows\System32\DRIVERS\smserial.sys -- (smserial [On_Demand | Running])
DRV - [2006.11.02 11:51:45 | 00,900,712 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
DRV - [2006.11.02 11:51:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
DRV - [2006.11.02 11:51:34 | 00,316,520 | ---- | M] (Emulex) -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
DRV - [2006.11.02 11:51:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
DRV - [2006.11.02 11:51:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
DRV - [2006.11.02 11:51:25 | 00,232,040 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV [Disabled | Stopped])
DRV - [2006.11.02 11:51:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
DRV - [2006.11.02 11:50:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
DRV - [2006.11.02 11:50:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
DRV - [2006.11.02 11:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
DRV - [2006.11.02 11:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
DRV - [2006.11.02 11:50:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
DRV - [2006.11.02 11:50:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
DRV - [2006.11.02 11:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
DRV - [2006.11.02 11:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
DRV - [2006.11.02 11:50:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
DRV - [2006.11.02 11:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])
DRV - [2006.11.02 11:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
DRV - [2006.11.02 11:50:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
DRV - [2006.11.02 11:50:10 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
DRV - [2006.11.02 11:50:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
DRV - [2006.11.02 11:50:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs [Disabled | Stopped])
DRV - [2006.11.02 11:50:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arc.sys -- (arc [Disabled | Stopped])
DRV - [2006.11.02 11:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
DRV - [2006.11.02 11:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
DRV - [2006.11.02 11:50:05 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
DRV - [2006.11.02 11:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
DRV - [2006.11.02 11:50:04 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
DRV - [2006.11.02 11:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
DRV - [2006.11.02 11:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x [Disabled | Stopped])
DRV - [2006.11.02 11:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
DRV - [2006.11.02 11:49:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
DRV - [2006.11.02 11:49:30 | 00,017,512 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
DRV - [2006.11.02 11:49:28 | 00,016,488 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
DRV - [2006.11.02 11:49:20 | 00,014,952 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
DRV - [2006.11.02 10:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserid.sys -- (Brserid [Disabled | Stopped])
DRV - [2006.11.02 10:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer [On_Demand | Stopped])
DRV - [2006.11.02 10:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp [On_Demand | Stopped])
DRV - [2006.11.02 10:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo [On_Demand | Stopped])
DRV - [2006.11.02 10:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm [Disabled | Stopped])
DRV - [2006.11.02 10:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm [Disabled | Stopped])
DRV - [2006.11.02 09:41:50 | 00,987,648 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTDPV3.SYS -- (HSF_DPV [On_Demand | Stopped])
DRV - [2006.11.02 09:41:49 | 00,200,704 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTAZL3.SYS -- (HSFHWAZL [On_Demand | Stopped])
DRV - [2006.11.02 09:41:48 | 00,654,336 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTCNXT3.SYS -- (winachsf [On_Demand | Stopped])
DRV - [2006.11.02 09:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
DRV - [2006.11.02 09:30:54 | 01,781,760 | ---- | M] (Intel® Corporation) -- C:\Windows\System32\DRIVERS\NETw3v32.sys -- (NETw3v32 [On_Demand | Stopped])
DRV - [2006.11.02 09:30:54 | 00,163,328 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\e100b325.sys -- (E100B [On_Demand | Stopped])
DRV - [2006.11.02 09:30:54 | 00,117,760 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
DRV - [2006.11.02 09:30:53 | 00,464,384 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\DRIVERS\bcmwl6.sys -- (BCM43XV [On_Demand | Stopped])
DRV - [2006.11.02 08:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
DRV - [2006.10.19 04:10:57 | 01,380,864 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\igdkmd32.sys -- (ialm [On_Demand | Stopped])
DRV - [2005.11.03 16:40:07 | 00,063,488 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\sfvfs02.sys -- (sfvfs02 [Boot | Stopped])
DRV - [2005.08.10 14:44:04 | 00,050,688 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\sfdrv01.sys -- (sfdrv01 [Boot | Stopped])
DRV - [2005.05.26 10:01:18 | 00,021,344 | ---- | M] (LG Electronics Inc.) -- C:\Windows\System32\DRIVERS\lgusbbus.sys -- (usbbus [On_Demand | Stopped])
DRV - [2005.05.16 15:20:39 | 00,006,656 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\sfhlp02.sys -- (sfhlp02 [Boot | Running])

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/skinit/icq/
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\URLSearchHook: *{855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\URLSearchHook: *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\S-1-5-21-545812794-2383777145-3001047551-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "seznam.cz"
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.0.0.5
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5
FF - prefs.js..extensions.enabledItems: avg@igeared:2.609.002.003
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3
FF - prefs.js..keyword.URL: "http://www.webhledani.cz/results.aspx?i=39&tp=ab&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.06.25 09:02:20 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009.07.16 15:59:15 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared [2009.10.07 08:15:39 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009.09.15 14:07:05 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009.09.15 14:07:05 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

[2009.08.16 21:50:44 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\mozilla\Extensions
[2009.08.16 21:50:44 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.10.22 13:00:40 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\mozilla\Firefox\Profiles\7rcybf6p.default\extensions
[2009.08.16 21:51:07 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\mozilla\Firefox\Profiles\7rcybf6p.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.08.16 21:50:48 | 00,000,694 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\icq-search.xml
[2009.10.07 16:03:58 | 00,000,961 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\icqplugin-1.xml
[2009.09.15 13:28:23 | 00,000,961 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\icqplugin.xml
[2009.09.14 13:21:48 | 00,001,699 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\sfd.xml
[2009.08.16 21:50:32 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009.07.14 18:09:17 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.09.15 14:07:05 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008.11.08 22:19:05 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
[2009.09.15 14:06:46 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009.09.15 14:06:46 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2007.04.10 17:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2009.09.15 14:06:51 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2006.10.26 21:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2007.05.10 22:52:34 | 00,095,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009.09.15 14:06:51 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009.09.15 14:06:51 | 00,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2009.09.15 14:06:51 | 00,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2009.09.15 14:06:51 | 00,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2009.09.15 14:06:51 | 00,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2009.09.15 14:06:51 | 00,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Windows\WebIE.dll ()
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Windows\WebIE.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (no name) - {00000000-0000-0000-0000-000000000000} - No CLSID value found.
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\dpagent.exe (DigitalPersona, Inc.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HP Health Check Scheduler] File not found
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [OnScreenDisplay] C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [PDVD9LanguageShortcut] C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe (CyberLink Corp.)
O4 - HKLM..\Run: [QlbCtrl] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [QPService] C:\Program Files\HP\QuickPlay\QPService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RemoteControl9] C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (Electronic Arts)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [EPSON Stylus DX8400 Series] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATICEE.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [Google Update] C:\Users\Vista\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [OEXPRESS] File not found
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [WEBTRAN] File not found
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O4 - Startup: C:\Users\Vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registration Heroes of Might & Magic 5.LNK = C:\Program Files\Ubisoft\Heroes of Might and Magic V\registration\RegistrationReminder.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: &ICQ Toolbar Search - C:\Program Files\ICQToolbar\toolbaru.dll File not found
O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html ()
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Windows\WebIE.dll ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Windows\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Windows\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Windows\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Windows\WebIE.dll ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\napinsp.dll (Společnost Microsoft)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\wshbth.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.10.10.10
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter: - x-sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2005.09.11 17:18:54 | 00,000,340 | -HS- | M] () - D:\AUTOMODE -- [ NTFS ]
O32 - AutoRun File - [2008.03.15 06:57:32 | 00,000,000 | ---D | M] - H:\autorun -- [ FAT32 ]
O32 - AutoRun File - [2007.05.18 10:37:12 | 00,000,069 | RH-- | M] () - H:\autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{4c2dc29b-add1-11dd-aac8-001e68212a62}\Shell - "" = AutoRun
O33 - MountPoints2\{4c2dc29b-add1-11dd-aac8-001e68212a62}\Shell\AutoRun\command - "" = F:\Autorun.exe -- File not found
O33 - MountPoints2\{918adb8f-16ad-11dd-8f05-001e37b3a595}\Shell\AutoRun\command - "" = wd_windows_tools\setup.exe
O33 - MountPoints2\{918adcb8-16ad-11dd-8f05-001e37b3a595}\Shell - "" = AutoRun
O33 - MountPoints2\{918adcb8-16ad-11dd-8f05-001e37b3a595}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\wd_windows_tools\setup.exe -- File not found
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\wd_windows_tools\setup.exe -- File not found
O33 - MountPoints2\H\Shell\AutoRun\command - "" = wd_windows_tools\setup.exe
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

Reklama

Mata. · Příspěvekod **Mata.** » 23 říj 2009 11:38

========== Files/Folders - Created Within 7 Days ==========

[2009.10.20 22:46:34 | 00,000,000 | ---D | C] -- C:\Users\Vista\AppData\Roaming\OpenOffice.org
[2009.10.20 22:23:42 | 00,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2009.10.19 21:48:37 | 00,000,000 | ---D | C] -- C:\Users\Vista\Documents\Nero

========== Files - Modified Within 7 Days ==========

[2009.10.23 11:26:01 | 00,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-545812794-2383777145-3001047551-1000UA.job
[2009.10.23 11:25:26 | 00,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{1C4355AD-D823-4597-B0FD-4A3F72F4ACF2}.job
[2009.10.23 11:01:40 | 50,055,3714 | ---- | M] () -- C:\Users\Vista\Desktop\The Basketball Diaries.avi
[2009.10.23 10:59:14 | 00,058,368 | ---- | M] () -- C:\Users\Vista\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.10.23 10:28:37 | 00,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009.10.23 10:28:37 | 00,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009.10.23 10:28:35 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009.10.23 08:47:23 | 43,527,784 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2009.10.23 08:47:23 | 00,048,786 | ---- | M] () -- C:\Windows\System32\drivers\Avg\microavi.avg
[2009.10.23 07:26:00 | 00,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-545812794-2383777145-3001047551-1000Core.job
[2009.10.23 06:50:27 | 00,158,387 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\nvModes.001
[2009.10.23 06:49:30 | 00,000,164 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini
[2009.10.23 06:48:29 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009.10.23 06:48:16 | 32,175,18592 | -HS- | M] () -- C:\hiberfil.sys
[2009.10.23 01:11:24 | 00,002,140 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2009.10.23 01:11:04 | 03,651,911 | -H-- | M] () -- C:\Users\Vista\AppData\Local\IconCache.db
[2009.10.22 23:39:26 | 00,158,387 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\nvModes.dat
[2009.10.22 15:00:04 | 12,403,32228 | ---- | M] () -- C:\Users\Vista\Desktop\paranormal-activity-dvdscr-xvid-imagine.avi
[2009.10.22 14:47:24 | 01,393,930 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009.10.22 14:47:24 | 00,598,838 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2009.10.22 14:47:24 | 00,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009.10.22 14:47:24 | 00,115,014 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2009.10.22 14:47:24 | 00,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009.10.22 13:32:09 | 00,039,424 | ---- | M] () -- C:\Users\Vista\Desktop\seminární práce.doc
[2009.10.22 13:14:19 | 73,070,5920 | ---- | M] () -- C:\Users\Vista\Desktop\Eden Lake.avi
[2009.10.21 18:13:57 | 00,000,558 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for Vista.job
[2009.10.21 13:02:48 | 00,018,273 | ---- | M] () -- C:\Users\Vista\Desktop\rozhovor - Kopie.docx
[2009.10.21 11:54:30 | 00,403,928 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.10.20 23:06:19 | 11,009,80588 | ---- | M] () -- C:\Users\Vista\Desktop\Public Enemies DVDRip vlož.titulky CZ ikisan (1).avi
[2009.10.20 22:47:30 | 00,001,028 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
[2009.10.20 22:31:25 | 00,109,312 | ---- | M] () -- C:\Users\Vista\AppData\Local\GDIPFONTCACHEV1.DAT
[2009.10.20 22:26:48 | 00,000,971 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.0.lnk
[2009.10.20 21:52:02 | 00,018,484 | ---- | M] () -- C:\Users\Vista\Desktop\rozhovor.docx
[2009.10.20 21:45:21 | 00,000,000 | ---- | M] () -- C:\Users\Vista\Desktop\Public Enemies DVDRip vlož.titulky CZ ikisan.avi
[2009.10.20 00:03:50 | 83,558,4000 | ---- | M] () -- C:\Users\Vista\Desktop\Zivot Davida Galea (The Life of David Gale - 2003).avi
[2009.10.18 19:57:38 | 79,896,7456 | ---- | M] () -- C:\Users\Vista\Desktop\Lilja 4-Ever.2002.DVDRip.x264-VGL (1).mkv
[2009.10.17 18:35:32 | 00,207,872 | ---- | M] () -- C:\Users\Vista\Desktop\seznam filmů.xls
[2009.10.16 21:24:01 | 73,161,9328 | ---- | M] () -- C:\Users\Vista\Desktop\reservoir-dogs.avi

========== Files - No Company Name ==========
[2009.10.23 11:01:40 | 47,662,0786 | ---- | C] () -- C:\Users\Vista\Desktop\The Basketball Diaries.avi
[2009.10.22 13:25:20 | 12,403,32228 | ---- | C] () -- C:\Users\Vista\Desktop\paranormal-activity-dvdscr-xvid-imagine.avi
[2009.10.22 12:33:55 | 73,070,5920 | ---- | C] () -- C:\Users\Vista\Desktop\Eden Lake.avi
[2009.10.21 13:06:22 | 00,039,424 | ---- | C] () -- C:\Users\Vista\Desktop\seminární práce.doc
[2009.10.21 13:02:32 | 00,018,273 | ---- | C] () -- C:\Users\Vista\Desktop\rozhovor - Kopie.docx
[2009.10.20 22:47:30 | 00,001,028 | ---- | C] () -- C:\Users\Vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
[2009.10.20 22:26:48 | 00,000,971 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.0.lnk
[2009.10.20 21:49:25 | 11,009,80588 | ---- | C] () -- C:\Users\Vista\Desktop\Public Enemies DVDRip vlož.titulky CZ ikisan (1).avi
[2009.10.20 21:45:21 | 00,000,000 | ---- | C] () -- C:\Users\Vista\Desktop\Public Enemies DVDRip vlož.titulky CZ ikisan.avi
[2009.10.20 20:25:39 | 73,418,1376 | ---- | C] () -- C:\Users\Vista\Desktop\Battle for Terra.avi
[2009.10.20 20:24:57 | 00,050,271 | ---- | C] () -- C:\Users\Vista\Desktop\Battle+For+Terra(0000138754).srt
[2009.10.20 19:32:31 | 00,018,484 | ---- | C] () -- C:\Users\Vista\Desktop\rozhovor.docx
[2009.10.19 22:37:49 | 83,558,4000 | ---- | C] () -- C:\Users\Vista\Desktop\Zivot Davida Galea (The Life of David Gale - 2003).avi
[2009.10.18 17:39:11 | 79,896,7456 | ---- | C] () -- C:\Users\Vista\Desktop\Lilja 4-Ever.2002.DVDRip.x264-VGL (1).mkv
[2009.10.16 18:50:01 | 73,161,9328 | ---- | C] () -- C:\Users\Vista\Desktop\reservoir-dogs.avi
[2009.08.12 00:19:25 | 03,651,911 | -H-- | C] () -- C:\Users\Vista\AppData\Local\IconCache.db
[2009.08.02 12:35:21 | 00,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.06.02 18:11:45 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009.04.20 18:26:08 | 00,000,048 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008.12.25 12:46:23 | 00,491,520 | ---- | C] () -- C:\Windows\WebIE.dll
[2008.12.25 12:46:22 | 00,200,704 | ---- | C] () -- C:\Windows\TRNOET.DLL
[2008.12.25 12:46:22 | 00,045,056 | ---- | C] () -- C:\Windows\TRNOEH.DLL
[2008.12.25 12:34:31 | 00,002,753 | ---- | C] () -- C:\Windows\UN32P.INI
[2008.12.25 12:31:44 | 00,001,678 | ---- | C] () -- C:\Windows\MAILTRAN.INI
[2008.12.25 12:31:43 | 00,002,476 | ---- | C] () -- C:\Windows\TRNCOM.INI
[2008.12.25 12:31:31 | 00,004,192 | ---- | C] () -- C:\Windows\WTRAN32.INI
[2008.12.25 12:31:31 | 00,001,581 | ---- | C] () -- C:\Windows\WDICT32.INI
[2008.11.08 22:07:51 | 00,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008.07.28 08:27:33 | 00,000,000 | ---- | C] () -- C:\Users\Vista\AppData\Local\FnF4.txt
[2008.07.22 12:55:09 | 00,765,952 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2008.07.22 12:55:08 | 00,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2008.07.14 16:00:19 | 00,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2008.07.14 08:07:13 | 00,007,592 | ---- | C] () -- C:\Users\Vista\AppData\Local\d3d9caps.dat
[2008.04.30 21:22:13 | 00,058,368 | ---- | C] () -- C:\Users\Vista\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.04.30 18:25:25 | 00,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini
[2008.04.30 18:01:22 | 00,000,025 | ---- | C] () -- C:\Windows\CDE DX8400DEFGIPS.ini
[2008.04.28 11:50:44 | 00,158,387 | ---- | C] () -- C:\Users\Vista\AppData\Roaming\nvModes.001
[2008.04.25 17:02:19 | 00,158,387 | ---- | C] () -- C:\Users\Vista\AppData\Roaming\nvModes.dat
[2008.04.25 12:44:32 | 00,000,000 | ---- | C] () -- C:\Users\Vista\AppData\Local\QSwitch.txt
[2008.04.25 12:44:32 | 00,000,000 | ---- | C] () -- C:\Users\Vista\AppData\Local\DSwitch.txt
[2008.04.25 12:44:32 | 00,000,000 | ---- | C] () -- C:\Users\Vista\AppData\Local\AtStart.txt
[2008.04.25 12:44:23 | 00,109,312 | ---- | C] () -- C:\Users\Vista\AppData\Local\GDIPFONTCACHEV1.DAT
[2008.02.27 04:55:04 | 00,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2007.09.05 13:52:04 | 00,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll
[2006.11.02 14:50:50 | 00,000,174 | -HS- | C] () -- C:\Program Files\desktop.ini
[2006.11.02 14:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 12:25:21 | 00,061,440 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2006.11.02 12:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\win.ini
[2006.11.02 12:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2006.11.02 09:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.03.10 00:58:00 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2005.10.14 11:56:50 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2005.10.14 11:56:50 | 00,921,600 | ---- | C] () -- C:\Windows\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 00,344,064 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2005.10.14 11:56:50 | 00,237,568 | ---- | C] () -- C:\Windows\System32\OggDS.dll
[2005.10.14 11:56:50 | 00,188,416 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2005.10.14 11:56:50 | 00,155,136 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2005.10.14 11:56:50 | 00,045,056 | ---- | C] () -- C:\Windows\System32\ogg.dll
[2005.03.28 04:20:37 | 00,005,120 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2005.02.24 18:56:45 | 00,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2001.11.14 14:56:00 | 01,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll

========== LOP Check ==========

[2006.11.02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming
[2006.11.02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Media Center Programs
[2006.11.02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming
[2006.11.02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Media Center Programs
[2009.10.20 22:46:34 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming
[2008.05.26 17:44:48 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Ahead
[2009.04.20 18:28:23 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\CyberLink
[2008.11.08 22:07:14 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\DAEMON Tools
[2008.04.25 12:44:06 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\DigitalPersona
[2008.06.15 22:34:19 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\eGames
[2009.02.10 12:23:18 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\EleFun Games
[2009.04.15 21:13:51 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\EPSON
[2009.02.04 20:54:20 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\ESET
[2008.07.09 14:36:44 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Gamelab
[2008.04.28 11:53:06 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\GHISLER
[2009.02.08 13:27:15 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\ICQ
[2008.06.04 14:00:37 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\ICQ Toolbar
[2008.05.13 14:14:09 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\ICQLite
[2009.07.03 11:48:01 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\IrfanView
[2008.06.03 21:36:14 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Jpeg Resampler
[2008.12.06 13:18:16 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\LangSoft
[2008.04.25 12:36:17 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Macrovision
[2006.11.02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Media Center Programs
[2009.04.03 22:48:43 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\My Games
[2008.05.19 13:21:48 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Oberon Games
[2009.10.20 22:46:34 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\OpenOffice.org
[2009.07.06 15:12:31 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\OpenOffice.org2
[2009.07.16 11:26:17 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\PlayFirst
[2008.07.07 18:16:05 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Sandlot Games
[2008.05.04 11:39:34 | 00,000,000 | RH-D | M] -- C:\Users\Vista\AppData\Roaming\SecuROM
[2008.05.19 13:06:23 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Super-Cow
[2008.12.06 14:44:59 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\TeamViewer
[2009.03.16 02:00:00 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Teleca
[2009.03.08 00:09:21 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\uTorrent
[2008.06.15 21:41:15 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Valusoft
[2008.07.07 18:05:25 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\ViquaSoft
[2009.07.21 22:52:49 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\VitySoft
[2009.02.19 14:20:24 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\XnView
[2009.06.12 13:04:05 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Zylom
[2009.10.23 07:26:00 | 00,000,910 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-545812794-2383777145-3001047551-1000Core.job
[2009.10.23 11:26:01 | 00,000,962 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-545812794-2383777145-3001047551-1000UA.job
[2009.10.21 18:13:57 | 00,000,558 | ---- | M] () -- C:\Windows\Tasks\Norton Security Scan for Vista.job
[2009.10.23 06:48:29 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009.10.23 01:11:24 | 00,032,598 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.10.23 11:25:26 | 00,000,418 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{1C4355AD-D823-4597-B0FD-4A3F72F4ACF2}.job

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:9AB338B9
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:29BCDA07
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:5711EF65
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:4F636E25
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:E5AFE07D
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:93C494CA
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:74699137
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:1D6686D8
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:B14B4A95
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:05816AFA
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:615435BE
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:A696643D
@Alternate Data Stream - 111 bytes -> C:\ProgramData\TEMP:DF2EA4BB
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:A42A9F39
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:ADE16379
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:EA2FBCA1
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:0879ECE9
@Alternate Data Stream - 107 bytes -> C:\ProgramData\TEMP:912389B7
@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:2FF4577A
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:E71141D2
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:9FE30AB2
@Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:753B0F80
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:F50F1555
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:5E1404CE
< End of report >

pitimir · Příspěvekod **pitimir** » 23 říj 2009 13:43

Skopiruj do policka pod nazvom "Custom Scans/Fixes":

Kód: Vybrat vše

:otl
SRV - [2009.06.01 22:20:12 | 00,222,968 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service [Auto | Running])
SRV - [2009.02.06 14:27:06 | 00,020,680 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv [On_Demand | Stopped])
SRV - [2009.02.06 14:23:36 | 00,727,720 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn [Auto | Running])
DRV - [2009.02.06 14:24:26 | 00,092,800 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\epfwwfpr.sys -- (epfwwfpr [Auto | Running])
DRV - [2009.02.06 14:23:18 | 00,106,208 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\ehdrv.sys -- (ehdrv [System | Running])
DRV - [2009.02.06 14:19:52 | 00,113,448 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\eamon.sys -- (eamon [Auto | Running])
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/skinit/icq/IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\URLSearchHook: *{855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\URLSearchHook: *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.0.0.5
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
[2009.08.16 21:50:48 | 00,000,694 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\icq-search.xml
[2009.10.07 16:03:58 | 00,000,961 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\icqplugin-1.xml
[2009.09.15 13:28:23 | 00,000,961 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\icqplugin.xml
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (no name) - {00000000-0000-0000-0000-000000000000} - No CLSID value found.
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [WEBTRAN] File not found
O4 - Startup: C:\Users\Vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registration Heroes of Might & Magic 5.LNK = C:\Program Files\Ubisoft\Heroes of Might and Magic V\registration\RegistrationReminder.exe File not found
O8 - Extra context menu item: &ICQ Toolbar Search - C:\Program Files\ICQToolbar\toolbaru.dll File not found
O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O33 - MountPoints2\{4c2dc29b-add1-11dd-aac8-001e68212a62}\Shell\AutoRun\command - "" = F:\Autorun.exe -- File not found
O33 - MountPoints2\{918adcb8-16ad-11dd-8f05-001e37b3a595}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\wd_windows_tools\setup.exe -- File not found
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\wd_windows_tools\setup.exe -- File not found

:files
C:\Program Files\ICQ6Toolbar
C:\Program Files\ESET
 C:\Program Files\Winamp Toolbar
C:\Program Files\Ask.com
C:\Program Files\DAEMON Tools Toolbar
C:\Users\Vista\AppData\Roaming\ESET
C:\Users\Vista\AppData\Roaming\ICQ Toolbar

:commands
[emptytemp]
[reboot]

Klikni na "Run Fix". Program zacne pracovat, mozny je restart PC. Po nom by sa ti mal objavit log, ten by som rad videl.

P.S.: Daj si prosim zalezat, aby bol text vkladany do programu od zaciatku riadka (na prilozenom screen-shote je dobre vidiet ako by to malo byt - hore je NESPRAVNE vlozeny text, dole je to OK).

Mata. · Příspěvekod **Mata.** » 23 říj 2009 16:19

tohle? snad je to cely, protoze se to pak nejak seklo, tak jsem to restartovala a tohle okno se mi ukazalo po restartu..

Files\Folders moved on Reboot...
File move failed. C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe scheduled to be moved on reboot.
File move failed. C:\Program Files\ESET\ESET Smart Security\ekrn.exe scheduled to be moved on reboot.
File move failed. C:\Windows\System32\DRIVERS\epfwwfpr.sys scheduled to be moved on reboot.
File move failed. C:\Windows\System32\DRIVERS\ehdrv.sys scheduled to be moved on reboot.
File move failed. C:\Windows\System32\DRIVERS\eamon.sys scheduled to be moved on reboot.
File move failed. C:\Program Files\ESET\ESET Smart Security\egui.exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird scheduled to be moved on reboot.
Folder move failed. C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird scheduled to be moved on reboot.
Folder move failed. C:\Program Files\ESET\ESET Smart Security scheduled to be moved on reboot.
Folder move failed. C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird scheduled to be moved on reboot.
Folder move failed. C:\Program Files\ESET\ESET Smart Security scheduled to be moved on reboot.
Folder move failed. C:\Program Files\ESET scheduled to be moved on reboot.
File\Folder C:\Users\Vista\AppData\Local\Temp\etilqs_k9eZyzTUeP8mBvcrUXpy not found!
File\Folder C:\Users\Vista\AppData\Local\Temp\etilqs_v5k2iGUfYdUO6LBEwbKT not found!
File\Folder C:\Users\Vista\AppData\Local\Temp\JETCD41.tmp not found!
C:\Users\Vista\AppData\Local\Mozilla\Firefox\Profiles\7rcybf6p.default\Cache\_CACHE_001_ moved successfully.
C:\Users\Vista\AppData\Local\Mozilla\Firefox\Profiles\7rcybf6p.default\Cache\_CACHE_002_ moved successfully.
C:\Users\Vista\AppData\Local\Mozilla\Firefox\Profiles\7rcybf6p.default\Cache\_CACHE_003_ moved successfully.
C:\Users\Vista\AppData\Local\Mozilla\Firefox\Profiles\7rcybf6p.default\Cache\_CACHE_MAP_ moved successfully.
C:\Users\Vista\AppData\Local\Mozilla\Firefox\Profiles\7rcybf6p.default\urlclassifier3.sqlite moved successfully.
C:\Users\Vista\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 moved successfully.
C:\Users\Vista\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 moved successfully.
C:\Users\Vista\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 moved successfully.
C:\Users\Vista\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 moved successfully.
File\Folder C:\Users\Vista\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000064 not found!
C:\Users\Vista\AppData\Local\Google\Chrome\User Data\Default\Cache\index moved successfully.

Registry entries deleted on Reboot...

pitimir · Příspěvekod **pitimir** » 23 říj 2009 19:17

To uvidime podla noveho logu z OTL :)
Vloz ho prosim.

Mata. · Příspěvekod **Mata.** » 25 říj 2009 11:28

OTL logfile created on: 25.10.2009 11:21:06 - Run 2
OTL by OldTimer - Version 3.0.21.0 Folder = C:\Users\Vista\Desktop\Programy
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,49 Gb Available Physical Memory | 74,52% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 224,08 Gb Total Space | 42,83 Gb Free Space | 19,11% Space Free | Partition Type: NTFS
Drive D: | 8,80 Gb Total Space | 2,72 Gb Free Space | 30,94% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: VISTA-PC
Current User Name: Vista
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009.10.22 20:04:18 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:\Users\Vista\Desktop\Programy\OTL.exe
PRC - [2009.10.17 10:14:52 | 02,025,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgtray.exe
PRC - [2009.10.09 19:24:55 | 00,919,024 | ---- | M] (Google Inc.) -- C:\Users\Vista\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2009.09.15 13:06:50 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.09.03 22:17:14 | 03,342,336 | ---- | M] (Electronic Arts) -- C:\Program Files\Electronic Arts\EADM\Core.exe
PRC - [2009.09.02 14:27:36 | 25,623,336 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe
PRC - [2009.09.02 14:27:36 | 00,077,360 | R--- | M] (Skype Technologies) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe
PRC - [2009.08.16 10:42:40 | 00,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgrsx.exe
PRC - [2009.08.16 10:42:31 | 00,595,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgnsx.exe
PRC - [2009.08.16 10:42:20 | 00,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2009.07.03 10:48:24 | 00,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009.04.11 07:28:15 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprvse.exe
PRC - [2009.04.11 07:28:15 | 00,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMIADAP.EXE
PRC - [2009.04.11 07:28:03 | 01,233,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
PRC - [2009.04.11 07:27:36 | 02,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2009.03.09 16:49:18 | 00,037,888 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
PRC - [2009.03.01 11:59:42 | 00,172,792 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ6.5\ICQ.exe
PRC - [2009.02.16 08:55:38 | 00,087,336 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
PRC - [2009.02.06 13:23:36 | 00,727,720 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2009.01.15 17:42:46 | 07,430,144 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2009.01.15 17:42:44 | 07,434,240 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2008.07.24 16:02:06 | 00,490,952 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\daemon.exe
PRC - [2008.06.10 04:27:04 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
PRC - [2008.06.08 08:31:04 | 00,877,864 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
PRC - [2008.02.19 11:22:22 | 00,176,128 | ---- | M] () -- C:\Program Files\TeamViewer3\TeamViewer_Host.exe
PRC - [2008.01.19 08:38:38 | 01,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2008.01.19 08:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
PRC - [2008.01.19 08:33:39 | 00,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2007.09.30 19:34:54 | 00,271,760 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
PRC - [2007.09.30 19:34:54 | 00,112,016 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
PRC - [2007.09.30 19:34:14 | 00,181,544 | ---- | M] (CyberLink Corp.) -- C:\Program Files\HP\QuickPlay\QPService.exe
PRC - [2007.09.24 18:11:42 | 00,566,560 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files\ABBYY FineReader 9.0\NetworkLicenseServer.exe
PRC - [2007.09.20 11:12:02 | 00,671,744 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpAgent.exe
PRC - [2007.09.20 11:02:58 | 00,299,008 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe
PRC - [2007.09.19 17:30:52 | 00,065,536 | ---- | M] (Hewlett-Packard) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
PRC - [2007.09.19 14:31:34 | 00,202,032 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
PRC - [2007.09.15 09:50:54 | 01,021,224 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2007.09.15 09:29:10 | 00,102,400 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2007.09.13 08:47:52 | 00,480,560 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
PRC - [2007.09.05 13:09:54 | 01,620,520 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
PRC - [2007.09.05 13:09:54 | 00,727,592 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2007.09.04 13:54:20 | 00,554,320 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
PRC - [2007.08.23 16:40:48 | 00,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007.08.23 16:36:30 | 00,455,968 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
PRC - [2007.08.17 14:27:00 | 04,702,208 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007.07.25 07:02:44 | 00,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
PRC - [2007.07.25 07:02:42 | 00,174,616 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2007.07.11 15:57:42 | 00,880,640 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
PRC - [2007.06.13 08:16:02 | 00,528,384 | R--- | M] () -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
PRC - [2007.05.16 10:43:06 | 00,677,432 | R--- | M] () -- C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
PRC - [2007.04.12 07:00:00 | 00,182,272 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\spool\drivers\w32x86\3\E_FATICEE.EXE
PRC - [2007.03.16 03:23:20 | 00,983,040 | R--- | M] (Teleca AB) -- C:\Program Files\Common Files\Teleca Shared\Generic.exe
PRC - [2007.01.17 14:34:18 | 00,634,880 | ---- | M] (Motorola Inc.) -- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
PRC - [2007.01.09 11:25:30 | 00,272,024 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe
PRC - [2007.01.08 15:53:06 | 00,311,296 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
PRC - [2006.12.19 09:30:26 | 00,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\Windows\System32\IoctlSvc.exe
PRC - [2006.11.02 10:45:59 | 00,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdSync.exe
PRC - [2006.10.27 00:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2006.05.02 15:41:28 | 00,135,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
PRC - [2005.02.16 22:11:42 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

========== Win32 Services (SafeList) ==========

SRV - [2009.08.16 10:42:20 | 00,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd [Auto | Running])
SRV - [2009.07.03 10:48:24 | 00,182,768 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2009.04.11 07:28:25 | 01,017,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (Eventlog [Auto | Running])
SRV - [2009.03.30 05:42:14 | 00,066,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2009.02.18 19:39:20 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2009.02.18 19:38:43 | 00,129,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2009.02.18 19:38:42 | 00,879,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009.02.06 13:23:36 | 00,727,720 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn [Auto | Running])
SRV - [2008.06.24 15:05:56 | 00,537,896 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Stopped])
SRV - [2008.06.08 08:31:04 | 00,877,864 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe -- (Nero BackItUp Scheduler 3 [Auto | Running])
SRV - [2008.02.19 11:22:22 | 00,176,128 | ---- | M] () -- C:\Program Files\TeamViewer3\TeamViewer_Host.exe -- (TeamViewer [Auto | Running])
SRV - [2008.01.19 08:38:24 | 00,272,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])
SRV - [2008.01.19 08:36:49 | 00,365,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm [Auto | Running])
SRV - [2008.01.19 08:36:15 | 00,167,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr [Auto | Running])
SRV - [2008.01.19 08:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Running])
SRV - [2008.01.19 08:33:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])
SRV - [2007.09.30 19:34:54 | 00,271,760 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe -- (QPCapSvc [Auto | Running])
SRV - [2007.09.30 19:34:54 | 00,112,016 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe -- (QPSched [Auto | Running])
SRV - [2007.09.24 18:11:42 | 00,566,560 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files\ABBYY FineReader 9.0\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0 [Auto | Running])
SRV - [2007.09.20 11:02:58 | 00,299,008 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe -- (DpHost [Auto | Running])
SRV - [2007.09.19 17:30:52 | 00,065,536 | ---- | M] (Hewlett-Packard) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe -- (HP Health Check Service [Auto | Running])
SRV - [2007.08.23 16:40:48 | 00,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService [Auto | Running])
SRV - [2007.07.25 07:02:44 | 00,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON [Auto | Running])
SRV - [2007.03.05 10:30:06 | 00,110,592 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe -- (Com4Qlb [On_Demand | Stopped])
SRV - [2007.01.19 11:54:14 | 00,097,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Stopped])
SRV - [2007.01.09 11:25:30 | 00,272,024 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe -- (RichVideo [Auto | Running])
SRV - [2006.12.19 09:30:26 | 00,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\Windows\System32\IoctlSvc.exe -- (PLFlash DeviceIoControl Service [Auto | Running])
SRV - [2006.11.02 13:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
SRV - [2006.11.02 13:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])
SRV - [2006.11.02 10:45:35 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\regedt32.exe -- (NOD32FiXTemDono [Auto | Stopped])
SRV - [2006.10.27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])
SRV - [2006.10.26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006.10.26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2006.05.02 15:41:28 | 00,135,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe -- (hpqwmiex [Auto | Running])
SRV - [2004.10.22 03:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2009.08.16 10:42:39 | 00,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\Drivers\avgldx86.sys -- (AvgLdx86 [System | Running])
DRV - [2009.08.16 10:42:39 | 00,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\Drivers\avgmfx86.sys -- (AvgMfx86 [System | Running])
DRV - [2009.07.16 15:00:07 | 00,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\Drivers\avgtdix.sys -- (AvgTdiX [System | Running])
DRV - [2009.04.11 05:46:08 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\usb8023x.sys -- (usb_rndisx [On_Demand | Stopped])
DRV - [2009.02.06 13:23:18 | 00,106,208 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\ehdrv.sys -- (ehdrv [System | Running])
DRV - [2009.02.06 13:19:52 | 00,113,448 | ---- | M] (ESET) -- C:\Windows\System32\DRIVERS\eamon.sys -- (eamon [Auto | Running])
DRV - [2008.11.08 21:07:51 | 00,717,296 | ---- | M] () -- C:\Windows\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2007.11.07 22:18:54 | 00,007,936 | ---- | M] (Initio Corporation) -- C:\Windows\System32\DRIVERS\inidvd.sys -- (INIDVD [On_Demand | Running])
DRV - [2007.10.31 17:36:32 | 02,252,800 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\NETw4v32.sys -- (NETw4v32 [On_Demand | Running])
DRV - [2007.09.19 21:05:00 | 07,626,400 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm [On_Demand | Running])
DRV - [2007.09.18 14:12:28 | 00,080,936 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwavdt.sys -- (btwavdt [On_Demand | Running])
DRV - [2007.09.18 14:12:28 | 00,080,424 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwaudio.sys -- (btwaudio [On_Demand | Running])
DRV - [2007.09.18 14:12:28 | 00,016,168 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\DRIVERS\btwrchid.sys -- (btwrchid [On_Demand | Running])
DRV - [2007.09.18 00:17:36 | 00,098,816 | ---- | M] (Realtek Corporation ) -- C:\Windows\System32\DRIVERS\Rtlh86.sys -- (RTL8169 [On_Demand | Running])
DRV - [2007.09.15 09:50:56 | 00,191,408 | ---- | M] (Synaptics, Inc.) -- C:\Windows\System32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])
DRV - [2007.08.28 15:47:36 | 00,146,560 | ---- | M] (AuthenTec, Inc.) -- C:\Windows\System32\DRIVERS\ATSwpDrv.sys -- (ATSWPDRV [On_Demand | Running])
DRV - [2007.08.22 19:44:18 | 01,950,552 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2007.07.13 05:35:02 | 00,305,176 | ---- | M] (Intel Corporation) -- C:\Windows\system32\DRIVERS\iaStor.sys -- (iaStor [Boot | Running])
DRV - [2007.07.11 10:30:22 | 00,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Windows\System32\DRIVERS\HpqRemHid.sys -- (HpqRemHid [On_Demand | Running])
DRV - [2007.06.18 17:12:04 | 00,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Windows\System32\DRIVERS\HpqKbFiltr.sys -- (HpqKbFiltr [On_Demand | Running])
DRV - [2007.04.03 13:57:42 | 00,083,336 | ---- | M] (MCCI Corporation) -- C:\Windows\System32\DRIVERS\s116bus.sys -- (s116bus [On_Demand | Stopped])
DRV - [2007.03.21 22:02:04 | 00,037,376 | ---- | M] (REDC) -- C:\Windows\System32\DRIVERS\rixdptsk.sys -- (rismxdp [Auto | Running])
DRV - [2007.02.24 14:42:22 | 00,039,936 | ---- | M] (REDC) -- C:\Windows\System32\DRIVERS\rimmptsk.sys -- (rimmptsk [Auto | Running])
DRV - [2007.01.23 16:40:20 | 00,042,496 | ---- | M] (REDC) -- C:\Windows\System32\DRIVERS\rimsptsk.sys -- (rimsptsk [Auto | Running])
DRV - [2007.01.17 14:38:52 | 00,983,936 | ---- | M] (Motorola Inc.) -- C:\Windows\System32\DRIVERS\smserial.sys -- (smserial [On_Demand | Running])
DRV - [2006.11.02 10:51:45 | 00,900,712 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
DRV - [2006.11.02 10:51:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
DRV - [2006.11.02 10:51:34 | 00,316,520 | ---- | M] (Emulex) -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
DRV - [2006.11.02 10:51:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
DRV - [2006.11.02 10:51:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
DRV - [2006.11.02 10:51:25 | 00,232,040 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV [Disabled | Stopped])
DRV - [2006.11.02 10:51:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
DRV - [2006.11.02 10:50:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
DRV - [2006.11.02 10:50:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
DRV - [2006.11.02 10:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
DRV - [2006.11.02 10:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
DRV - [2006.11.02 10:50:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
DRV - [2006.11.02 10:50:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
DRV - [2006.11.02 10:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
DRV - [2006.11.02 10:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
DRV - [2006.11.02 10:50:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
DRV - [2006.11.02 10:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])
DRV - [2006.11.02 10:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
DRV - [2006.11.02 10:50:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
DRV - [2006.11.02 10:50:10 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
DRV - [2006.11.02 10:50:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
DRV - [2006.11.02 10:50:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs [Disabled | Stopped])
DRV - [2006.11.02 10:50:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arc.sys -- (arc [Disabled | Stopped])
DRV - [2006.11.02 10:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
DRV - [2006.11.02 10:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
DRV - [2006.11.02 10:50:05 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
DRV - [2006.11.02 10:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
DRV - [2006.11.02 10:50:04 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
DRV - [2006.11.02 10:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
DRV - [2006.11.02 10:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x [Disabled | Stopped])
DRV - [2006.11.02 10:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
DRV - [2006.11.02 10:49:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
DRV - [2006.11.02 10:49:30 | 00,017,512 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
DRV - [2006.11.02 10:49:28 | 00,016,488 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
DRV - [2006.11.02 10:49:20 | 00,014,952 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
DRV - [2006.11.02 09:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserid.sys -- (Brserid [Disabled | Stopped])
DRV - [2006.11.02 09:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer [On_Demand | Stopped])
DRV - [2006.11.02 09:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp [On_Demand | Stopped])
DRV - [2006.11.02 09:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo [On_Demand | Stopped])
DRV - [2006.11.02 09:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm [Disabled | Stopped])
DRV - [2006.11.02 09:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm [Disabled | Stopped])
DRV - [2006.11.02 08:41:50 | 00,987,648 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTDPV3.SYS -- (HSF_DPV [On_Demand | Stopped])
DRV - [2006.11.02 08:41:49 | 00,200,704 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTAZL3.SYS -- (HSFHWAZL [On_Demand | Stopped])
DRV - [2006.11.02 08:41:48 | 00,654,336 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTCNXT3.SYS -- (winachsf [On_Demand | Stopped])
DRV - [2006.11.02 08:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
DRV - [2006.11.02 08:30:54 | 01,781,760 | ---- | M] (Intel® Corporation) -- C:\Windows\System32\DRIVERS\NETw3v32.sys -- (NETw3v32 [On_Demand | Stopped])
DRV - [2006.11.02 08:30:54 | 00,163,328 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\e100b325.sys -- (E100B [On_Demand | Stopped])
DRV - [2006.11.02 08:30:54 | 00,117,760 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
DRV - [2006.11.02 08:30:53 | 00,464,384 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\DRIVERS\bcmwl6.sys -- (BCM43XV [On_Demand | Stopped])
DRV - [2006.11.02 07:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
DRV - [2006.10.19 03:10:57 | 01,380,864 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\igdkmd32.sys -- (ialm [On_Demand | Stopped])
DRV - [2005.11.03 15:40:07 | 00,063,488 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\sfvfs02.sys -- (sfvfs02 [Boot | Stopped])
DRV - [2005.08.10 13:44:04 | 00,050,688 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\sfdrv01.sys -- (sfdrv01 [Boot | Stopped])
DRV - [2005.05.26 09:01:18 | 00,021,344 | ---- | M] (LG Electronics Inc.) -- C:\Windows\System32\DRIVERS\lgusbbus.sys -- (usbbus [On_Demand | Stopped])
DRV - [2005.05.16 14:20:39 | 00,006,656 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\sfhlp02.sys -- (sfhlp02 [Boot | Running])

========== Standard Registry (SafeList) ==========

Mata. · Příspěvekod **Mata.** » 25 říj 2009 11:29

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/skinit/icq/
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\URLSearchHook: *{855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\S-1-5-21-545812794-2383777145-3001047551-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "seznam.cz"
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5
FF - prefs.js..extensions.enabledItems: avg@igeared:2.609.002.003
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3
FF - prefs.js..keyword.URL: "http://www.webhledani.cz/results.aspx?i=39&tp=ab&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.06.25 08:02:20 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009.07.16 14:59:15 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared [2009.10.07 07:15:39 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009.09.15 13:07:05 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009.09.15 13:07:05 | 00,000,000 | ---D | M]

[2009.08.16 20:50:44 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\mozilla\Extensions
[2009.08.16 20:50:44 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.10.24 12:16:08 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\mozilla\Firefox\Profiles\7rcybf6p.default\extensions
[2009.08.16 20:51:07 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\mozilla\Firefox\Profiles\7rcybf6p.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.10.23 15:07:09 | 00,000,694 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\icq-search.xml
[2008.03.31 08:52:00 | 00,000,168 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\icqplugin.gif
[2008.03.31 08:52:00 | 00,000,618 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\icqplugin.src
[2009.09.14 12:21:48 | 00,001,699 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Mozilla\FireFox\Profiles\7rcybf6p.default\searchplugins\sfd.xml
[2009.08.16 20:50:32 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009.07.14 17:09:17 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.09.15 13:07:05 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008.11.08 21:19:05 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
[2009.09.15 13:06:46 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009.09.15 13:06:46 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2007.04.10 16:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2009.09.15 13:06:51 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2006.10.26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2007.05.10 21:52:34 | 00,095,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009.09.15 13:06:51 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009.09.15 13:06:51 | 00,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2009.09.15 13:06:51 | 00,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2009.09.15 13:06:51 | 00,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2009.09.15 13:06:51 | 00,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2009.09.15 13:06:51 | 00,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Windows\WebIE.dll ()
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Windows\WebIE.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\dpagent.exe (DigitalPersona, Inc.)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HP Health Check Scheduler] File not found
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [OnScreenDisplay] C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [PDVD9LanguageShortcut] C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe (CyberLink Corp.)
O4 - HKLM..\Run: [QlbCtrl] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [QPService] C:\Program Files\HP\QuickPlay\QPService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RemoteControl9] C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (Electronic Arts)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [EPSON Stylus DX8400 Series] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATICEE.EXE (SEIKO EPSON CORPORATION)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [Google Update] C:\Users\Vista\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [OEXPRESS] File not found
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\S-1-5-21-545812794-2383777145-3001047551-1000..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Windows\WebIE.dll ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Windows\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Windows\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Windows\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Windows\WebIE.dll ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\napinsp.dll (Společnost Microsoft)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\wshbth.dll (Microsoft Corporation)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.10.10.10
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter: - x-sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2005.09.11 16:18:54 | 00,000,340 | -HS- | M] () - D:\AUTOMODE -- [ NTFS ]
O33 - MountPoints2\{918adb8f-16ad-11dd-8f05-001e37b3a595}\Shell\AutoRun\command - "" = wd_windows_tools\setup.exe
O33 - MountPoints2\H\Shell\AutoRun\command - "" = wd_windows_tools\setup.exe
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

========== Files/Folders - Created Within 7 Days ==========

[2009.10.20 21:46:34 | 00,000,000 | ---D | C] -- C:\Users\Vista\AppData\Roaming\OpenOffice.org
[2009.10.20 21:23:42 | 00,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2009.10.23 15:05:16 | 00,000,000 | ---D | C] -- C:\_OTL
[2009.10.19 20:48:37 | 00,000,000 | ---D | C] -- C:\Users\Vista\Documents\Nero

========== Files - Modified Within 7 Days ==========

[2009.10.25 11:26:05 | 05,469,248 | ---- | M] () -- C:\Users\Vista\Desktop\Road To Perdition.avi
[2009.10.25 11:26:02 | 00,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-545812794-2383777145-3001047551-1000UA.job
[2009.10.25 11:25:12 | 00,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{1C4355AD-D823-4597-B0FD-4A3F72F4ACF2}.job
[2009.10.25 11:20:26 | 01,393,930 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009.10.25 11:20:26 | 00,598,838 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2009.10.25 11:20:26 | 00,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009.10.25 11:20:26 | 00,115,014 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2009.10.25 11:20:26 | 00,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009.10.25 11:15:44 | 00,158,387 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\nvModes.001
[2009.10.25 11:15:33 | 43,981,405 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2009.10.25 11:15:33 | 00,050,548 | ---- | M] () -- C:\Windows\System32\drivers\Avg\microavi.avg
[2009.10.25 11:14:02 | 00,000,164 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini
[2009.10.25 11:13:21 | 00,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009.10.25 11:13:21 | 00,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009.10.25 11:13:19 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009.10.25 11:13:16 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009.10.25 11:13:06 | 32,195,78880 | -HS- | M] () -- C:\hiberfil.sys
[2009.10.24 23:19:08 | 00,002,140 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2009.10.24 23:18:47 | 03,608,224 | -H-- | M] () -- C:\Users\Vista\AppData\Local\IconCache.db
[2009.10.24 23:02:04 | 00,058,368 | ---- | M] () -- C:\Users\Vista\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.10.24 21:40:11 | 00,208,896 | ---- | M] () -- C:\Users\Vista\Desktop\seznam filmů.xls
[2009.10.24 16:10:35 | 73,347,4816 | ---- | M] () -- C:\Users\Vista\Desktop\Verejny nepritel c. 1 (2008).avi
[2009.10.24 14:06:37 | 14,846,77120 | ---- | M] () -- C:\Users\Vista\Desktop\man-som-hatar-kvinnor.avi
[2009.10.24 09:54:09 | 00,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-545812794-2383777145-3001047551-1000Core.job
[2009.10.23 17:00:36 | 00,000,558 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for Vista.job
[2009.10.23 10:41:18 | 69,998,5920 | ---- | M] () -- C:\Users\Vista\Desktop\The Basketball Diaries.avi
[2009.10.22 22:39:26 | 00,158,387 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\nvModes.dat
[2009.10.22 14:00:04 | 12,403,32228 | ---- | M] () -- C:\Users\Vista\Desktop\paranormal-activity-dvdscr-xvid-imagine.avi
[2009.10.22 12:32:09 | 00,039,424 | ---- | M] () -- C:\Users\Vista\Desktop\seminární práce.doc
[2009.10.22 12:14:19 | 73,070,5920 | ---- | M] () -- C:\Users\Vista\Desktop\Eden Lake.avi
[2009.10.21 12:02:48 | 00,018,273 | ---- | M] () -- C:\Users\Vista\Desktop\rozhovor - Kopie.docx
[2009.10.21 10:54:30 | 00,403,928 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.10.20 22:06:19 | 11,009,80588 | ---- | M] () -- C:\Users\Vista\Desktop\Public Enemies DVDRip vlož.titulky CZ ikisan (1).avi
[2009.10.20 21:47:30 | 00,001,028 | ---- | M] () -- C:\Users\Vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
[2009.10.20 21:31:25 | 00,109,312 | ---- | M] () -- C:\Users\Vista\AppData\Local\GDIPFONTCACHEV1.DAT
[2009.10.20 21:26:48 | 00,000,971 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.0.lnk
[2009.10.20 20:52:02 | 00,018,484 | ---- | M] () -- C:\Users\Vista\Desktop\rozhovor.docx
[2009.10.20 20:45:21 | 00,000,000 | ---- | M] () -- C:\Users\Vista\Desktop\Public Enemies DVDRip vlož.titulky CZ ikisan.avi
[2009.10.19 23:03:50 | 83,558,4000 | ---- | M] () -- C:\Users\Vista\Desktop\Zivot Davida Galea (The Life of David Gale - 2003).avi
[2009.10.18 18:57:38 | 79,896,7456 | ---- | M] () -- C:\Users\Vista\Desktop\Lilja 4-Ever.2002.DVDRip.x264-VGL (1).mkv

========== Files - No Company Name ==========
[2009.10.25 11:24:28 | 05,043,264 | ---- | C] () -- C:\Users\Vista\Desktop\Road To Perdition.avi
[2009.10.24 15:22:11 | 73,347,4816 | ---- | C] () -- C:\Users\Vista\Desktop\Verejny nepritel c. 1 (2008).avi
[2009.10.24 10:16:49 | 14,846,77120 | ---- | C] () -- C:\Users\Vista\Desktop\man-som-hatar-kvinnor.avi
[2009.10.23 10:01:40 | 69,998,5920 | ---- | C] () -- C:\Users\Vista\Desktop\The Basketball Diaries.avi
[2009.10.22 12:25:20 | 12,403,32228 | ---- | C] () -- C:\Users\Vista\Desktop\paranormal-activity-dvdscr-xvid-imagine.avi
[2009.10.22 11:33:55 | 73,070,5920 | ---- | C] () -- C:\Users\Vista\Desktop\Eden Lake.avi
[2009.10.21 12:06:22 | 00,039,424 | ---- | C] () -- C:\Users\Vista\Desktop\seminární práce.doc
[2009.10.21 12:02:32 | 00,018,273 | ---- | C] () -- C:\Users\Vista\Desktop\rozhovor - Kopie.docx
[2009.10.20 21:47:30 | 00,001,028 | ---- | C] () -- C:\Users\Vista\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk
[2009.10.20 21:26:48 | 00,000,971 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.0.lnk
[2009.10.20 20:49:25 | 11,009,80588 | ---- | C] () -- C:\Users\Vista\Desktop\Public Enemies DVDRip vlož.titulky CZ ikisan (1).avi
[2009.10.20 20:45:21 | 00,000,000 | ---- | C] () -- C:\Users\Vista\Desktop\Public Enemies DVDRip vlož.titulky CZ ikisan.avi
[2009.10.20 19:25:39 | 73,418,1376 | ---- | C] () -- C:\Users\Vista\Desktop\Battle for Terra.avi
[2009.10.20 19:24:57 | 00,050,271 | ---- | C] () -- C:\Users\Vista\Desktop\Battle+For+Terra(0000138754).srt
[2009.10.20 18:32:31 | 00,018,484 | ---- | C] () -- C:\Users\Vista\Desktop\rozhovor.docx
[2009.10.19 21:37:49 | 83,558,4000 | ---- | C] () -- C:\Users\Vista\Desktop\Zivot Davida Galea (The Life of David Gale - 2003).avi
[2009.10.18 16:39:11 | 79,896,7456 | ---- | C] () -- C:\Users\Vista\Desktop\Lilja 4-Ever.2002.DVDRip.x264-VGL (1).mkv
[2009.08.11 23:19:25 | 03,608,224 | -H-- | C] () -- C:\Users\Vista\AppData\Local\IconCache.db
[2009.08.02 11:35:21 | 00,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.06.02 17:11:45 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009.04.20 17:26:08 | 00,000,048 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008.12.25 11:46:23 | 00,491,520 | ---- | C] () -- C:\Windows\WebIE.dll
[2008.12.25 11:46:22 | 00,200,704 | ---- | C] () -- C:\Windows\TRNOET.DLL
[2008.12.25 11:46:22 | 00,045,056 | ---- | C] () -- C:\Windows\TRNOEH.DLL
[2008.12.25 11:34:31 | 00,002,753 | ---- | C] () -- C:\Windows\UN32P.INI
[2008.12.25 11:31:44 | 00,001,678 | ---- | C] () -- C:\Windows\MAILTRAN.INI
[2008.12.25 11:31:43 | 00,002,476 | ---- | C] () -- C:\Windows\TRNCOM.INI
[2008.12.25 11:31:31 | 00,004,192 | ---- | C] () -- C:\Windows\WTRAN32.INI
[2008.12.25 11:31:31 | 00,001,581 | ---- | C] () -- C:\Windows\WDICT32.INI
[2008.11.08 21:07:51 | 00,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008.07.28 07:27:33 | 00,000,000 | ---- | C] () -- C:\Users\Vista\AppData\Local\FnF4.txt
[2008.07.22 11:55:09 | 00,765,952 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2008.07.22 11:55:08 | 00,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2008.07.14 15:00:19 | 00,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2008.07.14 07:07:13 | 00,007,592 | ---- | C] () -- C:\Users\Vista\AppData\Local\d3d9caps.dat
[2008.04.30 20:22:13 | 00,058,368 | ---- | C] () -- C:\Users\Vista\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.04.30 17:25:25 | 00,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini
[2008.04.30 17:01:22 | 00,000,025 | ---- | C] () -- C:\Windows\CDE DX8400DEFGIPS.ini
[2008.04.28 10:50:44 | 00,158,387 | ---- | C] () -- C:\Users\Vista\AppData\Roaming\nvModes.001
[2008.04.25 16:02:19 | 00,158,387 | ---- | C] () -- C:\Users\Vista\AppData\Roaming\nvModes.dat
[2008.04.25 11:44:32 | 00,000,000 | ---- | C] () -- C:\Users\Vista\AppData\Local\QSwitch.txt
[2008.04.25 11:44:32 | 00,000,000 | ---- | C] () -- C:\Users\Vista\AppData\Local\DSwitch.txt
[2008.04.25 11:44:32 | 00,000,000 | ---- | C] () -- C:\Users\Vista\AppData\Local\AtStart.txt
[2008.04.25 11:44:23 | 00,109,312 | ---- | C] () -- C:\Users\Vista\AppData\Local\GDIPFONTCACHEV1.DAT
[2008.02.27 03:55:04 | 00,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2007.09.05 12:52:04 | 00,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll
[2006.11.02 13:50:50 | 00,000,174 | -HS- | C] () -- C:\Program Files\desktop.ini
[2006.11.02 13:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 11:25:21 | 00,061,440 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2006.11.02 11:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\win.ini
[2006.11.02 11:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2006.11.02 08:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.03.09 23:58:00 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2005.10.14 10:56:50 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2005.10.14 10:56:50 | 00,921,600 | ---- | C] () -- C:\Windows\System32\VorbisEnc.dll
[2005.10.14 10:56:50 | 00,344,064 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2005.10.14 10:56:50 | 00,237,568 | ---- | C] () -- C:\Windows\System32\OggDS.dll
[2005.10.14 10:56:50 | 00,188,416 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2005.10.14 10:56:50 | 00,155,136 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2005.10.14 10:56:50 | 00,045,056 | ---- | C] () -- C:\Windows\System32\ogg.dll
[2005.03.28 03:20:37 | 00,005,120 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2005.02.24 17:56:45 | 00,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2001.11.14 13:56:00 | 01,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll

========== LOP Check ==========

[2006.11.02 13:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming
[2006.11.02 13:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Media Center Programs
[2006.11.02 13:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming
[2006.11.02 13:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Media Center Programs
[2009.10.23 15:06:32 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming
[2008.05.26 16:44:48 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Ahead
[2009.04.20 17:28:23 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\CyberLink
[2008.11.08 21:07:14 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\DAEMON Tools
[2008.04.25 11:44:06 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\DigitalPersona
[2008.06.15 21:34:19 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\eGames
[2009.02.10 11:23:18 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\EleFun Games
[2009.04.15 20:13:51 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\EPSON
[2008.07.09 13:36:44 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Gamelab
[2008.04.28 10:53:06 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\GHISLER
[2009.02.08 12:27:15 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\ICQ
[2008.05.13 13:14:09 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\ICQLite
[2009.07.03 10:48:01 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\IrfanView
[2008.06.03 20:36:14 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Jpeg Resampler
[2008.12.06 12:18:16 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\LangSoft
[2008.04.25 11:36:17 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Macrovision
[2006.11.02 13:37:34 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Media Center Programs
[2009.04.03 21:48:43 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\My Games
[2008.05.19 12:21:48 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Oberon Games
[2009.10.20 21:46:34 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\OpenOffice.org
[2009.07.06 14:12:31 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\OpenOffice.org2
[2009.07.16 10:26:17 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\PlayFirst
[2008.07.07 17:16:05 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Sandlot Games
[2008.05.04 10:39:34 | 00,000,000 | RH-D | M] -- C:\Users\Vista\AppData\Roaming\SecuROM
[2008.05.19 12:06:23 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Super-Cow
[2008.12.06 13:44:59 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\TeamViewer
[2009.03.16 01:00:00 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Teleca
[2009.03.07 23:09:21 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\uTorrent
[2008.06.15 20:41:15 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Valusoft
[2008.07.07 17:05:25 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\ViquaSoft
[2009.07.21 21:52:49 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\VitySoft
[2009.02.19 13:20:24 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\XnView
[2009.06.12 12:04:05 | 00,000,000 | ---D | M] -- C:\Users\Vista\AppData\Roaming\Zylom
[2009.10.24 09:54:09 | 00,000,910 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-545812794-2383777145-3001047551-1000Core.job
[2009.10.25 11:26:02 | 00,000,962 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-545812794-2383777145-3001047551-1000UA.job
[2009.10.23 17:00:36 | 00,000,558 | ---- | M] () -- C:\Windows\Tasks\Norton Security Scan for Vista.job
[2009.10.25 11:13:19 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009.10.24 23:19:11 | 00,032,598 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.10.25 11:25:12 | 00,000,418 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{1C4355AD-D823-4597-B0FD-4A3F72F4ACF2}.job

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:9AB338B9
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:29BCDA07
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:5711EF65
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:4F636E25
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:E5AFE07D
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:93C494CA
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:74699137
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:1D6686D8
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:B14B4A95
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:05816AFA
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:615435BE
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:A696643D
@Alternate Data Stream - 111 bytes -> C:\ProgramData\TEMP:DF2EA4BB
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:A42A9F39
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:ADE16379
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:EA2FBCA1
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:0879ECE9
@Alternate Data Stream - 107 bytes -> C:\ProgramData\TEMP:912389B7
@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:2FF4577A
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:E71141D2
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:9FE30AB2
@Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:753B0F80
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:F50F1555
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:5E1404CE
< End of report >

pitimir · Příspěvekod **pitimir** » 25 říj 2009 14:30

No nic...nechce sa mu...
Pouzijeme teda kanon :twisted:

Stiahni ComboFix, najlepsie na plochu. Vypni vsetky otvorene aplikacie, ako aj rezidenty antiviru, antispywaru a firewall. Spust program cez ucet s administratorskymi pravami a postupuj podla instrukcii. Cely sken bude trvat cca 10 minut. Pocas neho moze byt PC restartovane. Log, ktory ComboFix vytvori, najdes na adrese "C:\ComboFix.txt".
Ten vloz sem.

Pozor: Kym ComboFix nevytvori log, na nic neklikat, nic nestlacat !!

Mata. · Příspěvekod **Mata.** » 25 říj 2009 15:05

je tam nejaky problem, upozorni me to v takovy cerny tabulce, ze to bude trvat 10 minut a zacne to hledat a asi za minutu mi to ukaze tabulku ze pc se restartuje a ze je neco spatne s rootkin ci co..a potom se restartuje pc..a vubec mi to neudela log

pitimir · Příspěvekod **pitimir** » 25 říj 2009 19:46

Super, tym padom tam mas rootkita braniaceho sa zubami-nechtami.

Stiahni RootRepeal. Spustis program, kliknes na "Report" -> "Scan" a zafajknes vsetky polozky. Stlac "OK" a spusti sa scan. Po jeho dokonceni klik na "Save Report" a vzniknuty log skopiruj sem.

Mata. · Příspěvekod **Mata.** » 28 říj 2009 16:00

Me to nejde dokoncit ten scan :/ ono to normálně skenuje a pak se najednou zobrazi nejaka mala tabulka a vsechno se sekne..

pitimir · Příspěvekod **pitimir** » 28 říj 2009 17:44

Skusime iny donucovaci prostriedok :)

Stiahni GMER, rozbal ho na plochu a spust. Program automaticky zacne scan, po jeho skonceni vloz log.

prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Kdo je online