prosím o kontrolu logu..... Vyřešeno

[cherry11]

......v procesoch sa mi to nezdá, ďakujem

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:44:23, on 18. 11. 2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\sysinit.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://search13.net/search.php?clid=486&q=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search13.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search13.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search13.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zoznam.sk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zoznam.sk/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search13.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search13.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: (no name) - {259F616C-A300-44F5-B04A-ED001A26C85C} - (no file)
O2 - BHO: Update it - {751BE56D-A6B1-4901-91BA-D62033450B13} - C:\Program Files\Stylish Profile\updaterWin32.dll
O2 - BHO: tom for ie - {8AA217B9-D729-4ee0-AED7-E93D695E94A2} - C:\Program Files\Stylish Profile\tom4ie.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\PROGRA~1\PCTRAN~1\webie.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
O4 - HKLM\..\Run: [WheelMouse] C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Policies\Explorer\Run: [sysinit] C:\WINDOWS\sysinit.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra 'Tools' menuitem: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: WebTran - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 5941685803
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/s ... DEXAXO.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AE8A5A0B-2445-481E-9643-896E6DF44FAD}: NameServer = 10.10.10.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Služba Google Update (gupdate1ca61ecc1fb4640) (gupdate1ca61ecc1fb4640) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe

--
End of file - 12075 bytes

[Reklama]

[jaro3]

Odinstaluj:
DAEMON Tools Toolbar
ICQToolBar

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://search13.net/search.php?clid=486&q=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search13.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search13.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search13.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search13.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search13.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: (no name) - {259F616C-A300-44F5-B04A-ED001A26C85C} - (no file)
O2 - BHO: Update it - {751BE56D-A6B1-4901-91BA-D62033450B13} - C:\Program Files\Stylish Profile\updaterWin32.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab


Stáhni si program OTM (by OldTimer)
http://www.edisk.cz/stahni/07995/OTMove ... .39KB.html
a ulož si ho na disk C a spusť ho.
- Do levého sloupce (Paste Instructions for Items to be Moved) zkopíruj tyto cesty:
Poznámka: Nepoužij k označení funkci VYBRAT VŠE

Kód: Vybrat vše

:Processes
explorer.exe

:Services

:Reg

:Files
C:\WINDOWS\sysinit.exe

:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

- Po zkopírování klikni na tlačítko MoveIt! a vlož sem následně celý obsah z pravého sloupce, jinak uložený ve složce C:\_OTMoveIt\MovedFiles\, který bude informovat o výsledcích
- Je možné, že pokud nebudou moci být soubory odstraněny, budeš dotázán na restart počítače, v tom případě restart potvrď.

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

[cherry11]

rror: Unable to interpret <explorer.exe> in the current context!
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
C:\WINDOWS\sysinit.exe moved successfully.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\Mirec\LOCALS~1\Temp\Rar$EX00.445\OTMoveIt\OTM.exe scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Mirec\LOCALS~1\Temp\~DF6A8E.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Mirec\LOCALS~1\Temp\~DF6AAD.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Mirec\LOCALS~1\Temp\~DF6EEB.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Mirec\LOCALS~1\Temp\~DF6F06.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\Content.IE5\RVVOK8CB\ads[2].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\Content.IE5\P0XCTDAA\ads[2].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\Content.IE5\P0XCTDAA\OTMoveIt.rar_376.39KB[1].html scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\Content.IE5\P0XCTDAA\viewtopic[2].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\SuggestedSites.dat scheduled to be deleted on reboot.
User's Temporary Internet Files folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_2a8.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTM by OldTimer - Version 2.1.0.1 log created on 11182009_123320

Files moved on Reboot...
C:\DOCUME~1\Mirec\LOCALS~1\Temp\Rar$EX00.445\OTMoveIt\OTM.exe moved successfully.
File C:\DOCUME~1\Mirec\LOCALS~1\Temp\~DF6A8E.tmp not found!
File C:\DOCUME~1\Mirec\LOCALS~1\Temp\~DF6AAD.tmp not found!
File C:\DOCUME~1\Mirec\LOCALS~1\Temp\~DF6EEB.tmp not found!
File C:\DOCUME~1\Mirec\LOCALS~1\Temp\~DF6F06.tmp not found!
C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\Content.IE5\RVVOK8CB\ads[2].htm moved successfully.
C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\Content.IE5\P0XCTDAA\ads[2].htm moved successfully.
C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\Content.IE5\P0XCTDAA\OTMoveIt.rar_376.39KB[1].html moved successfully.
C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\Content.IE5\P0XCTDAA\viewtopic[2].htm moved successfully.
C:\Documents and Settings\Mirec\Local Settings\Temporary Internet Files\SuggestedSites.dat moved successfully.
File C:\WINDOWS\temp\_avast4_\Webshlock.txt not found!
File C:\WINDOWS\temp\Perflib_Perfdata_2a8.dat not found!
C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat moved successfully.

Registry entries deleted on Reboot...

[cherry11]

Malwarebytes 'Anti-Malware 1.41
Verzia databázy: 3192
Windows 5.1.2600 Service Pack 3

18. 11. 2009 12:55:24
mbam-log-2009-11-18 (12-55-24). txt

Typ kontroly: Rýchla kontrola
Skontrolované objekty: 100272
Uplynulý čas: 7 minút (y) 35 sekúnd (-y)

Infikované procesy v pamäti: 0
Infikované moduly v pamäti: 0
Infikované kľúče Registry: +0
Infikované hodnoty databázy Registry: 0
Infikované dátové položky databázy Registry: 0
Infikované adresára: 0
Infikované súbory: 0

Infikované procesy v pamäti:
(Neboli nájdené žiadne škodlivé položky)

Infikované moduly v pamäti:
(Neboli nájdené žiadne škodlivé položky)

Infikované kľúče Registry:
(Neboli nájdené žiadne škodlivé položky)

Infikované hodnoty databázy Registry:
(Neboli nájdené žiadne škodlivé položky)

Infikované dátové položky databázy Registry:
(Neboli nájdené žiadne škodlivé položky)

Infikované adresára:
(Neboli nájdené žiadne škodlivé položky)

Infikované súbory:
(Neboli nájdené žiadne škodlivé položky)

[jaro3]

Vypni rez. ochranu u Avastu.

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

[cherry11]

Po spustení Combo Fix nabehne, potom reštartuje počítač, ale nevytvorí žiadny log

[jaro3]

Log by měl být zde:
C:\ComboFix.txt

Zkus ho ještě spustit v nouz. režimu.

[cherry11]

Nenašla som nič, čo by vyzeralo ako log, na núdzový režim nemám odvahu, uvidím ako to bude fungovať ďalej, zatiaľ asi vďaka za pomoc ?

[jaro3]

Tak toto:
Stáhni si OTL
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Output klikni na minimal Output.Pod Standard Registry změň na All.. Zatrhni LOP Check a Purity Check. Klikni na Run Scan. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTListIt.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.


Jinak je to už v pořádku?

[cherry11]

OTL Extras logfile created on: 18. 11. 2009 16:36:39 - Run 1
OTL by OldTimer - Version 3.1.6.0 Folder = C:\Documents and Settings\Mirec\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

511,48 Mb Total Physical Memory | 214,23 Mb Available Physical Memory | 41,88% Memory free
1,22 Gb Paging File | 0,89 Gb Available in Paging File | 73,40% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 3,51 Gb Free Space | 4,71% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: TNTAMD
Current User Name: Mirec
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- "%SYSTEMROOT%\hh.exe" %1
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "%SYSTEMROOT%\hh.exe" %1 File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [JpegResamplerDir] -- "C:\Program Files\JPEG Resampler\JpegResampler.exe" "%1" (David Macek)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "%programfiles%\internet explorer\iexplore.exe" File not found

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe" = C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe -- (Hewlett-Packard)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"C:\Documents and Settings\Mirec\Plocha\HRY\Stronghold Crusader\Stronghold Crusader.exe" = C:\Documents and Settings\Mirec\Plocha\HRY\Stronghold Crusader\Stronghold Crusader.exe:*:Enabled:Stronghold Crusader -- File not found
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"C:\Program Files\FlatOut2\FlatOut2.exe" = C:\Program Files\FlatOut2\FlatOut2.exe:*:Enabled:FlatOut2 -- File not found
"C:\Program Files\Valve\hl.exe" = C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe" = C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup -- (Nero AG)
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe" = C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home -- (Nero AG)
"C:\Program Files\Metin2_CZ\metin2.bin" = C:\Program Files\Metin2_CZ\metin2.bin:*:Enabled:metin2 -- ()
"C:\Program Files\Password Solutions\Office Password Recovery PRO\OfficePasswordRecoveryPRO.exe" = C:\Program Files\Password Solutions\Office Password Recovery PRO\OfficePasswordRecoveryPRO.exe:*:Enabled:Office Password Recovery PRO -- (Password Solutions)
"C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Disabled:Ares p2p for windows -- File not found
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe" = C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe -- (Hewlett-Packard)
"C:\WINDOWS\sysinit.exe" = C:\WINDOWS\sysinit.exe:*:Enabled:sysinit -- File not found
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0289B35E-DC07-4c7a-9710-BBD686EA4B7D}" = Status
"{09633A5E-3089-41A8-9FF1-382171423C5D}" = PSSWCORE
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{22F761D1-8063-4170-ADF7-2D2F47834CA9}" = VideoToolkit01
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 15
"{27197499-7680-4208-8FD8-5439CDB0FDC1}" = HPProductAssistant
"{28142407-ACAD-4ECD-A6B6-9FA8471F6062}" = Scarface: The World is Yours
"{2AFEAA03-2DFE-4519-A629-EDAB6541ABE9}" = HPSSupply
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 3.205.00
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4EF69D40-4DC9-485E-95D3-B1C22F218FC8}" = upapp
"{5888428E-699C-4E71-BF71-94EE06B497DA}" = TuneUp Utilities 2008
"{593A6CAF-E114-4e31-884F-74FF349E8E36}" = SolutionCenter
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{60D4F9F1-B828-4048-A5AB-9AA2FD0C4751}" = DJ_AIO_03_F4200_Software
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{6365C963-4B72-43F8-8392-2A5441EC2A86}" = DJ_AIO_03_F4220_ProductContext
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}" = Avanquest update
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7784A172-61F1-445E-8368-601607E0DD22}" = MP3 Player Utilities 4.00
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7DDAA520-414B-4671-BE8A-12428ACF76A3}" = Conflict Vietnam
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8F32C384-D237-4516-9F2B-223E8963A2FB}" = Lager
"{8F59D9FE-A0D8-4DA0-8177-BFE6C442211F}" = F4210_NCL_Help
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger
"{90110405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional
"{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}" = Counter-Strike 1.6
"{9C2D4047-0E40-499a-AC7A-C4B9BB12FE03}" = TrayApp
"{9F4EE72A-C5C9-42ad-ABEF-427690843577}" = MarketResearch
"{9FBE5418-C856-43E0-B874-01701B5CAC77}" = Pattern Maker Viewer - v4
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A7AA93B6-6909-4073-B4EC-45CCDEFD4665}" = NHL® 08
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA2E8A46-B45E-4aea-8A23-88AB57D04523}" = WebReg
"{AC76BA86-7AD7-1033-7B44-A70500000002}" = Adobe Reader 7.0.5
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B61A79BE-E94C-42C0-921D-8B7E5217069C}" = F4200
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BE8A9C2C-8E41-445B-A746-BEB0B1F992F8}" = DJ_AIO_03_F4200_Software_Min
"{BF08AB1C-3357-4f20-A200-8EBB8EF27C59}" = BufferChm
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3B6AEB1-390C-4792-8677-CD87F8B2C959}" = HP Deskjet F4200 All-In-One Driver Software 11.0 Rel .3
"{C43048A9-742C-4DAD-90D2-E3B53C9DB825}" = Logitech QuickCam Software
"{C7A8AA10-B632-42F8-9F57-A16FDCE0601E}" = Clock Screen Saver
"{C89B5E3A-690F-4CEE-909A-BF869E198B0A}" = Scan
"{CC0E1AE3-091D-4969-B151-7AC142062C28}" = SmartWebPrinting
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D063F201-FAC4-4D5C-B10B-615058ADE5A7}" = HP Update
"{D16B4BE6-8B10-422f-8034-96D1CA9483B5}" = GPBaseService
"{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}" = HP Photosmart Essential 2.5
"{DB32A38E-4D83-49F9-9E69-4D0929C5F175}" = PCStitch 9
"{E535C94A-B87F-4182-BEA8-1E9322078D3E}" = Cards_Calendar_OrderGift_DoMorePlugout
"{E96B0085-6659-486b-A221-5042A042728D}" = Toolbox
"{EF1ADA5A-0B1A-4662-8C55-7475A61D8B65}" = DeviceDiscovery
"{EF9E56EE-0243-4BAD-88F4-5E7508AA7D96}" = Destination Component
"{F14B8ECC-BDA0-4987-9201-D7B7DBE11051}" = Nero 7 Ultra Edition
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F7B0E599-C114-4493-BC4D-D8FC7CBBABBB}" = 32 Bit HP CIO Components Installer
"{F8A5531E-FEB4-4F7C-AF51-342E40FA7A0D}" = F4210_Help
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"Akordy" = Akordy 1.0
"Any Video Converter_is1" = Any Video Converter 2.7.1
"avast!" = avast! Antivirus
"AviSplit Classic (Freeware)_is1" = AviSplit Classic Version 1.42
"BSPlayer1" = BSPlayer
"CCleaner" = CCleaner (remove only)
"C-Media Audio Driver" = C-Media WDM Audio Driver
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivXG400" = DivXG400
"EAX Unified" = EAX Unified
"Eusing Free Registry Cleaner" = Eusing Free Registry Cleaner
"Glary Utilities_is1" = Glary Utilities 2.17.0.776
"Google Chrome" = Google Chrome
"HijackThis" = HijackThis 2.0.2
"HP Imaging Device Functions" = HP Imaging Device Functions 11.0
"HP Photosmart Essential" = HP Photosmart Essential 3.0
"HP Smart Web Printing" = HP Smart Web Printing
"HP Solution Center & Imaging Support Tools" = HP Solution Center 11.0
"HPExtendedCapabilities" = HP Customer Participation Program 11.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Imikimi Plugin" = Imikimi Plugin
"InstallShield_{28142407-ACAD-4ECD-A6B6-9FA8471F6062}" = Scarface: The World is Yours
"JPEG Resampler_is1" = JPEG Resampler Vs 5.0
"Labtec Media Keyboard V5.1" = Labtec Media Keyboard V5.1
"Ladicka" = Ladicka
"Logitech Print Service" = Logitech Print Service
"Mafia Game" = Mafia Game
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mihov Image Resizer" = Mihov Image Resizer 1.1 (remove only)
"Mozilla Firefox (3.0.15)" = Mozilla Firefox (3.0.15)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"Pack Vista Inspirat 2" = Pack Vista Inspirat 2 1.0
"Password Solutions - Office Password Recovery PRO" = Office Password Recovery PRO v1.0 (remove only)
"PC Translator 2004 Komplet" = PC Translator 2004 Komplet
"PhotoFiltre" = PhotoFiltre
"Ponto Cruz 2003_is1" = Ponto Cruz 2003 1.0
"QcDrv" = ##CAMERADRIVERNAME##
"Registry Mechanic_is1" = Registry Mechanic 5.2
"RegistryBooster 2_is1" = Uniblue RegistryBooster 2
"Shop for HP Supplies" = Shop for HP Supplies
"Spyware Terminator_is1" = Spyware Terminator
"Stylish Profile" = Stylish Profile
"Totalcmd" = Total Commander (Remove or Repair)
"WheelMouse" = A4Tech iWheelWorks V7.40
"WinASO Registry Optimizer 3.2_is1" = WinASO Registry Optimizer 3.2
"WinDjView" = WinDjView 1.0.1
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XoftSpy" = XoftSpy

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 8. 11. 2009 7:55:06 | Computer Name = TNTAMD | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://clients1.google.com/complete/sea ... tbrs&hl=sk
failed, 0000A413.

Error - 8. 11. 2009 8:51:01 | Computer Name = TNTAMD | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://pokec.azet.sk/_s/system/ping.php ... 1723&st=rp
failed, 0000A413.

Error - 8. 11. 2009 9:18:31 | Computer Name = TNTAMD | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://pokec.azet.sk/sluzby/rp/nacitaj- ... 8090eda440 failed, 0000A413.


Error - 8. 11. 2009 10:23:54 | Computer Name = TNTAMD | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://weather.services.conduit.com/wea ... d=LOXX0003
failed, 0000A413.

Error - 9. 11. 2009 11:38:31 | Computer Name = TNTAMD | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://www-pokec.azet.sk/2/priatelia.ph ... rand=51804
failed, 0000A413.

Error - 9. 11. 2009 11:39:09 | Computer Name = TNTAMD | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://pokec.azet.sk/sluzby/rp/nacitaj- ... 6247533140 failed, 0000A413.


Error - 10. 11. 2009 11:19:11 | Computer Name = TNTAMD | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://clients1.google.com/complete/sea ... tbrs&hl=sk
failed, 0000A413.

Error - 10. 11. 2009 13:23:03 | Computer Name = TNTAMD | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://pokec.azet.sk/sluzby/rp/zavri-po ... c7158caf40 failed, 0000A413.


Error - 13. 11. 2009 11:32:09 | Computer Name = TNTAMD | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://app02.zedge.net/tmp/ringtones/12 ... 8-data.txt failed, 0000A413.


Error - 13. 11. 2009 14:09:13 | Computer Name = TNTAMD | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://pokec.azet.sk/sluzby/rp/nacitaj- ... 86a07ccc40 failed, 0000A413.


[ Application Events ]
Error - 9. 10. 2009 11:45:30 | Computer Name = TNTAMD | Source = Application Error | ID = 1000
Description = Chybující aplikace wmplayer.exe, verze 11.0.5721.5145, chybující modul
xvidcore.dll, verze 0.0.0.0, adresa chyby 0x000554a2.

Error - 9. 10. 2009 11:46:04 | Computer Name = TNTAMD | Source = Application Error | ID = 1000
Description = Chybující aplikace wmplayer.exe, verze 11.0.5721.5145, chybující modul
xvidcore.dll, verze 0.0.0.0, adresa chyby 0x000554a2.

Error - 17. 10. 2009 6:26:23 | Computer Name = TNTAMD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 18. 10. 2009 8:59:24 | Computer Name = TNTAMD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 18. 10. 2009 12:17:54 | Computer Name = TNTAMD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 19. 10. 2009 10:18:05 | Computer Name = TNTAMD | Source = Application Error | ID = 1000
Description = Chybující aplikace hpqkygrp.exe, verze 11.0.0.163, chybující modul
msvcr80.dll, verze 8.0.50727.762, adresa chyby 0x00008a8c.

Error - 19. 10. 2009 10:37:04 | Computer Name = TNTAMD | Source = MsiInstaller | ID = 11706
Description = Product: PSSWCORE -- Error 1706. An installation package for the product
PSSWCORE cannot be found. Try the installation again using a valid copy of the
installation package 'PSSWCORE.msi'.

Error - 19. 10. 2009 10:37:09 | Computer Name = TNTAMD | Source = Application Error | ID = 1000
Description = Chybující aplikace hpqtra08.exe, verze 110.0.180.0, chybující modul
hpqtra08.exe, verze 110.0.180.0, adresa chyby 0x0000adf3.

Error - 19. 10. 2009 11:21:11 | Computer Name = TNTAMD | Source = MsiInstaller | ID = 11904
Description = Product: SolutionCenter -- Error 1904. Module C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx
failed to register. HRESULT -2147220473. Contact your support personnel.

Error - 20. 10. 2009 3:47:56 | Computer Name = TNTAMD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

[ Application Events ]
Error - 9. 10. 2009 11:45:30 | Computer Name = TNTAMD | Source = Application Error | ID = 1000
Description = Chybující aplikace wmplayer.exe, verze 11.0.5721.5145, chybující modul
xvidcore.dll, verze 0.0.0.0, adresa chyby 0x000554a2.

Error - 9. 10. 2009 11:46:04 | Computer Name = TNTAMD | Source = Application Error | ID = 1000
Description = Chybující aplikace wmplayer.exe, verze 11.0.5721.5145, chybující modul
xvidcore.dll, verze 0.0.0.0, adresa chyby 0x000554a2.

Error - 17. 10. 2009 6:26:23 | Computer Name = TNTAMD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 18. 10. 2009 8:59:24 | Computer Name = TNTAMD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 18. 10. 2009 12:17:54 | Computer Name = TNTAMD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 19. 10. 2009 10:18:05 | Computer Name = TNTAMD | Source = Application Error | ID = 1000
Description = Chybující aplikace hpqkygrp.exe, verze 11.0.0.163, chybující modul
msvcr80.dll, verze 8.0.50727.762, adresa chyby 0x00008a8c.

Error - 19. 10. 2009 10:37:04 | Computer Name = TNTAMD | Source = MsiInstaller | ID = 11706
Description = Product: PSSWCORE -- Error 1706. An installation package for the product
PSSWCORE cannot be found. Try the installation again using a valid copy of the
installation package 'PSSWCORE.msi'.

Error - 19. 10. 2009 10:37:09 | Computer Name = TNTAMD | Source = Application Error | ID = 1000
Description = Chybující aplikace hpqtra08.exe, verze 110.0.180.0, chybující modul
hpqtra08.exe, verze 110.0.180.0, adresa chyby 0x0000adf3.

Error - 19. 10. 2009 11:21:11 | Computer Name = TNTAMD | Source = MsiInstaller | ID = 11904
Description = Product: SolutionCenter -- Error 1904. Module C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx
failed to register. HRESULT -2147220473. Contact your support personnel.

Error - 20. 10. 2009 3:47:56 | Computer Name = TNTAMD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

[ System Events ]
Error - 8. 10. 2009 12:16:31 | Computer Name = TNTAMD | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1068 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 8. 10. 2009 12:16:31 | Computer Name = TNTAMD | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel zařízení UPnP závisí na službě Služba rozpoznávání
pomocí protokolu SSDP, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error - 8. 10. 2009 12:45:38 | Computer Name = TNTAMD | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1068 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 8. 10. 2009 12:45:39 | Computer Name = TNTAMD | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel zařízení UPnP závisí na službě Služba rozpoznávání
pomocí protokolu SSDP, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error - 8. 10. 2009 23:26:07 | Computer Name = TNTAMD | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.

Error - 9. 10. 2009 2:58:28 | Computer Name = TNTAMD | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.

Error - 9. 10. 2009 2:59:07 | Computer Name = TNTAMD | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
avast! Web Scanner.

Error - 9. 10. 2009 2:59:07 | Computer Name = TNTAMD | Source = Service Control Manager | ID = 7000
Description = Služba avast! Web Scanner neuspěla při spuštění v důsledku následující
chyby: %%1053

Error - 9. 10. 2009 2:59:18 | Computer Name = TNTAMD | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1068 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 9. 10. 2009 2:59:18 | Computer Name = TNTAMD | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel zařízení UPnP závisí na službě Služba rozpoznávání
pomocí protokolu SSDP, která neuspěla při spuštění v důsledku následující chyby:
%%1058


< End of report >

[cherry11]

OTL logfile created on: 18. 11. 2009 16:36:38 - Run 1
OTL by OldTimer - Version 3.1.6.0 Folder = C:\Documents and Settings\Mirec\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

511,48 Mb Total Physical Memory | 214,23 Mb Available Physical Memory | 41,88% Memory free
1,22 Gb Paging File | 0,89 Gb Available in Paging File | 73,40% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 3,51 Gb Free Space | 4,71% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: TNTAMD
Current User Name: Mirec
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Mirec\Plocha\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Spyware Terminator\sp_rsser.exe (Crawler.com)
PRC - C:\Program Files\Labtec\Keyboard\V5.1\KBDAP32A.EXE ()
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett-Packard)
PRC - C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard)
PRC - C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.)
PRC - C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard Co.)
PRC - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
PRC - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe ()
PRC - C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Corporation)
PRC - C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe ()
PRC - C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.)
PRC - C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe (Microsoft Corporation)
PRC - C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co.,Ltd.)


========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Mirec\Plocha\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\wbem\framedyn.dll (Microsoft Corporation)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.dll ()
MOD - C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon.dll ()
MOD - C:\WINDOWS\system32\Amhooker.dll (A4Tech Co.,Ltd.)


========== Win32 Services (SafeList) ==========

SRV - (PEVSystemStart) -- File not found
SRV - (gupdate1ca61ecc1fb4640) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
SRV - (sp_rssrv) -- C:\Program Files\Spyware Terminator\sp_rsser.exe (Crawler.com)
SRV - (gusvc) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (Google)
SRV - (TuneUp.Defrag) -- C:\WINDOWS\system32\TuneUpDefragService.exe (TuneUp Software GmbH)
SRV - (FontCache3.0.0.0) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (idsvc) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (NetTcpPortSharing) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (aspnet_state) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
SRV - (helpsvc) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll (Microsoft Corporation)
SRV - (hpqddsvc) -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll (Hewlett-Packard Co.)
SRV - (hpqcxs08) -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll (Hewlett-Packard Co.)
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.dll (Hewlett-Packard)
SRV - (Net Driver HPZ12) -- C:\WINDOWS\system32\HPZinw12.dll (Hewlett-Packard)
SRV - (UxTuneUp) -- C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software GmbH)
SRV - (WMPNetworkSvc) -- C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation)
SRV - (NBService) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe (Nero AG)
SRV - (NVSvc) -- C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Corporation)
SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (MDM) -- C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (PxHelp20) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software)
DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software)
DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASENUM) -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS ( SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (usbaudio) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (rtl8139) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (Secdrv) -- C:\WINDOWS\system32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (HPZius12) -- C:\WINDOWS\system32\drivers\HPZius12.sys (HP)
DRV - (HPZipr12) -- C:\WINDOWS\system32\drivers\HPZipr12.sys (HP)
DRV - (HPZid412) -- C:\WINDOWS\system32\drivers\HPZid412.sys (HP)
DRV - (s117obex) -- C:\WINDOWS\system32\drivers\s117obex.sys (MCCI Corporation)
DRV - (s117mdm) -- C:\WINDOWS\system32\drivers\s117mdm.sys (MCCI Corporation)
DRV - (s117mgmt) -- C:\WINDOWS\system32\drivers\s117mgmt.sys (MCCI Corporation)
DRV - (s117unic) -- C:\WINDOWS\system32\drivers\s117unic.sys (MCCI Corporation)
DRV - (s117nd5) -- C:\WINDOWS\system32\drivers\s117nd5.sys (MCCI Corporation)
DRV - (s117mdfl) -- C:\WINDOWS\system32\drivers\s117mdfl.sys (MCCI Corporation)
DRV - (s117bus) -- C:\WINDOWS\system32\drivers\s117bus.sys (MCCI Corporation)
DRV - (s716unic) -- C:\WINDOWS\system32\drivers\s716unic.sys (MCCI Corporation)
DRV - (s716obex) -- C:\WINDOWS\system32\drivers\s716obex.sys (MCCI Corporation)
DRV - (s716nd5) -- C:\WINDOWS\system32\drivers\s716nd5.sys (MCCI Corporation)
DRV - (s716mdm) -- C:\WINDOWS\system32\drivers\s716mdm.sys (MCCI Corporation)
DRV - (s716mgmt) -- C:\WINDOWS\system32\drivers\s716mgmt.sys (MCCI Corporation)
DRV - (s716mdfl) -- C:\WINDOWS\system32\drivers\s716mdfl.sys (MCCI Corporation)
DRV - (s716bus) -- C:\WINDOWS\system32\drivers\s716bus.sys (MCCI Corporation)
DRV - (s616bus) -- C:\WINDOWS\system32\drivers\s616bus.sys (MCCI Corporation)
DRV - (s116bus) -- C:\WINDOWS\system32\drivers\s116bus.sys (MCCI Corporation)
DRV - (cmuda) -- C:\WINDOWS\system32\drivers\cmuda.sys (C-Media Inc)
DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation)
DRV - (QCMerced) -- C:\WINDOWS\system32\drivers\lvcm.sys ()
DRV - (LVUSBSta) -- C:\WINDOWS\system32\drivers\LVUSBSta.sys (Logitech Inc.)
DRV - (SiS7012) -- C:\WINDOWS\system32\drivers\sis7012.sys (Silicon Integrated Systems Corporation)
DRV - (Amps2prt) -- C:\WINDOWS\system32\drivers\Amps2prt.sys (A4Tech Co.,Ltd.)
DRV - (sisagp) -- C:\WINDOWS\system32\DRIVERS\sisagp.sys (Silicon Integrated Systems Corporation)
DRV - (Ptilink) -- C:\WINDOWS\system32\drivers\ptilink.sys (Parallel Technologies, Inc.)
DRV - (ms_mpu401) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.zoznam.sk/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.zoznam.sk
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Fast Browser Search"
FF - prefs.js..browser.search.defaultthis.engineName: "ToggleEN Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=18&q="
FF - prefs.js..browser.search.order.1: "Fast Browser Search"
FF - prefs.js..browser.search.selectedEngine: "Fast Browser Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search13.net?clid=486"
FF - prefs.js..extensions.enabledItems: {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}:4.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB}:2.2.3
FF - prefs.js..extensions.enabledItems: search@searchsettings.com:1.2.1
FF - prefs.js..extensions.enabledItems: {6236BA26-C117-4007-928C-DE0716C7FA80}:1.0.21
FF - prefs.js..extensions.enabledItems: {038cb5c7-48ea-4af9-94e0-a1646542e62b}:1.5.48.2
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.15
FF - prefs.js..keyword.URL: "http://www.fastbrowsersearch.com/results/results.aspx?s=NAUS&v=18&tid={DEA74691-7428-86B0-6C31-93C3742DAE8C}&q="


FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009.05.19 09:25:28 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2009.09.21 09:34:27 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.11.15 16:32:02 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009.11.15 13:42:51 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009.11.10 11:02:42 | 00,000,000 | ---D | M]

[2009.02.09 16:23:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Extensions
[2009.02.09 16:23:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.11.18 15:09:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\extensions
[2009.04.02 16:00:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\extensions\{038cb5c7-48ea-4af9-94e0-a1646542e62b}
[2009.11.15 18:31:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.11.05 15:16:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\extensions\{6236BA26-C117-4007-928C-DE0716C7FA80}
[2003.08.10 23:13:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\extensions\{a3b24d40-bac4-11dc-95ff-0800200c9a66}(2)
[2009.09.09 04:26:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\extensions\{C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB}
[2009.11.15 16:17:10 | 00,000,681 | ---- | M] () -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\searchplugins\ask.xml
[2009.02.18 09:09:44 | 00,000,878 | ---- | M] () -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\searchplugins\conduit.xml
[2009.10.05 17:42:17 | 00,002,399 | ---- | M] () -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\searchplugins\daemon-search.xml
[2009.11.14 17:34:39 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\searchplugins\icqplugin-1.xml
[2009.03.28 18:30:58 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\searchplugins\icqplugin-2.xml
[2008.12.15 14:45:18 | 00,000,944 | ---- | M] () -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\searchplugins\icqplugin.xml
[2009.11.05 15:16:48 | 00,001,564 | ---- | M] () -- C:\Documents and Settings\Mirec\Data aplikací\Mozilla\Firefox\Profiles\ccatd9qy.default\searchplugins\web-search.xml
[2009.11.17 18:14:00 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2003.08.10 23:01:53 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
[2009.05.09 21:03:03 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.10.29 12:06:51 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009.05.19 09:25:46 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009.08.21 07:40:26 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2003.08.10 23:01:53 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com
[2009.10.29 12:06:43 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
[2009.10.29 12:06:43 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
[2009.09.25 17:41:48 | 01,044,480 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\Mozilla Firefox\plugins\libdivx.dll
[2007.04.30 16:29:22 | 00,049,152 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np32dsw.dll
[2009.07.25 04:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll
[2009.09.25 17:41:24 | 01,650,992 | ---- | M] (DivX,Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdivx32.dll
[2009.09.25 17:41:34 | 00,098,304 | ---- | M] (DivX, Inc) -- C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll
[2007.12.17 18:16:14 | 00,065,536 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npkimi.dll
[2009.10.29 12:06:47 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
[2009.09.25 17:41:48 | 00,200,704 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\Mozilla Firefox\plugins\ssldivx.dll
[2009.09.09 04:26:26 | 00,003,700 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fast.png
[2009.09.09 04:26:28 | 00,001,963 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fast.xml
[2009.08.20 12:23:45 | 00,001,706 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml
[2009.08.20 12:23:45 | 00,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009.08.20 12:23:45 | 00,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009.08.20 12:23:46 | 00,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009.08.20 12:23:46 | 00,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009.08.20 12:23:46 | 00,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
[2009.08.06 15:47:37 | 00,000,780 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.xml

O1 HOSTS File: (27 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (TomBHO Class) - {8AA217B9-D729-4ee0-AED7-E93D695E94A2} - C:\Program Files\Stylish Profile\tom4ie.dll (ChameleonTom)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Program Files\PC Translator\webie.dll ()
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [Cmaudio] File not found
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe (HP)
O4 - HKLM..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe (Hewlett-Packard)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe (Logitech Inc.)
O4 - HKLM..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [OFFICEKB] C:\Program Files\Labtec\Keyboard\V5.1\KBDAP32A.EXE ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co.,Ltd.)
O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O4 - HKCU..\Run: [LogitechSoftwareUpdate] C:\Program Files\Logitech\Video\ManifestEngine.exe (Logitech Inc.)
O4 - HKCU..\Run: [RocketDock] C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe ()
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe (Logitech)
O4 - Startup: C:\Documents and Settings\Mirec\Nabídka Start\Programy\Po spuštění\UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Toolbars present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm ()
O9 - Extra 'Tools' menuitem : StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm ()
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: WebTran - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Program Files\PC Translator\webie.dll ()
O9 - Extra 'Tools' menuitem : &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Program Files\PC Translator\webie.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Program Files\PC Translator\webie.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Program Files\PC Translator\webie.dll ()
O9 - Extra Button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 50 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 49 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 5941685803 (MUWebControl Class)
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} https://h20436.www2.hp.com/ediags/dex/s ... DEXAXO.cab (HP Download Manager)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - %SystemRoot%\System32\dimsntfy.dll - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

[cherry11]

POKRAČOVANIE
========== Files/Folders - Created Within 30 Days ==========

[2009.11.18 16:35:39 | 00,529,408 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mirec\Plocha\OTL.exe
[2009.11.18 14:20:00 | 00,096,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atapi.sys
[2009.11.18 14:20:00 | 00,096,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atapi.sys
[2009.11.18 14:18:32 | 00,000,000 | --SD | C] -- C:\ComboFix
[2009.11.18 13:49:50 | 00,188,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ACPI_2.sys
[2009.11.18 13:30:48 | 00,000,000 | RHSD | C] -- C:\cmdcons
[2009.11.18 13:25:06 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2009.11.18 13:25:06 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2009.11.18 13:25:06 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2009.11.18 13:25:06 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009.11.18 13:24:57 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009.11.18 13:24:44 | 00,000,000 | ---D | C] -- C:\Qoobox
[2009.11.18 12:33:20 | 00,000,000 | ---D | C] -- C:\_OTM
[2009.11.18 07:48:20 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Mirec\Recent
[2009.11.17 10:13:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Mirec\Local Settings\Data aplikací\Temp
[2009.11.15 16:54:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Mirec\Plocha\na rybách
[2009.11.14 19:34:06 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2009.11.14 19:34:00 | 00,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2009.11.14 19:33:48 | 00,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2009.11.14 19:33:06 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2009.11.14 19:33:06 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2009.11.14 19:33:06 | 00,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2009.11.14 19:33:06 | 00,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsshhdr.dll
[2009.11.14 19:33:06 | 00,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2009.11.14 19:33:06 | 00,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2009.11.14 19:33:06 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2009.11.14 19:33:05 | 00,000,000 | ---D | C] -- C:\a672705f56123d6e7e991767693c5c
[2009.11.11 16:19:10 | 00,581,632 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotscl6.dll
[2009.11.11 16:19:10 | 00,372,736 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll
[2009.11.11 16:19:10 | 00,309,760 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2009.11.11 16:19:10 | 00,303,104 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst15.dll
[2009.11.11 16:19:09 | 00,729,088 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpowiax7.dll
[2009.11.11 16:11:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HP Product Assistant
[2009.11.10 17:04:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Mirec\Data aplikací\DivX
[2009.11.10 17:00:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Mirec\Data aplikací\PCStitch Pro
[2009.11.10 16:59:06 | 00,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2009.11.10 16:58:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Mirec\Dokumenty\PCStitch Patterns
[2009.11.10 16:58:37 | 00,442,368 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltkrn14n.dll
[2009.11.10 16:58:37 | 00,305,152 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfwmz14s.dll
[2009.11.10 16:58:37 | 00,237,568 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltefx14n.dll
[2009.11.10 16:58:37 | 00,196,096 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfvpg14s.dll
[2009.11.10 16:58:37 | 00,155,648 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltfil14n.DLL
[2009.11.10 16:58:37 | 00,110,592 | R--- | C] (M&R Technologies, Inc.) -- C:\WINDOWS\System32\PCS7.dll
[2009.11.10 16:58:37 | 00,019,456 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfwmf14s.dll
[2009.11.10 16:58:37 | 00,018,432 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfxwd14s.dll
[2009.11.10 16:58:37 | 00,013,824 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfwpg14s.dll
[2009.11.10 16:58:37 | 00,013,824 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfwfx14s.dll
[2009.11.10 16:58:37 | 00,011,776 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfwmp14s.dll
[2009.11.10 16:58:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\t1fonts
[2009.11.10 16:58:36 | 00,709,120 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfsvg14s.dll
[2009.11.10 16:58:36 | 00,226,304 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpsp14s.dll
[2009.11.10 16:58:36 | 00,186,880 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfshp14s.dll
[2009.11.10 16:58:36 | 00,174,592 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfvec14s.dll
[2009.11.10 16:58:36 | 00,148,480 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lftif14s.dll
[2009.11.10 16:58:36 | 00,072,192 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpsd14s.dll
[2009.11.10 16:58:36 | 00,061,440 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpct14s.dll
[2009.11.10 16:58:36 | 00,034,816 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfptk14s.dll
[2009.11.10 16:58:36 | 00,018,944 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpcx14s.dll
[2009.11.10 16:58:36 | 00,016,896 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lftga14s.dll
[2009.11.10 16:58:36 | 00,013,824 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfras14s.dll
[2009.11.10 16:58:36 | 00,013,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfsgi14s.dll
[2009.11.10 16:58:36 | 00,013,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfsct14s.dll
[2009.11.10 16:58:36 | 00,013,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfpcd14s.dll
[2009.11.10 16:58:36 | 00,012,288 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfmsp14s.dll
[2009.11.10 16:58:35 | 00,315,392 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfdxf14s.dll
[2009.11.10 16:58:35 | 00,079,360 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lffax14s.dll
[2009.11.10 16:58:35 | 00,078,848 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfmpg14s.dll
[2009.11.10 16:58:35 | 00,065,536 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfjbg14s.dll
[2009.11.10 16:58:35 | 00,052,736 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lffpx14s.dll
[2009.11.10 16:58:35 | 00,032,256 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfflc14s.dll
[2009.11.10 16:58:35 | 00,026,624 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfica14s.dll
[2009.11.10 16:58:35 | 00,022,016 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lflma14s.dll
[2009.11.10 16:58:35 | 00,020,992 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfiff14s.dll
[2009.11.10 16:58:35 | 00,020,480 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfeps14s.dll
[2009.11.10 16:58:35 | 00,017,920 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lflmb14s.dll
[2009.11.10 16:58:35 | 00,014,848 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lffit14s.dll
[2009.11.10 16:58:35 | 00,013,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfitg14s.dll
[2009.11.10 16:58:35 | 00,013,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfimg14s.dll
[2009.11.10 16:58:35 | 00,012,800 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfecw14s.dll
[2009.11.10 16:58:35 | 00,012,288 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfmac14s.dll
[2009.11.10 16:58:34 | 01,196,032 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfdwf14s.dll
[2009.11.10 16:58:34 | 00,289,280 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfdwg14s.dll
[2009.11.10 16:58:34 | 00,233,984 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfcgm14s.dll
[2009.11.10 16:58:34 | 00,202,752 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfdrw14s.dll
[2009.11.10 16:58:34 | 00,023,552 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfbmp14s.dll
[2009.11.10 16:58:34 | 00,022,016 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfcal14s.dll
[2009.11.10 16:58:34 | 00,017,408 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfclp14s.dll
[2009.11.10 16:58:34 | 00,013,824 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfcin14s.dll
[2009.11.10 16:58:34 | 00,011,776 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfcrw14s.dll
[2009.11.10 16:58:33 | 00,264,704 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfPCL14s.dll
[2009.11.10 16:58:33 | 00,247,296 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfAFP14s.dll
[2009.11.10 16:58:33 | 00,183,296 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfacs14s.dll
[2009.11.10 16:58:33 | 00,050,688 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfTFX14s.dll
[2009.11.10 16:58:33 | 00,049,152 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfRTF14s.dll
[2009.11.10 16:58:33 | 00,032,768 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfawd14s.dll
[2009.11.10 16:58:33 | 00,025,600 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfXpm14s.dll
[2009.11.10 16:58:33 | 00,018,432 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfani14s.dll
[2009.11.10 16:58:33 | 00,015,360 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfSFF14s.dll
[2009.11.10 16:58:33 | 00,014,848 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfXbm14s.dll
[2009.11.10 16:58:33 | 00,013,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfCUT14s.dll
[2009.11.10 16:58:33 | 00,012,288 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfavi14s.dll
[2009.11.10 16:58:33 | 00,011,264 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfKDC14s.dll
[2009.11.10 16:58:33 | 00,010,752 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfRaw14s.dll
[2009.11.10 16:58:33 | 00,008,192 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfDCS14s.dll
[2009.11.10 16:58:32 | 01,220,608 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lfsid14s.dll
[2009.11.10 16:58:32 | 01,122,304 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Ltimg14n.dll
[2009.11.10 16:58:32 | 00,361,472 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lfdgn14s.dll
[2009.11.10 16:58:32 | 00,172,544 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lfpng14s.dll
[2009.11.10 16:58:32 | 00,155,648 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lfpdf14s.dll
[2009.11.10 16:58:31 | 01,777,152 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTCLR14s.dll
[2009.11.10 16:58:31 | 01,441,280 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTDic14s.dll
[2009.11.10 16:58:31 | 00,262,144 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTDIS14n.dll
[2009.11.10 16:58:31 | 00,219,136 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LfGbr14s.dll
[2009.11.10 16:58:31 | 00,205,824 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LfCMX14s.dll
[2009.11.10 16:58:31 | 00,011,776 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFSMP14s.dll
[2009.11.10 16:58:30 | 01,860,096 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFDJV14s.dll
[2009.11.10 16:58:30 | 00,424,448 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFCMW14s.dll
[2009.11.10 16:58:30 | 00,388,608 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFCMP14s.DLL
[2009.11.10 16:58:30 | 00,221,184 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFJ2K14s.dll
[2009.11.10 16:58:30 | 00,028,160 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFGIF14s.dll
[2009.11.10 16:58:30 | 00,016,384 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFDCR14s.dll
[2009.11.10 16:58:30 | 00,015,872 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFPNM14s.dll
[2009.11.10 16:58:29 | 00,767,920 | ---- | C] (Codejock Software) -- C:\WINDOWS\System32\Codejock.TaskPanel.v12.0.2.ocx
[2009.11.10 16:58:29 | 00,526,256 | ---- | C] (Codejock Software) -- C:\WINDOWS\System32\Codejock.SkinFramework.v12.0.2.ocx
[2009.11.10 16:58:29 | 00,376,832 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFCMP14n.DLL
[2009.11.10 16:58:28 | 00,976,816 | ---- | C] (Codejock Software) -- C:\WINDOWS\System32\Codejock.PropertyGrid.v12.0.2.ocx
[2009.11.10 16:58:28 | 00,837,552 | ---- | C] (Codejock Software) -- C:\WINDOWS\System32\Codejock.DockingPane.v12.0.2.ocx
[2009.11.10 16:58:27 | 02,119,600 | ---- | C] (Codejock Software) -- C:\WINDOWS\System32\Codejock.CommandBars.v12.0.2.ocx
[2009.11.10 16:58:27 | 00,761,856 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltocx14n.ocx
[2009.11.10 16:58:27 | 00,660,992 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRVW14N.OCX
[2009.11.10 16:58:27 | 00,065,392 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRVR14N.DLL
[2009.11.10 16:58:26 | 01,447,424 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRPR14N.DLL
[2009.11.10 16:58:26 | 01,298,432 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRDK14N.DLL
[2009.11.10 16:58:26 | 00,736,256 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRTN14N.DLL
[2009.11.10 16:58:26 | 00,363,520 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRIO14N.DLL
[2009.11.10 16:58:25 | 01,373,184 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTRDF14N.DLL
[2009.11.10 16:58:25 | 00,815,104 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTR14N.DLL
[2009.11.10 16:58:24 | 02,061,032 | ---- | C] (Glyph & Cog, LLC) -- C:\WINDOWS\System32\XpdfViewerCtrl.ocx
[2009.11.10 16:58:14 | 00,000,000 | ---D | C] -- C:\Program Files\PCStitch 9
[2009.11.10 16:58:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\PCStitch 9
[2009.11.10 16:57:11 | 00,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2009.11.10 11:05:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Mirec\Dokumenty\Downloads
[2009.11.10 11:02:22 | 00,129,784 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll
[2009.11.10 11:02:22 | 00,120,056 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2009.11.10 11:02:22 | 00,118,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2009.11.10 11:02:22 | 00,072,440 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2009.11.10 11:02:22 | 00,066,296 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2009.11.10 11:02:22 | 00,064,760 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2009.11.10 11:02:22 | 00,043,528 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\PxHelp20.sys
[2009.11.10 11:02:22 | 00,009,464 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys
[2009.11.10 11:02:22 | 00,009,336 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys
[2009.11.10 11:02:21 | 01,628,920 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll
[2009.11.10 11:02:21 | 00,518,904 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll
[2009.11.10 11:02:21 | 00,379,640 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll
[2009.11.10 11:02:21 | 00,187,128 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll
[2009.11.10 11:02:21 | 00,088,824 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll
[2009.11.10 11:02:20 | 00,551,672 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll
[2009.11.10 11:01:00 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2009.11.10 11:00:57 | 00,000,000 | ---D | C] -- C:\Program Files\DivX
[2009.11.10 10:51:27 | 21,603,248 | ---- | C] (DivX, Inc.) -- C:\Documents and Settings\Mirec\Plocha\DivXInstaller.exe
[2009.11.09 19:23:26 | 00,000,000 | ---D | C] -- C:\Program Files\bobyte
[2009.11.09 16:05:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Mirec\Plocha\Resampled
[2009.11.08 16:13:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Mirec\Plocha\poľovník
[2009.11.05 15:16:14 | 00,000,000 | ---D | C] -- C:\Program Files\Stylish Profile
[2009.11.02 19:07:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Mirec\Dokumenty\SoundBox
[2009.10.26 09:27:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ParetoLogic Anti-Spyware

========== Files - Modified Within 30 Days ==========

[2009.11.18 16:35:51 | 00,529,408 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mirec\Plocha\OTL.exe
[2009.11.18 16:33:38 | 00,000,466 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{FC23030A-A8F0-4496-90C9-33B46E730B44}.job
[2009.11.18 16:32:37 | 00,000,601 | ---- | M] () -- C:\WINDOWS\TRNCOM.INI
[2009.11.18 16:13:06 | 00,001,000 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2009.11.18 14:33:33 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009.11.18 14:31:42 | 00,000,308 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2009.11.18 14:31:35 | 00,000,996 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2009.11.18 14:31:26 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009.11.18 14:31:09 | 00,063,804 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009.11.18 14:30:38 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009.11.18 14:30:31 | 53,639,9872 | -HS- | M] () -- C:\hiberfil.sys
[2009.11.18 13:49:29 | 00,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2009.11.18 13:42:07 | 09,961,472 | ---- | M] () -- C:\Documents and Settings\Mirec\ntuser.dat
[2009.11.18 13:42:07 | 00,000,272 | -HS- | M] () -- C:\Documents and Settings\Mirec\ntuser.ini
[2009.11.18 13:30:53 | 00,000,281 | RHS- | M] () -- C:\boot.ini
[2009.11.18 13:24:07 | 03,565,213 | R--- | M] () -- C:\Documents and Settings\Mirec\Plocha\ComboFix.exe
[2009.11.18 12:28:54 | 00,385,426 | ---- | M] () -- C:\Documents and Settings\Mirec\Plocha\Kopie - OTMoveIt.rar
[2009.11.18 08:01:02 | 00,024,064 | ---- | M] () -- C:\Documents and Settings\Mirec\Plocha\Nový objekt - Dokument aplikace Microsoft Word.doc
[2009.11.17 16:32:49 | 00,005,166 | ---- | M] () -- C:\WINDOWS\wdict32.INI
[2009.11.16 22:12:27 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009.11.16 18:16:54 | 00,096,256 | ---- | M] () -- C:\Documents and Settings\Mirec\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.11.15 17:18:10 | 00,124,093 | ---- | M] () -- C:\Documents and Settings\Mirec\Plocha\PhotoFunia-2186f46.jpg
[2009.11.15 13:50:05 | 00,000,071 | ---- | M] () -- C:\Documents and Settings\Mirec\default.pls
[2009.11.14 20:24:45 | 00,021,512 | ---- | M] () -- C:\Documents and Settings\Mirec\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2009.11.14 20:22:54 | 00,126,912 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009.11.14 19:39:47 | 00,977,970 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009.11.14 19:39:47 | 00,432,356 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009.11.14 19:39:47 | 00,428,724 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2009.11.14 19:39:47 | 00,077,854 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2009.11.14 19:39:47 | 00,067,312 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009.11.14 01:47:57 | 00,260,608 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2009.11.13 22:56:49 | 00,000,376 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2009.11.11 16:25:57 | 00,003,824 | ---- | M] () -- C:\WINDOWS\wtran32.INI
[2009.11.11 16:25:57 | 00,000,000 | ---- | M] () -- C:\WINDOWS\XXLGSC
[2009.11.11 16:22:12 | 00,166,277 | ---- | M] () -- C:\WINDOWS\hpoins28.dat
[2009.11.11 16:20:59 | 00,000,709 | ---- | M] () -- C:\WINDOWS\win.ini
[2009.11.11 16:15:45 | 00,001,870 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\HP Photosmart Essential 3.0.lnk
[2009.11.11 16:13:59 | 00,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
[2009.11.11 16:12:23 | 00,000,984 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\HP Solution Center.lnk
[2009.11.11 12:47:18 | 00,000,059 | ---- | M] () -- C:\WINDOWS\LTRDF14N.INI
[2009.11.11 08:37:05 | 00,021,512 | ---- | M] () -- C:\Documents and Settings\Mirec\Data aplikací\GDIPFONTCACHEV1.DAT
[2009.11.10 16:58:51 | 00,001,524 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\PCStitch 9.lnk
[2009.11.10 16:38:19 | 00,001,301 | ---- | M] () -- C:\WINDOWS\XSP2003.INI
[2009.11.10 11:00:17 | 21,603,248 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\Mirec\Plocha\DivXInstaller.exe
[2009.11.05 18:36:21 | 26,768,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
[2009.10.27 08:49:57 | 00,082,432 | ---- | M] () -- C:\Documents and Settings\Mirec\Plocha\skratky autobusov.doc
[2009.10.25 06:11:34 | 00,077,312 | ---- | M] () -- C:\WINDOWS\MBR.exe
[2009.10.23 16:53:41 | 00,040,448 | ---- | M] () -- C:\Documents and Settings\Mirec\Plocha\vyš stránky.doc
[2009.10.22 10:51:30 | 00,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009.10.22 10:18:24 | 05,939,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.dll
[2009.10.22 10:18:24 | 05,939,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2009.10.22 06:42:56 | 00,000,187 | ---- | M] () -- C:\WINDOWS\ConverterCore.INI
[2009.10.21 16:13:22 | 00,000,162 | -H-- | M] () -- C:\Documents and Settings\Mirec\Plocha\~$rebnica Ariadna.doc

========== Files Created - No Company Name ==========

[2009.11.18 13:30:53 | 00,000,211 | ---- | C] () -- C:\Boot.bak
[2009.11.18 13:30:50 | 00,260,272 | ---- | C] () -- C:\cmldr
[2009.11.18 13:25:06 | 00,260,608 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2009.11.18 13:25:06 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2009.11.18 13:25:06 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2009.11.18 13:25:06 | 00,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2009.11.18 13:25:06 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009.11.18 13:24:07 | 03,565,213 | R--- | C] () -- C:\Documents and Settings\Mirec\Plocha\ComboFix.exe
[2009.11.18 12:59:45 | 00,385,426 | ---- | C] () -- C:\Documents and Settings\Mirec\Plocha\Kopie - OTMoveIt.rar
[2009.11.18 08:00:27 | 00,024,064 | ---- | C] () -- C:\Documents and Settings\Mirec\Plocha\Nový objekt - Dokument aplikace Microsoft Word.doc
[2009.11.15 17:18:09 | 00,124,093 | ---- | C] () -- C:\Documents and Settings\Mirec\Plocha\PhotoFunia-2186f46.jpg
[2009.11.11 16:15:45 | 00,001,870 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\HP Photosmart Essential 3.0.lnk
[2009.11.11 16:05:09 | 00,166,277 | ---- | C] () -- C:\WINDOWS\hpoins28.dat
[2009.11.11 16:05:09 | 00,000,796 | ---- | C] () -- C:\WINDOWS\hpomdl28.dat
[2009.11.10 17:02:00 | 00,000,059 | ---- | C] () -- C:\WINDOWS\LTRDF14N.INI
[2009.11.10 16:58:51 | 00,001,524 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\PCStitch 9.lnk
[2009.11.10 11:08:24 | 00,001,000 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2009.11.10 11:08:23 | 00,000,996 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2009.10.27 08:48:35 | 00,082,432 | ---- | C] () -- C:\Documents and Settings\Mirec\Plocha\skratky autobusov.doc
[2009.10.21 16:13:22 | 00,000,162 | -H-- | C] () -- C:\Documents and Settings\Mirec\Plocha\~$rebnica Ariadna.doc
[2009.10.05 17:36:58 | 00,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009.09.13 13:41:59 | 00,005,321 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log
[2009.08.03 14:07:42 | 00,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009.07.17 14:21:45 | 00,001,301 | ---- | C] () -- C:\WINDOWS\XSP2003.INI
[2009.06.30 04:26:29 | 00,000,015 | ---- | C] () -- C:\WINDOWS\jafcd.ini
[2009.05.27 12:45:07 | 00,141,312 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2009.03.20 17:38:27 | 00,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009.03.03 16:32:08 | 00,000,009 | ---- | C] () -- C:\WINDOWS\Crypkey.ini
[2009.01.21 08:16:10 | 00,021,248 | ---- | C] () -- C:\WINDOWS\System32\solidlocalmon.dll
[2009.01.21 08:16:10 | 00,013,568 | ---- | C] () -- C:\WINDOWS\System32\solidlocalui.dll
[2009.01.15 17:18:03 | 00,000,025 | ---- | C] () -- C:\WINDOWS\SW_Win2146X32.DLL
[2009.01.15 17:16:16 | 00,003,248 | ---- | C] () -- C:\WINDOWS\CD_SearchHistory.INI
[2009.01.14 16:47:38 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.01.14 08:00:52 | 00,000,187 | ---- | C] () -- C:\WINDOWS\ConverterCore.INI
[2009.01.13 21:21:51 | 00,021,512 | ---- | C] () -- C:\Documents and Settings\Mirec\Data aplikací\GDIPFONTCACHEV1.DAT
[2009.01.11 20:23:33 | 00,003,824 | ---- | C] () -- C:\WINDOWS\wtran32.INI
[2009.01.11 20:20:01 | 00,005,166 | ---- | C] () -- C:\WINDOWS\wdict32.INI
[2009.01.10 21:41:35 | 00,000,152 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009.01.10 20:22:50 | 00,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009.01.10 20:15:23 | 00,000,601 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2009.01.10 18:13:48 | 00,000,357 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009.01.09 20:14:31 | 00,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.01.09 20:05:39 | 00,096,256 | ---- | C] () -- C:\Documents and Settings\Mirec\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.01.09 20:02:47 | 00,009,255 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2009.01.09 20:02:46 | 01,317,152 | R--- | C] () -- C:\WINDOWS\System32\drivers\lvcm.sys
[2009.01.09 19:02:06 | 00,021,512 | ---- | C] () -- C:\Documents and Settings\Mirec\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2009.01.09 18:57:19 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
[2009.01.09 18:27:21 | 02,639,426 | -H-- | C] () -- C:\Documents and Settings\Mirec\Local Settings\Data aplikací\IconCache.db
[2009.01.09 18:18:35 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Mirec\Data aplikací\desktop.ini
[2006.06.29 14:58:52 | 00,030,808 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont
[2006.06.29 14:53:56 | 00,026,489 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont
[2006.06.01 17:22:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006.06.01 17:22:00 | 01,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006.06.01 17:22:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006.06.01 17:22:00 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006.06.01 17:22:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006.06.01 17:22:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006.06.01 17:22:00 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006.04.18 15:39:28 | 00,029,779 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont
[2006.04.18 15:39:28 | 00,026,040 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont
[2005.10.14 11:56:50 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 11:56:50 | 00,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 00,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 00,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 00,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 00,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005.10.14 11:56:48 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\MMSwitch.dll
[2004.09.16 12:26:40 | 00,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\ADFUUD.SYS
[2004.09.16 12:26:40 | 00,012,634 | ---- | C] () -- C:\WINDOWS\ADFUUD.SYS
[2003.02.19 01:26:28 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2001.10.25 13:00:00 | 00,000,709 | ---- | C] () -- C:\WINDOWS\win.ini
[2001.10.25 13:00:00 | 00,000,231 | ---- | C] () -- C:\WINDOWS\system.ini
[1999.01.27 13:39:06 | 00,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll
[1997.06.13 07:56:08 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll

========== LOP Check ==========

[2003.08.11 03:04:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BVRP Software
[2009.10.05 17:42:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2009.05.09 21:02:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2009.10.26 09:27:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ParetoLogic Anti-Spyware
[2009.03.12 10:44:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pattern Maker for cross stitch
[2009.11.10 17:00:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PCStitch 9
[2009.01.20 09:42:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SolidDocuments
[2009.11.17 16:22:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2009.01.10 20:23:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2009.08.21 08:06:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Any Video Converter
[2009.10.05 17:44:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\DAEMON Tools Lite
[2009.08.06 15:48:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Dealio
[2009.01.09 20:00:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\FotoWire
[2009.05.31 11:47:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\GlarySoft
[2009.02.20 19:46:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\ICQ
[2009.01.10 12:21:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Jpeg Resampler
[2003.07.21 15:52:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Password Solutions
[2009.11.11 12:47:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\PCStitch Pro
[2009.08.06 15:48:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Search Settings
[2009.03.20 18:09:45 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Mirec\Data aplikací\SecuROM
[2009.11.17 19:15:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\SolidDocuments
[2009.11.17 16:22:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Spyware Terminator
[2009.01.10 20:23:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\TuneUp Software
[2009.01.10 18:30:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Mirec\Data aplikací\Uniblue
[2009.11.13 22:56:49 | 00,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\1-Click Maintenance.job
[2001.10.25 13:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini
[2009.11.18 14:31:42 | 00,000,308 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
[2009.11.18 14:31:26 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT
[2009.11.18 16:33:38 | 00,000,466 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{FC23030A-A8F0-4496-90C9-33B46E730B44}.job
[2009.02.19 16:55:48 | 00,000,300 | ---- | M] () -- C:\WINDOWS\Tasks\XoftSpy.job

========== Purity Check ==========


< End of report >