Pri kazdem zapnuti notebooku barvy na 8bitu

[junfan]

Zdravim,

kdyz zapnu ci restartuju notebook, tak pokazde kdyz se nacte plocha se nastavi barevna hloubka na 8 bitu
pritom chvilku to bezi v poho na 32 bitu... problikne LCD a je tam 8 bitu.
Mohla by to delat nejaka sluzba, ale jaka.....
pomoci ccleanerem jsem na zkousku vypnul vse co se spousti se startem a stale stejne.

Diky za rady




Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:58:18, on 4.12.2009
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\AsScrPro.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files\Canon\SolutionMenu\CNSLMAIN.EXE
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TO2SSM\mccitrayapp.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Synaptics\SynTP\SynAsus.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\Uzivatel\Desktop\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.seznam.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://web.volny.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.1.0.19\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.1.0.19\IPSBHO.DLL
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - (no file)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.1.0.19\coIEPlg.dll
O3 - Toolbar: &S-Rank - {B71B15CF-3093-459C-B764-AEB2486F2273} - C:\Program Files\Seznam\Postak\SRank.dll
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TO2SSM_McciTrayApp] C:\Program Files\TO2SSM\McciTrayApp.exe
O4 - HKLM\..\Run: [update_vs] "C:\Program Files\UUpdate.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [MotiveReportAgent] C:\Program Files\TO2SSM\McciBrowser.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: ASUS Security Protect Manager e-Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - (no file)
O9 - Extra 'Tools' menuitem: ASUS Security Protect Manager e-&Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - (no file)
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {22492231-AEF0-49FC-9180-CE8969AB1273} (F-Secure Online Scanner Launcher) - http://download.sp.f-secure.com/ols/f-s ... uncher.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\17.1.0.19\ccSvcHst.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe

--
End of file - 8121 bytes

[Reklama]

[Damned]

Podle toho jak to popisuješ bych to spíše viděl na závadu ve stroji než v nějakým šmejdu.
V logu HJT nevidím nic, co by to mělo způsobit.
*****************************************************************************************************************************************
Spusť HJT (HijackThis), vypni prohlížeče, odpoj se od internetu a fixni (spustit HJT, "Do a system scan only",
zatrhnout políčko před hodnotou, zmáčknout "Fix checked" a poté "Ano"):

O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O9 - Extra button: ASUS Security Protect Manager e-Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - (no file)
O9 - Extra 'Tools' menuitem: ASUS Security Protect Manager e-&Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - (no file)
O13 - Gopher Prefix:
O16 - DPF: {22492231-AEF0-49FC-9180-CE8969AB1273} (F-Secure Online Scanner Launcher) - http://download.sp.f-secure.com/ols/f-s ... uncher.cab
*****************************************************************************************************************************************
Červený soubor zkontroluj na Virustotalu a vlož sem odkaz na výsledek.
Pokud ho nenajdeš, dej si zobrazit skryté a systémové soubory. Pokud ti nabídne, že soubor už kontroloval,
nech ho zkontrolovat znovu, a počkej až se objeví "Dokončeno" a výsledek.Potom sem zkopíruj adresní řádek.

C:\Program Files\UUpdate.exe

[junfan]

No ale pokud zadam rucne 32 bitu, tak to slape v poho... ale novy start systemu a 8 bitu..
Jeste posilam Combofix



ComboFix 09-12-03.06 - Uzivatel 04.12.2009 21:26.1.2 - x86
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.3071.2101 [GMT 1:00]
Spuštěný z: c:\users\Uzivatel\Desktop\ComboFix.exe
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\INSTALL.LOG

.
((((((((((((((((((((((((( Soubory vytvořené od 2009-11-04 do 2009-12-04 )))))))))))))))))))))))))))))))
.

2009-12-04 20:37 . 2009-12-04 20:40 -------- d-----w- c:\users\Uzivatel\AppData\Local\temp
2009-12-04 20:37 . 2009-12-04 20:37 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-12-04 19:23 . 2009-12-04 19:23 -------- d-----w- c:\programdata\F-Secure
2009-12-04 18:51 . 2009-12-04 18:51 96384 ----a-w- c:\users\Uzivatel\AppData\Local\GDIPFONTCACHEV1.DAT
2009-12-04 17:54 . 2009-08-29 09:00 84912 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20091204.006\NAVENG.SYS
2009-12-04 17:54 . 2009-08-29 09:00 177520 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20091204.006\NAVENG32.DLL
2009-12-04 17:54 . 2009-08-29 09:00 1647984 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20091204.006\NAVEX32A.DLL
2009-12-04 17:54 . 2009-08-29 09:00 1323568 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20091204.006\NAVEX15.SYS
2009-12-04 17:54 . 2009-10-05 18:50 2747952 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20091204.006\CCERASER.DLL
2009-12-04 17:54 . 2009-10-05 18:50 259440 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20091204.006\ECMSVR32.DLL
2009-12-04 17:54 . 2009-08-29 09:00 371248 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20091204.006\EECTRL.SYS
2009-12-04 17:54 . 2009-08-29 09:00 102448 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20091204.006\ERASER.SYS
2009-12-04 17:44 . 2009-12-04 17:44 -------- d-----w- c:\windows\Roaming
2009-12-04 17:27 . 2009-12-04 17:27 21496 ----a-w- c:\windows\system32\emptyregdb.dat
2009-12-04 17:20 . 2009-12-04 17:20 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2009-12-04 17:03 . 2009-09-03 14:18 490088 ----a-w- c:\windows\system32\nvuninst.exe
2009-12-04 17:03 . 2009-12-04 17:03 -------- d-----w- c:\program files\Synaptics
2009-12-04 17:02 . 2009-12-04 17:02 -------- d-----w- c:\windows\system32\RTCOM
2009-12-04 16:58 . 2009-12-04 17:43 -------- d-----w- c:\windows\Panther
2009-12-04 16:43 . 2009-12-04 17:27 -------- d-----w- C:\$WINDOWS.~Q
2009-12-04 16:39 . 2009-12-04 16:41 -------- d-----w- C:\$INPLACE.~TR
2009-12-04 15:44 . 2009-12-04 15:44 -------- d-----w- c:\windows\system32\Spool\prtprocs\w32x86\4
2009-12-04 15:44 . 2009-12-04 15:44 -------- d-----w- c:\windows\system32\Spool\prtprocs\w32x86\3
2009-12-03 21:02 . 2009-12-04 17:19 -------- d-----w- c:\users\Uzivatel\AppData\Roaming\IObit
2009-12-03 21:02 . 2009-12-04 17:08 -------- d-----w- c:\program files\IObit
2009-12-03 20:47 . 2009-12-04 17:19 -------- d-----w- c:\users\Uzivatel\AppData\Roaming\Malwarebytes
2009-12-03 20:47 . 2009-09-10 13:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-03 20:47 . 2009-12-04 17:10 -------- d-----w- c:\programdata\Malwarebytes
2009-12-03 20:47 . 2009-12-04 17:08 4096 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-12-03 20:47 . 2009-09-10 13:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-03 20:41 . 2009-12-04 17:06 -------- d-----w- c:\program files\CCleaner
2009-11-12 22:57 . 2009-10-28 22:37 329592 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091111.001\IDSXpx86.sys
2009-11-12 22:57 . 2009-10-28 22:37 811896 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091111.001\Scxpx86.dll
2009-11-12 22:57 . 2009-10-28 22:37 488312 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091111.001\IDSxpx86.dll
2009-11-12 22:57 . 2009-10-28 22:37 343088 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091111.001\IDSvix86.sys
2009-11-12 22:57 . 2009-10-28 22:37 466992 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091111.001\IDSviA64.sys
2009-11-10 06:17 . 2009-12-04 20:37 4096 d-----w- C:\Boot
2009-11-09 08:00 . 2009-11-09 08:00 -------- d-----w- c:\windows\system32\Spool\prtprocs\w32x86\2
2009-11-09 08:00 . 2009-11-09 08:00 -------- d-----w- c:\windows\system32\Spool\prtprocs\w32x86\1
2009-11-09 04:50 . 2009-10-28 22:37 343088 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091105.001\IDSvix86.sys
2009-11-09 04:50 . 2009-10-28 22:37 329592 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091105.001\IDSXpx86.sys
2009-11-09 04:50 . 2009-10-28 22:37 811896 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091105.001\Scxpx86.dll
2009-11-09 04:50 . 2009-10-28 22:37 488312 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091105.001\IDSxpx86.dll
2009-11-09 04:50 . 2009-10-28 22:37 466992 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091105.001\IDSviA64.sys
2009-11-04 23:50 . 2009-11-04 23:50 201616 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20091104.001\BHRules.dll
2009-11-04 23:50 . 2009-11-04 23:50 663088 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20091104.001\BHDrvx64.sys
2009-11-04 23:50 . 2009-11-04 23:50 524848 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20091104.001\BHDrvx86.sys
2009-11-04 23:50 . 2009-11-04 23:50 1413520 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20091104.001\BHEngine.dll
2009-11-04 23:50 . 2009-11-04 23:50 610704 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20091104.001\bbRGen.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-12-04 20:38 . 2009-08-12 07:15 45056 ----a-w- c:\windows\system32\acovcnt.exe
2009-12-04 20:01 . 2009-07-14 08:44 622660 ----a-w- c:\windows\system32\perfh005.dat
2009-12-04 20:01 . 2009-07-14 08:44 118810 ----a-w- c:\windows\system32\perfc005.dat
2009-12-04 18:50 . 2009-08-12 00:24 -------- d-----w- c:\programdata\NVIDIA
2009-12-04 17:43 . 2009-12-04 17:43 -------- d-sh--we c:\programdata\Plocha
2009-12-04 17:43 . 2009-12-04 17:43 -------- d-sh--we c:\programdata\Oblíbené položky
2009-12-04 17:43 . 2009-12-04 17:43 -------- d-sh--we c:\programdata\Šablony
2009-12-04 17:43 . 2009-12-04 17:43 -------- d-sh--we c:\programdata\Nabídka Start
2009-12-04 17:43 . 2009-12-04 17:43 -------- d-sh--we c:\programdata\Dokumenty
2009-12-04 17:43 . 2009-12-04 17:43 -------- d-sh--we c:\programdata\Data aplikací
2009-12-04 17:12 . 2009-09-21 15:16 -------- d-----w- c:\programdata\Symantec Temporary Files
2009-12-04 17:12 . 2009-08-25 12:22 -------- d-----w- c:\programdata\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2009-12-04 17:12 . 2009-08-12 00:46 -------- d-----w- c:\programdata\Symantec
2009-12-04 17:12 . 2009-11-03 06:18 -------- d-----w- c:\programdata\STORMWARE
2009-12-04 17:12 . 2009-08-13 13:10 -------- d-----w- c:\programdata\Skype
2009-12-04 17:11 . 2009-08-27 12:02 -------- d-----w- c:\programdata\Pinnacle Studio
2009-12-04 17:11 . 2009-08-27 11:48 -------- d-----w- c:\programdata\Pinnacle
2009-12-04 17:11 . 2009-09-21 15:18 -------- d-----w- c:\programdata\PCSettings
2009-12-04 17:11 . 2009-10-07 06:24 -------- d-----w- c:\programdata\Office Genuine Advantage
2009-12-04 17:11 . 2009-08-25 09:49 -------- d-----w- c:\programdata\ParetoLogic
2009-12-04 17:11 . 2009-08-12 00:44 -------- d-----w- c:\programdata\P4G
2009-12-04 17:11 . 2009-09-21 15:18 -------- d-----w- c:\programdata\NortonInstaller
2009-12-04 17:11 . 2009-09-21 15:18 4096 d-----w- c:\programdata\Norton
2009-12-04 17:11 . 2009-08-12 08:39 4096 d-----w- c:\programdata\Nero
2009-12-04 17:09 . 2009-08-27 11:57 -------- d-----w- c:\program files\Pinnacle
2009-12-04 17:09 . 2009-08-25 09:49 -------- d-----w- c:\program files\ParetoLogic
2009-12-04 17:09 . 2009-08-12 00:44 4096 d-----w- c:\program files\P4G
2009-12-04 17:09 . 2009-08-12 07:37 4096 d-----w- c:\program files\OpenOffice.org 3
2009-12-04 17:09 . 2009-10-18 10:12 40960 d-----w- c:\program files\O2 Mobilni internet
2009-12-04 17:09 . 2009-10-05 17:38 -------- d-----w- c:\program files\NortonInstaller
2009-12-04 17:09 . 2009-10-05 17:42 -------- d-----w- c:\program files\Norton Internet Security
2009-12-04 17:08 . 2009-08-12 08:39 -------- d-----w- c:\program files\Nero
2009-12-04 17:08 . 2009-10-05 18:11 4096 d-----w- c:\program files\Microsoft Works
2009-12-04 17:08 . 2009-10-05 18:10 -------- d-----w- c:\program files\Microsoft.NET
2009-12-04 17:08 . 2009-10-18 11:48 -------- d-----w- c:\program files\Microsoft Silverlight
2009-12-04 17:08 . 2009-07-14 04:52 4096 d-----w- c:\program files\Microsoft Games
2009-12-04 17:08 . 2009-10-18 11:47 -------- d-----w- c:\program files\Microsoft
2009-12-04 17:08 . 2009-10-10 15:06 -------- d-----w- c:\program files\languages
2009-12-04 17:08 . 2009-08-12 07:35 4096 d-----w- c:\program files\K-Lite Codec Pack
2009-12-04 17:08 . 2009-09-19 07:52 -------- d-----w- c:\program files\Java
2009-12-04 17:06 . 2009-08-12 07:45 12288 d-----w- c:\program files\Common Files\LightScribe
2009-12-04 17:06 . 2009-10-17 13:08 -------- d-----w- c:\program files\Common Files\CANON
2009-12-04 17:06 . 2009-08-27 14:06 -------- d-----w- c:\program files\Common Files\Ahead
2009-12-04 17:06 . 2009-08-12 07:27 -------- d-----w- c:\program files\Common Files\InterVideo
2009-12-04 17:06 . 2009-08-12 00:19 -------- d-----w- c:\program files\Common Files\InstallShield
2009-12-04 17:06 . 2009-08-12 00:49 -------- d-----w- c:\program files\Common Files\Adobe
2009-12-04 17:06 . 2009-10-17 12:43 -------- d--h--w- c:\program files\CanonBJ
2009-12-04 17:06 . 2009-08-26 11:52 4096 d-----w- c:\program files\Canon
2009-12-04 17:06 . 2009-10-10 15:06 4096 d-----w- c:\program files\bin
2009-12-04 17:06 . 2009-08-12 00:11 4096 d-----w- c:\program files\ASUS
2009-12-04 17:06 . 2009-08-12 00:11 4096 d-----w- c:\program files\ATKGFNEX
2009-12-04 17:06 . 2009-08-27 14:06 -------- d-----w- c:\program files\Ahead
2009-12-04 17:03 . 2009-12-04 17:03 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_SynTP_01000.Wdf
2009-12-04 13:22 . 2009-08-11 23:56 12 ----a-w- c:\windows\bthservsdp.dat
2009-12-03 21:29 . 2009-10-10 15:06 1173 ----a-w- c:\program files\app2.log
2009-11-25 07:01 . 2009-11-03 06:33 475136 ----a-w- c:\programdata\STORMWARE\POHODA\Data\Pohoda.sys
2009-11-18 11:27 . 2009-11-18 11:27 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
2009-11-02 19:42 . 2009-10-05 18:30 195456 ------w- c:\windows\system32\MpSigStub.exe
2009-10-29 02:31 . 2009-10-05 17:42 784752 ----a-r- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\coFFPlgn\components\coFFPlgn.dll
2009-10-28 22:37 . 2009-10-28 22:37 343088 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\BinHub\IDSvix86.sys
2009-10-28 22:37 . 2009-10-28 22:37 329592 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\BinHub\IDSXpx86.sys
2009-10-28 22:37 . 2009-10-28 22:37 811896 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\BinHub\Scxpx86.dll
2009-10-28 22:37 . 2009-10-28 22:37 488312 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\BinHub\IDSxpx86.dll
2009-10-28 22:37 . 2009-10-28 22:37 466992 ----a-w- c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\BinHub\IDSviA64.sys
2009-10-18 12:56 . 2008-02-27 11:41 284 ----a-w- c:\program files\setup.ini
2009-10-14 18:17 . 2009-10-14 18:17 515832 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2009-10-11 03:17 . 2009-09-19 07:52 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-10-10 17:31 . 2009-10-10 17:31 210 ----a-w- c:\program files\updatelog.txt
2009-10-09 06:04 . 2009-08-12 10:52 1 ----a-w- c:\users\Uzivatel\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2009-10-05 17:42 . 2009-10-05 17:42 124976 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS
2009-09-21 15:18 . 2009-09-21 15:16 83208672 ----a-w- c:\programdata\Symantec Temporary Files\N360S300CZ.exe
2008-09-16 10:47 . 2008-09-16 10:47 98 ----a-w- c:\program files\updatesetup.ini
2008-09-16 10:41 . 2008-09-16 10:41 147456 ----a-w- c:\program files\VycistitSoubory.exe
2008-08-05 08:37 . 2008-08-05 08:37 28672 ----a-w- c:\program files\UUpdate.exe
2008-07-02 02:28 . 2008-07-02 02:28 61440 ----a-w- c:\program files\Common Files\CPInstallAction.dll
2008-05-22 16:35 . 2008-05-22 16:35 51962 ----a-w- c:\program files\Common Files\banner.jpg
2008-02-27 11:44 . 2008-02-27 11:44 5341 ----a-w- c:\program files\license.txt
2008-02-27 11:42 . 2008-02-27 11:42 981 ----a-w- c:\program files\VycistitSoubory.exe.manifest
2008-02-27 11:28 . 2008-02-27 11:28 11093 ----a-w- c:\program files\background.gif
2007-06-12 17:34 . 2007-06-12 17:34 35822 ----a-w- c:\program files\Common Files\ASPG_icon.ico
2002-08-01 01:24 . 2009-10-10 15:06 183808 ----a-w- c:\program files\Uninstall.exe
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2009-07-14 144384]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"MotiveReportAgent"="c:\program files\TO2SSM\McciBrowser.exe" [2008-08-15 1026088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2009-08-12 3054136]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMedia.exe" [2008-08-19 159744]
"ATKOSD2"="c:\program files\ASUS\ATKOSD2\ATKOSD2.exe" [2008-07-15 7651328]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696]
"CLMLServer"="c:\program files\CyberLink\Power2Go\CLMLSvc.exe" [2008-07-18 104936]
"Easy-PrintToolBox"="c:\program files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE" [2004-01-14 409600]
"HControlUser"="c:\program files\ASUS\ATK Hotkey\HControlUser.exe" [2008-01-12 98304]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-08-10 13797920]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-11-16 1029416]
"TO2SSM_McciTrayApp"="c:\program files\TO2SSM\McciTrayApp.exe" [2009-10-07 1473536]
"update_vs"="c:\program files\UUpdate.exe" [2008-08-05 28672]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2008-06-13 6183456]
"Skytel"="Skytel.exe" - c:\windows\SkyTel.exe [2007-11-20 1826816]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-7-30 752168]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

R0 lullaby;lullaby;c:\windows\System32\drivers\lullaby.sys [12.8.2009 1:43 15416]
R0 SymDS;Symantec Data Store;c:\windows\System32\drivers\NIS\1101000.013\SymDS.sys [12.11.2009 23:56 328752]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\System32\drivers\NIS\1101000.013\SymEFA.sys [12.11.2009 23:56 171056]
R1 BHDrvx86;BHDrvx86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20091104.001\BHDrvx86.sys [5.11.2009 0:50 524848]
R1 ccHP;Symantec Hash Provider;c:\windows\System32\drivers\NIS\1101000.013\cchpx86.sys [12.11.2009 23:56 501888]
R1 IDSVix86;IDSVix86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091111.001\IDSvix86.sys [12.11.2009 23:57 343088]
R1 SymIRON;Symantec Iron Driver;c:\windows\System32\drivers\NIS\1101000.013\Ironx86.sys [12.11.2009 23:56 114736]
R1 SYMTDIv;Symantec Vista Network Dispatch Driver;c:\windows\System32\drivers\NIS\1101000.013\symtdiv.sys [12.11.2009 23:56 339504]
R2 NIS;Norton Internet Security;c:\program files\Norton Internet Security\Engine\17.1.0.19\ccSvcHst.exe [12.11.2009 23:56 126392]
R2 regi;regi;c:\windows\System32\drivers\regi.sys [17.4.2007 19:09 11032]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [3.12.2009 6:53 102448]
R3 itecir;ITECIR Infrared Receiver;c:\windows\System32\drivers\itecir.sys [12.8.2009 1:27 54784]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista;c:\windows\System32\drivers\netw5v32.sys [10.6.2009 22:18 4231168]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\System32\drivers\nvhda32v.sys [1.5.2009 10:13 64032]
S3 DCamUSBET;USB2.0 1.3M UVC WebCam;c:\windows\System32\drivers\etDevice.sys [12.8.2009 1:36 474624]
S3 FiltUSBET;ET USB Device Lower Filter;c:\windows\System32\drivers\etFilter.sys [12.8.2009 1:36 206336]
S3 ScanUSBET;ET USB Still Image Capture Device;c:\windows\System32\drivers\etScan.sys [12.8.2009 1:36 6656]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
GPSvcGroup REG_MULTI_SZ GPSvc
.
Obsah adresáře 'Naplánované úlohy'

2009-12-04 c:\windows\Tasks\AWC Startup.job
- c:\program files\IObit\Advanced SystemCare 3\AWC.exe [2009-12-03 12:51]

2009-08-25 c:\windows\Tasks\DriverCure.job
- c:\program files\ParetoLogic\DriverCure\DriverCure.exe [2009-08-07 19:36]

2009-10-26 c:\windows\Tasks\ParetoLogic Registration.job
- c:\program files\Common Files\ParetoLogic\UUS2\UUS.dll [2009-01-13 14:59]

2009-09-07 c:\windows\Tasks\ParetoLogic Update Version2.job
- c:\program files\Common Files\ParetoLogic\UUS2\Pareto_Update.exe [2009-01-13 14:59]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://web.volny.cz/
uInternet Settings,ProxyOverride = <local>
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

AddRemove-CanonSolutionMenu - c:\program files\Canon\SolutionMenu\uninst.exe uninst.ini
AddRemove-MediaNavigation.CDLabelPrint - c:\program files\Canon\CD-LabelPrint\Uninstal.exe Canon.CDLabelPrint.Application
AddRemove-NVIDIA Drivers - c:\windows\system32\nvuninst.exe UninstallGUI
AddRemove-{cf5f2f46-ce9b-4437-b0ba-e6860c3ea118} - c:\program files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER=XM02-508X-MHAT-19WU-9Z3Z-0CH0-3U6E-85W5-MMHH-6647-1Z5L-7M8C-0U45-758P-0000
AddRemove-MotiveReportAgent - c:\program files\TO2SAM\McciBrowser.exe



[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]
"ImagePath"="\"c:\program files\Norton Internet Security\Engine\17.1.0.19\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files\Norton Internet Security\Engine\17.1.0.19\diMaster.dll\" /prefetch:1"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-3719420535-1240814235-1592183072-1000\Software\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Common Client\ccIPC]
@Denied: (C D) (Everyone)

[HKEY_LOCAL_MACHINE\SOFTWARE\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Common Client\ccIPC]
@Denied: (C D) (Everyone)

[HKEY_LOCAL_MACHINE\SOFTWARE\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Common Client\ccIPC\Channels]
@Denied: (C D) (Everyone)
"ccSvcHst_UserSession_2636"="{EFF121EA-A6E9-40FF-8285-80C6712D979E}"
"ccSvcHst_NIS"="{6A7C752E-E242-4528-91D3-66994818A951}"
"ccJobMgr_general_{ABD582DE-8F75-412d-81CF-6A180F1203DD}"="{6A7C752E-E242-4528-91D3-66994818A951}"
"ccJobMgr_session_{ABD582DE-8F75-412d-81CF-6A180F1203DD}"="{6A7C752E-E242-4528-91D3-66994818A951}"
"IPS_COMMAND_CHANNEL"="{6A7C752E-E242-4528-91D3-66994818A951}"
"ncw_performance_IPC"="{6A7C752E-E242-4528-91D3-66994818A951}"
"_NCWSvcComm_NortonCommunityWatchConfiguration"="{6A7C752E-E242-4528-91D3-66994818A951}"
"_ProcessDetection_"="{6A7C752E-E242-4528-91D3-66994818A951}"
"ccGenericEvent_Global_EM"="{6A7C752E-E242-4528-91D3-66994818A951}"
"ccGenericEvent_Global_LM"="{6A7C752E-E242-4528-91D3-66994818A951}"
"SNDServiceRequestChannel"="{6A7C752E-E242-4528-91D3-66994818A951}"
"SNDLocationChannel"="{6A7C752E-E242-4528-91D3-66994818A951}"
"_AvProdSvcComm_"="{6A7C752E-E242-4528-91D3-66994818A951}"
"ccSettingsService"="{6A7C752E-E242-4528-91D3-66994818A951}"
"{3F11C6A7-CEA8-40c9-88EE-E5461341AE97}_ccSubmissionEngineIPC"="{6A7C752E-E242-4528-91D3-66994818A951}"
"FWAlert"="{6A7C752E-E242-4528-91D3-66994818A951}"
"BashIPCChannel"="{6A7C752E-E242-4528-91D3-66994818A951}"
"g_coVistaProxyChannel"="{6A7C752E-E242-4528-91D3-66994818A951}"
"ipcChannel_ShastaServer"="{6A7C752E-E242-4528-91D3-66994818A951}"
"_isDataPrComm_"="{6A7C752E-E242-4528-91D3-66994818A951}"
"_HSPlayerCommand_"="{6A7C752E-E242-4528-91D3-66994818A951}"
"{C4A09495-F6BC-4166-B717-F3F3250462BB}"="{6A7C752E-E242-4528-91D3-66994818A951}"
"SymRedirSvcRequestChannel"="{6A7C752E-E242-4528-91D3-66994818A951}"
"NortonNetServiceIPC"="{6A7C752E-E242-4528-91D3-66994818A951}"
"ccGenericLog_Manager"="{6A7C752E-E242-4528-91D3-66994818A951}"
"NetMapServiceIPC"="{6A7C752E-E242-4528-91D3-66994818A951}"
"isError_Service_IPC"="{6A7C752E-E242-4528-91D3-66994818A951}"
"{A2DE0E79-877C-485b-B604-78B170313E9E}_IronIPC"="{6A7C752E-E242-4528-91D3-66994818A951}"
"ccSvcHst_UserSession_3668"="{8ADED3F4-B9B8-4D51-AD94-87382E1C5E04}"
"{436E95FE-192E-469f-8F34-5038FBA89BF4}1"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"{B44E7D73-F081-414B-ADD2-CD66675A190D}1"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"{9BBA000F-092F-432f-B9DF-9D64FD1C2978}"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"clt::AlertChannel_01"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"AvProdSession_01"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"AvProdSession_Options_01"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"AvProdSession_Scanless_01"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"TRUSTCHANNEL"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"SDKCHANNEL1"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"ToasterNotify\\SessionID_1"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"AccountServices_1"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"FormHandler_1"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"
"_ReputationSvcComm_ReputationPublisher"="{6A7C752E-E242-4528-91D3-66994818A951}"
"ccSvcHst_UserSession_3696"="{4D95576D-AADB-415E-91C0-5221DE7FD809}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Common Client\ccIPC\Endpoints]
@Denied: (C D) (Everyone)
"{3D46C2FB-8793-4201-BFDE-832A5976B1BF}"=""
"{EFF121EA-A6E9-40FF-8285-80C6712D979E}"=""
"{783099EA-C9F9-441B-A4D8-E921ADADAA87}"=""
"{BD6C7511-6DD2-4FF7-A195-F15E98563A09}"=""
"{F29D0745-1A3A-4B45-8FC7-391767D4614A}"=""
"{E3B311D7-0E5C-41F1-8B0D-0350B03BDF90}"=""
"{AD90F392-C3E9-4DDF-A853-FAEBF4DBA0BB}"=""
"{67E7578D-ED58-4360-9DED-AF670BA6CBE7}"=""
"{DD0E1C9B-B3F5-4829-9296-625E28C8C716}"=""
"{DAFB0318-38B8-48C5-A149-4B60239DD14B}"=""
"{13425205-B41D-4D54-9181-74B4962D6332}"=""
"{D6E548D8-6858-4E84-9800-FA5F0F9AA6BE}"=""
"{7A436F2F-6F5A-4D48-8ABD-3F6F6A726CAD}"=""
"{8ADED3F4-B9B8-4D51-AD94-87382E1C5E04}"=""
"{6A7C752E-E242-4528-91D3-66994818A951}"=""
"{4D95576D-AADB-415E-91C0-5221DE7FD809}"=""

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'Explorer.exe'(3612)
c:\windows\system32\btmmhook.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\ASUS\ATK Hotkey\ASLDRSrv.exe
c:\program files\ATKGFNEX\GFNEXSrv.exe
c:\program files\ASUS\SmartLogon\smartlogon.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Motive\McciCMService.exe
c:\program files\ASUS\Splendid\ACMON.exe
c:\program files\ASUS\ASUS CopyProtect\aspg.exe
c:\program files\ASUS\ATK Hotkey\HControl.exe
c:\program files\ASUS\ATK Hotkey\MsgTranAgt.exe
c:\program files\P4G\BatteryLife.exe
c:\program files\Wireless Console 2\wcourier.exe
c:\windows\System32\ACEngSvr.exe
c:\windows\system32\taskhost.exe
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files\ASUS\ATK Hotkey\ATKOSD.exe
c:\program files\ASUS\ATK Hotkey\KBFiltr.exe
c:\program files\ASUS\ATK Hotkey\WDC.exe
c:\program files\ASUS\NB Probe\SPM\spmgr.exe
c:\program files\ASUS\SmartLogon\sensorsrv.exe
c:\program files\ASUS\Net4Switch\Net4Switch.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\conhost.exe
c:\program files\Synaptics\SynTP\SynAsus.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\windows\ehome\ehmsas.exe
c:\windows\system32\sppsvc.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2009-12-04 21:44 - počítač byl restartován
ComboFix-quarantined-files.txt 2009-12-04 20:44

Před spuštěním: Volných bajtů: 391 621 115 904
Po spuštění: Volných bajtů: 391 744 143 360

- - End Of File - - 7F41E9F60E85EBD69CE045D66F76E6BF

[Damned]

F-Secure si odinstaloval řádně? Jsou tam po něm zbytky. Ten odkaz z VT?

[junfan]

jeste jsem si vsimnul tohoto - posilam screen... po vymazani a naslednem restartu je spet ten text soubor.. uvnitr ma ruzne ip adresy

[junfan]

jaky odkaz z vt?

[junfan]

Antivirus Verze Poslední aktualizace Výsledek
a-squared 4.5.0.43 2009.12.04 -
AhnLab-V3 5.0.0.2 2009.12.04 -
AntiVir 7.9.1.92 2009.12.04 HEUR/Malware
Antiy-AVL 2.0.3.7 2009.12.04 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.04 -
AVG 8.5.0.426 2009.12.04 -
BitDefender 7.2 2009.12.04 -
CAT-QuickHeal 10.00 2009.12.04 -
ClamAV 0.94.1 2009.12.04 -
Comodo 3103 2009.12.01 -
DrWeb 5.0.0.12182 2009.12.04 -
eSafe 7.0.17.0 2009.12.03 -
eTrust-Vet 35.1.7159 2009.12.04 -
F-Prot 4.5.1.85 2009.12.04 -
F-Secure 9.0.15370.0 2009.12.03 -
Fortinet 4.0.14.0 2009.12.04 -
GData 19 2009.12.04 -
Ikarus T3.1.1.74.0 2009.12.04 -
K7AntiVirus 7.10.910 2009.12.03 -
Kaspersky 7.0.0.125 2009.12.04 -
McAfee 5822 2009.12.04 -
McAfee+Artemis 5822 2009.12.04 -
McAfee-GW-Edition 6.8.5 2009.12.04 Heuristic.Malware
Microsoft 1.5302 2009.12.04 -
NOD32 4661 2009.12.04 -
Norman 6.03.02 2009.12.04 -
nProtect 2009.1.8.0 2009.12.04 -
Panda 10.0.2.2 2009.12.04 -
PCTools 7.0.3.5 2009.12.04 -
Prevx 3.0 2009.12.04 -
Rising 22.24.04.10 2009.12.04 -
Sophos 4.48.0 2009.12.04 -
Sunbelt 3.2.1858.2 2009.12.04 -
Symantec 1.4.4.12 2009.12.04 -
TheHacker 6.5.0.2.085 2009.12.04 -
TrendMicro 9.100.0.1001 2009.12.04 -
VBA32 3.12.12.0 2009.12.03 -
ViRobot 2009.12.4.2072 2009.12.04 -
VirusBuster 5.0.21.0 2009.12.04 -
Rozšiřující informace
File size: 28672 bytes
MD5...: 9ed42798aafdbdd9fa2345f2979632d2
SHA1..: 81da8ab1376c4ccdb4cd7a956143c51dd1cd52dd
SHA256: a808e7419ea6ee37f9182abe0593ff9879c7b05fb23a867b0d9e6298503cc10b
ssdeep: 192:teGPq+OYp5Fa20bYGm5cc692R9IMzs1zz9+M9sog21KgGDTtHtEQYgR1PQ:7
q+OGqm5cc22Twku1qNEQYo1PQ

PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x1108
timedatestamp.....: 0x48981f5e (Tue Aug 05 09:37:34 2008)
machinetype.......: 0x14c (I386)

( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x45dc 0x5000 4.46 8f995f960fd0a1183d9617d37e3d75fa
.data 0x6000 0x600 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rsrc 0x7000 0x8bc 0x1000 1.89 7e3a69e81975de20ce33ddd17c24e29b

( 1 imports )
> MSVBVM60.DLL: -, -, -, -, -, -, -, DllFunctionCall, -, -, __vbaExceptHandler, -, -, ProcCallEngine, -, -, -, -, -, -, -, -, -, -, -

( 0 exports )

RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: Universal Update
description..: n/a
original name: UUpdate.exe
internal name: UUpdate
file version.: 1.00.0062
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned

[Damned]

Odkaz je odkaz, už celý věky.

Stáhni si OTL na Plochu.
Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Output klikni na minimal Output.Pod Standard Registry změň na All. Zatrhni LOP Check a Purity Check. Klikni na Run Scan. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj

[junfan]

jasne... Jen jsem si nebyl jistej co je VT...
Tahle hodnota se stale vraci
O16 - DPF: {22492231-AEF0-49FC-9180-CE8969AB1273} (F-Secure Online Scanner Launcher) - http://download.sp.f-secure.com/ols/f-s ... uncher.cab
ani kdyz ji rucne odstranim nepomuze

[junfan]

OTL logfile created on: 4.12.2009 22:49:35 - Run 1
OTL by OldTimer - Version 3.1.11.6 Folder = C:\Users\Uzivatel\Desktop
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 455,99 Gb Total Space | 364,90 Gb Free Space | 80,02% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KAREL
Current User Name: Uzivatel
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\Uzivatel\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe (IObit)
PRC - C:\Program Files\Norton Internet Security\Engine\17.1.0.19\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Program Files\TO2SSM\mccitrayapp.exe (Motive Communications, Inc.)
PRC - C:\Windows\AsScrPro.exe (ASUS)
PRC - C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation)
PRC - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\sppsvc.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
PRC - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation)
PRC - C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUS)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Broadcom Corporation.)
PRC - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
PRC - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
PRC - C:\Program Files\ASUS\ATK Hotkey\HControl.exe (ASUS)
PRC - C:\Program Files\P4G\BatteryLife.exe (ATK)
PRC - C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe (ASUS)
PRC - C:\Program Files\ASUS\ASUS CopyProtect\ASPG.exe (ASUS)
PRC - C:\Program Files\ASUS\SmartLogon\sensorsrv.exe (ASUS)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
PRC - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
PRC - C:\Program Files\ASUS\Splendid\ACMON.exe (ATK)
PRC - C:\Program Files\ASUS\ATK Hotkey\WDC.exe ()
PRC - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe ()
PRC - C:\Program Files\ASUS\ASUS Live Update\ALU.exe ()
PRC - C:\Program Files\ASUS\Net4Switch\Net4Switch.exe (ASUS)
PRC - C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Synaptics, Inc.)
PRC - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
PRC - C:\Program Files\Synaptics\SynTP\SynAsus.exe (Synaptics, Inc.)
PRC - C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe ()
PRC - C:\Program Files\Common Files\Motive\McciCMService.exe (Motive Communications, Inc.)
PRC - C:\Program Files\ASUS\ATK Hotkey\AsLdrSrv.exe ()
PRC - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Nero AG)
PRC - C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe ()
PRC - C:\Program Files\ATKGFNEX\GFNEXSrv.exe ()
PRC - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe ()
PRC - C:\Program Files\Wireless Console 2\wcourier.exe ()
PRC - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)
PRC - C:\Windows\System32\ACEngSvr.exe (ASUSTeK)


========== Modules (SafeList) ==========

MOD - C:\Users\Uzivatel\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\System32\sspicli.dll (Microsoft Corporation)
MOD - C:\Windows\System32\sechost.dll (Microsoft Corporation)
MOD - C:\Windows\System32\samcli.dll (Microsoft Corporation)
MOD - C:\Windows\System32\profapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\netutils.dll (Microsoft Corporation)
MOD - C:\Windows\System32\KernelBase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\dwmapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\devobj.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cryptbase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cfgmgr32.dll (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (NIS) -- C:\Program Files\Norton Internet Security\Engine\17.1.0.19\ccSvcHst.exe (Symantec Corporation)
SRV - (nvsvc) -- C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation)
SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
SRV - (WwanSvc) -- C:\Windows\System32\wwansvc.dll (Microsoft Corporation)
SRV - (WbioSrvc) -- C:\Windows\System32\wbiosrvc.dll (Microsoft Corporation)
SRV - (Power) -- C:\Windows\System32\umpo.dll (Microsoft Corporation)
SRV - (Themes) -- C:\Windows\System32\themeservice.dll (Microsoft Corporation)
SRV - (sppuinotify) -- C:\Windows\System32\sppuinotify.dll (Microsoft Corporation)
SRV - (RpcEptMapper) -- C:\Windows\System32\RpcEpMap.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PNRPsvc) Protokol PNRP (Peer Name Resolution Protocol) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (p2pimsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (HomeGroupProvider) -- C:\Windows\System32\provsvc.dll (Microsoft Corporation)
SRV - (PNRPAutoReg) -- C:\Windows\System32\pnrpauto.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (HomeGroupListener) -- C:\Windows\System32\ListSvc.dll (Microsoft Corporation)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (Dhcp) -- C:\Windows\System32\dhcpcore.dll (Microsoft Corporation)
SRV - (defragsvc) -- C:\Windows\System32\defragsvc.dll (Microsoft Corporation)
SRV - (BDESVC) -- C:\Windows\System32\bdesvc.dll (Microsoft Corporation)
SRV - (AxInstSV) Instalační program ovládacích prvků ActiveX (AxInstSV) -- C:\Windows\System32\AxInstSv.dll (Microsoft Corporation)
SRV - (AppIDSvc) -- C:\Windows\System32\appidsvc.dll (Microsoft Corporation)
SRV - (sppsvc) -- C:\Windows\System32\sppsvc.exe (Microsoft Corporation)
SRV - (NetTcpPortSharing) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
SRV - (odserv) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (btwdins) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Broadcom Corporation.)
SRV - (LightScribeService) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
SRV - (NMIndexingService) -- C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe (Nero AG)
SRV - (McciCMService) -- C:\Program Files\Common Files\Motive\McciCMService.exe (Motive Communications, Inc.)
SRV - (ASLDRService) -- C:\Program Files\ASUS\ATK Hotkey\AsLdrSrv.exe ()
SRV - (Nero BackItUp Scheduler 3) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Nero AG)
SRV - (ATKGFNEXSrv) -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe ()
SRV - (spmgr) -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe ()
SRV - (IviRegMgr) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)
SRV - (ose) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (SymDS) -- C:\Windows\system32\drivers\NIS\1101000.013\SYMDS.SYS (Symantec Corporation)
DRV - (BHDrvx86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20091104.001\BHDrvx86.sys (Symantec Corporation)
DRV - (IDSVix86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20091111.001\IDSvix86.sys (Symantec Corporation)
DRV - (ccHP) -- C:\Windows\system32\drivers\NIS\1101000.013\ccHPx86.sys (Symantec Corporation)
DRV - (SYMTDIv) -- C:\Windows\System32\Drivers\NIS\1101000.013\SYMTDIV.SYS (Symantec Corporation)
DRV - (SymEFA) -- C:\Windows\system32\drivers\NIS\1101000.013\SYMEFA.SYS (Symantec Corporation)
DRV - (SymIRON) -- C:\Windows\System32\Drivers\NIS\1101000.013\Ironx86.SYS (Symantec Corporation)
DRV - (SRTSP) -- C:\Windows\System32\Drivers\NIS\1101000.013\SRTSP.SYS (Symantec Corporation)
DRV - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\Windows\system32\drivers\NIS\1101000.013\SRTSPX.SYS (Symantec Corporation)
DRV - (SymEvent) -- C:\Windows\System32\drivers\SYMEVENT.SYS (Symantec Corporation)
DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20091204.006\NAVEX15.SYS (Symantec Corporation)
DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20091204.006\NAVENG.SYS (Symantec Corporation)
DRV - (cmdide) -- C:\Windows\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (adpahci) -- C:\Windows\system32\DRIVERS\adpahci.sys (Adaptec, Inc.)
DRV - (adp94xx) -- C:\Windows\system32\DRIVERS\adp94xx.sys (Adaptec, Inc.)
DRV - (amdsbs) -- C:\Windows\system32\DRIVERS\amdsbs.sys (AMD Technologies Inc.)
DRV - (adpu320) -- C:\Windows\system32\DRIVERS\adpu320.sys (Adaptec, Inc.)
DRV - (arcsas) -- C:\Windows\system32\DRIVERS\arcsas.sys (Adaptec, Inc.)
DRV - (amdsata) -- C:\Windows\system32\DRIVERS\amdsata.sys (Advanced Micro Devices)
DRV - (arc) -- C:\Windows\system32\DRIVERS\arc.sys (Adaptec, Inc.)
DRV - (amdxata) -- C:\Windows\system32\DRIVERS\amdxata.sys (Advanced Micro Devices)
DRV - (aliide) -- C:\Windows\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
DRV - (nvstor) -- C:\Windows\system32\DRIVERS\nvstor.sys (NVIDIA Corporation)
DRV - (nvraid) -- C:\Windows\system32\DRIVERS\nvraid.sys (NVIDIA Corporation)
DRV - (nfrd960) -- C:\Windows\system32\DRIVERS\nfrd960.sys (IBM Corporation)
DRV - (LSI_SAS) -- C:\Windows\system32\DRIVERS\lsi_sas.sys (LSI Corporation)
DRV - (iaStorV) -- C:\Windows\system32\DRIVERS\iaStorV.sys (Intel Corporation)
DRV - (MegaSR) -- C:\Windows\system32\DRIVERS\MegaSR.sys (LSI Corporation, Inc.)
DRV - (KSecPkg) -- C:\Windows\System32\Drivers\ksecpkg.sys (Microsoft Corporation)
DRV - (LSI_SCSI) -- C:\Windows\system32\DRIVERS\lsi_scsi.sys (LSI Corporation)
DRV - (LSI_FC) -- C:\Windows\system32\DRIVERS\lsi_fc.sys (LSI Corporation)
DRV - (LSI_SAS2) -- C:\Windows\system32\DRIVERS\lsi_sas2.sys (LSI Corporation)
DRV - (iirsp) -- C:\Windows\system32\DRIVERS\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (megasas) -- C:\Windows\system32\DRIVERS\megasas.sys (LSI Corporation)
DRV - (hwpolicy) -- C:\Windows\System32\drivers\hwpolicy.sys (Microsoft Corporation)
DRV - (elxstor) -- C:\Windows\system32\DRIVERS\elxstor.sys (Emulex)
DRV - (aic78xx) -- C:\Windows\system32\DRIVERS\djsvs.sys (Adaptec, Inc.)
DRV - (HpSAMD) -- C:\Windows\system32\DRIVERS\HpSAMD.sys (Hewlett-Packard Company)
DRV - (FsDepends) -- C:\Windows\System32\drivers\fsdepends.sys (Microsoft Corporation)
DRV - (vsmraid) -- C:\Windows\system32\DRIVERS\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (vhdmp) -- C:\Windows\system32\DRIVERS\vhdmp.sys (Microsoft Corporation)
DRV - (vdrvroot) -- C:\Windows\system32\DRIVERS\vdrvroot.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\System32\drivers\wimmount.sys (Microsoft Corporation)
DRV - (viaide) -- C:\Windows\system32\DRIVERS\viaide.sys (VIA Technologies, Inc.)
DRV - (ql2300) -- C:\Windows\system32\DRIVERS\ql2300.sys (QLogic Corporation)
DRV - (rdyboost) -- C:\Windows\System32\drivers\rdyboost.sys (Microsoft Corporation)
DRV - (ql40xx) -- C:\Windows\system32\DRIVERS\ql40xx.sys (QLogic Corporation)
DRV - (SiSRaid4) -- C:\Windows\system32\DRIVERS\sisraid4.sys (Silicon Integrated Systems)
DRV - (pcw) -- C:\Windows\System32\drivers\pcw.sys (Microsoft Corporation)
DRV - (SiSRaid2) -- C:\Windows\system32\DRIVERS\SiSRaid2.sys (Silicon Integrated Systems Corp.)
DRV - (stexstor) -- C:\Windows\system32\DRIVERS\stexstor.sys (Promise Technology)
DRV - (CNG) -- C:\Windows\System32\Drivers\cng.sys (Microsoft Corporation)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\System32\Drivers\Brserid.sys (Brother Industries Ltd.)
DRV - (rdpbus) -- C:\Windows\system32\DRIVERS\rdpbus.sys (Microsoft Corporation)
DRV - (RDPREFMP) -- C:\Windows\System32\drivers\RDPREFMP.sys (Microsoft Corporation)
DRV - (RasAgileVpn) WAN Miniport (IKEv2) -- C:\Windows\System32\drivers\agilevpn.sys (Microsoft Corporation)
DRV - (WfpLwf) -- C:\Windows\System32\drivers\wfplwf.sys (Microsoft Corporation)
DRV - (NdisCap) -- C:\Windows\System32\drivers\ndiscap.sys (Microsoft Corporation)
DRV - (vwifibus) -- C:\Windows\System32\drivers\vwifibus.sys (Microsoft Corporation)
DRV - (1394ohci) -- C:\Windows\System32\drivers\1394ohci.sys (Microsoft Corporation)
DRV - (UmPass) -- C:\Windows\system32\DRIVERS\umpass.sys (Microsoft Corporation)
DRV - (mshidkmdf) -- C:\Windows\System32\drivers\mshidkmdf.sys (Microsoft Corporation)
DRV - (MTConfig) -- C:\Windows\system32\DRIVERS\MTConfig.sys (Microsoft Corporation)
DRV - (CompositeBus) -- C:\Windows\System32\drivers\CompositeBus.sys (Microsoft Corporation)
DRV - (AppID) -- C:\Windows\system32\drivers\appid.sys (Microsoft Corporation)
DRV - (scfilter) -- C:\Windows\System32\drivers\scfilter.sys (Microsoft Corporation)
DRV - (discache) -- C:\Windows\System32\drivers\discache.sys (Microsoft Corporation)
DRV - (HidBatt) -- C:\Windows\system32\DRIVERS\HidBatt.sys (Microsoft Corporation)
DRV - (AcpiPmi) -- C:\Windows\system32\DRIVERS\acpipmi.sys (Microsoft Corporation)
DRV - (AmdPPM) -- C:\Windows\system32\DRIVERS\amdppm.sys (Microsoft Corporation)
DRV - (hcw85cir) -- C:\Windows\system32\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (BrUsbMdm) -- C:\Windows\System32\Drivers\BrUsbMdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\System32\Drivers\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrSerWdm) -- C:\Windows\System32\Drivers\BrSerWdm.sys (Brother Industries Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\DRIVERS\BrFiltLo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\DRIVERS\BrFiltUp.sys (Brother Industries, Ltd.)
DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (LSI Corp)
DRV - (netw5v32) Intel(R) -- C:\Windows\System32\drivers\netw5v32.sys (Intel Corporation)
DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (ebdrv) -- C:\Windows\system32\DRIVERS\evbdx.sys (Broadcom Corporation)
DRV - (b06bdrv) -- C:\Windows\system32\DRIVERS\bxvbdx.sys (Broadcom Corporation)
DRV - (secdrv) -- C:\Windows\System32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (iaStor) -- C:\Windows\system32\DRIVERS\iaStor.sys (Intel Corporation)
DRV - (rimmptsk) -- C:\Windows\System32\drivers\rimmptsk.sys (REDC)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (kbfiltr) -- C:\Windows\System32\drivers\kbfiltr.sys ( )
DRV - (lullaby) -- C:\Windows\system32\DRIVERS\lullaby.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (GEARAspiWDM) -- C:\Windows\System32\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek Corporation )
DRV - (itecir) -- C:\Windows\System32\drivers\itecir.sys (ITE Tech. Inc. )
DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (FiltUSBET) -- C:\Windows\System32\drivers\etFilter.sys (eMPIA Technology Inc.)
DRV - (ScanUSBET) -- C:\Windows\System32\drivers\etScan.sys (eMPIA Technology, Inc.)
DRV - (DCamUSBET) -- C:\Windows\System32\drivers\etDevice.sys (eMPIA Technology, Inc.)
DRV - (ghaio) -- C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys ()
DRV - (rismxdp) -- C:\Windows\System32\drivers\rixdptsk.sys (REDC)
DRV - (rimsptsk) -- C:\Windows\System32\drivers\rimsptsk.sys (REDC)
DRV - (ASMMAP) -- C:\Program Files\ATKGFNEX\ASMMAP.sys ()
DRV - (ATSWPDRV) AuthenTec TruePrint USB Driver (SwipeSensor) -- C:\Windows\System32\drivers\atswpdrv.sys (AuthenTec, Inc.)
DRV - (regi) -- C:\Windows\System32\drivers\regi.sys (InterVideo)
DRV - (MTsensor) -- C:\Windows\System32\drivers\ATKACPI.sys (ATK0100)
DRV - (MarvinBus) -- C:\Windows\System32\drivers\MarvinBus.sys (Pinnacle Systems GmbH)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,DefaultScope = {A3B1A68E-51A6-4355-BBD8-4F9F33248A0A}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://web.volny.cz/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "SluneÄŤnice"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.5

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.12.04 18:12:46 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{4C0766D3-67A7-45a3-85A2-752F77312F32}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\coFFPlgn\ [2009.12.04 18:11:16 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\IPSFFPlgn\ [2009.12.04 18:11:34 | 00,000,000 | ---D | M]

[2009.12.04 18:19:24 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Extensions
[2009.08.12 09:48:17 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.09.15 08:53:39 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Extensions\home2@tomtom.com
[2009.12.04 18:19:25 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\401ymfdb.default\extensions
[2009.12.04 18:19:25 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\401ymfdb.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2008.10.14 20:33:30 | 00,095,600 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll

O1 HOSTS File: (27 bytes) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.1.0.19\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.1.0.19\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Pomocná služba pro přihlášení ke službě Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (ASUS Security Protect Manager) - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - Reg Error: Value error. File not found
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.1.0.19\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (&S-Rank) - {B71B15CF-3093-459C-B764-AEB2486F2273} - C:\Program Files\Seznam\Postak\SRank.dll (Seznam.cz a.s.)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.1.0.19\CoIEPlg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&S-Rank) - {B71B15CF-3093-459C-B764-AEB2486F2273} - C:\Program Files\Seznam\Postak\SRank.dll (Seznam.cz a.s.)
O4 - HKLM..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe (ASUS)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [ATKOSD2] C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TO2SSM_McciTrayApp] C:\Program Files\TO2SSM\mccitrayapp.exe (Motive Communications, Inc.)
O4 - HKLM..\Run: [update_vs] C:\Program Files\UUpdate.exe File not found
O4 - HKCU..\Run: [ehTray.exe] C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
O4 - HKCU..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
O4 - HKCU..\Run: [MotiveReportAgent] C:\Program Files\TO2SSM\McciBrowser.exe (Motive Communications, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {22492231-AEF0-49FC-9180-CE8969AB1273} http://download.sp.f-secure.com/ols/f-s ... uncher.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {DE22A7AB-A739-4C58-AD52-21F9CD6306B7} http://download.microsoft.com/download/ ... earadj.cab (CTAdjust Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2009.12.04 22:46:18 | 00,536,064 | ---- | C] (OldTimer Tools) -- C:\Users\Uzivatel\Desktop\OTL.exe
[2009.12.04 22:16:33 | 00,000,000 | ---D | C] -- C:\Users\Uzivatel\Desktop\backups
[2009.12.04 21:39:51 | 00,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2009.12.04 21:37:23 | 00,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Local\temp
[2009.12.04 21:21:21 | 00,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2009.12.04 21:21:20 | 00,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2009.12.04 21:21:20 | 00,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2009.12.04 21:21:20 | 00,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2009.12.04 21:21:07 | 00,000,000 | ---D | C] -- C:\Windows\ERDNT
[2009.12.04 21:20:23 | 00,000,000 | ---D | C] -- C:\Qoobox
[2009.12.04 20:46:13 | 00,396,288 | ---- | C] (Trend Micro Inc.) -- C:\Users\Uzivatel\Desktop\hijackthis.exe
[2009.12.04 20:39:21 | 00,000,000 | ---D | C] -- C:\Windows\pss
[2009.12.04 19:22:14 | 00,000,000 | ---D | C] -- C:\Users\Uzivatel\Desktop\VGA_nVidia_Win7_32_815118669
[2009.12.04 18:44:28 | 00,000,000 | ---D | C] -- C:\Windows\Roaming
[2009.12.04 18:43:35 | 00,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2009.12.04 18:43:35 | 00,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2009.12.04 18:43:35 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2009.12.04 18:43:35 | 00,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2009.12.04 18:43:35 | 00,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2009.12.04 18:43:35 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2009.12.04 18:43:35 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2009.12.04 18:43:35 | 00,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2009.12.04 18:43:35 | 00,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2009.12.04 18:43:35 | 00,000,000 | ---D | C] -- C:\Recovery
[2009.12.04 18:04:18 | 00,000,000 | --SD | C] -- C:\Users\Uzivatel\AppData\Roaming\Microsoft
[2009.12.04 18:04:18 | 00,000,000 | R--D | C] -- C:\Users\Uzivatel\Favorites
[2009.12.04 18:04:18 | 00,000,000 | R--D | C] -- C:\Users\Uzivatel\Downloads
[2009.12.04 18:04:18 | 00,000,000 | R--D | C] -- C:\Users\Uzivatel\Documents
[2009.12.04 18:04:18 | 00,000,000 | R--D | C] -- C:\Users\Uzivatel\Desktop
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\AppData\Local\Temporary Internet Files
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Šablony
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Soubory cookie
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\SendTo
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Poslední
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Okolní tiskárny
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Okolní síť
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Documents\Obrázky
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Nabídka Start
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Local Settings
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Documents\Hudba
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\AppData\Local\History
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Documents\Filmy
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Dokumenty
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\Data aplikací
[2009.12.04 18:04:18 | 00,000,000 | -HSD | C] -- C:\Users\Uzivatel\AppData\Local\Data aplikací
[2009.12.04 18:04:18 | 00,000,000 | -H-D | C] -- C:\Users\Uzivatel\AppData
[2009.12.04 18:04:18 | 00,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Local\Microsoft
[2009.12.04 18:04:18 | 00,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Roaming\Media Center Programs
[2009.12.04 18:04:17 | 00,000,000 | R--D | C] -- C:\Users\Uzivatel\Videos
[2009.12.04 18:04:17 | 00,000,000 | R--D | C] -- C:\Users\Uzivatel\Saved Games
[2009.12.04 18:04:17 | 00,000,000 | R--D | C] -- C:\Users\Uzivatel\Pictures
[2009.12.04 18:04:17 | 00,000,000 | R--D | C] -- C:\Users\Uzivatel\Music
[2009.12.04 18:04:17 | 00,000,000 | R--D | C] -- C:\Users\Uzivatel\Links
[2009.12.04 18:03:26 | 00,490,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvuninst.exe
[2009.12.04 18:03:16 | 00,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2009.12.04 18:02:43 | 00,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2009.12.04 18:00:13 | 00,000,000 | ---D | C] -- C:\Windows\Prefetch
[2009.12.04 17:58:57 | 00,000,000 | ---D | C] -- C:\Windows\Panther
[2009.12.04 17:43:34 | 00,000,000 | ---D | C] -- C:\$WINDOWS.~Q
[2009.12.04 17:39:11 | 00,000,000 | ---D | C] -- C:\$INPLACE.~TR
[2009.12.03 23:06:01 | 00,000,000 | ---D | C] -- C:\Users\Uzivatel\Desktop\záloha pohoda
[2009.12.03 22:02:22 | 00,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Roaming\IObit
[2009.12.03 22:02:22 | 00,000,000 | ---D | C] -- C:\Program Files\IObit
[2009.12.03 21:47:34 | 00,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Roaming\Malwarebytes
[2009.12.03 21:47:30 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009.12.03 21:47:28 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009.12.03 21:47:28 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009.12.03 21:47:28 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009.12.03 21:41:07 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009.12.03 14:56:43 | 00,000,000 | ---D | C] -- C:\Users\Uzivatel\Desktop\Argema
[2009.11.10 12:59:43 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2009.11.10 12:59:43 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2009.11.10 12:59:43 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2009.11.10 07:17:04 | 00,000,000 | ---D | C] -- C:\Boot
[2009.08.12 01:34:29 | 00,015,928 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys

========== Files - Modified Within 30 Days ==========

[2009.12.04 22:52:31 | 02,621,440 | -HS- | M] () -- C:\Users\Uzivatel\NTUSER.DAT
[2009.12.04 22:46:21 | 00,536,064 | ---- | M] (OldTimer Tools) -- C:\Users\Uzivatel\Desktop\OTL.exe
[2009.12.04 22:30:50 | 01,445,734 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009.12.04 22:30:50 | 00,622,660 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2009.12.04 22:30:50 | 00,607,190 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009.12.04 22:30:50 | 00,118,810 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2009.12.04 22:30:50 | 00,103,568 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009.12.04 22:26:08 | 00,000,376 | ---- | M] () -- C:\Windows\tasks\AWC Startup.job
[2009.12.04 22:25:57 | 00,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2009.12.04 22:25:52 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009.12.04 22:25:47 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009.12.04 22:25:37 | 24,152,18688 | -HS- | M] () -- C:\hiberfil.sys
[2009.12.04 22:24:40 | 00,008,496 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009.12.04 22:24:40 | 00,008,496 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009.12.04 22:24:35 | 01,783,108 | -H-- | M] () -- C:\Users\Uzivatel\AppData\Local\IconCache.db
[2009.12.04 22:11:24 | 00,000,194 | ---- | M] () -- C:\Users\Uzivatel\Desktop\Pri kazdem zapnuti notebooku barvy na 8bitu.url
[2009.12.04 21:58:49 | 00,098,530 | ---- | M] () -- C:\Users\Uzivatel\Desktop\Výstřižek.PNG
[2009.12.04 21:40:11 | 00,000,215 | ---- | M] () -- C:\Windows\system.ini
[2009.12.04 21:39:49 | 00,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2009.12.04 21:19:35 | 03,579,965 | R--- | M] () -- C:\Users\Uzivatel\Desktop\ComboFix.exe
[2009.12.04 20:46:17 | 00,396,288 | ---- | M] (Trend Micro Inc.) -- C:\Users\Uzivatel\Desktop\hijackthis.exe
[2009.12.04 20:09:35 | 02,690,502 | ---- | M] () -- C:\Windows\System32\drivers\NIS\1101000.013\Cat.DB
[2009.12.04 19:52:07 | 00,024,084 | ---- | M] () -- C:\Users\Uzivatel\AppData\Roaming\UserTile.png
[2009.12.04 19:51:36 | 00,096,384 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\GDIPFONTCACHEV1.DAT
[2009.12.04 19:47:30 | 00,000,151 | ---- | M] () -- C:\Users\Uzivatel\Desktop\ASUSTeK Computer Inc.-Support-.url
[2009.12.04 19:22:40 | 00,457,248 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvuhda.exe
[2009.12.04 19:22:40 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nvhdap32.dll
[2009.12.04 19:22:39 | 00,064,032 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys
[2009.12.04 19:22:39 | 00,001,407 | ---- | M] () -- C:\Windows\System32\nvhda.nvu
[2009.12.04 19:22:38 | 00,143,360 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcohda.dll
[2009.12.04 19:22:38 | 00,057,344 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\System32\nvapo32v.dll
[2009.12.04 19:22:36 | 03,156,480 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2009.12.04 19:22:35 | 10,387,456 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2009.12.04 19:22:35 | 00,485,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvudisp.exe
[2009.12.04 19:22:33 | 09,824,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2009.12.04 19:22:24 | 07,629,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2009.12.04 19:22:24 | 01,530,400 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvencodemft.dll
[2009.12.04 19:22:24 | 00,256,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll
[2009.12.04 19:22:24 | 00,010,155 | ---- | M] () -- C:\Windows\System32\nvdisp.nvu
[2009.12.04 19:22:21 | 01,317,408 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2009.12.04 19:22:21 | 00,678,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2009.12.04 19:22:20 | 01,706,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2009.12.04 19:22:18 | 00,993,792 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2009.12.04 19:22:18 | 00,155,648 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod161.dll
[2009.12.04 19:22:18 | 00,155,648 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcod.dll
[2009.12.04 19:22:18 | 00,004,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2009.12.04 19:22:16 | 00,795,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpinst.exe
[2009.12.04 19:17:23 | 80,195,127 | ---- | M] () -- C:\Users\Uzivatel\Desktop\VGA_nVidia_Win7_32_815118669.zip
[2009.12.04 18:43:39 | 00,000,020 | -HS- | M] () -- C:\Users\Uzivatel\ntuser.ini
[2009.12.04 18:36:41 | 00,067,884 | ---- | M] () -- C:\Windows\System32\license.rtf
[2009.12.04 18:27:04 | 00,021,496 | ---- | M] () -- C:\Windows\System32\emptyregdb.dat
[2009.12.04 18:23:28 | 00,380,456 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.12.04 18:04:19 | 00,524,288 | -HS- | M] () -- C:\Users\Uzivatel\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2009.12.04 18:04:19 | 00,524,288 | -HS- | M] () -- C:\Users\Uzivatel\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2009.12.04 18:04:19 | 00,065,536 | -HS- | M] () -- C:\Users\Uzivatel\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2009.12.04 18:03:19 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01000.Wdf
[2009.12.04 17:58:43 | 00,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2009.12.04 17:35:29 | 00,003,616 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009.12.04 17:35:28 | 00,003,616 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009.12.04 16:32:36 | 00,002,544 | ---- | M] () -- C:\Windows\diagwrn.xml
[2009.12.04 16:32:36 | 00,001,890 | ---- | M] () -- C:\Windows\diagerr.xml
[2009.12.04 14:22:54 | 00,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2009.12.03 22:31:19 | 00,035,428 | ---- | M] () -- C:\Users\Uzivatel\Desktop\KM POOL PODSKALSKA.pdf
[2009.12.03 22:30:14 | 00,035,422 | ---- | M] () -- C:\Users\Uzivatel\Desktop\KM POOL TUNKL.pdf
[2009.12.03 22:02:26 | 00,001,021 | ---- | M] () -- C:\Users\Public\Desktop\Advanced SystemCare.lnk
[2009.12.03 21:47:32 | 00,000,825 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009.12.03 21:44:07 | 00,506,620 | ---- | M] () -- C:\Users\Uzivatel\Desktop\cc_20091203_214341.reg
[2009.12.03 21:41:08 | 00,001,677 | ---- | M] () -- C:\Users\Uzivatel\Desktop\CCleaner.lnk
[2009.11.23 14:34:37 | 00,002,589 | ---- | M] () -- C:\Users\Uzivatel\Desktop\Microsoft Office Excel 2007.lnk
[2009.11.18 12:27:46 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2009.11.14 10:03:50 | 00,000,703 | ---- | M] () -- C:\Users\Public\Desktop\ASUS Net4Switch.lnk
[2009.11.14 10:03:22 | 00,001,553 | ---- | M] () -- C:\Users\Public\Desktop\ASUS MultiFrame.lnk
[2009.11.14 09:55:08 | 00,002,220 | ---- | M] () -- C:\Users\Public\Desktop\Norton Internet Security.lnk
[2009.11.14 01:47:57 | 00,260,608 | ---- | M] () -- C:\Windows\PEV.exe
[2009.11.07 02:07:07 | 00,000,172 | ---- | M] () -- C:\Windows\System32\drivers\NIS\1101000.013\isolate.ini
[2009.11.05 23:07:13 | 00,007,493 | ---- | M] () -- C:\Windows\System32\drivers\NIS\1101000.013\SymDS.cat
[2009.11.05 23:06:13 | 00,328,752 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\NIS\1101000.013\SymDS.sys
[2009.11.05 23:06:13 | 00,002,793 | ---- | M] () -- C:\Windows\System32\drivers\NIS\1101000.013\SymDS.inf
[2009.11.05 13:44:31 | 00,031,232 | ---- | M] () -- C:\Users\Uzivatel\Documents\3e85ce6661d3c67f85877367cb534fbfreklama na bazény.doc

[junfan]

pokracovani OTL





========== Files Created - No Company Name ==========

[2009.12.04 21:58:48 | 00,098,530 | ---- | C] () -- C:\Users\Uzivatel\Desktop\Výstřižek.PNG
[2009.12.04 21:21:21 | 00,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2009.12.04 21:21:20 | 00,260,608 | ---- | C] () -- C:\Windows\PEV.exe
[2009.12.04 21:21:20 | 00,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2009.12.04 21:21:20 | 00,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2009.12.04 21:21:20 | 00,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2009.12.04 21:11:41 | 03,579,965 | R--- | C] () -- C:\Users\Uzivatel\Desktop\ComboFix.exe
[2009.12.04 21:09:52 | 00,000,194 | ---- | C] () -- C:\Users\Uzivatel\Desktop\Pri kazdem zapnuti notebooku barvy na 8bitu.url
[2009.12.04 19:47:30 | 00,000,151 | ---- | C] () -- C:\Users\Uzivatel\Desktop\ASUSTeK Computer Inc.-Support-.url
[2009.12.04 19:17:21 | 80,195,127 | ---- | C] () -- C:\Users\Uzivatel\Desktop\VGA_nVidia_Win7_32_815118669.zip
[2009.12.04 18:43:39 | 00,000,020 | -HS- | C] () -- C:\Users\Uzivatel\ntuser.ini
[2009.12.04 18:38:30 | 24,152,18688 | -HS- | C] () -- C:\hiberfil.sys
[2009.12.04 18:27:04 | 00,021,496 | ---- | C] () -- C:\Windows\System32\emptyregdb.dat
[2009.12.04 18:04:18 | 00,524,288 | -HS- | C] () -- C:\Users\Uzivatel\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2009.12.04 18:04:18 | 00,524,288 | -HS- | C] () -- C:\Users\Uzivatel\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2009.12.04 18:04:18 | 00,065,536 | -HS- | C] () -- C:\Users\Uzivatel\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2009.12.04 18:04:17 | 02,621,440 | -HS- | C] () -- C:\Users\Uzivatel\NTUSER.DAT
[2009.12.04 18:03:19 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01000.Wdf
[2009.12.04 18:03:18 | 00,008,496 | -H-- | C] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009.12.04 18:03:18 | 00,008,496 | -H-- | C] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009.12.03 22:31:19 | 00,035,428 | ---- | C] () -- C:\Users\Uzivatel\Desktop\KM POOL PODSKALSKA.pdf
[2009.12.03 22:30:14 | 00,035,422 | ---- | C] () -- C:\Users\Uzivatel\Desktop\KM POOL TUNKL.pdf
[2009.12.03 22:02:51 | 00,000,376 | ---- | C] () -- C:\Windows\tasks\AWC Startup.job
[2009.12.03 22:02:26 | 00,001,021 | ---- | C] () -- C:\Users\Public\Desktop\Advanced SystemCare.lnk
[2009.12.03 21:47:32 | 00,000,825 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009.12.03 21:43:55 | 00,506,620 | ---- | C] () -- C:\Users\Uzivatel\Desktop\cc_20091203_214341.reg
[2009.12.03 21:41:08 | 00,001,677 | ---- | C] () -- C:\Users\Uzivatel\Desktop\CCleaner.lnk
[2009.11.18 12:27:46 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2009.11.14 10:03:50 | 00,000,703 | ---- | C] () -- C:\Users\Public\Desktop\ASUS Net4Switch.lnk
[2009.11.14 10:03:22 | 00,001,553 | ---- | C] () -- C:\Users\Public\Desktop\ASUS MultiFrame.lnk
[2009.11.09 09:27:20 | 00,383,562 | RHS- | C] () -- C:\bootmgr
[2009.11.09 06:23:14 | 00,002,544 | ---- | C] () -- C:\Windows\diagwrn.xml
[2009.11.09 06:23:14 | 00,001,890 | ---- | C] () -- C:\Windows\diagerr.xml
[2009.11.05 13:44:31 | 00,031,232 | ---- | C] () -- C:\Users\Uzivatel\Documents\3e85ce6661d3c67f85877367cb534fbfreklama na bazény.doc
[2009.10.10 18:31:07 | 00,000,210 | ---- | C] () -- C:\Program Files\updatelog.txt
[2009.10.10 16:06:21 | 00,001,173 | ---- | C] () -- C:\Program Files\app2.log
[2009.10.10 16:06:15 | 00,183,808 | ---- | C] () -- C:\Program Files\Uninstall.exe
[2009.09.12 01:54:12 | 00,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.08.29 22:11:56 | 00,024,084 | ---- | C] () -- C:\Users\Uzivatel\AppData\Roaming\UserTile.png
[2009.08.26 13:01:33 | 00,000,000 | ---- | C] () -- C:\Windows\OpPrintServer.INI
[2009.08.12 08:35:51 | 00,421,888 | ---- | C] () -- C:\Windows\System32\OpenQuicktimeLib.dll
[2009.08.12 08:35:51 | 00,157,696 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2009.08.12 08:35:50 | 01,163,264 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2009.08.12 08:35:50 | 01,040,384 | ---- | C] () -- C:\Windows\System32\vorbisenc.dll
[2009.08.12 08:35:50 | 00,679,936 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2009.08.12 08:35:50 | 00,237,568 | ---- | C] () -- C:\Windows\System32\OggDS.dll
[2009.08.12 08:35:50 | 00,155,648 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2009.08.12 08:35:50 | 00,077,824 | ---- | C] () -- C:\Windows\System32\vorbisfile.dll
[2009.08.12 08:35:50 | 00,061,440 | ---- | C] () -- C:\Windows\System32\ogg.dll
[2009.08.12 08:35:48 | 00,019,968 | ---- | C] () -- C:\Windows\System32\cpuinf32.dll
[2009.08.12 01:41:36 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2009.08.12 01:36:01 | 00,049,152 | ---- | C] () -- C:\Windows\revdevdll.dll
[2009.08.03 14:07:42 | 00,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009.07.14 00:51:43 | 00,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 00:42:10 | 00,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2008.09.16 11:47:00 | 00,000,098 | ---- | C] () -- C:\Program Files\updatesetup.ini
[2008.09.16 11:41:32 | 00,147,456 | ---- | C] () -- C:\Program Files\VycistitSoubory.exe
[2008.07.30 01:33:22 | 00,057,344 | ---- | C] () -- C:\Windows\System32\BtwNamespaceExt2.dll
[2008.07.02 03:28:38 | 00,061,440 | ---- | C] () -- C:\Program Files\Common Files\CPInstallAction.dll
[2008.05.22 17:35:54 | 00,051,962 | ---- | C] () -- C:\Program Files\Common Files\banner.jpg
[2008.04.17 11:37:47 | 00,000,010 | ---- | C] () -- C:\Windows\System32\ABLKSR.ini
[2008.02.27 12:44:12 | 00,005,341 | ---- | C] () -- C:\Program Files\license.txt
[2008.02.27 12:42:24 | 00,000,981 | ---- | C] () -- C:\Program Files\VycistitSoubory.exe.manifest
[2008.02.27 12:41:56 | 00,000,284 | ---- | C] () -- C:\Program Files\setup.ini
[2008.02.27 12:28:08 | 00,011,093 | ---- | C] () -- C:\Program Files\background.gif
[2007.06.12 18:34:50 | 00,035,822 | ---- | C] () -- C:\Program Files\Common Files\ASPG_icon.ico
[2004.06.24 22:51:44 | 00,003,584 | ---- | C] () -- C:\Windows\System32\crc32.dll
[2001.11.14 21:56:00 | 01,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll

========== LOP Check ==========

[2009.12.04 18:19:17 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Canon
[2009.12.04 18:19:17 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\CD-LabelPrint
[2009.12.04 18:19:17 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DriverCure
[2009.12.04 18:19:17 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\InterVideo
[2009.12.04 18:19:17 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\IObit
[2009.12.04 18:19:25 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\OpenOffice.org
[2009.08.29 22:11:56 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\PeerNetworking
[2009.12.04 18:19:31 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\STORMWARE
[2009.12.04 18:19:32 | 00,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TomTom
[2009.12.04 22:26:08 | 00,000,376 | ---- | M] () -- C:\Windows\Tasks\AWC Startup.job
[2009.08.25 12:19:32 | 00,000,386 | ---- | M] () -- C:\Windows\Tasks\DriverCure.job
[2009.10.26 18:00:00 | 00,000,448 | ---- | M] () -- C:\Windows\Tasks\ParetoLogic Registration.job
[2009.09.07 23:33:10 | 00,000,422 | ---- | M] () -- C:\Windows\Tasks\ParetoLogic Update Version2.job
[2009.07.14 05:53:46 | 00,002,450 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========


< End of report >

[junfan]

OTL Extras logfile created on: 4.12.2009 22:49:35 - Run 1
OTL by OldTimer - Version 3.1.11.6 Folder = C:\Users\Uzivatel\Desktop
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 455,99 Gb Total Space | 364,90 Gb Free Space | 80,02% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KAREL
Current User Name: Uzivatel
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- "%SystemRoot%\hh.exe" %1
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
chm.file [open] -- "%SystemRoot%\hh.exe" %1
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = WIDCOMM Bluetooth Software
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}" = LightScribe System Software 1.14.17.1
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Pomocník pro přihlášení ke službě Windows Live ID
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP520_series" = Canon MP520 series
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{1E0D8F69-A6AB-4934-9B2D-159D9F97BA4A}" = ParetoLogic DriverCure
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"{206FD69B-F9FE-4164-81BD-D52552BC9C23}" = GearDrvs
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 17
"{2862A3C1-0CD9-4D8B-A28C-8C337D4DD5EB}" = Express Gate
"{2CC667CD-2234-4774-A536-2757606A1029}" = Nero 8 Essentials
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3B05F2FB-745B-4012-ADF2-439F36B2E70B}" = ATKOSD2
"{40580068-9B10-40B5-9548-536CE88AB23C}" = ITECIR
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}" = Nero StartSmart OEM
"{4F93FAD4-CF5C-43AE-801D-607A1979C948}" = Pohoda Undefined Standard
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.03
"{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}" = NB Probe
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}" = ASUS CopyProtect
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7748ac8c-18e3-43bb-959b-088faea16fb2}" = Nero StartSmart
"{7C05592D-424B-46CB-B505-E0013E8E75C9}" = ATK Hotkey
"{83F73CB1-7705-49D1-9852-84D839CA2A45}" = Wireless Console 2
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_HOMESTUDENTR_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_HOMESTUDENTR_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_HOMESTUDENTR_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear eXtreme
"{9D48531D-2135-49FC-BC29-ACCDA5396A76}" = ASUS MultiFrame
"{9D6D7811-43B3-463C-BC79-5D1755269989}" = Net4Switch
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{AC76BA86-7AD7-1033-7B44-A81300000003}" = Adobe Reader 8.1.3
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{BE8BE32F-F595-4693-9F82-1E0A5A047BB6}" = OpenOffice.org 3.0
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{CB84F0F2-927B-458D-9DC5-87832E3DC653}" = GearDrvs
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}" = ATK Media
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}" = Canon PhotoRecord
"{dba84796-8503-4ff0-af57-1747dd9a166d}" = Nero Online Upgrade
"{DE10AB76-4756-4913-BE25-55D1C1051F9A}" = WinFlash
"{DE66EFAD-B9CC-4FD4-9157-6C18E5100161}" = Dolby Control Center
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{EB4DF30B-102B-4F0C-927A-D50E037A325D}" = AuthenTec Fingerprint Sensor Minimum Install
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"Advanced SystemCare 3_is1" = Advanced SystemCare 3
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"CANONBJ_Deinstall_CNMCP64.DLL" = Canon PIXMA iP4000
"CCleaner" = CCleaner
"Easy-PrintToolBox" = Canon Utilities Easy-PrintToolBox
"Easy-WebPrint" = Easy-WebPrint
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"KLiteCodecPack_is1" = K-Lite Codec Pack 2.45 Full
"M50_screensaver" = M50_screensaver
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
"NIS" = Norton Internet Security
"O2 Internet Konfigurator" = O2 Internet Konfigurator
"O2 Mobilni internet" = O2 Mobilni internet
"Registrace uživatele zařízení Canon MP520 series" = Registrace uživatele zařízení Canon MP520 series
"stax-Pinnacle_is1" = SureThing Express Labeler
"STORMWARE PDF Printer_is1" = STORMWARE PDF Printer 5.0.0.614
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"USB2.0 1.3M UVC WebCam" = USB2.0 1.3M UVC WebCam
"VycistitSoubory" = Vyčistit Soubory

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >