Problém se Security Tool.

[Damned]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok).
Zkopíruj do něj následující celý text označený zeleně:

FCopy::
C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\cdrom.sys | c:\windows\system32\drivers\cdrom.sys

File::
c:\documents and settings\Petra\Application Data\wklnhst.dat

Folder::
C:\rsit

DDS::
uStart Page = hxxp://start.icq.com/

Driver::
kgpcpy.cfg
kgpcpy



Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.


Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe
a když se oba soubory překryjí, skript upusť.


- Automaticky se spustí ComboFix, oprava může trvat i déle než 10 minut. ! Nech ComboFix dokončit svou práci !
- Vlož sem log, který vyběhne v závěru čistícího procesu

[Reklama]

[opice]

Btw. jedinej funkcni zpusob jak se pripojuju na net je pres ten ICQ6UnToolbar.exe :)


ComboFix 10-03-20.06 - Petra 21.03.2010 21:51:31.3.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.1015.584 [GMT 1:00]
Spuštěný z: c:\documents and settings\Petra\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Petra\Plocha\CFScript.txt

FILE ::
"c:\documents and settings\Petra\Application Data\wklnhst.dat"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\rsit
c:\rsit\info.txt
c:\rsit\log.txt

.
--------------- FCopy ---------------

c:\windows\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\cdrom.sys --> c:\windows\system32\drivers\cdrom.sys
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-02-21 do 2010-03-21 )))))))))))))))))))))))))))))))
.

2010-03-21 20:51 . 2010-03-21 20:51 -------- d-----w- c:\windows\LastGood
2010-03-21 20:51 . 2004-08-03 21:59 49536 -c--a-w- c:\windows\system32\dllcache\cdrom.sys
2010-03-21 20:51 . 2004-08-03 21:59 49536 ----a-w- c:\windows\system32\drivers\cdrom.sys
2010-03-20 22:38 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-03-20 22:38 . 2010-03-20 22:38 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-03-20 22:38 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-03-20 09:31 . 2010-03-20 09:41 -------- d-----w- c:\program files\STOPzilla!
2010-03-20 09:31 . 2010-03-20 09:31 -------- d-----w- c:\program files\Common Files\iS3
2010-03-05 17:16 . 2010-03-05 17:16 17408 ----a-r- c:\windows\system32\SZIO5.dll
2010-03-05 17:14 . 2010-03-05 17:14 442368 ----a-r- c:\windows\system32\SZBase5.dll
2010-03-05 17:13 . 2010-03-05 17:13 540672 ----a-r- c:\windows\system32\SZComp5.dll
2010-02-24 14:06 . 2010-02-24 14:06 173328 ----a-r- c:\windows\system32\drivers\SZKGFS.sys
2010-02-22 21:51 . 2010-02-22 21:51 -------- d-----w- c:\program files\rajce

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-21 19:58 . 2010-03-21 19:54 504 ----a-w- c:\windows\system32\drivers\kgpcpy.cfg
2010-03-05 20:30 . 2009-01-02 21:18 -------- d-----w- c:\program files\The KMPlayer
2010-02-15 17:16 . 2010-02-15 17:16 -------- d-----w- c:\program files\Software602
2008-01-24 21:26 . 2008-01-24 21:26 15496704 -c--a-w- c:\program files\0_solidconverterpdf.exe
2008-01-24 17:33 . 2008-01-24 16:43 194414768 -c--a-w- c:\program files\Nero-8.2.8.0_csy_trial.exe
2008-01-24 17:18 . 2008-01-24 16:49 61678444 -c--a-w- c:\program files\zps10_cz.exe
2008-01-03 21:48 . 2008-01-03 21:48 2155208 -c--a-w- c:\program files\tcmd702a.exe
2008-01-02 19:25 . 2008-01-02 19:24 13674640 -c--a-w- c:\program files\install_atlas_icq6.exe
2007-10-15 13:43 . 2007-10-15 13:38 23876904 -c--a-w- c:\program files\SkypeSetup.exe
2007-10-09 17:46 . 2007-10-09 17:45 12829368 -c--a-w- c:\program files\Install_ICQ6.exe
.

((((((((((((((((((((((((((((( SnapShot_2010-03-21_19.54.46 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-03-21 20:51 . 2008-04-13 18:40 62976 c:\windows\LastGood\system32\drivers\cdrom.sys
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2007-12-13 1688872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ThpSrv"="c:\windows\system32\thpsrv" [X]
"CFSServ.exe"="CFSServ.exe -NoClient" [X]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2006-06-30 94208]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2006-06-30 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2006-06-30 118784]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2005-05-20 925696]
"00THotkey"="c:\windows\system32\00THotkey.exe" [2006-03-29 253952]
"000StTHK"="000StTHK.exe" [2001-06-23 24576]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2004-03-24 196608]
"AGRSMMSG"="AGRSMMSG.exe" [2005-10-15 88203]
"PSQLLauncher"="c:\program files\Protector Suite QL\launcher.exe" [2006-05-05 30208]
"TPSMain"="TPSMain.exe" [2006-03-21 299008]
"TPSODDCtl"="TPSODDCtl.exe" [2006-03-21 102400]
"SmoothView"="c:\program files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe" [2005-05-12 118784]
"TouchED"="c:\program files\TOSHIBA\TouchED\TouchED.Exe" [2005-08-31 102400]
"NDSTray.exe"="NDSTray.exe" [BU]
"TFncKy"="TFncKy.exe" [BU]
"TosHKCW.exe"="c:\program files\TOSHIBA\Wireless Hotkey\TosHKCW.exe" [2005-05-17 49152]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-12-03 2213160]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2007-04-03 1603152]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 79400]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-5-22 2756608]
RAMASST.lnk - c:\windows\system32\RAMASST.exe [2007-10-8 155648]
WinZip Quick Pick.lnk - c:\program files\WinZip\WZQKPICK.EXE [2007-10-8 106560]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
2006-05-05 15:48 40448 ----a-w- c:\windows\system32\psqlpwd.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\TPSvc]
TPSvc.dll [BU]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau
Notification Packages REG_MULTI_SZ scecli psqlpwd

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
"DisableNotifications"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Toshiba\\Bluetooth Toshiba Stack\\TosA2dp.exe"=
"c:\\Program Files\\Toshiba\\Bluetooth Toshiba Stack\\TosBtHid.exe"=
"c:\\Program Files\\Toshiba\\Bluetooth Toshiba Stack\\TosBtHSP.exe"=
"c:\\Program Files\\The KMPlayer\\KMPlayer.exe"=
"c:\\WINDOWS\\system32\\igfxsrvc.exe"=
"c:\\WINDOWS\\system32\\igfxtray.exe"=
"c:\\WINDOWS\\system32\\hkcmd.exe"=
"c:\\WINDOWS\\system32\\igfxpers.exe"=
"c:\\Program Files\\Analog Devices\\Core\\smax4pnp.exe"=
"c:\\WINDOWS\\system32\\00THotkey.exe"=
"c:\\Program Files\\Apoint2K\\Apoint.exe"=
"c:\\WINDOWS\\AGRSMMSG.exe"=
"c:\\WINDOWS\\system32\\TPSMain.exe"=
"c:\\WINDOWS\\system32\\TPSODDCtl.exe"=
"c:\\WINDOWS\\system32\\thpsrv.exe"=
"c:\\Program Files\\TOSHIBA\\TOSHIBA Zooming Utility\\SmoothView.exe"=
"c:\\Program Files\\TOSHIBA\\TouchED\\TouchED.Exe"=
"c:\\Program Files\\TOSHIBA\\ConfigFree\\NDSTray.exe"=
"c:\\Program Files\\TOSHIBA\\TOSHIBA Controls\\TFncKy.exe"=
"c:\\Program Files\\TOSHIBA\\Wireless Hotkey\\TosHKCW.exe"=
"c:\\Program Files\\TOSHIBA\\ConfigFree\\CFSServ.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD\\PDVDServ.exe"=
"c:\\Program Files\\Canon\\MyPrinter\\BJMyPrt.exe"=
"c:\\Program Files\\Protector Suite QL\\psqltray.exe"=
"c:\\Program Files\\ScanSoft\\OmniPageSE4\\OpwareSE4.exe"=
"c:\\WINDOWS\\system32\\TPSBattM.exe"=
"c:\\Program Files\\Common Files\\Nero\\Lib\\NMIndexStoreSvr.exe"=
"c:\\Program Files\\Apoint2K\\Apntex.exe"=
"c:\\Program Files\\Toshiba\\Bluetooth Toshiba Stack\\TosBtMng.exe"=
"c:\\WINDOWS\\system32\\RAMASST.exe"=
"c:\\Program Files\\WinZip\\WZQKPICK.EXE"=
"c:\\Program Files\\Java\\jre1.6.0_01\\bin\\jusched.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R0 szkg5;szkg5;c:\windows\system32\drivers\SZKG.sys [7.12.2009 17:59 61328]
R0 szkgfs;szkgfs;c:\windows\system32\drivers\SZKGFS.sys [24.2.2010 15:06 173328]
R0 Thpdrv;TOSHIBA HDD Protection Driver;c:\windows\system32\drivers\thpdrv.sys [27.12.2004 22:31 16384]
R0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;c:\windows\system32\drivers\Thpevm.sys [8.10.2007 19:14 6144]
R2 FdRedir;FdRedir;c:\program files\Common Files\Protector Suite QL\Drivers\FdRedir.sys [5.5.2006 17:00 13568]
R2 FileDisk2;FileDisk Protector Kernel Driver;c:\program files\Common Files\Protector Suite QL\Drivers\filedisk.sys [5.5.2006 16:59 33024]
R2 smihlp;SMI helper driver;c:\program files\Protector Suite QL\smihlp.sys [5.5.2006 16:33 3456]
S0 is3srv;is3srv;c:\windows\system32\drivers\is3srv.sys [7.12.2009 17:59 61328]
S3 lgmcbus;LGE Mobile driver (WDM);c:\windows\system32\drivers\lgmcbus.sys [15.2.2009 14:18 83584]
S3 lgmcmdfl;LGE Mobile USB WMC Modem Filter;c:\windows\system32\drivers\lgmcmdfl.sys [15.2.2009 14:18 14976]
S3 lgmcmdm;LGE Mobile USB WMC Modem Driver;c:\windows\system32\drivers\lgmcmdm.sys [15.2.2009 14:18 110464]
S3 lgmcmgmt;LGE Mobile USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\lgmcmgmt.sys [15.2.2009 14:18 104448]
S3 lgmcnd5;LGE Mobile USB WMC Ethernet ELDA (NDIS);c:\windows\system32\drivers\lgmcnd5.sys [15.2.2009 14:18 25344]
S3 lgmcobex;LGE Mobile USB WMC OBEX Interface;c:\windows\system32\drivers\lgmcobex.sys [15.2.2009 14:18 100480]
S3 lgmcunic;LGE Mobile USB WMC Ethernet ELDA (WDM);c:\windows\system32\drivers\lgmcunic.sys [15.2.2009 14:18 109952]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
TCP: {B8FB684D-9891-41B5-BAC9-DE6D0AC61C13} = 212.158.128.2,212.158.128.3
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-21 21:55
Windows 5.1.2600 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(720)
c:\windows\system32\vrlogon.dll
c:\windows\system32\psqlpwd.dll
c:\program files\Protector Suite QL\infra.dll
c:\program files\Protector Suite QL\homefus2.dll
c:\windows\system32\biologon.dll
c:\program files\Protector Suite QL\homepass.dll
c:\program files\Protector Suite QL\bio.dll
c:\program files\Protector Suite QL\remote.dll
c:\program files\Protector Suite QL\mysafe.dll

- - - - - - - > 'lsass.exe'(776)
c:\windows\system32\psqlpwd.dll
c:\program files\Protector Suite QL\infra.dll
c:\program files\Protector Suite QL\homefus2.dll
.
Celkový čas: 2010-03-21 21:56:48
ComboFix-quarantined-files.txt 2010-03-21 20:56
ComboFix2.txt 2010-03-21 19:58
ComboFix3.txt 2010-03-21 12:55

Před spuštěním: 1 348 120 576
Po spuštění: 1 337 331 712

Current=4 Default=4 Failed=3 LastKnownGood=5 Sets=1,2,3,4,5
- - End Of File - - 0D111694361107865D043AEBCEC2352F

[Damned]

Červený soubor zkontroluj na Virustotalu a vlož sem odkaz na výsledek.
Pokud ho nenajdeš, dej si zobrazit skryté a systémové soubory. Pokud ti nabídne, že soubor už kontroloval,
nech ho zkontrolovat znovu, a počkej až se objeví "Dokončeno" a výsledek.Potom sem zkopíruj adresní řádek.

c:\windows\system32\drivers\kgpcpy.cfg
*****************************************************************************************************************************************
Odistaluj si StopZilla.
*****************************************************************************************************************************************
Stáhni si :Dr. Web CureIt nebo z http://www.majorgeeks.com/Dr.Web_CureIT_d4783.html dej update , po aktualizaci dej start.

Tlačítky dole můzeš soubor léčit, smazat, přesunout nebo přejmenovat.Pak napiš výsledek. Sken může trvat dlouho. Nalezenou infekci nejdříve léčit, potom teprve smazat. Pokud něco najde ve složce System Volume Information, tak smazat.

[opice]

Virustotal nic nenašel: http://www.virustotal.com/cs/analisis/9 ... 1269207396

A skončila jsem opět u odinstalování... Stopzilla nejde.

[Damned]

Co ten Dr. Web?

[opice]

Expres skenování: Hotovo - nebyl nalezen žádný vir.

[Damned]

Spusť F-Secure Online Scanner

Tento skener je možno použít jen v prohlížeči Internet Explorer! Postupuj podle instrukcí na stránce F-Secure pro správnou instalaci.
Akceptuj licenci.
Po instalaci ActiveX, klikni na Full System Scan. Když je stahování skončeno, automaticky začne sken.
Vyčkej konce skenu, po jeho dobu neprováděj jiné operace ani neklikej myší. Když skončí sken, klikni na tlačítko Automatic clearing (recommended).
Poté klikni na tlačítko Show Report a zkopíruj a vlož sem .
*****************************************************************************************************************************************
Pokud ti nepůjde:
Stáhni si System Repair Engineer - přes tlačítko Local Download
- Vytvoř si na disku adresář, a vybal do něj obsah archivu sreng2.zip
- Spusť program (SREngLdr.EXE).
- Zvol "Smart Scan", všechna nastavení ponech jak jsou a spusť "Scan"

Po dokončení se objeví tabulka výsledků. Klikni na "Save reports". Zprávu ulož a její obsah mi sem zkopíruj.

[opice]

Výsledek 2. verze:

Kód: Vybrat vše


2010-03-22,00:05:21

System Repair Engineer 2.8.2.1321
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been selected:
    All Boot Items (Including Registry, Startup Folders, Services and so on)
    Browser Add-ons
    Running Processes (Including process model information)
    File Associations
    Winsock Provider
    Autorun.Inf
    HOSTS File
    Process Privileges Scan
    Scheduled Tasks
    Windows Security Update Check
    API HOOK
    Hidden Process


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}><"C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020>  [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <igfxtray><C:\WINDOWS\system32\igfxtray.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <igfxhkcmd><C:\WINDOWS\system32\hkcmd.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <igfxpers><C:\WINDOWS\system32\igfxpers.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <SoundMAXPnP><C:\Program Files\Analog Devices\Core\smax4pnp.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <00THotkey><C:\WINDOWS\system32\00THotkey.exe>  [TOSHIBA Corporation]
    <000StTHK><000StTHK.exe>  []
    <Apoint><C:\Program Files\Apoint2K\Apoint.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <AGRSMMSG><AGRSMMSG.exe>  [Agere Systems]
    <PSQLLauncher><"C:\Program Files\Protector Suite QL\launcher.exe" /startup>  [UPEK Inc.]
    <TPSMain><TPSMain.exe>  [TOSHIBA Corporation]
    <TPSODDCtl><TPSODDCtl.exe>  [TOSHIBA Corporation]
    <ThpSrv><c:\WINDOWS\system32\thpsrv /logon>  [File is missing]
    <SmoothView><C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe>  [TOSHIBA Corporation]
    <TouchED><C:\Program Files\TOSHIBA\TouchED\TouchED.Exe>  [TOSHIBA Corporation]
    <NDSTray.exe><NDSTray.exe>  [N/A]
    <TFncKy><TFncKy.exe>  [N/A]
    <TosHKCW.exe><"C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe">  [TOSHIBA CORPORATION]
    <CFSServ.exe><CFSServ.exe -NoClient>  [N/A]
    <RemoteControl><"C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe">  [Cyberlink Corp.]
    <NeroFilterCheck><C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe>  [(Verified)Nero AG]
    <NBKeyScan><"C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe">  [(Verified)Nero AG]
    <CanonSolutionMenu><C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon>  [(Verified)Canon Inc.]
    <CanonMyPrinter><C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon>  [(Verified)Canon Inc.]
    <SSBkgdUpdate><"C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot>  [(Verified)Nuance Communications, Inc.]
    <OpwareSE4><"C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe">  [(Verified)Nuance Communications, Inc.]
    <Adobe Reader Speed Launcher><"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe">  [(Verified)Adobe Systems, Incorporated]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
    <GinaDLL><vrlogon.dll>  [UPEK Inc.]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WebCheck><%Systemroot%\system32\webcheck.dll>  [(Verified)Microsoft Windows Component Publisher]
    <SysTray><%systemroot%\system32\stobject.dll>  [(Verified)Microsoft Windows Publisher]
    <UPnPMonitor><C:\WINDOWS\system32\upnpui.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    <WinlogonNotify: igfxcui><igfxdev.dll>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
    <WinlogonNotify: psfus><psqlpwd.dll>  [UPEK Inc.]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sccertprop]
    <WinlogonNotify: sccertprop><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\schedule]
    <WinlogonNotify: schedule><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\senslogn]
    <WinlogonNotify: senslogn><WlNotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\TPSvc]
    <WinlogonNotify: TPSvc><TPSvc.dll>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
    <IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
    <Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
    <Vlastní nastavení prohlížeče><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
    <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <Adresář 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Aktualizace plochy systému Windows><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><C:\WINDOWS\system32\logon.scr>  [(Verified)Microsoft Windows Publisher]

==================================
Startup Folders
[Bluetooth Manager]
  <C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth Manager.lnk --> C:\PROGRA~1\Toshiba\BLUETO~1\TosBtMng.exe [TOSHIBA CORPORATION.]><N>
[RAMASST]
  <C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\RAMASST.lnk --> C:\WINDOWS\system32\RAMASST.exe [Matsushita Electric Industrial Co., Ltd.]><N>
[WinZip Quick Pick]
  <C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\WinZip Quick Pick.lnk --> C:\PROGRA~1\WinZip\WZQKPICK.EXE [WinZip Computing, Inc.]><N>

==================================
Services
[ConfigFree Service / CFSvcs][Running/Auto Start]
  <C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe><TOSHIBA CORPORATION>
[DVD-RAM_Service / DVD-RAM_Service][Running/Auto Start]
  <C:\WINDOWS\system32\DVDRAMSV.exe><Matsushita Electric Industrial Co., Ltd.>
[Přístup k zařízením standardu HID / HidServ][Stopped/Disabled]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"><Macrovision Corporation>
[Nero BackItUp Scheduler 3 / Nero BackItUp Scheduler 3][Running/Auto Start]
  <C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe><Nero AG>
[NMIndexingService / NMIndexingService][Running/Manual Start]
  <"C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe"><Nero AG>
[STOPzilla Service / szserver][Running/Auto Start]
  <"C:\Program Files\Common Files\iS3\Anti-Spyware\SZServer.exe"><iS3, Inc.>
[TOSHIBA HDD Protection / Thpsrv][Running/Auto Start]
  <C:\WINDOWS\system32\ThpSrv.exe><TOSHIBA Corporation>
[TOSHIBA Bluetooth Service / TOSHIBA Bluetooth Service][Running/Auto Start]
  <C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe><TOSHIBA CORPORATION>

==================================
Drivers
[ADI UAA Function Driver for High Definition Audio Service / ADIHdAudAddService][Running/Manual Start]
  <system32\drivers\ADIHdAud.sys><Analog Devices, Inc.>
[AEAudio Service / AEAudioService][Running/Manual Start]
  <system32\drivers\AEAudio.sys><Andrea Electronics Corporation>
[TOSHIBA V92 Software Modem / AgereSoftModem][Running/Manual Start]
  <system32\DRIVERS\AGRSM.sys><Agere Systems>
[Alps Pointing-device Filter Driver / ApfiltrService][Running/Manual Start]
  <system32\DRIVERS\Apfiltr.sys><Alps Electric Co., Ltd.>
[catchme / catchme][Running/Manual Start]
  <\??\C:\ComboFix\catchme.sys><N/A>
[Intel(R) PRO Network Connection Driver / E100B][Stopped/Manual Start]
  <system32\DRIVERS\e100b325.sys><Intel Corporation>
[ENTECH / ENTECH][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys><EnTech Taiwan>
[FdRedir / FdRedir][Running/Auto Start]
  <\??\C:\Program Files\Common Files\Protector Suite QL\Drivers\FdRedir.sys><UPEK Inc.>
[FileDisk Protector Kernel Driver / FileDisk2][Running/Auto Start]
  <\??\C:\Program Files\Common Files\Protector Suite QL\Drivers\filedisk.sys><UPEK Inc.>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[ialm / ialm][Running/Manual Start]
  <system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[is3srv / is3srv][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\is3srv.sys><iS3 Inc.>
[LGE Mobile driver (WDM) / lgmcbus][Stopped/Manual Start]
  <system32\DRIVERS\lgmcbus.sys><MCCI Corporation>
[LGE Mobile USB WMC Modem Filter / lgmcmdfl][Stopped/Manual Start]
  <system32\DRIVERS\lgmcmdfl.sys><MCCI Corporation>
[LGE Mobile USB WMC Modem Driver / lgmcmdm][Stopped/Manual Start]
  <system32\DRIVERS\lgmcmdm.sys><MCCI Corporation>
[LGE Mobile USB WMC Device Management Drivers (WDM) / lgmcmgmt][Stopped/Manual Start]
  <system32\DRIVERS\lgmcmgmt.sys><MCCI Corporation>
[LGE Mobile USB WMC Ethernet ELDA (NDIS) / lgmcnd5][Stopped/Manual Start]
  <system32\DRIVERS\lgmcnd5.sys><MCCI Corporation>
[LGE Mobile USB WMC OBEX Interface / lgmcobex][Stopped/Manual Start]
  <system32\DRIVERS\lgmcobex.sys><MCCI Corporation>
[LGE Mobile USB WMC Ethernet ELDA (WDM) / lgmcunic][Stopped/Manual Start]
  <system32\DRIVERS\lgmcunic.sys><MCCI Corporation>
[meiudf / meiudf][Running/System Start]
  <System32\Drivers\meiudf.sys><Matsushita Electric Industrial Co.,Ltd.>
[TOSHIBA Network Device Usermode I/O Protocol / Netdevio][Running/Auto Start]
  <system32\DRIVERS\netdevio.sys><TOSHIBA Corporation.>
[Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit / NETw4x32][Running/Manual Start]
  <system32\DRIVERS\NETw4x32.sys><Intel Corporation>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[SMI helper driver / smihlp][Running/Auto Start]
  <\??\C:\Program Files\Protector Suite QL\smihlp.sys><UPEK Inc.>
[szkg5 / szkg5][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\szkg.sys><iS3 Inc.>
[szkgfs / szkgfs][Running/Boot Start]
  <\SystemRoot\system32\drivers\szkgfs.sys><iS3, Inc.>
[TC USB Kernel Driver / TcUsb][Running/Manual Start]
  <System32\Drivers\tcusb.sys><UPEK Inc.>
[TOSHIBA HDD Protection Driver / Thpdrv][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\thpdrv.sys><TOSHIBA Corporation>
[TOSHIBA HDD Protection - Shock Sensor Driver / Thpevm][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\Thpevm.SYS><TOSHIBA Corporation>
[Bluetooth COM Port / tosporte][Running/Manual Start]
  <system32\DRIVERS\tosporte.sys><TOSHIBA Corporation>
[Bluetooth RFBUS / tosrfbd][Stopped/Manual Start]
  <system32\DRIVERS\tosrfbd.sys><TOSHIBA CORPORATION>
[Bluetooth RFBNEP / tosrfbnp][Stopped/Manual Start]
  <System32\Drivers\tosrfbnp.sys><TOSHIBA Corporation>
[Bluetooth RFCOMM / Tosrfcom][Running/System Start]
  <System32\Drivers\tosrfcom.sys><TOSHIBA Corporation>
[Bluetooth ACPI / tosrfec][Running/Manual Start]
  <system32\DRIVERS\tosrfec.sys><TOSHIBA Corporation>
[Bluetooth RFHID / Tosrfhid][Stopped/Manual Start]
  <system32\DRIVERS\Tosrfhid.sys><TOSHIBA Corporation.>
[Bluetooth Personal Area Network / tosrfnds][Stopped/Manual Start]
  <system32\DRIVERS\tosrfnds.sys><TOSHIBA Corporation.>
[Bluetooth Audio / TosRfSnd][Stopped/Manual Start]
  <system32\drivers\tosrfsnd.sys><TOSHIBA Corporation>
[Bluetooth USB Controller / tosrfusb][Stopped/Manual Start]
  <system32\DRIVERS\tosrfusb.sys><TOSHIBA CORPORATION>
[TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver / TVALZ][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\TVALZ.SYS><TOSHIBA Corporation>

==================================
Browser Add-ons
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[]
  {259F616C-A300-44F5-B04A-ED001A26C85C} <, >
[SSVHelper Class]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[]
  {e3215f20-3212-11d6-9f8b-00d0b743919d} <c:\program files\stopzilla!\sziebho.dll, (Signed) iS3, Inc.>
[Java Plug-in 1.6.0_01]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[&Zdroje informací]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, (Signed) Microsoft Corporation>
[]
  {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
[Messenger]
  {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, (Signed) Microsoft Corporation>
[Java Plug-in 1.6.0_01]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
  {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll, (Signed) Sun Microsystems, Inc.>
[]
  {055FD26D-3A88-4E15-963D-DC8493744B1D} <, >
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, >
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
[HTML Document]
  {25336920-03f9-11cf-8fd0-00aa00686f13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[]
  {259F616C-A300-44F5-B04A-ED001A26C85C} <, >
[XML DOM Document]
  {2933BF90-7B36-11D2-B20E-00C04F983E60} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[IETag Factory]
  {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation>
[isInstalled Class]
  {5852F5ED-8BF4-11D4-A245-0080C6F74284} <C:\Program Files\Java\jre1.6.0_01\bin\wsdetect.dll, Sun Microsystems, Inc.>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[SSVHelper Class]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[]
  {855F3B16-6D32-4FE6-8A56-BBB695989046} <, >
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[XML DOM Document 4.0]
  {88D969C0-F192-11D4-A65F-0040963251E5} <%SystemRoot%\system32\msxml4.dll, (Signed) N/A>
[Free Threaded XML DOM Document 4.0]
  {88D969C1-F192-11D4-A65F-0040963251E5} <%SystemRoot%\system32\msxml4.dll, (Signed) N/A>
[XSL Template 4.0]
  {88D969C3-F192-11D4-A65F-0040963251E5} <%SystemRoot%\system32\msxml4.dll, (Signed) N/A>
[XML HTTP 4.0]
  {88D969C5-F192-11D4-A65F-0040963251E5} <%SystemRoot%\system32\msxml4.dll, (Signed) N/A>
[XML DOM Document 5.0]
  {88D969E5-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>
[Free Threaded XML DOM Document 5.0]
  {88D969E6-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>
[XSL Template 5.0]
  {88D969E8-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>
[XML HTTP 5.0]
  {88D969EA-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>
[]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, (Signed) Adobe Systems, Inc.>
[]
  {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[]
  {e3215f20-3212-11d6-9f8b-00d0b743919d} <c:\program files\stopzilla!\sziebho.dll, (Signed) iS3, Inc.>
[]
  {E59EB121-F339-4851-A3BA-FE49C35617C2} <, >
[XML HTTP Request]
  {ed8c108e-4349-11d2-91a4-00c04f7969e8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML DOM Document]
  {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[]
  {FB5F1910-F110-11D2-BB9E-00C04F795683} <, >
[E&xportovat do aplikace Microsoft Office Excel]
  <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>

==================================
Running Processes
[PID: 648 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 696 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 720 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\vrlogon.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\psqlpwd.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\Program Files\Protector Suite QL\infra.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\Program Files\Protector Suite QL\homefus2.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\WINDOWS\system32\biologon.dll]  [Microsoft Corporation, 6.00.2497.0000 built by: main(SReasor)]
    [C:\Program Files\Protector Suite QL\homepass.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\Program Files\Protector Suite QL\bio.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\Program Files\Protector Suite QL\remote.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Protector Suite QL\mysafe.dll]  [UPEK Inc., 5.4.0.2934]
[PID: 764 / SYSTEM][C:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.3520 (xpsp_sp2_gdr.090206-1233)]
[PID: 776 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\psqlpwd.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\Program Files\Protector Suite QL\infra.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Protector Suite QL\homefus2.dll]  [UPEK Inc., 5.4.0.2934]
[PID: 956 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1012 / SYSTEM][C:\Program Files\Common Files\iS3\Anti-Spyware\SZServer.exe]  [iS3, Inc., 5.0.69.0]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.4053]
    [C:\WINDOWS\system32\iS3Svc5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3Base5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\SZBase5.dll]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\system32\iS3Win325.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3UI5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3HTUI5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szsvchost.dll]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\system32\SZIO5.dll]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\system32\iS3DBA5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szcfgsvc.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szqrntn.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\sztrgss.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\SZUniTrg.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szcllic.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szjustice.dll]  [iS3, Inc., 5.0.69.0]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\sgsvc.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szbrcom.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szschsvc.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szclientcom.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szscnsvc.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szhistory.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szsnsrsv.dll]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\system32\iS3Hks5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\SZComp5.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\Common Files\iS3\Anti-Spyware\szextrss.dll]  [iS3, Inc., 5.0.68.30]
[PID: 1064 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1160 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1280 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1480 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1752 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
    [C:\WINDOWS\system32\CNMLM94.DLL]  [CANON INC., 2.11.2.20]
    [C:\WINDOWS\system32\mdimon.dll]  [Microsoft Corporation, 11.3.1897.0]
    [C:\WINDOWS\system32\tbtmon.dll]  [TOSHIBA CORPORATION., 5, 0, 1208, 0]
    [C:\WINDOWS\system32\TosBtHcrpAPI.dll]  [TOSHIBA CORPORATION., 5, 0, 1201, 0]
    [C:\WINDOWS\system32\TosBtAPI.dll]  [TOSHIBA CORPORATION., 5.00.7522.0]
    [C:\WINDOWS\system32\TosBdAPI.dll]  [TOSHIBA CORPORATION., 4, 1, 1612, 0]
    [C:\WINDOWS\system32\tbtmon98Language.dll]  [TOSHIBA CORPORATION., 5, 0, 1204, 0]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\CNMPD94.DLL]  [CANON INC., 2.11.2.20]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll]  [Microsoft Corporation, 11.3.1897.0]
    [C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNMUI94.DLL]  [CANON INC., 2.11.2.20]
    [C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNMDR94.DLL]  [CANON INC., 2.11.2.20]
[PID: 1836 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 432 / SYSTEM][C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe]  [TOSHIBA CORPORATION, 6, 0, 0, 1]
    [C:\Program Files\TOSHIBA\ConfigFree\NDSAPI.dll]  [TOSHIBA CORPORATION, 6, 0, 0, 9]
    [C:\Program Files\TOSHIBA\ConfigFree\IpAdrSet.dll]  [TOSHIBA CORPORATION, 6, 0, 0, 3]
[PID: 472 / SYSTEM][C:\WINDOWS\system32\DVDRAMSV.exe]  [Matsushita Electric Industrial Co., Ltd., 3, 0, 0, 0]
[PID: 512 / SYSTEM][C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe]  [Nero AG, 3, 2, 3, 0]
    [C:\Program Files\Nero\Nero8\Nero BackItUp\NB.dll]  [Nero AG, 3, 2, 3, 0]
    [C:\Program Files\Nero\Nero8\Nero BackItUp\NeroAPIGlueLayerUnicode.dll]  [Nero AG, 8.2.4.1]
    [C:\Program Files\Nero\Nero8\Nero BackItUp\LBFC.dll]  [Nero AG, 3, 2, 3, 0]
    [C:\Program Files\Nero\Nero8\Nero BackItUp\NBHDMgr.dll]  [Nero AG, 3, 2, 3, 0]
[PID: 780 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1128 / SYSTEM][C:\WINDOWS\system32\ThpSrv.exe]  [TOSHIBA Corporation, 1, 1, 8, 4]
[PID: 1312 / SYSTEM][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe]  [TOSHIBA CORPORATION, 1, 0, 1402, 0]
[PID: 1364 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe]  [Microsoft Corporation, 5.2.3790.1230 built by: DNSRV(bld4act)]
[PID: 412 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1928 / Petra][C:\WINDOWS\system32\wscntfy.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2064 / Petra][C:\WINDOWS\system32\igfxtray.exe]  [Intel Corporation, 3.0.0.4631]
    [C:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 3.0.0.4631]
    [C:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 3.0.0.4631]
    [C:\WINDOWS\system32\igfxres.dll]  [Intel Corporation, 3.0.0.4631]
    [C:\WINDOWS\system32\igfxress.dll]  [Intel Corporation, 3.0.0.4631]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2120 / Petra][C:\WINDOWS\system32\hkcmd.exe]  [Intel Corporation, 3.0.0.4631]
    [C:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 3.0.0.4631]
    [C:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 3.0.0.4631]
    [C:\WINDOWS\system32\igfxres.dll]  [Intel Corporation, 3.0.0.4631]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2128 / Petra][C:\WINDOWS\system32\igfxpers.exe]  [Intel Corporation, 3.0.0.4631]
    [C:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 3.0.0.4631]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2136 / Petra][C:\Program Files\Analog Devices\Core\smax4pnp.exe]  [Analog Devices, Inc., 6, 0, 0, 20]
    [C:\Program Files\Analog Devices\Core\SMWDMIF.dll]  [Analog Devices, Inc., 6, 0, 4200, 014]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2164 / Petra][C:\Program Files\Apoint2K\Apoint.exe]  [Alps Electric Co., Ltd., 6.0.2.186]
    [C:\WINDOWS\system32\VXDIF.DLL]  [Alps Electric Co., Ltd., 6.0.2.67]
    [C:\Program Files\Apoint2K\ApMain.DLL]  [Alps Electric Co., Ltd., 6.0.2.16]
    [C:\Program Files\Apoint2K\ApCommon.dll]  [Alps Electric Co., Ltd., 6.0.2.34]
    [C:\Program Files\Apoint2K\ApDual.dll]  [Alps Electric Co., Ltd., 6.0.2.20]
    [C:\Program Files\Apoint2K\ApPad.dll]  [Alps Electric Co., Ltd., 6.0.2.50]
    [C:\Program Files\Apoint2K\EzCapt.dll]  [Alps Electric Co., Ltd., 6.0.2.18]
    [C:\Program Files\Apoint2K\EzLaunch.dll]  [Alps Electric Co., Ltd., 6.0.2.32]
    [C:\Program Files\Apoint2K\ApStick.dll]  [ALPS Electric Co., Ltd., 6.0.2.37]
    [C:\Program Files\Apoint2K\ApOthers.dll]  [Alps Electric Co., Ltd., 6.0.2.28]
    [C:\Program Files\Apoint2K\ApMouse.dll]  [ALPS Electric Co., Ltd., 6.0.2.32]
    [C:\Program Files\Apoint2K\EzAuto.dll]  [Alps Electric Co., Ltd., 4.5.1.83]
    [C:\Program Files\Apoint2K\ApString.dll]  [Alps Electric Co., Ltd., 6.0.301.37]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2180 / Petra][C:\WINDOWS\AGRSMMSG.exe]  [Agere Systems, 2.1.60.5 2.1.60.5 10/14/2005 13:29:07]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2236 / Petra][C:\WINDOWS\system32\TPSMain.exe]  [TOSHIBA Corporation, 1, 0, 23, 0]
    [C:\WINDOWS\system32\TPSMainCtl.dll]  [TOSHIBA Corporation, 1, 0, 9, 0]
    [C:\WINDOWS\system32\CpuPerf.dll]  [TOSHIBA Corporation, 1, 0, 1, 0]
    [C:\WINDOWS\system32\TPSTrace.DLL]  [TOSHIBA Corporation, 1, 0, 3, 0]
    [C:\WINDOWS\system32\TPwrReg.dll]  [TOSHIBA Corporation, 1, 0, 7, 0]
    [C:\WINDOWS\system32\TPeculiarity.dll]  [TOSHIBA Corporation, 1, 0, 5, 0]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2248 / Petra][C:\WINDOWS\system32\TPSODDCtl.exe]  [TOSHIBA Corporation, 1, 0, 14, 0]
    [C:\WINDOWS\system32\TPSMainCtl.dll]  [TOSHIBA Corporation, 1, 0, 9, 0]
    [C:\WINDOWS\system32\CpuPerf.dll]  [TOSHIBA Corporation, 1, 0, 1, 0]
    [C:\WINDOWS\system32\TPSTrace.DLL]  [TOSHIBA Corporation, 1, 0, 3, 0]
    [C:\WINDOWS\system32\TPwrReg.dll]  [TOSHIBA Corporation, 1, 0, 7, 0]
    [C:\WINDOWS\system32\TPeculiarity.dll]  [TOSHIBA Corporation, 1, 0, 5, 0]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2268 / Petra][C:\WINDOWS\system32\thpsrv.exe]  [TOSHIBA Corporation, 1, 1, 8, 4]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2312 / Petra][C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe]  [TOSHIBA Corporation, 2, 0, 0, 23]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2324 / Petra][C:\Program Files\TOSHIBA\TouchED\TouchED.Exe]  [TOSHIBA Corporation, 2, 5, 1, 0]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2332 / Petra][C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe]  [TOSHIBA CORPORATION, 6, 0, 1, 1]
    [C:\Program Files\TOSHIBA\ConfigFree\CFWAN.dll]  [TOSHIBA CORPORATION, 1, 0, 0, 12]
    [C:\Program Files\TOSHIBA\ConfigFree\NDSAPI.dll]  [TOSHIBA CORPORATION, 6, 0, 0, 9]
    [C:\Program Files\TOSHIBA\ConfigFree\IpAdrSet.dll]  [TOSHIBA CORPORATION, 6, 0, 0, 3]
    [C:\Program Files\TOSHIBA\ConfigFree\NDSNLS.dll]  [TOSHIBA CORPORATION, 4, 0, 2, 1006]
    [C:\Program Files\TOSHIBA\ConfigFree\CFUPNP.dll]  [TOSHIBA CORPORATION, 1, 0, 0, 5]
    [C:\Program Files\TOSHIBA\ConfigFree\CFP2API.dll]  [TOSHIBA CORPORATION, 5, 0, 0, 1]
    [C:\Program Files\TOSHIBA\ConfigFree\OpenProp.dll]  [TOSHIBA CORPORATION, 5, 0, 0, 1]
    [C:\Program Files\TOSHIBA\ConfigFree\NDSParts.dll]  [TOSHIBA CORPORATION, 6, 0, 0, 17]
    [C:\Program Files\TOSHIBA\ConfigFree\QCDPJ.dll]  [Toshiba, 6, 0, 0, 6]
    [C:\Program Files\TOSHIBA\ConfigFree\VENAPI.dll]  [TOSHIBA, 6, 0, 0, 4]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
    [C:\WINDOWS\system32\TosBtAPI.dll]  [TOSHIBA CORPORATION., 5.00.7522.0]
    [C:\WINDOWS\system32\TosBdAPI.dll]  [TOSHIBA CORPORATION., 4, 1, 1612, 0]
[PID: 2396 / Petra][C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe]  [TOSHIBA CORPORATION, 2, 1, 0, 2]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2516 / Petra][C:\WINDOWS\system32\TPSBattM.exe]  [TOSHIBA Corporation, 1, 0, 3, 0]
    [C:\WINDOWS\system32\TPwrCfg.DLL]  [TOSHIBA Corporation, 1, 0, 9, 0]
    [C:\WINDOWS\system32\TPwrReg.dll]  [TOSHIBA Corporation, 1, 0, 7, 0]
    [C:\WINDOWS\system32\TPSTrace.DLL]  [TOSHIBA Corporation, 1, 0, 3, 0]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2632 / Petra][C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe]  [Cyberlink Corp., 6.00.1027]
    [C:\Program Files\CyberLink\PowerDVD\CLRCEngine2.dll]  [CyberLink Corp., 3.2.2021 ]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2788 / Petra][C:\Program Files\Apoint2K\Apntex.exe]  [Alps Electric Co., Ltd., 5.0.1.15]
    [C:\WINDOWS\system32\VXDIF.DLL]  [Alps Electric Co., Ltd., 6.0.2.67]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2996 / Petra][C:\Program Files\Canon\MyPrinter\BJMyPrt.exe]  [CANON INC., 1, 5, 0, 0]
    [C:\Program Files\Canon\MyPrinter\BJMyRes.dll]  [CANON INC., 1, 5, 0, 0]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 3036 / Petra][C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe]  [Nuance Communications, Inc., 15.2.6606.1]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 3108 / Petra][C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe]  [Nero AG, 3.2.5.0]
    [C:\Program Files\Common Files\Nero\Lib\NMSQLDB.dll]  [Nero AG, 3.2.5.0]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
    [C:\Program Files\Common Files\Nero\Lib\NMLogCxx.dll]  [Nero AG, 3.2.5.0]
    [C:\Program Files\Common Files\Nero\Lib\log4cxx.dll]  [Nero AG, 1, 0, 1, 0]
    [C:\Program Files\Common Files\Nero\Lib\NMIndexingServicePS.dll]  [Nero AG, 3.2.5.0]
    [C:\Program Files\Common Files\Nero\Lib\NMCoFoundation.dll]  [Nero AG, 3.2.5.0]
    [C:\Program Files\Common Files\Nero\Lib\NMPluginBase.dll]  [Nero AG, 3.2.5.0]
    [C:\Program Files\Common Files\Nero\Lib\NMFullTextExtraction.dll]  [Nero AG, 3.2.5.0]
    [C:\Program Files\Common Files\Nero\Lib\NMSearchPluginSimilarImages.dll]  [Nero AG, 3.2.5.0]
    [C:\Program Files\Common Files\Nero\Lib\NMDataServices.dll]  [Nero AG, 3.2.5.0]
[PID: 3212 / Petra][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe]  [TOSHIBA CORPORATION., 5.00.7522.ALL]
    [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosCpsAPI.dll]  [TOSHIBA CORPORATION., 3.01.5520.0]
    [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMngHelp.dll]  [TOSHIBA CORPORATION., 5.00.6z01.ALL]
    [C:\WINDOWS\system32\TosAvAPI.dll]  [TOSHIBA CORPORATION., 5.00.6804.0]
    [C:\WINDOWS\system32\TosBtSDDB.dll]  [TOSHIBA CORPORATION., 5.00.7515.0]
    [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMngLang.dll]  [TOSHIBA CORPORATION., 5.00.6920.0]
    [C:\WINDOWS\system32\TosBdAPI.dll]  [TOSHIBA CORPORATION., 4, 1, 1612, 0]
    [C:\WINDOWS\system32\TosCommAPI.dll]  [N/A, ]
    [C:\WINDOWS\system32\TosLaneAPI.dll]  [TOSHIBA CORPORATION., 1, 0, 3, 0]
    [C:\WINDOWS\system32\TosBtAPI.dll]  [TOSHIBA CORPORATION., 5.00.7522.0]
    [C:\WINDOWS\system32\LCWizard.dll]  [TOSHIBA CORPORATION, 5.0.0.ALL]
    [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\BtUsrMod.dll]  [TOSHIBA CORPORATION, 1, 01, 11, US]
    [C:\WINDOWS\system32\TosHidAPI.dll]  [TOSHIBA CORPORATION., 4, 0, 1108, 0]
    [C:\WINDOWS\system32\TosGnsAPI.dll]  [TOSHIBA CORPORATION., 5, 0, 0, 0]
    [C:\WINDOWS\system32\TosAcpiAPI.dll]  [TOSHIBA CORPORATION., 1, 0, 3, 0]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
    [C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtLoad.dll]  [TOSHIBA CORPORATION, 5, 10, 0, 0]
[PID: 3264 / Petra][C:\WINDOWS\system32\RAMASST.exe]  [Matsushita Electric Industrial Co., Ltd., 1, 1, 0, 0]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 3752 / SYSTEM][C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe]  [Nero AG, 3.2.5.0]
    [C:\Program Files\Common Files\Nero\Lib\NMIndexingServicePS.dll]  [Nero AG, 3.2.5.0]
    [C:\Program Files\Common Files\Nero\Lib\NMLogCxx.dll]  [Nero AG, 3.2.5.0]
    [C:\Program Files\Common Files\Nero\Lib\log4cxx.dll]  [Nero AG, 1, 0, 1, 0]
    [C:\Program Files\Common Files\Nero\Lib\NMDataServices.dll]  [Nero AG, 3.2.5.0]
[PID: 3888 / Petra][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe]  [TOSHIBA CORPORATION., 5.00.7227.ALL]
    [C:\WINDOWS\system32\TosBtECCAPI.dll]  [TOSHIBA CORPORATION., 3.00.6510.0]
    [C:\WINDOWS\system32\TosBtAPI.dll]  [TOSHIBA CORPORATION., 5.00.7522.0]
    [C:\WINDOWS\system32\TosBdAPI.dll]  [TOSHIBA CORPORATION., 4, 1, 1612, 0]
    [C:\WINDOWS\system32\TosAvdtAPI.dll]  [TOSHIBA CORPORATION., 5.00.7410.0]
    [C:\WINDOWS\system32\TosSndAPI.dll]  [TOSHIBA CORPORATION., 5.00.7117.0]
    [C:\WINDOWS\system32\TosSndPlug.dll]  [TOSHIBA CORPORATION., 5.00.7227.ALL]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 3904 / Petra][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe]  [TOSHIBA CORPORATION., 4, 1, 1323, 0]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 692 / Petra][C:\WINDOWS\system32\ctfmon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 1936 / Petra][C:\WINDOWS\system32\wuauclt.exe]  [(Verified) Microsoft Corporation, 7.4.7600.226 (winmain_wtr_wsus3sp2(wmbla).090806-1834)]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 2824 / Petra][C:\WINDOWS\explorer.exe]  [(Verified) Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
    [C:\WINDOWS\system32\BROWSEUI.dll]  [Společnost Microsoft, 6.00.2900.3199 (xpsp_sp2_gdr.070821-1257)]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
    [C:\WINDOWS\system32\TPwrCfg.DLL]  [TOSHIBA Corporation, 1, 0, 9, 0]
    [C:\WINDOWS\system32\TPwrReg.dll]  [TOSHIBA Corporation, 1, 0, 7, 0]
    [C:\WINDOWS\system32\TPSTrace.DLL]  [TOSHIBA Corporation, 1, 0, 3, 0]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 8.0.0.2006102200]
    [C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll]  [Nero AG, 3, 1, 0, 8]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\MFC80.DLL]  [Microsoft Corporation, 8.00.50727.4053]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 8.1.0.0]
    [C:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 3.0.0.4631]
[PID: 3768 / Petra][C:\PROGRA~1\INTERN~1\iexplore.exe]  [Microsoft Corporation, 7.00.6000.16850 (vista_gdr.090423-0018)]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 8.0.0.2006102200]
    [C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll]  [Sun Microsystems, Inc., 6.0.10.6]
    [C:\Program Files\Java\jre1.6.0_01\bin\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [c:\program files\stopzilla!\sziebho.dll]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.4053]
    [C:\WINDOWS\system32\iS3Base5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3UI5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3HTUI5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\SZBase5.dll]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\system32\iS3Win325.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3Svc5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx]  [Adobe Systems, Inc., 9,0,16,0]
    [C:\WINDOWS\system32\browseui.dll]  [Společnost Microsoft, 6.00.2900.3199 (xpsp_sp2_gdr.070821-1257)]
    [C:\Program Files\Protector Suite QL\infra.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\Program Files\Protector Suite QL\FDHome.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\Program Files\Protector Suite QL\remote.dll]  [UPEK Inc., 5.4.0.2934]
    [C:\Program Files\Protector Suite QL\homefus2.dll]  [UPEK Inc., 5.4.0.2934]
[PID: 2920 / Petra][C:\Program Files\STOPzilla!\STOPzilla.exe]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.4053]
    [C:\WINDOWS\system32\iS3Base5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\SZBase5.dll]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\system32\iS3Win325.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3UI5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3HTUI5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3Svc5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\Program Files\STOPzilla!\SZHistUI.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\STOPzilla!\SZLMScn.dll]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\system32\iS3Inet5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\Program Files\STOPzilla!\SZRes5EN.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
    [C:\Program Files\STOPzilla!\szrollup.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\STOPzilla!\sztrayicon.dll]  [iS3, Inc., 5.0.68.30]
    [C:\Program Files\STOPzilla!\szsplash.dll]  [iS3, Inc., 5.0.68.30]
[PID: 2436 / Petra][C:\Program Files\internet explorer\iexplore.exe]  [Microsoft Corporation, 7.00.6000.16850 (vista_gdr.090423-0018)]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 8.0.0.2006102200]
    [C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll]  [Sun Microsystems, Inc., 6.0.10.6]
    [C:\Program Files\Java\jre1.6.0_01\bin\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [c:\program files\stopzilla!\sziebho.dll]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.4053]
    [C:\WINDOWS\system32\iS3Base5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3UI5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3HTUI5.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\SZBase5.dll]  [iS3, Inc., 5.0.68.30]
    [C:\WINDOWS\system32\iS3Win325.dll]  [iS3, Inc., 5.0.111.13]
    [C:\WINDOWS\system32\iS3Svc5.dll]  [iS3, Inc., 5.0.111.13]
[PID: 2896 / Petra][C:\PROGRA~1\WINZIP\winzip32.exe]  [WinZip Computing, Inc., 14.0 (32-bit)]
    [C:\PROGRA~1\WINZIP\WZVINFO.DLL]  [WinZip Computing, Inc., 1.1 (32-bit)]
    [C:\PROGRA~1\WINZIP\WZCAB3.DLL]  [WinZip Computing, Inc., 3.1 (32-bit)]
    [C:\PROGRA~1\WINZIP\wz32.dll]  [WinZip Computing, Inc., 14.0 (32-bit)]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]
[PID: 3972 / Petra][C:\Documents and Settings\Petra\Local Settings\temp\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.2.1321]
[PID: 4064 / Petra][C:\Documents and Settings\Petra\Local Settings\temp\SRE408c7d05.EXE]  [Smallfrogs Studio, 2.8.2.1321]
    [C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll]  [Nuance Communications, Inc., 15.2.6606.1]

==================================
File Associations
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. ["%SYSTEMROOT%\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
127.0.0.1       localhost

==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2180, C:\WINDOWS\AGRSMMSG.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2236, C:\WINDOWS\SYSTEM32\TPSMAIN.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2248, C:\WINDOWS\SYSTEM32\TPSODDCTL.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2268, C:\WINDOWS\SYSTEM32\THPSRV.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2312, C:\PROGRAM FILES\TOSHIBA\TOSHIBA ZOOMING UTILITY\SMOOTHVIEW.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2324, C:\PROGRAM FILES\TOSHIBA\TOUCHED\TOUCHED.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2332, C:\PROGRAM FILES\TOSHIBA\CONFIGFREE\NDSTRAY.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2396, C:\PROGRAM FILES\TOSHIBA\WIRELESS HOTKEY\TOSHKCW.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2516, C:\WINDOWS\SYSTEM32\TPSBATTM.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2632, C:\PROGRAM FILES\CYBERLINK\POWERDVD\PDVDSERV.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3212, C:\PROGRAM FILES\TOSHIBA\BLUETOOTH TOSHIBA STACK\TOSBTMNG.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3264, C:\WINDOWS\SYSTEM32\RAMASST.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3888, C:\PROGRAM FILES\TOSHIBA\BLUETOOTH TOSHIBA STACK\TOSA2DP.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3904, C:\PROGRAM FILES\TOSHIBA\BLUETOOTH TOSHIBA STACK\TOSBTHID.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2896, C:\PROGRA~1\WINZIP\WINZIP32.EXE]

==================================
Scheduled Tasks
N/A

==================================
Windows Security Update Check
 Microsoft .NET Framework 1.1, česky
KB891122,  Aktualizace programů Media Player s podporou technologie WMDRM (KB891122)
KB934268,  Aktualizace služby Microsoft Core XML Services (MSXML) 6.0 Service Pack 1 (KB934268)
KB892130,  Nástroj pro ověření pravosti systému Windows (KB892130)
KB925850,  Windows Media Player 11
KB940157,  Služba Windows Search 4.0 pro systém Windows XP (KB940157)
KB909520,  Balíček Základní zprostředkovatel kryptografických služeb společnosti Microsoft pro čipové karty: x86 (KB909520)
KB936929,  Aktualizace Windows XP Service Pack 3 (KB936929)
KB951847,  Aktualizace Microsoft .NET Framework 3.5 Service Pack 1 a .NET Framework 3.5 Family Update (KB951847) x86
KB971032,  Aktualizace zabezpečení systému Windows XP (KB971032) MS09-040
KB973540,  Aktualizace zabezpečení pro systém Windows XP Service Pack 2 (KB973540) MS09-037
KB973869,  Aktualizace zabezpečení systému Windows XP (KB973869) MS09-037
KB958470,  Aktualizace zabezpečení systému Windows XP (KB958470) MS09-044
KB973354,  Aktualizace zabezpečení systému Windows XP (KB973354) MS09-037
KB973507,  Aktualizace zabezpečení systému Windows XP (KB973507) MS09-037
KB960859,  Aktualizace zabezpečení systému Windows XP (KB960859) MS09-042
KB973815,  Aktualizace zabezpečení systému Windows XP (KB973815) MS09-037
KB971657,  Aktualizace zabezpečení systému Windows XP (KB971657) MS09-041
KB944036,  Aplikace Internet Explorer 8 pro systém Windows XP
KB956844,  Aktualizace zabezpečení systému Windows XP (KB956844) MS09-046
KB971961,  Aktualizace zabezpečení pro jazyk Jscript 5.7 pro systém Windows XP (KB971961) MS09-045
KB968816,  Aktualizace zabezpečení součásti Windows Media Format Runtime 9, 9.5 a 11 pro systém Windows XP SP 2 (KB968816) MS09-047
KB954155,  Aktualizace zabezpečení součásti Windows Media Format Runtime 9, 9.5 a 11 pro systém Windows XP SP 2 (KB954155) MS09-051
KB975025,  Aktualizace zabezpečení systému Windows XP (KB975025) MS09-051
KB974571,  Aktualizace zabezpečení systému Windows XP (KB974571) MS09-056
KB974112,  Aktualizace zabezpečení systému Windows XP (KB974112) MS09-052
KB958869,  Aktualizace zabezpečení systému Windows XP (KB958869) MS09-062
KB969059,  Aktualizace zabezpečení systému Windows XP (KB969059) MS09-057
KB968389,  Aktualizace systému Windows XP (KB968389)
KB969947,  Aktualizace zabezpečení systému Windows XP (KB969947) MS09-065
KB973687,  Aktualizace pro systém Windows XP (KB973687)
KB931125,  Aktualizace pro kořenové certifikáty [listopad 2009] (KB931125)
KB974318,  Aktualizace zabezpečení systému Windows XP (KB974318) MS09-071
KB974392,  Aktualizace zabezpečení systému Windows XP (KB974392) MS09-069
KB955759,  Aktualizace systému Windows XP (KB955759)
KB973904,  Aktualizace zabezpečení systému Windows XP (KB973904) MS09-073
KB973685,  Aktualizace služby Microsoft XML Core Services 4.0 Service Pack 3 (KB973685)
KB972270,  Aktualizace zabezpečení systému Windows XP (KB972270) MS10-001
KB978207,  Kumulativní aktualizace zabezpečení aplikace Internet Explorer 7 pro systém Windows XP (KB978207) MS10-002
KB975713,  Aktualizace zabezpečení systému Windows XP (KB975713) MS10-007
KB978037,  Aktualizace zabezpečení systému Windows XP (KB978037) MS10-011
KB978251,  Aktualizace zabezpečení systému Windows XP (KB978251) MS10-006
KB975560,  Aktualizace zabezpečení systému Windows XP (KB975560) MS10-013
KB978262,  Kumulativní aktualizace zabezpečení pro funkci ActiveX Killbits pro systém Windows XP (KB978262) MS10-008
KB977914,  Aktualizace zabezpečení systému Windows XP (KB977914) MS10-013
KB971468,  Aktualizace zabezpečení systému Windows XP (KB971468) MS10-012
KB978706,  Aktualizace zabezpečení systému Windows XP (KB978706) MS10-005
KB979306,  Aktualizace pro systém Windows XP (KB979306)
KB977165,  Aktualizace zabezpečení systému Windows XP (KB977165) MS10-015
KB976002,  Aktualizace společnosti Microsoft zajišťující obrazovku výběru prohlížeče pro uživatele systému Windows XP v regionu EEA (KB976002)
KB890830,  Nástroj k odstranění škodlivého softwaru v systému Windows – březen 2010 (KB890830)
KB975561,  Aktualizace zabezpečení systému Windows XP (KB975561) MS10-016

==================================
API HOOK
N/A

==================================
Hidden Process
N/A

==================================




[Damned]

Vypni antivir a pokud máš i Antispyware a odinstaluj ComboFix ( nutné ) .
ComboFix se odinstaluje takto:
Start -> Spustit a zadej do řádku: Combofix[mezera]/uninstall

Stáhni si T-Cleaner ( nutné - smaže vše po Combu,SDFixu,Avengeru,MWAVu atd.-stáhneš->spustíš)

(pozn.Pokud máš AVG nebo Aviru, před stažením T-Cleaneru a po dobu čištění deaktivuj AVG i Aviru (i rezidenty), následně T-Cleaner smaž a zapni si AVG, Aviru.)
*****************************************************************************************************************************************
Stáhni si nový ComboFix (by sUBs)
nebo ComboFix (subs)
a ulož si ho na Plochu.

Já zatím připravím skript pro Combofix na odstranění StopZilly.

[Damned]

Jak se chová celkově PC?

[opice]

Celkove pracuje rychle. Ale ted po odinstalovani Combofix uz se nepripojim na net ani pres tu cestu ICQUnToolbar /pisu pres jiny pocitac/.

[Damned]

Asi ta Stopzilla nebo něco sedí na Winsocku. Opravíme to.
Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok).
Zkopíruj do něj následující celý text označený zeleně:

File::
c:\Windows\system32\drivers\is3srv.sys
c:\Windows\system32\DRIVERS\szkg.sys
c:\Windows\system32\DRIVERS\szkgfs.sys
C:\WINDOWS\system32\iS3Svc5.dll
C:\WINDOWS\system32\iS3Base5.dll
C:\WINDOWS\system32\SZBase5.dll
C:\WINDOWS\system32\iS3Win325.dll
C:\WINDOWS\system32\iS3UI5.dll
C:\WINDOWS\system32\iS3HTUI5.dll
C:\WINDOWS\system32\SZIO5.dll
C:\WINDOWS\system32\iS3DBA5.dll
C:\WINDOWS\system32\iS3DBA5.dll
C:\WINDOWS\system32\iS3Hks5.dll
C:\WINDOWS\system32\iS3Hks5.dll
C:\WINDOWS\system32\SZComp5.dll
C:\WINDOWS\system32\iS3Inet5.dll
c:\windows\system32\drivers\kgpcpy.cfg

Folder::
C:\Program Files\Common Files\iS3
c:\program files\STOPzilla!

Driver::
is3srv
szkg
szkgfs
kgpcpy
szkg5



Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.


Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe
a když se oba soubory překryjí, skript upusť.


- Automaticky se spustí ComboFix, oprava může trvat i déle než 10 minut. ! Nech ComboFix dokončit svou práci !
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HijackThis.