Error ve Win7..prosím o kontrolu logu +

Juri · Příspěvekod **Juri** » 08 úno 2011 12:42

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShareOverlay]
@="{594D4122-1F87-41E2-96C7-825FB4796516}"
[HKEY_CLASSES_ROOT\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516}]
2010-07-29 05:15 316416 ----a-w- c:\program files\Classic Shell\ClassicExplorer32.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Core Temp"="c:\portable aplikace\CoreTemp32\Core Temp.exe" [2009-08-05 378384]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
"SmartRAM"="c:\users\Jirka\Downloads\iobit_toolbox\Tools\Suo10_SmartRAM.exe" [2010-09-26 817496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Classic Start Menu"="c:\program files\Classic Shell\ClassicStartMenu.exe" [2010-07-29 91648]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2010-10-28 1352272]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2011-01-17 2548552]
"COMODO"="c:\program files\COMODO\COMODO GeekBuddy\CLPSLA.exe" [2010-11-19 210648]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2010-10-28 10:13 64592 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"

[HKLM\~\startupfolder\C:^Users^Jirka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
path=c:\users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Registrace produktu.lnk
backup=c:\windows\pss\Logitech . Registrace produktu.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2010-09-23 02:47 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EasyTuneVI]
2007-07-26 14:05 20480 ----a-w- c:\program files\GIGABYTE\ET6\ETcall.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware (reboot)]
2010-12-20 17:08 963976 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 16:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShowOSD]
2007-01-15 11:56 28672 ----a-w- c:\windows\OSDShow.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SJelite3Launch]
2010-06-28 09:56 180224 ----a-w- c:\users\Jirka\AppData\Roaming\Transcend\SJelite3\SJelite3Launch.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
2010-02-19 11:37 517096 ----a-w- c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe" /c

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"ArcSoft Connection Service"=c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-04-01 136176]
R3 AVerBDA3x;AVerMedia SAA713x BDA Service;c:\windows\system32\DRIVERS\AVerBDA3x.sys [2007-08-29 1183744]
R3 CFcatchme;CFcatchme;c:\users\Jirka\AppData\Local\Temp\CFcatchme.sys [x]
R3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo UnInstaller 4\DfSdkS.exe [x]
R3 etdrv;etdrv;c:\windows\etdrv.sys [2011-01-24 17488]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-01-03 129440]
R3 GVTDrv;GVTDrv;c:\windows\system32\Drivers\GVTDrv.sys [2011-01-25 24944]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys [2009-11-23 14856]
R3 MatSvc;Microsoft Automated Troubleshooting Service;c:\program files\Microsoft Fix it Center\Matsvc.exe [2010-04-10 266544]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [2010-09-01 15544]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [2010-03-11 25088]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]
R3 vpcuxd;USB Virtualization Stub Service;c:\windows\system32\DRIVERS\vpcuxd.sys [2009-09-23 12800]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-06 1343400]
R3 wxpSvc;webcamXP Service;c:\program files\wLite\wService.exe [2010-05-02 5027328]
R4 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-03-25 490280]
R4 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-12-17 1044808]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-02-24 691696]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [2010-11-19 752128]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys [2011-01-06 17256]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2011-01-06 236600]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2011-01-06 35768]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-07 218688]
S2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [2010-11-19 3975088]
S2 CLPSLS;COMODO livePCsupport Service;c:\program files\COMODO\COMODO GeekBuddy\CLPSLS.exe [2010-11-19 151432]
S2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\Drivers\LBeepKE.sys [2010-08-24 10448]
S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\Secunia\PSI\PSIA.exe [2011-01-10 993848]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2010-11-30 2222376]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [2010-11-19 163232]
S3 AVerA706;AVerMedia A706 BDA Service;c:\windows\system32\DRIVERS\AVerA706.sys [2009-06-10 1169920]
S3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys [2009-11-23 19720]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-06-23 275048]
S3 V0260VID;Live! Cam Vista IM;c:\windows\system32\DRIVERS\V0260Vid.sys [2006-11-03 178913]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-06-16 11:38 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MIF5BA~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MIF5BA~1\Office14\ONBttnIE.dll/105
LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll
TCP: {92C1CD9A-9950-4160-AF99-0BCEDA1F4CA2} = 156.154.70.25,156.154.71.25
FF - ProfilePath - c:\users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox 4.0 Beta 9\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Chromifox Extreme: cfxe@Triton - %profile%\extensions\cfxe@Triton
FF - Ext: Chromifox Extreme Carbon: cfxec@Triton - %profile%\extensions\cfxec@Triton
FF - Ext: Chromifox Companion: cfxHelper@Triton - %profile%\extensions\cfxHelper@Triton
FF - Ext: Read It Later: isreaditlater@ideashower.com - %profile%\extensions\isreaditlater@ideashower.com
FF - Ext: Ovi maps browser plugin: maps@ovi.com - %profile%\extensions\maps@ovi.com
FF - Ext: Personas Expression: personasexpression@eddiescorpse.private - %profile%\extensions\personasexpression@eddiescorpse.private
FF - Ext: QuickDrag: quickdrag@mozilla.ktechcomputing.com - %profile%\extensions\quickdrag@mozilla.ktechcomputing.com
FF - Ext: Hide IP Easy: support@easy-hideip.com - %profile%\extensions\support@easy-hideip.com
FF - Ext: MacOSX Theme: {00352F14-3F76-4e4d-ACFF-9972D7E4B3B9} - %profile%\extensions\{00352F14-3F76-4e4d-ACFF-9972D7E4B3B9}
FF - Ext: MacOSX Theme: {00352F14-3F76-4e4d-ACFF-9976D7E4B3B9} - %profile%\extensions\{00352F14-3F76-4e4d-ACFF-9976D7E4B3B9}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: TV-Fox: {2f17f610-5e97-4fed-828f-9940b7b577a4} - %profile%\extensions\{2f17f610-5e97-4fed-828f-9940b7b577a4}
FF - Ext: ReloadEvery: {888d99e7-e8b5-46a3-851e-1ec45da1e644} - %profile%\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}
FF - Ext: Context Search: {902D2C4A-457A-4EF9-AD43-7014562929FF} - %profile%\extensions\{902D2C4A-457A-4EF9-AD43-7014562929FF}
FF - Ext: DownloadHelper: {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - %profile%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: UnMHT: {f759ca51-3a91-4dd1-ae78-9db5eee9ebf0} - %profile%\extensions\{f759ca51-3a91-4dd1-ae78-9db5eee9ebf0}
FF - Ext: PC Sync 2 Synchronisation Extension: bkmrksync@nokia.com - c:\program files\Nokia\Nokia PC Suite 7\bkmrksync
FF - Ext: Firefox Synchronisation Extension: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70} - c:\program files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension

.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

AddRemove-Advanced SystemCare 3_is1 - c:\program files\IObit\Advanced SystemCare 3\unins000.exe
AddRemove-Game Booster_is1 - c:\program files\IObit\Game Booster\unins000.exe
AddRemove-Smart Defrag 2_is1 - c:\program files\IObit\Smart Defrag 2\unins000.exe
AddRemove-{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 - c:\program files\Spybot - Search & Destroy\unins000.exe

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.1.7600 Disk: WDC_WD6401AALS-00L3B2 rev.01.03B01 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T1L0-4

device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user != kernel MBR !!!

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\services\wxpSvc]
"ImagePath"="c:\program files\wLite\wService.exe /startedbyscm:5053B757-40E35B3B-webcamSRV"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'lsass.exe'(1016)
c:\windows\system32\guard32.dll

- - - - - - - > 'Explorer.exe'(3344)
c:\windows\system32\guard32.dll
c:\progra~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
c:\progra~1\MIF5BA~1\Office14\1029\GrooveIntlResource.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\NvXDSync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\WUDFHost.exe
c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
.
**************************************************************************
.
Celkový čas: 2011-02-08 12:26:49 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-02-08 11:26
ComboFix2.txt 2011-02-07 22:02
ComboFix3.txt 2011-02-07 21:42
ComboFix4.txt 2011-02-07 18:44

Před spuštěním: Volných bajtů: 99 060 834 304 begin_of_the_skype_highlighting 99 060 834 304 end_of_the_skype_highlighting
Po spuštění: Volných bajtů: 98 906 865 664

- - End Of File - - F0E9B8D2035E7DAB602DC8993459D0EE

Reklama

Příspěvekod **memphisto** » 08 úno 2011 13:00

Chlape, mě z tebe trefí. Řeknu ti odinstaluj Iobit a Spybot. Obojí jsi tam nechal. Psal jsem, že tam máš pozůstatky po ESETu a AVIŘE a tys odinstaloval AVAST a dal jsi tam COMODO a teď tam máš ještě zbytky AVASTu :smile:

Jéééj, počkej než to rozdýchám a nahodím skript

Juri · Příspěvekod **Juri** » 08 úno 2011 14:39

Omlouvám se a děkuju za trpělivost :oops:

..snad to rozdejcháš :smile:

...
Ten Avast jsem dal pryč záměrně, pořád se mě nedařilo ho uplně deaktivovat a stejně jsem se chystal do vyměnit za Comodo.
Zkusím ješte odinstalovat ten Iobit a spybot a pokusím se odstranit zbytky po tom avastu atd..

Příspěvekod **memphisto** » 08 úno 2011 14:43

Už to nech tak a nic nedělej nebo log z Combofixu bude vypadat zase úplně jinak. Spybot a Iobit jsem už smazal,ostatní antiviry taky. Počkej na skript

Juri · Příspěvekod **Juri** » 08 úno 2011 15:11

OK..vydržím :wink:

..díky

Příspěvekod **memphisto** » 08 úno 2011 15:53

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::
Folder::
c:\users\Jirka\Downloads\iobit_toolbox
c:\program files\Avira

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + HJT log

Juri · Příspěvekod **Juri** » 08 úno 2011 17:10

Je to hrozná otrava pořád přepinat mezy systémy...navíc mě ten scan v ComboFix nechce jet v normálním režimu pořád :-(

...takže v safe..

ComboFix 11-02-06.02 - Jirka 08.02.2011 16:34:18.7.2 - x86 NETWORK
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1033.18.3582.3083 [GMT 1:00]
Spuštěný z: c:\users\Jirka\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Jirka\Desktop\CFScript.txt
AV: COMODO Antivirus *Enabled/Outdated* {675CEE69-9702-A524-3989-6D7CC8BF3695}
FW: COMODO Firewall *Enabled* {5F676F4C-DD6D-A47C-12D6-C449366C71EE}
SP: COMODO Defense+ *Enabled/Updated* {DC3D0F8D-B138-AAAA-0339-560EB3387C28}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\Jirka\Downloads\iobit_toolbox
c:\users\Jirka\Downloads\iobit_toolbox\logo\Customize.ini
c:\users\Jirka\Downloads\iobit_toolbox\readme.txt
c:\users\Jirka\Downloads\iobit_toolbox\Toolbox.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\About.dll
c:\users\Jirka\Downloads\iobit_toolbox\tools\cxLibraryD12.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\DiskMap.dll
c:\users\Jirka\Downloads\iobit_toolbox\tools\DiskScan.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\DriverData.db
c:\users\Jirka\Downloads\iobit_toolbox\tools\dxBarD12.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\dxComnD12.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\dxCoreD12.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\dxDockingD12.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\dxGDIPlusD12.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\dxSkinOffice2007BlueD12.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\dxSkinsCoreD12.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\dxThemeD12.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\EULA.rtf
c:\users\Jirka\Downloads\iobit_toolbox\tools\Internet Booster\Main.ini
c:\users\Jirka\Downloads\iobit_toolbox\tools\Language\Czech.lng
c:\users\Jirka\Downloads\iobit_toolbox\tools\Language\English.lng
c:\users\Jirka\Downloads\iobit_toolbox\tools\Language\French.lng
c:\users\Jirka\Downloads\iobit_toolbox\tools\Language\German.lng
c:\users\Jirka\Downloads\iobit_toolbox\tools\Language\ChineseSimp.lng
c:\users\Jirka\Downloads\iobit_toolbox\tools\madbasic_.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\maddisAsm_.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\madexcept_.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\Main.ini
c:\users\Jirka\Downloads\iobit_toolbox\tools\Recently\Recently.ini
c:\users\Jirka\Downloads\iobit_toolbox\tools\rtl120.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\shconfig.ini
c:\users\Jirka\Downloads\iobit_toolbox\tools\Smart RAM\Smart RAM.ini
c:\users\Jirka\Downloads\iobit_toolbox\tools\sqlite3.dll
c:\users\Jirka\Downloads\iobit_toolbox\tools\Startup Manager\Secunia PSI Tray.lnk
c:\users\Jirka\Downloads\iobit_toolbox\tools\Startup Manager\StartupManager.ini
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suc10_RegistryCleaner.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suc11_PrivacySweeper.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suc12_Uninstaller.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suc13_DiskCleaner.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suc14_FileShredder.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sun10_ClonedFilesScanner.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sun11_DiskExplorer.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sun12_SystemInformation.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sun13_EmptyFoldersScanner.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sun14_SystemControl.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suo10_SmartRAM.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suo11_InternetBooster.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suo12_StartupManager.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suo13_RegistryDefrag.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suo14_SmartDefrag.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Suo15_GameBooster.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sur10_Undelete.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sur11_ShortcutFixer.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sur12_DiskCheck.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sur13_WinFix.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sur14_IEHelper.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sus10_SecurityHolesScanner.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sus11_ProcessManager.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sus12_DriverManager.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\Sus13_IObitSecurity360.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\TbFfSweep.dll
c:\users\Jirka\Downloads\iobit_toolbox\tools\TbFileSweep.dll
c:\users\Jirka\Downloads\iobit_toolbox\tools\ToolBox.exe
c:\users\Jirka\Downloads\iobit_toolbox\tools\UI\img\btn-bg.png
c:\users\Jirka\Downloads\iobit_toolbox\tools\UI\img\menu-bg.png
c:\users\Jirka\Downloads\iobit_toolbox\tools\UI\index.html
c:\users\Jirka\Downloads\iobit_toolbox\tools\UI\js\jquery-1.4.2.min.js
c:\users\Jirka\Downloads\iobit_toolbox\tools\UI\Recently.html
c:\users\Jirka\Downloads\iobit_toolbox\tools\UnDelete.dll
c:\users\Jirka\Downloads\iobit_toolbox\tools\Update.dat
c:\users\Jirka\Downloads\iobit_toolbox\tools\vcl120.bpl
c:\users\Jirka\Downloads\iobit_toolbox\tools\vclx120.bpl

.
((((((((((((((((((((((((( Soubory vytvořené od 2011-01-08 do 2011-02-08 )))))))))))))))))))))))))))))))
.

2011-02-08 15:42 . 2011-02-08 15:44 -------- d-----w- c:\users\Jirka\AppData\Local\temp
2011-02-08 15:42 . 2011-02-08 15:42 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-02-08 00:26 . 2011-02-08 00:26 1700352 begin_of_the_skype_highlighting 26 1700352 end_of_the_skype_highlighting ----a-w- c:\windows\system32\gdiplus.dll
2011-02-08 00:21 . 2011-02-08 15:42 525488 ----a-w- c:\windows\system32\drivers\sfi.dat
2011-02-08 00:07 . 2011-02-08 00:07 -------- d-----w- C:\VritualRoot
2011-02-08 00:05 . 2011-02-08 00:26 -------- d-----w- c:\program files\COMODO
2011-02-08 00:04 . 2011-02-08 00:08 -------- d-----w- c:\programdata\Comodo
2011-02-07 17:47 . 2011-02-07 17:47 -------- d-----w- c:\program files\PicLensIE
2011-02-07 17:45 . 2011-02-07 18:45 -------- d-----w- c:\users\Jirka\AppData\Local\Cooliris
2011-02-07 14:09 . 2011-02-07 14:09 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-02-07 14:08 . 2011-02-07 14:09 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-02-07 13:54 . 2011-02-07 13:54 -------- d-----w- c:\users\Jirka\AppData\Local\{BEB69B3D-5833-4825-93D7-235E9D519EA3}
2011-02-07 13:53 . 2011-02-07 13:54 -------- d-----w- c:\users\Jirka\AppData\Local\Windows Live Writer
2011-02-07 13:53 . 2011-02-07 13:53 -------- d-----w- c:\users\Jirka\AppData\Roaming\Windows Live Writer
2011-02-07 13:53 . 2011-02-07 13:53 -------- d-----w- c:\windows\en
2011-02-07 13:52 . 2011-02-07 13:52 -------- d-----w- c:\windows\cs
2011-02-07 12:43 . 2011-02-07 12:43 -------- d-----w- c:\users\Jirka\AppData\Local\Apple
2011-02-06 01:31 . 2011-02-07 13:15 -------- d-----w- c:\users\Jirka\AppData\Local\Adobe
2011-02-05 09:16 . 2011-02-05 09:16 -------- d-----w- c:\users\Jirka\AppData\Local\Secunia PSI
2011-02-05 09:15 . 2011-02-05 09:15 -------- d-----w- c:\program files\Secunia
2011-02-05 00:07 . 2011-02-05 01:13 -------- d-----r- C:\bootwiz
2011-02-04 23:38 . 2011-02-04 23:38 -------- d-----w- c:\users\Jirka USER
2011-02-04 23:35 . 2011-01-13 09:41 5890896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5B7CF2F4-DE89-4164-B227-0C06DE577648}\mpengine.dll
2011-02-03 14:01 . 2011-02-03 14:01 -------- d-----w- c:\program files\NirSoft
2011-02-03 11:30 . 2011-02-03 22:35 -------- d-----w- c:\program files\MyDefrag v4.3.1
2011-02-03 11:30 . 2010-05-21 11:11 475648 ----a-w- c:\windows\system32\MyDefragScreenSaver_v4.3.1.scr
2011-02-03 11:30 . 2010-05-21 11:11 1061888 ----a-w- c:\windows\system32\MyDefragScreenSaver_v4.3.1.exe
2011-02-03 11:21 . 2011-02-03 11:21 -------- d-----w- c:\users\Jirka\AppData\Roaming\Smart PC Solutions
2011-02-03 11:21 . 2011-02-03 11:21 -------- d-----w- c:\program files\Smart PC Solutions
2011-02-03 08:48 . 2011-02-03 08:48 -------- d-----w- c:\program files\AkelPad
2011-02-02 14:00 . 2011-02-02 14:00 -------- d-----w- c:\users\Jirka\AppData\Roaming\Xilisoft
2011-02-02 13:59 . 2011-02-02 13:59 -------- d-----w- c:\program files\Xilisoft
2011-02-01 01:54 . 2010-09-14 13:12 11264 ----a-w- c:\windows\system32\MMShellHook.dll
2011-02-01 01:54 . 2010-02-27 15:34 312320 ----a-w- c:\windows\system32\proppage.dll
2011-02-01 01:54 . 2011-02-01 01:54 -------- d-----w- c:\program files\Media Control
2011-02-01 01:54 . 2011-02-01 01:54 -------- d-----w- c:\users\Jirka\AppData\Roaming\Media Control
2011-02-01 01:54 . 2010-02-27 15:34 655872 ----a-w- c:\windows\system32\msvcr90.dll
2011-01-31 22:26 . 2011-01-31 22:27 -------- d-----w- c:\program files\iTunes
2011-01-31 22:26 . 2011-01-31 22:26 -------- d-----w- c:\program files\iPod
2011-01-31 22:25 . 2011-01-31 22:25 -------- d-----w- c:\program files\Bonjour
2011-01-31 22:24 . 2011-01-31 22:25 -------- d-----w- c:\program files\Safari
2011-01-31 01:01 . 2011-01-31 01:01 -------- d-----w- c:\users\Jirka\AppData\Roaming\VOS
2011-01-31 00:44 . 2011-01-31 00:44 -------- d-----w- c:\users\Jirka\AppData\Local\Thinstall
2011-01-31 00:11 . 2011-01-31 00:11 -------- d-----w- c:\users\Jirka\AppData\Local\Hardcoded Software
2011-01-31 00:11 . 2011-01-31 00:11 -------- d-----w- c:\program files\Hardcoded Software
2011-01-28 05:44 . 2011-01-28 05:44 -------- d-----w- c:\users\Jirka\AppData\Roaming\Stardock
2011-01-28 05:44 . 2011-01-28 05:44 -------- d-----w- c:\users\Jirka\AppData\Local\PackageAware
2011-01-26 08:49 . 2011-01-26 08:50 -------- d-----w- c:\program files\MSI Afterburner
2011-01-25 09:51 . 2011-01-25 09:57 -------- d-----w- c:\windows\$regcmp$
2011-01-25 08:51 . 2011-01-25 08:51 -------- d-----w- c:\programdata\Martau
2011-01-25 08:51 . 2011-01-25 08:51 -------- d-----w- c:\program files\Total Uninstall 5
2011-01-25 02:01 . 2011-01-25 02:01 -------- d-----w- C:\Documents and Settings
2011-01-24 19:55 . 2011-01-24 19:55 -------- d-----w- c:\users\Jirka\AppData\Roaming\2K Sports
2011-01-24 14:39 . 2011-01-24 14:39 -------- d-----w- c:\programdata\KONAMI
2011-01-24 14:29 . 2011-01-25 00:29 -------- d-----w- c:\users\Jirka\AppData\Roaming\Mikogo
2011-01-24 13:02 . 2011-01-24 13:06 -------- d-----w- c:\program files\MP3Gain
2011-01-24 11:37 . 2010-10-16 18:55 888424 ----a-w- c:\windows\system32\nvdispco322050.dll
2011-01-24 11:37 . 2010-10-16 18:55 813672 ----a-w- c:\windows\system32\nvgenco322030.dll
2011-01-24 11:37 . 2010-10-16 18:55 57960 ----a-w- c:\windows\system32\OpenCL.dll
2011-01-24 11:37 . 2010-10-16 18:55 4837480 ----a-w- c:\windows\system32\nvcuda.dll
2011-01-24 11:37 . 2010-10-16 18:55 319080 ----a-w- c:\windows\system32\nvdecodemft.dll
2011-01-24 11:37 . 2010-10-16 18:55 2912360 ----a-w- c:\windows\system32\nvcuvid.dll
2011-01-24 11:37 . 2010-10-16 18:55 2666600 ----a-w- c:\windows\system32\nvcuvenc.dll
2011-01-24 11:37 . 2010-10-16 18:55 14899816 ----a-w- c:\windows\system32\nvoglv32.dll
2011-01-24 11:37 . 2010-10-16 18:55 13019752 ----a-w- c:\windows\system32\nvcompiler.dll
2011-01-24 11:37 . 2010-10-16 18:55 10084360 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2011-01-24 11:37 . 2010-10-16 18:55 10023528 ----a-w- c:\windows\system32\nvd3dum.dll
2011-01-19 19:23 . 2011-01-19 19:23 -------- d-----w- C:\rsit
2011-01-19 19:06 . 2011-01-25 01:19 -------- d-----w- c:\users\Jirka\AppData\Roaming\UseNeXT
2011-01-19 19:06 . 2011-01-19 19:06 -------- d-----w- c:\program files\UseNeXT
2011-01-19 19:05 . 2011-02-07 14:10 -------- d-----w- c:\program files\Defraggler
2011-01-19 17:51 . 2010-12-20 17:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-01-19 17:51 . 2011-01-19 17:51 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-01-19 17:51 . 2010-12-20 17:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-17 02:47 . 2011-01-17 02:47 -------- d-----w- c:\program files\PhotoZoom Pro 4
2011-01-17 00:11 . 2011-02-07 22:43 -------- d-----w- c:\program files\Mozilla Firefox 4.0 Beta 9
2011-01-11 20:41 . 2010-03-30 23:00 169064 ----a-w- c:\windows\system32\everest_cpl.cpl
2011-01-11 20:39 . 2011-01-11 20:39 -------- d-----w- c:\program files\Lavalys
2011-01-11 19:03 . 2011-01-11 19:03 -------- d-----w- c:\program files\PC Connectivity Solution
2011-01-11 19:02 . 2011-01-11 19:02 -------- d-----w- c:\programdata\NokiaInstallerCache
2011-01-11 00:47 . 2011-01-11 00:47 -------- d-----w- c:\users\Jirka\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2011-01-11 00:47 . 2011-01-11 00:47 -------- d-----w- c:\users\Jirka\AppData\Roaming\Adobe Mini Bridge CS5
2011-01-10 22:32 . 2009-05-18 12:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2011-01-10 22:32 . 2008-04-17 11:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2011-01-10 22:32 . 2011-01-10 22:32 -------- d-----w- c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2011-01-10 22:31 . 2011-01-10 22:31 -------- d-----w- c:\program files\Apple Software Update
2011-01-10 17:46 . 2011-01-10 17:46 -------- d-----w- c:\programdata\Boss Media
2011-01-10 17:46 . 2011-01-10 17:46 -------- d-----w- c:\users\Jirka\AppData\Local\Boss Media
2011-01-10 17:32 . 2011-01-10 17:38 -------- d-----w- c:\users\Jirka\AppData\Local\IM
2011-01-10 17:32 . 2011-01-25 00:47 -------- d-----w- c:\programdata\IncrediMail
2011-01-10 17:32 . 2011-01-10 17:33 -------- d-----w- c:\programdata\IM

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-25 09:24 . 2010-11-03 23:02 24944 ----a-w- c:\windows\system32\drivers\GVTDrv.sys
2011-01-25 09:24 . 2010-10-28 19:21 17488 ----a-w- c:\windows\gdrv.sys
2011-01-24 22:11 . 2010-11-03 23:03 17488 ----a-w- c:\windows\etdrv.sys
2011-01-06 16:36 . 2011-01-06 16:36 80064 ----a-w- c:\windows\system32\drivers\inspect.sys
2011-01-06 16:36 . 2011-01-06 16:36 35768 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2011-01-06 16:36 . 2011-01-06 16:36 236600 ----a-w- c:\windows\system32\drivers\cmdGuard.sys
2011-01-06 16:36 . 2011-01-06 16:36 17256 ----a-w- c:\windows\system32\drivers\cmderd.sys
2011-01-05 16:14 . 2010-04-02 23:13 445016 ----a-w- c:\windows\system32\wrap_oal.dll
2011-01-05 16:14 . 2010-04-02 23:13 109144 ----a-w- c:\windows\system32\OpenAL32.dll
2011-01-04 23:32 . 2011-01-04 23:32 53248 ----a-r- c:\users\Jirka\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2011-01-04 23:32 . 2010-08-09 17:05 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2010-12-29 00:42 . 2010-12-29 00:42 285480 ----a-w- c:\windows\system32\guard32.dll
2010-12-24 07:45 . 2010-12-24 07:45 86016 ----a-w- c:\windows\system32\frapsvid.dll
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-11-19 13:38 . 2010-11-19 13:38 163232 ----a-w- c:\windows\system32\drivers\afcdp.sys
2010-11-19 13:38 . 2010-11-19 13:38 752128 ----a-w- c:\windows\system32\drivers\tdrpm273.sys
2010-11-19 13:38 . 2010-11-19 13:38 600928 ----a-w- c:\windows\system32\drivers\timntr.sys
2010-11-19 13:38 . 2010-02-25 10:26 170464 ----a-w- c:\windows\system32\drivers\snapman.sys
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShareOverlay]
@="{594D4122-1F87-41E2-96C7-825FB4796516}"
[HKEY_CLASSES_ROOT\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516}]
2010-07-29 05:15 316416 ----a-w- c:\program files\Classic Shell\ClassicExplorer32.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Core Temp"="c:\portable aplikace\CoreTemp32\Core Temp.exe" [2009-08-05 378384]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Classic Start Menu"="c:\program files\Classic Shell\ClassicStartMenu.exe" [2010-07-29 91648]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2010-10-28 1352272]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2011-01-17 2548552]
"COMODO"="c:\program files\COMODO\COMODO GeekBuddy\CLPSLA.exe" [2010-11-19 210648]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2010-10-28 10:13 64592 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"

[HKLM\~\startupfolder\C:^Users^Jirka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
path=c:\users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Registrace produktu.lnk
backup=c:\windows\pss\Logitech . Registrace produktu.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2010-09-23 02:47 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EasyTuneVI]
2007-07-26 14:05 20480 ----a-w- c:\program files\GIGABYTE\ET6\ETcall.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware (reboot)]
2010-12-20 17:08 963976 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 16:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShowOSD]
2007-01-15 11:56 28672 ----a-w- c:\windows\OSDShow.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SJelite3Launch]
2010-06-28 09:56 180224 ----a-w- c:\users\Jirka\AppData\Roaming\Transcend\SJelite3\SJelite3Launch.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
2010-02-19 11:37 517096 ----a-w- c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\users\Jirka\AppData\Local\Google\Update\GoogleUpdate.exe" /c

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"ArcSoft Connection Service"=c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"

R2 CLPSLS;COMODO livePCsupport Service;c:\program files\COMODO\COMODO GeekBuddy\CLPSLS.exe [2010-11-19 151432]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-04-01 136176]
R3 AVerBDA3x;AVerMedia SAA713x BDA Service;c:\windows\system32\DRIVERS\AVerBDA3x.sys [2007-08-29 1183744]
R3 CFcatchme;CFcatchme;c:\users\Jirka\AppData\Local\Temp\CFcatchme.sys [x]
R3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo UnInstaller 4\DfSdkS.exe [x]
R3 etdrv;etdrv;c:\windows\etdrv.sys [2011-01-24 17488]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-01-03 129440]
R3 GVTDrv;GVTDrv;c:\windows\system32\Drivers\GVTDrv.sys [2011-01-25 24944]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys [2009-11-23 14856]
R3 MatSvc;Microsoft Automated Troubleshooting Service;c:\program files\Microsoft Fix it Center\Matsvc.exe [2010-04-10 266544]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [2010-09-01 15544]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [2010-03-11 25088]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]
R3 vpcuxd;USB Virtualization Stub Service;c:\windows\system32\DRIVERS\vpcuxd.sys [2009-09-23 12800]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-06 1343400]
R3 wxpSvc;webcamXP Service;c:\program files\wLite\wService.exe [2010-05-02 5027328]
R4 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-03-25 490280]
R4 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-12-17 1044808]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-02-24 691696]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [2010-11-19 752128]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys [2011-01-06 17256]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2011-01-06 236600]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2011-01-06 35768]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-07 218688]
S2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [2010-11-19 3975088]
S2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\Drivers\LBeepKE.sys [2010-08-24 10448]
S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\Secunia\PSI\PSIA.exe [2011-01-10 993848]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2010-11-30 2222376]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [2010-11-19 163232]
S3 AVerA706;AVerMedia A706 BDA Service;c:\windows\system32\DRIVERS\AVerA706.sys [2009-06-10 1169920]
S3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys [2009-11-23 19720]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-06-23 275048]
S3 V0260VID;Live! Cam Vista IM;c:\windows\system32\DRIVERS\V0260Vid.sys [2006-11-03 178913]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-06-16 11:38 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MIF5BA~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MIF5BA~1\Office14\ONBttnIE.dll/105
LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll
TCP: {92C1CD9A-9950-4160-AF99-0BCEDA1F4CA2} = 156.154.70.25,156.154.71.25
FF - ProfilePath - c:\users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox 4.0 Beta 9\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Chromifox Extreme: cfxe@Triton - %profile%\extensions\cfxe@Triton
FF - Ext: Chromifox Extreme Carbon: cfxec@Triton - %profile%\extensions\cfxec@Triton
FF - Ext: Chromifox Companion: cfxHelper@Triton - %profile%\extensions\cfxHelper@Triton
FF - Ext: Read It Later: isreaditlater@ideashower.com - %profile%\extensions\isreaditlater@ideashower.com
FF - Ext: Ovi maps browser plugin: maps@ovi.com - %profile%\extensions\maps@ovi.com
FF - Ext: Personas Expression: personasexpression@eddiescorpse.private - %profile%\extensions\personasexpression@eddiescorpse.private
FF - Ext: QuickDrag: quickdrag@mozilla.ktechcomputing.com - %profile%\extensions\quickdrag@mozilla.ktechcomputing.com
FF - Ext: Hide IP Easy: support@easy-hideip.com - %profile%\extensions\support@easy-hideip.com
FF - Ext: MacOSX Theme: {00352F14-3F76-4e4d-ACFF-9972D7E4B3B9} - %profile%\extensions\{00352F14-3F76-4e4d-ACFF-9972D7E4B3B9}
FF - Ext: MacOSX Theme: {00352F14-3F76-4e4d-ACFF-9976D7E4B3B9} - %profile%\extensions\{00352F14-3F76-4e4d-ACFF-9976D7E4B3B9}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: TV-Fox: {2f17f610-5e97-4fed-828f-9940b7b577a4} - %profile%\extensions\{2f17f610-5e97-4fed-828f-9940b7b577a4}
FF - Ext: ReloadEvery: {888d99e7-e8b5-46a3-851e-1ec45da1e644} - %profile%\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}
FF - Ext: Context Search: {902D2C4A-457A-4EF9-AD43-7014562929FF} - %profile%\extensions\{902D2C4A-457A-4EF9-AD43-7014562929FF}
FF - Ext: DownloadHelper: {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - %profile%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: UnMHT: {f759ca51-3a91-4dd1-ae78-9db5eee9ebf0} - %profile%\extensions\{f759ca51-3a91-4dd1-ae78-9db5eee9ebf0}
FF - Ext: PC Sync 2 Synchronisation Extension: bkmrksync@nokia.com - c:\program files\Nokia\Nokia PC Suite 7\bkmrksync
FF - Ext: Firefox Synchronisation Extension: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70} - c:\program files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension

.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKCU-Run-SmartRAM - c:\users\Jirka\Downloads\iobit_toolbox\Tools\Suo10_SmartRAM.exe

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.1.7600 Disk: WDC_WD6401AALS-00L3B2 rev.01.03B01 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T1L0-4

device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user != kernel MBR !!!

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\services\wxpSvc]
"ImagePath"="c:\program files\wLite\wService.exe /startedbyscm:5053B757-40E35B3B-webcamSRV"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'lsass.exe'(1248)
c:\windows\system32\guard32.dll

- - - - - - - > 'Explorer.exe'(1812)
c:\windows\system32\guard32.dll
c:\windows\system32\stobject.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
c:\windows\System32\QAgent.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\NvXDSync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\WUDFHost.exe
c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
.
**************************************************************************
.
Celkový čas: 2011-02-08 16:52:26 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-02-08 15:52
ComboFix2.txt 2011-02-07 22:02
ComboFix3.txt 2011-02-07 21:42
ComboFix4.txt 2011-02-07 18:44

Před spuštěním: Volných bajtů: 98 993 291 264
Po spuštění: Volných bajtů: 98 915 229 696

- - End Of File - - 5AA453D22700E282951BDE2872C2EAA7

Juri · Příspěvekod **Juri** » 08 úno 2011 17:12

Ještě ten hijackthis log:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:03:42, on 8.2.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Windows\explorer.exe
C:\Users\Jirka\Desktop\Programy log systemu\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Cooliris Plug-In for Internet Explorer - {EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA} - C:\Program Files\PicLensIE\cooliris.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - (no file)
O4 - HKLM\..\Run: [Classic Start Menu] C:\Program Files\Classic Shell\ClassicStartMenu.exe
O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [COMODO] C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe
O4 - HKCU\..\Run: [Core Temp] "C:\Portable aplikace\CoreTemp32\Core Temp.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MIF5BA~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Launch Cooliris - {3437D640-C91A-458f-89F5-B9095EA4C28B} - C:\Program Files\PicLensIE\cooliris.dll
O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Broken Internet access because of LSP provider 'c:\program files\avira\antivir desktop\avsda.dll' missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{92C1CD9A-9950-4160-AF99-0BCEDA1F4CA2}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CS1\Services\Tcpip\..\{92C1CD9A-9950-4160-AF99-0BCEDA1F4CA2}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CS2\Services\Tcpip\..\{92C1CD9A-9950-4160-AF99-0BCEDA1F4CA2}: NameServer = 156.154.70.25,156.154.71.25
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\System32\guard32.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Defragmentation-Service (DfSdkS) - Unknown owner - C:\Program Files\Ashampoo\Ashampoo UnInstaller 4\DfSdkS.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: webcamXP Service (wxpSvc) - Unknown owner - C:\Program Files\wLite\wService.exe

--
End of file - 8761 bytes

Příspěvekod **memphisto** » 08 úno 2011 17:28

v logu fixni:
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - (no file)
O3 - Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - (no file)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab

dej start - spustit - services.msc - najdi a ukonči/zakaž tuto službu:
O23 - Service: Defragmentation-Service (DfSdkS) - Unknown owner - C:\Program Files\Ashampoo\Ashampoo UnInstaller 4\DfSdkS.exe (file missing)

Na vir to moc nevypadá, ale ....

Stáhni si OTL
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

Juri · Příspěvekod **Juri** » 08 úno 2011 17:39

oki..jdu na to:-)

Juri · Příspěvekod **Juri** » 08 úno 2011 18:10

Zase musím dát každý log na 2x..

OTL logfile created on: 8.2.2011 17:54:21 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Users\Jirka\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 73,00% Memory free
7,00 Gb Paging File | 6,00 Gb Available in Paging File | 86,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 214,80 Gb Total Space | 92,13 Gb Free Space | 42,89% Space Free | Partition Type: NTFS
Drive D: | 381,37 Gb Total Space | 77,68 Gb Free Space | 20,37% Space Free | Partition Type: NTFS
Drive E: | 59,05 Gb Total Space | 26,94 Gb Free Space | 45,62% Space Free | Partition Type: NTFS
Drive F: | 137,70 Gb Total Space | 11,76 Gb Free Space | 8,54% Space Free | Partition Type: NTFS
Drive G: | 399,41 Gb Total Space | 69,81 Gb Free Space | 17,48% Space Free | Partition Type: NTFS
Drive Z: | 596,16 Gb Total Space | 69,51 Gb Free Space | 11,66% Space Free | Partition Type: NTFS

Computer Name: JIRKA-PC | User Name: Jirka | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Jirka\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
PRC - C:\Program Files\Secunia\PSI\psia.exe (Secunia)
PRC - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe (COMODO)
PRC - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis)
PRC - C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation)
PRC - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (Acronis)
PRC - C:\Program Files\Classic Shell\ClassicStartMenu.exe (IvoSoft)
PRC - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)

========== Modules (SafeList) ==========

MOD - C:\Users\Jirka\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\System32\guard32.dll (COMODO)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\sspicli.dll (Microsoft Corporation)
MOD - C:\Windows\System32\sechost.dll (Microsoft Corporation)
MOD - C:\Windows\System32\samcli.dll (Microsoft Corporation)
MOD - C:\Windows\System32\profapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\netutils.dll (Microsoft Corporation)
MOD - C:\Windows\System32\KernelBase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\dwmapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\devobj.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cryptbase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cfgmgr32.dll (Microsoft Corporation)

========== Win32 Services (SafeList) ==========

SRV - (DfSdkS) -- File not found
SRV - (cmdAgent) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
SRV - (Secunia PSI Agent) -- C:\Program Files\Secunia\PSI\PSIA.exe (Secunia)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (Futuremark SystemInfo Service) -- C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe (Futuremark Corporation)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia)
SRV - (TeamViewer6) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (CLPSLS) -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe (COMODO)
SRV - (afcdpsrv) -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (LBTServ) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV - (AcrSch2Svc) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (Acronis)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (nosGetPlusHelper) getPlus(R) -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll (NOS Microsystems Ltd.)
SRV - (wxpSvc) -- C:\Program Files\wLite\wService.exe (Moonware Studios)
SRV - (MatSvc) -- C:\Program Files\Microsoft Fix it Center\Matsvc.exe (Microsoft Corporation)
SRV - (NAUpdate) -- C:\Program Files\Nero\Update\NASvc.exe (Nero AG)
SRV - (Microsoft SharePoint Workspace Audit Service) -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (ACDaemon) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (TuneUp.Defrag) -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (WwanSvc) -- C:\Windows\System32\wwansvc.dll (Microsoft Corporation)
SRV - (WbioSrvc) -- C:\Windows\System32\wbiosrvc.dll (Microsoft Corporation)
SRV - (Power) -- C:\Windows\System32\umpo.dll (Microsoft Corporation)
SRV - (Themes) -- C:\Windows\System32\themeservice.dll (Microsoft Corporation)
SRV - (sppuinotify) -- C:\Windows\System32\sppuinotify.dll (Microsoft Corporation)
SRV - (RpcEptMapper) -- C:\Windows\System32\RpcEpMap.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (PNRPsvc) Protokol PNRP (Peer Name Resolution Protocol) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (p2pimsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (HomeGroupProvider) -- C:\Windows\System32\provsvc.dll (Microsoft Corporation)
SRV - (PNRPAutoReg) -- C:\Windows\System32\pnrpauto.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (HomeGroupListener) -- C:\Windows\System32\ListSvc.dll (Microsoft Corporation)
SRV - (Dhcp) -- C:\Windows\System32\dhcpcore.dll (Microsoft Corporation)
SRV - (defragsvc) -- C:\Windows\System32\defragsvc.dll (Microsoft Corporation)
SRV - (BDESVC) -- C:\Windows\System32\bdesvc.dll (Microsoft Corporation)
SRV - (AxInstSV) Instalační program ovládacích prvků ActiveX (AxInstSV) -- C:\Windows\System32\AxInstSv.dll (Microsoft Corporation)
SRV - (AppIDSvc) -- C:\Windows\System32\appidsvc.dll (Microsoft Corporation)
SRV - (sppsvc) -- C:\Windows\System32\sppsvc.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (GVTDrv) -- C:\Windows\System32\drivers\GVTDrv.sys ()
DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows (R) 2000 DDK provider)
DRV - (etdrv) -- C:\Windows\etdrv.sys (Windows (R) 2000 DDK provider)
DRV - (inspect) -- C:\Windows\System32\drivers\inspect.sys (COMODO)
DRV - (cmdHlp) -- C:\Windows\System32\drivers\cmdhlp.sys (COMODO)
DRV - (cmdGuard) -- C:\Windows\System32\drivers\cmdGuard.sys (COMODO)
DRV - (cmderd) -- C:\Windows\System32\drivers\cmderd.sys (COMODO)
DRV - (afcdp) -- C:\Windows\System32\drivers\afcdp.sys (Acronis)
DRV - (tdrpman273) Acronis Try&Decide and Restore Points filter (build 273) -- C:\Windows\system32\DRIVERS\tdrpm273.sys (Acronis)
DRV - (timounter) -- C:\Windows\system32\DRIVERS\timntr.sys (Acronis)
DRV - (snapman) -- C:\Windows\system32\DRIVERS\snapman.sys (Acronis)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (ElbyCDIO) -- C:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (AnyDVD) -- C:\Windows\System32\drivers\AnyDVD.sys (SlySoft, Inc.)
DRV - (PSI) -- C:\Windows\System32\drivers\psi_mf.sys (Secunia)
DRV - (LMouFilt) -- C:\Windows\System32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\Windows\System32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (LBeepKE) -- C:\Windows\System32\drivers\LBeepKE.sys (Logitech, Inc.)
DRV - (L8042Kbd) -- C:\Windows\System32\drivers\L8042Kbd.sys (Logitech, Inc.)
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (RTL8167) -- C:\Windows\System32\drivers\Rt86win7.sys (Realtek )
DRV - (teamviewervpn) -- C:\Windows\System32\drivers\teamviewervpn.sys (TeamViewer GmbH)
DRV - (tifsfilter) -- C:\Windows\System32\drivers\tifsfilt.sys (Acronis)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (vpcvmm) -- C:\Windows\System32\drivers\vpcvmm.sys (Microsoft Corporation)
DRV - (Revoflt) -- C:\Windows\System32\drivers\revoflt.sys (VS Revo Group)
DRV - (KSecPkg) -- C:\Windows\System32\Drivers\ksecpkg.sys (Microsoft Corporation)
DRV - (LGVirHid) -- C:\Windows\System32\drivers\LGVirHid.sys (Logitech Inc.)
DRV - (LGBusEnum) -- C:\Windows\System32\drivers\LGBusEnum.sys (Logitech Inc.)
DRV - (StarOpen) -- C:\Windows\System32\drivers\StarOpen.sys ()
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (vpcnfltr) -- C:\Windows\System32\drivers\vpcnfltr.sys (Microsoft Corporation)
DRV - (vpcusb) -- C:\Windows\System32\drivers\vpcusb.sys (Microsoft Corporation)
DRV - (vpcbus) -- C:\Windows\System32\drivers\vpchbus.sys (Microsoft Corporation)
DRV - (vpcuxd) -- C:\Windows\System32\drivers\vpcuxd.sys (Microsoft Corporation)
DRV - (BthAvrcp) -- C:\Windows\System32\drivers\BthAvrcp.sys (CSR, plc)
DRV - (cmdide) -- C:\Windows\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (adpahci) -- C:\Windows\system32\DRIVERS\adpahci.sys (Adaptec, Inc.)
DRV - (adp94xx) -- C:\Windows\system32\DRIVERS\adp94xx.sys (Adaptec, Inc.)
DRV - (amdsbs) -- C:\Windows\system32\DRIVERS\amdsbs.sys (AMD Technologies Inc.)
DRV - (adpu320) -- C:\Windows\system32\DRIVERS\adpu320.sys (Adaptec, Inc.)
DRV - (arcsas) -- C:\Windows\system32\DRIVERS\arcsas.sys (Adaptec, Inc.)
DRV - (amdsata) -- C:\Windows\system32\DRIVERS\amdsata.sys (Advanced Micro Devices)
DRV - (arc) -- C:\Windows\system32\DRIVERS\arc.sys (Adaptec, Inc.)
DRV - (amdxata) -- C:\Windows\system32\DRIVERS\amdxata.sys (Advanced Micro Devices)
DRV - (aliide) -- C:\Windows\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
DRV - (nvstor) -- C:\Windows\system32\DRIVERS\nvstor.sys (NVIDIA Corporation)
DRV - (nvraid) -- C:\Windows\system32\DRIVERS\nvraid.sys (NVIDIA Corporation)
DRV - (nfrd960) -- C:\Windows\system32\DRIVERS\nfrd960.sys (IBM Corporation)
DRV - (LSI_SAS) -- C:\Windows\system32\DRIVERS\lsi_sas.sys (LSI Corporation)
DRV - (iaStorV) -- C:\Windows\system32\DRIVERS\iaStorV.sys (Intel Corporation)
DRV - (MegaSR) -- C:\Windows\system32\DRIVERS\MegaSR.sys (LSI Corporation, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\DRIVERS\lsi_scsi.sys (LSI Corporation)
DRV - (LSI_FC) -- C:\Windows\system32\DRIVERS\lsi_fc.sys (LSI Corporation)
DRV - (LSI_SAS2) -- C:\Windows\system32\DRIVERS\lsi_sas2.sys (LSI Corporation)
DRV - (iirsp) -- C:\Windows\system32\DRIVERS\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (megasas) -- C:\Windows\system32\DRIVERS\megasas.sys (LSI Corporation)
DRV - (hwpolicy) -- C:\Windows\System32\drivers\hwpolicy.sys (Microsoft Corporation)
DRV - (elxstor) -- C:\Windows\system32\DRIVERS\elxstor.sys (Emulex)
DRV - (aic78xx) -- C:\Windows\system32\DRIVERS\djsvs.sys (Adaptec, Inc.)
DRV - (HpSAMD) -- C:\Windows\system32\DRIVERS\HpSAMD.sys (Hewlett-Packard Company)
DRV - (FsDepends) -- C:\Windows\System32\drivers\fsdepends.sys (Microsoft Corporation)
DRV - (vsmraid) -- C:\Windows\system32\DRIVERS\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (vmbus) -- C:\Windows\system32\DRIVERS\vmbus.sys (Microsoft Corporation)
DRV - (vhdmp) -- C:\Windows\system32\DRIVERS\vhdmp.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\system32\DRIVERS\vmstorfl.sys (Microsoft Corporation)
DRV - (vdrvroot) -- C:\Windows\system32\DRIVERS\vdrvroot.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\system32\DRIVERS\storvsc.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\System32\drivers\wimmount.sys (Microsoft Corporation)
DRV - (viaide) -- C:\Windows\system32\DRIVERS\viaide.sys (VIA Technologies, Inc.)
DRV - (ql2300) -- C:\Windows\system32\DRIVERS\ql2300.sys (QLogic Corporation)
DRV - (rdyboost) -- C:\Windows\System32\drivers\rdyboost.sys (Microsoft Corporation)
DRV - (ql40xx) -- C:\Windows\system32\DRIVERS\ql40xx.sys (QLogic Corporation)
DRV - (SiSRaid4) -- C:\Windows\system32\DRIVERS\sisraid4.sys (Silicon Integrated Systems)
DRV - (pcw) -- C:\Windows\System32\drivers\pcw.sys (Microsoft Corporation)
DRV - (SiSRaid2) -- C:\Windows\system32\DRIVERS\SiSRaid2.sys (Silicon Integrated Systems Corp.)
DRV - (stexstor) -- C:\Windows\system32\DRIVERS\stexstor.sys (Promise Technology)
DRV - (CNG) -- C:\Windows\System32\Drivers\cng.sys (Microsoft Corporation)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\System32\Drivers\Brserid.sys (Brother Industries Ltd.)
DRV - (rdpbus) -- C:\Windows\System32\drivers\rdpbus.sys (Microsoft Corporation)
DRV - (RDPREFMP) -- C:\Windows\System32\drivers\RDPREFMP.sys (Microsoft Corporation)
DRV - (RasAgileVpn) WAN Miniport (IKEv2) -- C:\Windows\System32\drivers\agilevpn.sys (Microsoft Corporation)
DRV - (WfpLwf) -- C:\Windows\System32\drivers\wfplwf.sys (Microsoft Corporation)
DRV - (NdisCap) -- C:\Windows\System32\drivers\ndiscap.sys (Microsoft Corporation)
DRV - (vwifibus) -- C:\Windows\System32\drivers\vwifibus.sys (Microsoft Corporation)
DRV - (1394ohci) -- C:\Windows\System32\drivers\1394ohci.sys (Microsoft Corporation)
DRV - (UmPass) -- C:\Windows\system32\DRIVERS\umpass.sys (Microsoft Corporation)
DRV - (mshidkmdf) -- C:\Windows\System32\drivers\mshidkmdf.sys (Microsoft Corporation)
DRV - (MTConfig) -- C:\Windows\system32\DRIVERS\MTConfig.sys (Microsoft Corporation)
DRV - (CompositeBus) -- C:\Windows\System32\drivers\CompositeBus.sys (Microsoft Corporation)
DRV - (AppID) -- C:\Windows\system32\drivers\appid.sys (Microsoft Corporation)
DRV - (scfilter) -- C:\Windows\System32\drivers\scfilter.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\system32\DRIVERS\vms3cap.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\system32\DRIVERS\VMBusHID.sys (Microsoft Corporation)
DRV - (discache) -- C:\Windows\System32\drivers\discache.sys (Microsoft Corporation)
DRV - (AcpiPmi) -- C:\Windows\system32\DRIVERS\acpipmi.sys (Microsoft Corporation)
DRV - (AmdPPM) -- C:\Windows\system32\DRIVERS\amdppm.sys (Microsoft Corporation)
DRV - (hcw85cir) -- C:\Windows\system32\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (BrUsbMdm) -- C:\Windows\System32\Drivers\BrUsbMdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\System32\Drivers\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrSerWdm) -- C:\Windows\System32\Drivers\BrSerWdm.sys (Brother Industries Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\DRIVERS\BrFiltLo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\DRIVERS\BrFiltUp.sys (Brother Industries, Ltd.)
DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (ebdrv) -- C:\Windows\system32\DRIVERS\evbdx.sys (Broadcom Corporation)
DRV - (b06bdrv) -- C:\Windows\system32\DRIVERS\bxvbdx.sys (Broadcom Corporation)
DRV - (AVerA706) -- C:\Windows\System32\drivers\AVerA706.sys (AVerMedia TECHNOLOGIES, Inc.)
DRV - (VCSVADHWSer) Avnex Virtual Audio Device (WDM) -- C:\Windows\System32\drivers\vcsvad.sys (Avnex)
DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia)
DRV - (adfs) -- C:\Windows\System32\drivers\adfs.sys (Adobe Systems, Inc.)
DRV - (AVerBDA3x) -- C:\Windows\System32\drivers\AVerBDA3x.sys (AVerMedia TECHNOLOGIES, Inc.)
DRV - (Amusbprt) -- C:\Windows\System32\drivers\Amusbprt.sys (A4Tech Co.,Ltd.)
DRV - (Amfilter) -- C:\Windows\System32\drivers\Amfilter.sys (A4Tech Co.,Ltd.)
DRV - (V0260VID) -- C:\Windows\System32\drivers\V0260Vid.sys (Creative Technology Ltd.)
DRV - (speedfan) -- C:\Windows\system32\speedfan.sys (Windows (R) 2000 DDK provider)
DRV - (giveio) -- C:\Windows\system32\giveio.sys ()

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SYSTEM32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SYSTEM32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D8 57 4C 18 F9 BB CA 01 [binary data]
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.2.1
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2
FF - prefs.js..extensions.enabledItems: support@easy-hideip.com:1.0
FF - prefs.js..extensions.enabledItems: cfxHelper@Triton:1.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19
FF - prefs.js..extensions.enabledItems: {888d99e7-e8b5-46a3-851e-1ec45da1e644}:4.0.1
FF - prefs.js..extensions.enabledItems: maps@ovi.com:4.0.12.12
FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.48
FF - prefs.js..extensions.enabledItems: isreaditlater@ideashower.com:2.1.1
FF - prefs.js..extensions.enabledItems: {f759ca51-3a91-4dd1-ae78-9db5eee9ebf0}:5.6.0
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {902D2C4A-457A-4EF9-AD43-7014562929FF}:0.4.6
FF - prefs.js..extensions.enabledItems: personasexpression@eddiescorpse.private:2.0.0
FF - prefs.js..extensions.enabledItems: savefileto@mozdev.org:2.0.2
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.732
FF - prefs.js..extensions.enabledItems: {2f17f610-5e97-4fed-828f-9940b7b577a4}:1.6.5
FF - prefs.js..extensions.enabledItems: quickdrag@mozilla.ktechcomputing.com:2.0.2.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13
FF - prefs.js..extensions.enabledItems: cfxec@Triton:2.0.1
FF - prefs.js..extensions.enabledItems: {00352F14-3F76-4e4d-ACFF-9972D7E4B3B9}:0.7.2
FF - prefs.js..extensions.enabledItems: {00352F14-3F76-4e4d-ACFF-9976D7E4B3B9}:0.6.8
FF - prefs.js..extensions.enabledItems: cfxe@Triton:3.6.5

FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2010.11.02 17:04:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2011.01.11 20:03:29 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.01.10 14:34:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.01.10 14:34:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0b9\extensions\\Components: C:\Program Files\Mozilla Firefox 4.0 Beta 9\components [2011.01.17 01:11:51 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.7\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011.01.10 14:34:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011.01.11 20:03:29 | 000,000,000 | ---D | M]

[2010.02.24 00:55:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Extensions
[2010.02.24 00:55:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010.02.24 00:53:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2011.02.07 21:11:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions
[2010.03.30 08:53:10 | 000,000,000 | ---D | M] (MacOSX Theme) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{00352F14-3F76-4e4d-ACFF-9972D7E4B3B9}
[2010.03.30 08:55:02 | 000,000,000 | ---D | M] (MacOSX Theme) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{00352F14-3F76-4e4d-ACFF-9976D7E4B3B9}
[2011.01.17 02:16:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}
[2010.04.27 23:09:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.12.26 14:21:54 | 000,000,000 | ---D | M] (TV-Fox) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{2f17f610-5e97-4fed-828f-9940b7b577a4}
[2011.01.05 02:12:23 | 000,000,000 | ---D | M] (Quick Translator) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{5C655500-E712-41e7-9349-CE462F844B19}
[2010.11.15 21:18:47 | 000,000,000 | ---D | M] (ReloadEvery) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}
[2011.01.03 10:02:55 | 000,000,000 | ---D | M] (Context Search) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{902D2C4A-457A-4EF9-AD43-7014562929FF}
[2011.01.11 12:42:27 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.12.29 09:04:49 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.05.16 09:16:12 | 000,000,000 | ---D | M] (UnMHT) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{f759ca51-3a91-4dd1-ae78-9db5eee9ebf0}
[2010.05.12 09:30:43 | 000,000,000 | ---D | M] (Chromifox Extreme) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\cfxe@Triton
[2010.03.30 08:51:18 | 000,000,000 | ---D | M] (Chromifox Extreme Carbon) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\cfxec@Triton
[2010.05.12 09:30:48 | 000,000,000 | ---D | M] (Chromifox Companion) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\cfxHelper@Triton
[2010.12.30 00:09:27 | 000,000,000 | ---D | M] (Read It Later) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\isreaditlater@ideashower.com
[2010.05.02 23:43:06 | 000,000,000 | ---D | M] (Ovi maps browser plugin) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\maps@ovi.com
[2010.10.01 08:42:33 | 000,000,000 | ---D | M] (Personas Expression) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\personasexpression@eddiescorpse.private
[2010.11.19 23:23:56 | 000,000,000 | ---D | M] (QuickDrag) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\quickdrag@mozilla.ktechcomputing.com
[2011.01.17 01:13:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\savefileto@mozdev.org
[2010.03.01 18:55:49 | 000,000,000 | ---D | M] (Hide IP Easy) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\support@easy-hideip.com
[2010.03.30 08:55:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\extensions\{00352F14-3F76-4e4d-ACFF-9976D7E4B3B9}\chrome\mozapps\extensions
[2010.02.07 18:10:18 | 000,002,055 | ---- | M] () -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\searchplugins\daemon-search.xml
[2011.01.31 23:49:35 | 000,000,950 | ---- | M] () -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\searchplugins\icqplugin-1.xml
[2010.12.13 01:54:00 | 000,000,950 | ---- | M] () -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\searchplugins\icqplugin-2.xml
[2010.06.21 15:35:24 | 000,001,042 | ---- | M] () -- C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\8ix8n3ta.default\searchplugins\icqplugin.xml
[2011.01.05 00:33:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010.12.10 01:34:00 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010.04.04 00:35:38 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
[2011.01.11 20:03:29 | 000,000,000 | ---D | M] (Firefox Synchronisation Extension) -- C:\PROGRAM FILES\NOKIA\NOKIA OVI SUITE\CONNECTORS\BOOKMARKS CONNECTOR\FIREFOXEXTENSION
[2010.11.02 17:04:37 | 000,000,000 | ---D | M] (PC Sync 2 Synchronisation Extension) -- C:\PROGRAM FILES\NOKIA\NOKIA PC SUITE 7\BKMRKSYNC
[2010.12.10 01:33:58 | 000,025,048 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
[2010.12.10 01:33:58 | 000,140,248 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
[2007.04.10 16:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
[2010.04.04 00:35:33 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll
[2010.12.10 01:33:59 | 000,066,520 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
[2006.10.26 20:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
[2010.11.06 11:37:34 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
[2011.01.10 14:34:50 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
[2011.01.10 14:34:50 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
[2011.01.10 14:34:50 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
[2011.01.10 14:34:50 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
[2011.01.10 14:34:50 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
[2011.01.10 14:34:50 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
[2011.01.10 14:34:50 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
[2010.07.26 15:01:58 | 000,037,184 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\Mozilla Firefox\plugins\np_gp.dll
[2010.06.27 13:47:05 | 000,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml
[2010.06.27 13:47:05 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.06.27 13:47:05 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.06.27 13:47:05 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.06.27 13:47:06 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.06.27 13:47:06 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2011.02.08 16:44:34 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (ExplorerBHO Class) - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA} - C:\Program Files\PicLensIE\cooliris.dll (Cooliris Inc.)
O3 - HKLM\..\Toolbar: (Classic Explorer Bar) - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O4 - HKLM..\Run: [Classic Start Menu] C:\Program Files\Classic Shell\ClassicStartMenu.exe (IvoSoft)
O4 - HKLM..\Run: [COMODO] C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe (COMODO)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4 - HKCU..\Run: [Core Temp] C:\Portable aplikace\CoreTemp32\Core Temp.exe ()
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Od&eslat do aplikace OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Launch Cooliris - {3437D640-C91A-458f-89F5-B9095EA4C28B} - C:\Program Files\PicLensIE\cooliris.dll (Cooliris Inc.)
O9 - Extra Button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\System32\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000031 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000032 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000033 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000034 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311 begin_of_the_skype_highlighting 006097942311 end_of_the_skype_highlighting} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\Windows\System32\guard32.dll) - C:\Windows\System32\guard32.dll (COMODO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {E31004D1-A431-41B8-826F-E902F9D95C81} - Windows DreamScene - C:\Windows\System32\DreamScene.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corp.)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010.02.07 11:47:02 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...com [@ = ComFile] -- Reg Error: Key error. File not found

Juri · Příspěvekod **Juri** » 08 úno 2011 18:11

O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 30 Days ==========

[2011.02.08 17:51:48 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Users\Jirka\Desktop\OTL.exe
[2011.02.08 16:52:39 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011.02.08 16:44:42 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2011.02.08 16:42:05 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\temp
[2011.02.08 16:29:47 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2011.02.08 01:26:12 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\COMODO
[2011.02.08 01:26:03 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gdiplus.dll
[2011.02.08 01:20:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
[2011.02.08 01:07:45 | 000,000,000 | ---D | C] -- C:\VritualRoot
[2011.02.08 01:05:43 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2011.02.08 01:04:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo
[2011.02.07 19:34:15 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011.02.07 19:34:15 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011.02.07 19:34:15 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011.02.07 19:34:11 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011.02.07 19:33:59 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.02.07 18:47:11 | 000,000,000 | ---D | C] -- C:\Program Files\PicLensIE
[2011.02.07 18:45:54 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cooliris
[2011.02.07 18:45:52 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\Cooliris
[2011.02.07 15:09:02 | 000,218,688 | ---- | C] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2011.02.07 15:08:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2011.02.07 15:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2011.02.07 14:54:07 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\{BEB69B3D-5833-4825-93D7-235E9D519EA3}
[2011.02.07 14:53:53 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Windows Live Writer
[2011.02.07 14:53:53 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\Windows Live Writer
[2011.02.07 14:53:03 | 000,000,000 | ---D | C] -- C:\Windows\en
[2011.02.07 14:52:16 | 000,000,000 | ---D | C] -- C:\Windows\cs
[2011.02.07 13:43:19 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\Apple
[2011.02.06 02:31:12 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\Adobe
[2011.02.05 10:16:02 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\Secunia PSI
[2011.02.05 10:15:55 | 000,000,000 | ---D | C] -- C:\Program Files\Secunia
[2011.02.05 01:12:44 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\3-D HUNTING 2010
[2011.02.05 01:12:34 | 000,000,000 | ---D | C] -- C:\Users\Jirka\Documents\3-D HUNTING 2010
[2011.02.05 01:07:58 | 000,000,000 | R--D | C] -- C:\bootwiz
[2011.02.04 01:19:09 | 000,000,000 | ---D | C] -- C:\Users\Jirka\Desktop\Programy log systemu
[2011.02.03 15:01:57 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft ShellExView
[2011.02.03 15:01:57 | 000,000,000 | ---D | C] -- C:\Program Files\NirSoft
[2011.02.03 12:30:04 | 001,061,888 | ---- | C] (J.C. Kessels) -- C:\Windows\System32\MyDefragScreenSaver_v4.3.1.exe
[2011.02.03 12:30:04 | 000,475,648 | ---- | C] (J.C. Kessels) -- C:\Windows\System32\MyDefragScreenSaver_v4.3.1.scr
[2011.02.03 12:30:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyDefrag v4.3.1
[2011.02.03 12:30:04 | 000,000,000 | ---D | C] -- C:\Program Files\MyDefrag v4.3.1
[2011.02.03 12:21:29 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Smart PC Solutions
[2011.02.03 12:21:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Booster
[2011.02.03 12:21:06 | 000,000,000 | ---D | C] -- C:\Program Files\Smart PC Solutions
[2011.02.03 09:48:17 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AkelPad
[2011.02.03 09:48:17 | 000,000,000 | ---D | C] -- C:\Program Files\AkelPad
[2011.02.03 02:35:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2
[2011.02.02 15:00:52 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Xilisoft
[2011.02.02 14:59:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
[2011.02.02 14:59:12 | 000,000,000 | ---D | C] -- C:\Program Files\Xilisoft
[2011.02.01 02:54:54 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\proppage.dll
[2011.02.01 02:54:54 | 000,011,264 | ---- | C] (Damien Bain-Thouverez) -- C:\Windows\System32\MMShellHook.dll
[2011.02.01 02:54:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Control
[2011.02.01 02:54:53 | 000,655,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr90.dll
[2011.02.01 02:54:53 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Media Control
[2011.02.01 02:54:53 | 000,000,000 | ---D | C] -- C:\Program Files\Media Control
[2011.01.31 23:27:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011.01.31 23:26:42 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011.01.31 23:26:42 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011.01.31 23:25:27 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011.01.31 23:24:59 | 000,000,000 | ---D | C] -- C:\Program Files\Safari
[2011.01.31 02:01:36 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\VOS
[2011.01.31 01:44:13 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\Thinstall
[2011.01.31 01:11:26 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\Hardcoded Software
[2011.01.31 01:11:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dupeGuru
[2011.01.31 01:11:15 | 000,000,000 | ---D | C] -- C:\Program Files\Hardcoded Software
[2011.01.28 06:44:37 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Stardock
[2011.01.28 06:44:18 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\PackageAware
[2011.01.26 09:49:28 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
[2011.01.26 09:49:26 | 000,000,000 | ---D | C] -- C:\Program Files\MSI Afterburner
[2011.01.26 09:46:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor
[2011.01.25 23:26:30 | 000,000,000 | ---D | C] -- C:\Users\Jirka\Desktop\Doplnky auto
[2011.01.25 22:28:42 | 000,000,000 | ---D | C] -- C:\Users\Jirka\Documents\JETFIGHTER 2015 savegames
[2011.01.25 22:26:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetFighter 2015
[2011.01.25 10:51:12 | 000,000,000 | ---D | C] -- C:\Windows\$regcmp$
[2011.01.25 09:51:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Martau
[2011.01.25 09:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\Total Uninstall 5
[2011.01.25 03:01:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2011.01.24 20:55:53 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\2K Sports
[2011.01.24 15:50:07 | 000,000,000 | ---D | C] -- C:\Users\Jirka\Documents\KONAMI
[2011.01.24 15:39:27 | 000,000,000 | ---D | C] -- C:\ProgramData\KONAMI
[2011.01.24 15:29:12 | 000,000,000 | ---D | C] -- C:\Users\Jirka\Documents\Mikogo
[2011.01.24 15:29:10 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Mikogo
[2011.01.24 14:02:27 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain
[2011.01.24 14:02:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP3Gain
[2011.01.24 14:02:27 | 000,000,000 | ---D | C] -- C:\Program Files\MP3Gain
[2011.01.24 12:37:42 | 014,899,816 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2011.01.24 12:37:42 | 013,019,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2011.01.24 12:37:42 | 010,084,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2011.01.24 12:37:42 | 010,023,528 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2011.01.24 12:37:42 | 004,837,480 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2011.01.24 12:37:42 | 002,912,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2011.01.24 12:37:42 | 002,666,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2011.01.24 12:37:42 | 000,888,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco322050.dll
[2011.01.24 12:37:42 | 000,813,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco322030.dll
[2011.01.24 12:37:42 | 000,319,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll
[2011.01.24 12:37:42 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2011.01.24 12:37:42 | 000,010,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2011.01.23 10:19:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster
[2011.01.19 20:23:34 | 000,000,000 | ---D | C] -- C:\rsit
[2011.01.19 20:06:27 | 000,000,000 | ---D | C] -- C:\Users\Jirka\Documents\UseNeXT
[2011.01.19 20:06:27 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\UseNeXT
[2011.01.19 20:06:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UseNeXT
[2011.01.19 20:06:17 | 000,000,000 | ---D | C] -- C:\Program Files\UseNeXT
[2011.01.19 20:05:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
[2011.01.19 20:05:14 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2011.01.19 18:51:10 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011.01.19 18:51:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.01.19 18:51:06 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011.01.19 18:51:06 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.01.19 15:06:35 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
[2011.01.17 03:47:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoZoom Pro 4
[2011.01.17 03:47:41 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoZoom Pro 4
[2011.01.17 02:10:25 | 000,000,000 | ---D | C] -- C:\Users\Jirka\Documents\OCCT
[2011.01.17 01:11:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox 4.0 Beta 9
[2011.01.17 01:11:49 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox 4.0 Beta 9
[2011.01.12 09:53:06 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2011.01.12 09:53:01 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2011.01.12 09:53:01 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.01.12 09:53:01 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.01.12 09:53:01 | 000,801,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.01.12 09:53:01 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.01.12 09:53:01 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2011.01.12 09:53:01 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.01.12 09:53:01 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.01.12 09:53:01 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2011.01.12 09:53:01 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.01.12 09:53:01 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.01.12 09:53:01 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.01.11 21:39:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
[2011.01.11 21:39:03 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys
[2011.01.11 20:03:14 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2011.01.11 20:02:11 | 000,000,000 | ---D | C] -- C:\ProgramData\NokiaInstallerCache
[2011.01.11 01:47:00 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011.01.11 01:47:00 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Adobe Mini Bridge CS5
[2011.01.10 23:32:50 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2011.01.10 23:32:11 | 000,000,000 | ---D | C] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011.01.10 23:31:23 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011.01.10 18:46:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Boss Media
[2011.01.10 18:46:08 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\Boss Media
[2011.01.10 18:32:48 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Local\IM
[2011.01.10 18:32:36 | 000,000,000 | ---D | C] -- C:\ProgramData\IncrediMail
[2011.01.10 18:32:36 | 000,000,000 | ---D | C] -- C:\ProgramData\IM
[2011.01.10 15:56:24 | 000,000,000 | ---D | C] -- C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.01.10 15:56:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.01.10 14:34:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011.01.10 14:34:35 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2010.10.28 12:41:16 | 015,278,709 | ---- | C] (OpenCloner Inc. ) -- C:\Users\Jirka\AppData\Roaming\dc-platinum-setup.exe
[2010.03.01 15:41:38 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Jirka\AppData\Roaming\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2011.02.08 17:50:50 | 000,540,849 | ---- | M] () -- C:\Windows\System32\drivers\sfi.dat
[2011.02.08 17:48:02 | 000,017,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.02.08 17:48:02 | 000,017,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.02.08 17:45:42 | 003,513,356 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2011.02.08 17:45:42 | 001,608,762 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.02.08 17:45:42 | 001,097,390 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2011.02.08 17:45:42 | 001,051,006 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.02.08 17:41:00 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.02.08 17:40:54 | 2817,384,448 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.08 17:37:21 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\Jirka\Desktop\OTL.exe
[2011.02.08 16:44:34 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011.02.08 12:10:11 | 000,001,251 | ---- | M] () -- C:\CF-Submit.htm
[2011.02.08 01:26:06 | 000,001,191 | ---- | M] () -- C:\Users\Jirka\Application Data\Microsoft\Internet Explorer\Quick Launch\COMODO GeekBuddy.lnk
[2011.02.08 01:26:06 | 000,001,167 | ---- | M] () -- C:\Users\Public\Desktop\COMODO GeekBuddy.lnk
[2011.02.08 01:26:03 | 001,700,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdiplus.dll
[2011.02.08 01:20:07 | 000,001,846 | ---- | M] () -- C:\Users\Public\Desktop\COMODO Internet Security.lnk
[2011.02.08 00:45:51 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011.02.07 19:45:47 | 000,000,955 | ---- | M] () -- C:\Users\Jirka\Desktop\Launch Cooliris.lnk
[2011.02.07 19:30:16 | 004,264,433 | R--- | M] () -- C:\Users\Jirka\Desktop\ComboFix.exe
[2011.02.07 15:10:06 | 000,001,836 | ---- | M] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.02.07 15:09:02 | 000,218,688 | ---- | M] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2011.02.07 14:59:20 | 000,000,962 | ---- | M] () -- C:\Users\Jirka\Desktop\KMPlayer.lnk
[2011.02.04 02:24:59 | 000,000,063 | ---- | M] () -- C:\Windows\System32\everest_cpl.ini
[2011.02.03 13:06:31 | 000,019,796 | ---- | M] () -- C:\Users\Jirka\Desktop\error.jpg
[2011.02.03 12:30:04 | 000,000,989 | ---- | M] () -- C:\Users\Public\Desktop\MyDefrag.lnk
[2011.02.03 12:21:07 | 000,002,012 | ---- | M] () -- C:\Users\Jirka\Desktop\Click To Find and Fix PC Errors.lnk
[2011.02.03 12:21:07 | 000,001,236 | ---- | M] () -- C:\Users\Jirka\Desktop\Startup Booster.lnk
[2011.02.03 02:35:12 | 000,001,105 | ---- | M] () -- C:\Users\Public\Desktop\Smart Defrag 2.lnk
[2011.02.02 22:46:09 | 000,012,288 | ---- | M] () -- C:\Users\Jirka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.02 22:30:31 | 000,001,094 | ---- | M] () -- C:\Users\Jirka\Application Data\Microsoft\Internet Explorer\Quick Launch\BS.Player PRO.lnk
[2011.02.02 14:59:32 | 000,002,022 | ---- | M] () -- C:\Users\Jirka\Application Data\Microsoft\Internet Explorer\Quick Launch\Xilisoft Movie Maker 6.lnk
[2011.02.02 14:59:32 | 000,001,998 | ---- | M] () -- C:\Users\Public\Desktop\Xilisoft Movie Maker 6.lnk
[2011.02.02 00:21:36 | 000,001,369 | ---- | M] () -- C:\Users\Jirka\Desktop\CINEBENCH R10.lnk
[2011.02.01 09:59:23 | 000,210,666 | ---- | M] () -- C:\Users\Jirka\Desktop\cachemem benchmark.png
[2011.01.31 23:25:02 | 000,002,533 | ---- | M] () -- C:\Users\Jirka\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011.01.31 02:10:21 | 000,001,480 | ---- | M] () -- C:\Users\Jirka\Desktop\Decoshow.lnk
[2011.01.31 02:04:37 | 000,000,854 | ---- | M] () -- C:\Users\Jirka\Desktop\PhotoShow – zástupce.lnk
[2011.01.31 02:03:19 | 000,001,504 | ---- | M] () -- C:\Users\Jirka\Desktop\Ashampoo UnInstaller 4 – zástupce.lnk
[2011.01.31 01:59:04 | 000,001,700 | ---- | M] () -- C:\Users\Jirka\Desktop\WinMPG Video Convert – zástupce.lnk
[2011.01.31 01:56:15 | 000,001,312 | ---- | M] () -- C:\Users\Jirka\Desktop\Portable SweetHome3D – zástupce.lnk
[2011.01.31 01:45:01 | 000,001,212 | ---- | M] () -- C:\Users\Jirka\Desktop\Advanced SystemCare – zástupce.lnk
[2011.01.31 01:41:37 | 000,001,469 | ---- | M] () -- C:\Users\Jirka\Desktop\Inpaint – zástupce.lnk
[2011.01.31 01:11:16 | 000,001,075 | ---- | M] () -- C:\Users\Public\Desktop\dupeGuru.lnk
[2011.01.27 03:06:50 | 000,620,108 | ---- | M] () -- C:\Users\Jirka\Desktop\po spánku hiih.jpg
[2011.01.27 02:44:53 | 000,625,769 | ---- | M] () -- C:\Users\Jirka\Desktop\využití RAM hihi.jpg
[2011.01.26 09:49:28 | 000,001,025 | ---- | M] () -- C:\Users\Jirka\Desktop\MSI Afterburner.lnk
[2011.01.26 09:46:28 | 000,000,993 | ---- | M] () -- C:\Users\Jirka\Desktop\MSI Kombustor.lnk
[2011.01.26 09:46:28 | 000,000,945 | ---- | M] () -- C:\Users\Jirka\Desktop\MSI Kombustor Multi-GPU.lnk
[2011.01.25 22:59:24 | 000,000,719 | ---- | M] () -- C:\Users\Jirka\Desktop\JetFighter 2015.lnk
[2011.01.25 10:24:59 | 000,024,944 | ---- | M] () -- C:\Windows\System32\drivers\GVTDrv.sys
[2011.01.25 10:24:59 | 000,000,004 | ---- | M] () -- C:\Windows\System32\GVTunner.ref
[2011.01.25 10:24:43 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys
[2011.01.25 10:24:33 | 003,814,536 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.01.25 09:51:37 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\Total Uninstall 5.lnk
[2011.01.25 09:11:58 | 000,001,013 | ---- | M] () -- C:\Users\Jirka\Desktop\Your Unin-staller!.lnk
[2011.01.25 03:12:41 | 000,518,306 | ---- | M] () -- C:\Windows\System32\oodbs.lor
[2011.01.24 23:11:25 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\etdrv.sys
[2011.01.24 17:29:55 | 000,001,238 | ---- | M] () -- C:\Users\Jirka\Desktop\PES 2011.lnk
[2011.01.23 10:19:48 | 000,001,101 | ---- | M] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
[2011.01.23 10:19:48 | 000,001,089 | ---- | M] () -- C:\Users\Public\Desktop\Game Booster.lnk
[2011.01.20 00:42:46 | 000,519,484 | ---- | M] () -- C:\Users\Public\Documents\plocha.jpg
[2011.01.19 20:06:18 | 000,001,772 | ---- | M] () -- C:\Users\Jirka\Desktop\UseNeXT.lnk
[2011.01.18 02:58:59 | 009,876,134 | ---- | M] () -- C:\Users\Jirka\Desktop\XsaraN7.pdf
[2011.01.17 03:47:46 | 000,004,305 | ---- | M] () -- C:\Windows\jvhhpn-d64.ini
[2011.01.17 03:47:42 | 000,001,032 | ---- | M] () -- C:\Users\Public\Desktop\PhotoZoom Pro 4.lnk
[2011.01.17 01:11:51 | 000,002,084 | ---- | M] () -- C:\Users\Jirka\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox 4.0 Beta 9.lnk
[2011.01.17 01:11:51 | 000,002,060 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox 4.0 Beta 9.lnk
[2011.01.17 01:01:51 | 000,000,927 | ---- | M] () -- C:\Users\Jirka\Desktop\Sysinternals Suite.lnk
[2011.01.10 23:43:30 | 001,285,632 | ---- | M] () -- C:\Users\Public\Documents\Mosty Beruška
[2011.01.10 23:42:06 | 001,287,680 | ---- | M] () -- C:\Users\Public\Documents\Mosty.pps
[2011.01.10 03:59:23 | 000,001,057 | ---- | M] () -- C:\Users\Jirka\AppData\Roaming\vso_ts_preview.xml

========== Files Created - No Company Name ==========

[2011.02.08 12:10:11 | 000,001,251 | ---- | C] () -- C:\CF-Submit.htm
[2011.02.08 01:26:06 | 000,001,191 | ---- | C] () -- C:\Users\Jirka\Application Data\Microsoft\Internet Explorer\Quick Launch\COMODO GeekBuddy.lnk
[2011.02.08 01:26:06 | 000,001,167 | ---- | C] () -- C:\Users\Public\Desktop\COMODO GeekBuddy.lnk
[2011.02.08 01:21:36 | 000,540,849 | ---- | C] () -- C:\Windows\System32\drivers\sfi.dat
[2011.02.08 01:20:07 | 000,001,846 | ---- | C] () -- C:\Users\Public\Desktop\COMODO Internet Security.lnk
[2011.02.07 19:45:47 | 000,000,955 | ---- | C] () -- C:\Users\Jirka\Desktop\Launch Cooliris.lnk
[2011.02.07 19:34:15 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2011.02.07 19:34:15 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011.02.07 19:34:15 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
[2011.02.07 19:34:15 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011.02.07 19:34:15 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011.02.07 19:30:02 | 004,264,433 | R--- | C] () -- C:\Users\Jirka\Desktop\ComboFix.exe
[2011.02.07 15:10:06 | 000,001,836 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.02.07 14:59:20 | 000,000,962 | ---- | C] () -- C:\Users\Jirka\Desktop\KMPlayer.lnk
[2011.02.05 10:15:58 | 000,000,996 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
[2011.02.03 20:27:20 | 000,001,238 | ---- | C] () -- C:\Users\Jirka\Desktop\PES 2011.lnk
[2011.02.03 13:06:31 | 000,019,796 | ---- | C] () -- C:\Users\Jirka\Desktop\error.jpg
[2011.02.03 12:30:04 | 000,000,989 | ---- | C] () -- C:\Users\Public\Desktop\MyDefrag.lnk
[2011.02.03 12:21:07 | 000,002,012 | ---- | C] () -- C:\Users\Jirka\Desktop\Click To Find and Fix PC Errors.lnk
[2011.02.03 12:21:07 | 000,001,236 | ---- | C] () -- C:\Users\Jirka\Desktop\Startup Booster.lnk
[2011.02.03 02:35:12 | 000,001,105 | ---- | C] () -- C:\Users\Public\Desktop\Smart Defrag 2.lnk
[2011.02.02 14:59:32 | 000,002,022 | ---- | C] () -- C:\Users\Jirka\Application Data\Microsoft\Internet Explorer\Quick Launch\Xilisoft Movie Maker 6.lnk
[2011.02.02 14:59:32 | 000,001,998 | ---- | C] () -- C:\Users\Public\Desktop\Xilisoft Movie Maker 6.lnk
[2011.02.02 00:21:36 | 000,001,369 | ---- | C] () -- C:\Users\Jirka\Desktop\CINEBENCH R10.lnk
[2011.02.01 09:59:22 | 000,210,666 | ---- | C] () -- C:\Users\Jirka\Desktop\cachemem benchmark.png
[2011.01.31 23:25:02 | 000,002,533 | ---- | C] () -- C:\Users\Jirka\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011.01.31 23:25:02 | 000,002,521 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
[2011.01.31 02:10:21 | 000,001,480 | ---- | C] () -- C:\Users\Jirka\Desktop\Decoshow.lnk
[2011.01.31 02:04:37 | 000,000,854 | ---- | C] () -- C:\Users\Jirka\Desktop\PhotoShow – zástupce.lnk
[2011.01.31 02:03:19 | 000,001,504 | ---- | C] () -- C:\Users\Jirka\Desktop\Ashampoo UnInstaller 4 – zástupce.lnk
[2011.01.31 01:59:04 | 000,001,700 | ---- | C] () -- C:\Users\Jirka\Desktop\WinMPG Video Convert – zástupce.lnk
[2011.01.31 01:56:15 | 000,001,312 | ---- | C] () -- C:\Users\Jirka\Desktop\Portable SweetHome3D – zástupce.lnk
[2011.01.31 01:45:01 | 000,001,212 | ---- | C] () -- C:\Users\Jirka\Desktop\Advanced SystemCare – zástupce.lnk
[2011.01.31 01:41:37 | 000,001,469 | ---- | C] () -- C:\Users\Jirka\Desktop\Inpaint – zástupce.lnk
[2011.01.31 01:11:16 | 000,001,075 | ---- | C] () -- C:\Users\Public\Desktop\dupeGuru.lnk
[2011.01.28 07:07:53 | 000,001,756 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2011.01.27 03:06:50 | 000,620,108 | ---- | C] () -- C:\Users\Jirka\Desktop\po spánku hiih.jpg
[2011.01.27 02:44:53 | 000,625,769 | ---- | C] () -- C:\Users\Jirka\Desktop\využití RAM hihi.jpg
[2011.01.26 09:49:28 | 000,001,025 | ---- | C] () -- C:\Users\Jirka\Desktop\MSI Afterburner.lnk
[2011.01.26 09:46:28 | 000,000,993 | ---- | C] () -- C:\Users\Jirka\Desktop\MSI Kombustor.lnk
[2011.01.26 09:46:28 | 000,000,945 | ---- | C] () -- C:\Users\Jirka\Desktop\MSI Kombustor Multi-GPU.lnk
[2011.01.25 22:59:24 | 000,000,719 | ---- | C] () -- C:\Users\Jirka\Desktop\JetFighter 2015.lnk
[2011.01.25 09:51:37 | 000,000,981 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Uninstall 5.lnk
[2011.01.25 09:51:37 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\Total Uninstall 5.lnk
[2011.01.25 00:18:44 | 000,000,004 | ---- | C] () -- C:\Windows\System32\GVTunner.ref
[2011.01.23 10:19:48 | 000,001,101 | ---- | C] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
[2011.01.20 00:42:46 | 000,519,484 | ---- | C] () -- C:\Users\Public\Documents\plocha.jpg
[2011.01.19 20:06:18 | 000,001,772 | ---- | C] () -- C:\Users\Jirka\Desktop\UseNeXT.lnk
[2011.01.18 02:58:59 | 009,876,134 | ---- | C] () -- C:\Users\Jirka\Desktop\XsaraN7.pdf
[2011.01.17 03:47:42 | 000,001,032 | ---- | C] () -- C:\Users\Public\Desktop\PhotoZoom Pro 4.lnk
[2011.01.17 01:11:51 | 000,002,084 | ---- | C] () -- C:\Users\Jirka\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox 4.0 Beta 9.lnk
[2011.01.17 01:11:51 | 000,002,060 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox 4.0 Beta 9.lnk
[2011.01.17 01:01:51 | 000,000,927 | ---- | C] () -- C:\Users\Jirka\Desktop\Sysinternals Suite.lnk
[2011.01.11 21:41:59 | 000,169,064 | ---- | C] () -- C:\Windows\System32\everest_cpl.cpl
[2011.01.11 21:41:59 | 000,000,063 | ---- | C] () -- C:\Windows\System32\everest_cpl.ini
[2011.01.10 23:43:28 | 001,285,632 | ---- | C] () -- C:\Users\Public\Documents\Mosty Beruška
[2011.01.10 23:41:59 | 001,287,680 | ---- | C] () -- C:\Users\Public\Documents\Mosty.pps
[2011.01.10 15:37:30 | 000,001,013 | ---- | C] () -- C:\Users\Jirka\Desktop\Your Unin-staller!.lnk
[2010.12.01 00:34:46 | 000,000,135 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2010.11.25 03:12:42 | 000,000,007 | ---- | C] () -- C:\Users\Jirka\AppData\Roaming\Pozadi z webkyverze.txt
[2010.11.04 00:02:43 | 000,024,944 | ---- | C] () -- C:\Windows\System32\drivers\GVTDrv.sys
[2010.10.28 13:05:23 | 002,325,304 | ---- | C] () -- C:\Windows\System32\DK2INST.DLL
[2010.10.14 01:36:44 | 000,179,263 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2010.10.13 00:27:57 | 000,000,132 | ---- | C] () -- C:\Users\Jirka\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2010.09.19 23:39:06 | 000,000,136 | ---- | C] () -- C:\Windows\System32\cpuz.ini
[2010.08.24 19:43:12 | 000,377,856 | ---- | C] () -- C:\Windows\System32\binkw32.dll
[2010.08.09 17:30:50 | 000,000,760 | ---- | C] () -- C:\Users\Jirka\AppData\Roaming\setup_ldm.iss
[2010.08.09 13:05:07 | 000,294,912 | ---- | C] () -- C:\Windows\PIC.dll
[2010.08.09 13:05:07 | 000,011,136 | ---- | C] () -- C:\Windows\mhotkey_reg.ini
[2010.08.05 11:35:18 | 000,000,262 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2010.07.27 21:15:59 | 000,002,072 | ---- | C] () -- C:\Windows\EXTRADNS.INI
[2010.07.27 20:04:23 | 000,000,017 | ---- | C] () -- C:\Users\Jirka\AppData\Local\resmon.resmoncfg
[2010.07.18 18:09:00 | 000,005,653 | ---- | C] () -- C:\Windows\wininit.ini
[2010.04.20 12:53:52 | 000,001,057 | ---- | C] () -- C:\Users\Jirka\AppData\Roaming\vso_ts_preview.xml
[2010.04.15 15:01:17 | 000,000,028 | ---- | C] () -- C:\Windows\v2d.INI
[2010.04.15 14:34:28 | 000,012,288 | ---- | C] () -- C:\Users\Jirka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.03 00:12:49 | 000,003,972 | ---- | C] () -- C:\Windows\System32\drivers\PciBus.sys
[2010.03.02 15:38:01 | 000,004,305 | ---- | C] () -- C:\Windows\jvhhpn-d64.ini
[2010.03.01 17:44:52 | 000,032,768 | ---- | C] () -- C:\Windows\TBPanelExt.dll
[2010.03.01 15:42:07 | 000,000,034 | ---- | C] () -- C:\Users\Jirka\AppData\Roaming\pcouffin.log
[2010.03.01 15:41:38 | 000,007,887 | ---- | C] () -- C:\Users\Jirka\AppData\Roaming\pcouffin.cat
[2010.03.01 15:41:38 | 000,001,144 | ---- | C] () -- C:\Users\Jirka\AppData\Roaming\pcouffin.inf
[2010.03.01 15:36:03 | 000,000,125 | -HS- | C] () -- C:\ProgramData\.zreglib
[2010.03.01 13:41:13 | 000,007,168 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2010.02.24 12:18:17 | 000,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2010.02.24 11:32:09 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.02.21 04:48:22 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2009.12.03 08:27:30 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009.08.16 10:08:36 | 000,178,176 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2009.07.14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009.06.07 12:27:20 | 000,073,728 | ---- | C] () -- C:\Windows\System32\vbzlib1.dll
[2009.05.29 15:52:26 | 000,204,800 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2009.05.29 15:47:06 | 000,881,664 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2007.04.02 05:44:42 | 000,003,072 | ---- | C] () -- C:\Windows\System32\34CoInstaller.dll
[2007.02.05 19:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[1996.04.03 20:33:26 | 000,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys

========== LOP Check ==========

[2011.01.24 20:55:53 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\2K Sports
[2010.11.19 14:46:56 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Acronis
[2011.01.25 01:47:51 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Airytec
[2010.08.07 23:47:30 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\AMPSoft
[2010.10.28 12:51:45 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Any DVD Shrink
[2011.01.05 15:42:34 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Apowersoft
[2010.03.01 13:37:48 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Ashampoo
[2010.05.03 11:36:39 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\avidemux
[2010.10.08 12:58:08 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Avnex
[2010.10.14 17:24:17 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\BlackBean
[2011.02.02 22:30:29 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\BSplayer PRO
[2010.03.01 13:41:20 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Canneverbe Limited
[2010.03.21 10:08:33 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\com.adobe.ExMan
[2010.02.25 00:23:22 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\DAEMON Tools Lite
[2010.02.24 10:39:33 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\GetWare
[2010.11.03 01:37:27 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\GHISLER
[2010.07.18 12:08:47 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\gtk-2.0
[2010.03.01 14:07:31 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\HideIPEasy
[2011.01.25 09:37:00 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Home Designer Suite 8.0
[2010.12.17 00:55:54 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\homebank
[2011.01.05 00:24:52 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\ICQ
[2010.12.09 12:58:04 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\ImgBurn
[2010.04.20 13:06:26 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\ImTOO Software Studio
[2010.08.23 10:22:50 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\InfraRecorder
[2011.02.07 20:15:27 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\IObit
[2010.12.01 01:59:42 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\LANGMaster
[2010.08.09 17:31:17 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Leadertech
[2010.09.30 23:44:05 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\ManyCam
[2011.02.01 02:54:53 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Media Control
[2011.01.25 01:29:00 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Mikogo
[2010.10.25 00:39:31 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\MOBILedit
[2011.01.25 10:11:35 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Nokia
[2010.02.24 01:55:54 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\OpenOffice.org
[2010.03.28 18:30:24 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Opera
[2010.04.28 13:48:56 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\PC Suite
[2010.10.04 17:01:06 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\PhotoFiltre
[2010.10.28 13:24:10 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\PhotoFiltre Studio X
[2010.11.25 03:12:55 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Pozadi z webky
[2010.08.05 12:35:18 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Prabang
[2010.10.08 18:00:43 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Publish Providers
[2010.07.30 14:43:24 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\QIP
[2011.02.03 12:21:29 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Smart PC Solutions
[2010.10.08 17:47:46 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Sony
[2011.01.11 01:47:00 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011.01.28 06:44:37 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Stardock
[2011.01.19 22:59:31 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\TeamViewer
[2011.01.31 01:58:38 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Thinstall
[2010.02.24 00:55:31 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Thunderbird
[2011.01.06 20:32:13 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Transcend
[2010.08.05 12:37:25 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\TS3Client
[2010.02.24 10:49:56 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\TuneUp Software
[2010.03.12 01:16:30 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Ubisoft
[2010.03.02 00:42:37 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\URSoft
[2011.01.25 02:19:29 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\UseNeXT
[2011.02.07 23:43:54 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\uTorrent
[2011.01.31 02:01:36 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\VOS
[2011.01.10 03:59:24 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Vso
[2010.03.11 15:41:18 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Win7codecs
[2011.02.07 14:53:53 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Windows Live Writer
[2011.02.02 15:00:52 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Xilisoft
[2011.01.05 15:56:22 | 000,000,000 | ---D | M] -- C:\Users\Jirka\AppData\Roaming\Zoner
[2011.02.08 17:41:08 | 000,032,600 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 215 bytes -> C:\ProgramData\TEMP:D282699C
@Alternate Data Stream - 175 bytes -> C:\ProgramData\TEMP:1CE11B51
@Alternate Data Stream - 169 bytes -> C:\ProgramData\TEMP:B3D74A13
@Alternate Data Stream - 163 bytes -> C:\ProgramData\TEMP:264B2CC4
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:BFE23423
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:888AFB86

< End of report >

Error ve Win7..prosím o kontrolu logu + Vyřešeno

Re: Error ve Win7..prosím o kontrolu logu

Re: Error ve Win7..prosím o kontrolu logu

Re: Error ve Win7..prosím o kontrolu logu

Re: Error ve Win7..prosím o kontrolu logu

Re: Error ve Win7..prosím o kontrolu logu

Re: Error ve Win7..prosím o kontrolu logu

Re: Error ve Win7..prosím o kontrolu logu

Re: Error ve Win7..prosím o kontrolu logu

Re: Error ve Win7..prosím o kontrolu logu

Re: Error ve Win7..prosím o kontrolu logu +

Re: Error ve Win7..prosím o kontrolu logu +

Re: Error ve Win7..prosím o kontrolu logu +

Kdo je online