kontrola stařenky v práci... Vyřešeno

[John.Ross]

Omlouvám se vložil jsem jiný log, toto je ten správný!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

sakra..


ComboFix 12-02-27.02 - Táta 29.02.2012 17:14:23.3.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.767.304 [GMT 1:00]
Spuštěný z: c:\documents and settings\Tßta\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Tßta\Plocha\CFScript.txt
AV: Antivirový systém AVG 7.0.289 *Enabled/Outdated* {41564737-3200-1071-989B-0000E87B4FB1}
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-28 do 2012-02-29 )))))))))))))))))))))))))))))))
.
.
2012-02-29 12:18 . 2012-02-29 13:19 2516 --sha-w- c:\documents and settings\All Users\Data aplikací\KGyGaAvL.sys
2012-02-29 12:18 . 2012-02-29 13:19 88 --sh--r- c:\documents and settings\All Users\Data aplikací\F458A35D9E.sys
2012-02-29 10:31 . 2012-02-29 12:18 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Corel
2012-02-29 10:31 . 2012-02-29 10:31 -------- d-----w- c:\program files\Common Files\Protexis
2012-02-29 10:24 . 2012-02-29 10:24 -------- d-----w- c:\program files\Common Files\Corel
2012-02-29 10:21 . 2012-02-29 10:21 -------- d-----w- c:\program files\Corel
2012-02-29 09:51 . 2012-02-29 09:51 -------- d-----w- c:\program files\GIMP-2.0
2012-02-28 15:58 . 2012-02-28 15:58 -------- d-----w- c:\documents and settings\Táta\Local Settings\Data aplikací\ESET
2012-02-28 15:58 . 2012-02-28 15:58 -------- d-----w- c:\documents and settings\Táta\Data aplikací\ESET
2012-02-28 15:55 . 2012-02-28 15:55 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2012-02-28 15:52 . 2012-02-28 15:52 -------- d-----w- c:\program files\ESET
2012-02-28 15:52 . 2012-02-28 15:52 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2012-02-28 12:36 . 2003-04-10 13:46 260096 ----a-w- c:\windows\system32\richtx32.ocx
2012-02-28 12:36 . 2001-11-20 16:09 278528 ----a-w- c:\windows\system32\mejlovani.dll
2012-02-28 12:36 . 1998-06-23 20:00 137000 ----a-w- c:\windows\system32\MSMAPI32.OCX
2012-02-28 12:36 . 1996-06-13 18:24 53760 ----a-w- c:\windows\system32\ZlibTool.ocx
2012-02-28 12:36 . 2012-02-28 12:36 -------- d-----w- c:\program files\2HCS
2012-02-28 07:19 . 2012-02-28 07:19 -------- d-----w- c:\program files\TeamViewer
2012-02-27 09:23 . 2012-02-27 09:23 -------- d-----w- c:\documents and settings\Táta\Data aplikací\Malwarebytes
2012-02-27 09:23 . 2012-02-27 09:23 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2012-02-27 09:23 . 2012-02-27 09:23 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-02-27 09:23 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-26 22:11 . 2012-02-26 22:11 -------- d-----w- c:\program files\Reference Assemblies
2012-02-26 20:29 . 2012-02-26 20:29 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Google
2012-02-26 18:29 . 2012-02-23 16:11 24408 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2012-02-26 17:49 . 2001-08-17 21:00 2944 -c--a-w- c:\windows\system32\dllcache\msmpu401.sys
2012-02-26 17:49 . 2001-08-17 21:00 2944 ----a-w- c:\windows\system32\drivers\msmpu401.sys
2012-02-22 09:23 . 2012-02-22 09:23 -------- d-----w- c:\documents and settings\Táta\Local Settings\Data aplikací\PCHealth
2012-02-22 09:05 . 2012-02-22 09:05 -------- d-----w- c:\windows\system32\XPSViewer
2012-02-22 09:05 . 2012-02-22 09:05 -------- d-----w- c:\program files\MSBuild
2012-02-22 09:04 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2012-02-22 09:03 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2012-02-22 09:03 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2012-02-22 09:03 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2012-02-22 09:03 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2012-02-22 09:03 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2012-02-22 09:03 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2012-02-22 09:03 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2012-02-22 09:03 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2012-02-22 09:03 . 2012-02-22 09:04 -------- d-----w- C:\f50b39369c4fcb2f0514f47cc9f0
2012-02-21 15:02 . 2012-02-21 15:02 -------- d-----w- c:\documents and settings\Default User\Local Settings\Data aplikací\Microsoft Help
2012-02-21 14:28 . 2012-02-21 14:28 -------- d-sh--w- c:\documents and settings\Táta\IECompatCache
2012-02-21 14:23 . 2012-02-21 14:23 -------- d-sh--w- c:\documents and settings\Táta\PrivacIE
2012-02-21 14:20 . 2012-02-21 14:20 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2012-02-21 14:19 . 2012-02-21 14:19 -------- d-sh--w- c:\documents and settings\Táta\IETldCache
2012-02-21 14:09 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2012-02-21 14:07 . 2011-12-17 19:42 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-02-21 14:07 . 2011-12-17 19:42 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-02-21 14:07 . 2011-12-17 19:42 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-02-21 14:02 . 2012-02-21 14:07 -------- dc-h--w- c:\windows\ie8
2012-02-21 10:49 . 2012-02-21 10:49 -------- d-----w- c:\documents and settings\Táta\Local Settings\Data aplikací\Microsoft Help
2012-02-21 10:09 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-02-21 10:07 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-02-21 10:06 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-02-21 10:06 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-02-21 10:06 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2012-02-21 10:04 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-02-21 10:03 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-02-21 10:03 . 2012-02-21 10:03 -------- d-----w- c:\program files\HP
2012-02-21 10:00 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-02-21 10:00 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-02-21 09:56 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-02-21 09:55 . 2012-02-21 09:55 -------- d-----w- c:\documents and settings\All Users\Data aplikací\HP
2012-02-21 09:55 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-02-21 09:55 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-02-21 09:55 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2012-02-21 09:55 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2012-02-21 09:54 . 2012-02-21 09:54 -------- d-sh--w- c:\windows\ftpcache
2012-02-21 09:54 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2012-02-21 09:52 . 2012-02-21 09:52 -------- d-----w- c:\program files\Common Files\EPSON
2012-02-21 09:52 . 2007-04-10 11:06 8192 ----a-w- c:\windows\system32\E_DCINST.DLL
2012-02-21 09:52 . 2010-08-10 13:02 81408 ----a-w- c:\windows\system32\E_TD4BHEE.DLL
2012-02-21 09:40 . 2009-08-06 18:23 274288 ----a-w- c:\windows\system32\mucltui.dll
2012-02-21 09:40 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-02-21 09:40 . 2008-04-21 21:15 216576 ----a-w- c:\program files\Windows NT\Accessories\SET1F3.tmp
2012-02-21 09:32 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-02-21 09:31 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-02-20 11:54 . 2009-08-06 18:24 15072 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-02-20 11:26 . 2012-02-20 11:26 -------- d-----w- c:\documents and settings\All Users\Data aplikací\regid.1986-12.com.adobe
2012-02-20 11:16 . 2012-02-20 11:16 -------- d-----w- c:\program files\Common Files\Adobe AIR
2012-02-20 09:06 . 2011-03-04 19:44 126448 ------w- c:\windows\system32\pxinsi64.exe
2012-02-20 09:06 . 2011-03-04 19:44 123888 ------w- c:\windows\system32\pxcpyi64.exe
2012-02-20 09:06 . 2011-03-04 19:44 59888 ------w- c:\windows\system32\pxwma.dll
2012-02-20 08:49 . 2012-02-20 08:49 -------- d-----w- C:\output
2012-02-20 08:31 . 2012-02-20 10:00 -------- d-----w- c:\documents and settings\Táta\Data aplikací\PhotoScape
2012-02-20 08:29 . 2012-02-20 08:30 -------- d-----w- c:\program files\PhotoScape
2012-02-20 08:21 . 2012-02-20 08:24 -------- d-----w- c:\documents and settings\Táta\Data aplikací\Filter Forge 3
2012-02-20 07:48 . 2012-02-09 13:13 28992 ----a-w- c:\windows\system32\uxtuneup.dll
2012-02-17 11:00 . 2012-02-17 11:00 -------- d-----w- c:\documents and settings\Táta\Data aplikací\Mikrotik
2012-02-15 12:18 . 2012-02-29 10:05 -------- d-----w- c:\documents and settings\Táta\.gimp-2.6
2012-02-15 11:42 . 2012-02-15 11:42 -------- d-----w- c:\program files\XnView
2012-02-15 10:44 . 2012-02-15 10:44 -------- d-----w- c:\documents and settings\Táta\Data aplikací\inkscape
2012-02-15 10:40 . 2012-02-15 10:43 -------- d-----w- c:\program files\Inkscape
2012-02-09 13:45 . 2012-02-15 12:37 -------- d-----w- c:\documents and settings\Táta\Data aplikací\XnView
2012-02-09 12:26 . 2012-02-09 12:26 -------- d-----w- c:\documents and settings\Táta\Data aplikací\OpenOffice.org
2012-02-09 09:29 . 2008-04-14 07:52 33792 ------w- c:\windows\system32\mmcperf.exe
2012-02-09 09:25 . 2008-04-14 07:52 294912 ------w- c:\program files\Windows Media Player\dlimport.exe
2012-02-09 09:25 . 2008-04-14 07:52 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2012-02-09 09:23 . 2008-04-13 21:06 144384 ------w- c:\windows\system32\drivers\hdaudbus.sys
2012-02-09 09:23 . 2008-04-13 23:10 10240 ------w- c:\windows\system32\drivers\sffp_mmc.sys
2012-02-09 09:21 . 2006-12-28 23:31 19569 ----a-w- c:\windows\003272_.tmp
2012-02-08 12:12 . 2012-02-08 12:12 -------- d-----w- C:\SBD files
2012-02-08 12:12 . 2012-02-08 12:12 -------- d-----w- c:\program files\Cutting Technologies
2012-02-08 12:12 . 2012-02-08 12:12 -------- d-----w- C:\Hsprint
2012-02-08 12:05 . 2010-07-12 13:49 52552 ----a-w- c:\windows\system32\ftserui2.dll
2012-02-08 12:05 . 2010-07-12 13:49 67400 ----a-w- c:\windows\system32\ftcserco.dll
2012-02-08 12:05 . 2010-07-12 13:48 73032 ----a-w- c:\windows\system32\drivers\ftser2k.sys
2012-02-08 12:05 . 2010-07-12 13:50 198464 ----a-w- c:\windows\system32\ftd2xx.dll
2012-02-08 12:05 . 2010-07-12 13:50 105288 ----a-w- c:\windows\system32\ftbusui.dll
2012-02-08 12:05 . 2010-07-12 13:49 197952 ----a-w- c:\windows\system32\FTLang.dll
2012-02-08 12:05 . 2010-07-12 13:49 60104 ----a-w- c:\windows\system32\drivers\ftdibus.sys
2012-02-06 14:05 . 2012-02-06 14:05 -------- d-----w- c:\program files\OpenOffice.org 3
2012-02-06 08:56 . 2012-02-06 08:56 -------- d-----w- c:\documents and settings\Táta\Data aplikací\DWGeditor
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-09 13:13 . 2011-11-05 22:22 31552 -c--a-w- c:\windows\system32\TURegOpt.exe
2012-01-12 17:20 . 2004-08-17 13:44 1859968 ----a-w- c:\windows\system32\win32k.sys
2011-12-17 19:42 . 2004-08-17 13:49 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-12-17 19:42 . 2004-08-17 13:49 916992 ----a-w- c:\windows\system32\wininet.dll
2011-12-17 19:42 . 2004-08-17 13:49 43520 ------w- c:\windows\system32\licmgr10.dll
2011-12-16 12:23 . 2004-08-17 13:44 385024 ------w- c:\windows\system32\html.iec
.
.
((((((((((((((((((((((((((((( SnapShot@2012-02-27_20.55.13 )))))))))))))))))))))))))))))))))))))))))
.
+ 2003-03-18 19:44 . 2003-03-18 19:44 49152 c:\windows\system32\MFC71KOR.DLL
+ 2003-03-18 19:44 . 2003-03-18 19:44 49152 c:\windows\system32\MFC71JPN.DLL
+ 2003-03-18 19:44 . 2003-03-18 19:44 61440 c:\windows\system32\MFC71ITA.DLL
+ 2003-03-18 19:44 . 2003-03-18 19:44 45056 c:\windows\system32\MFC71CHT.DLL
+ 2003-03-18 19:44 . 2003-03-18 19:44 40960 c:\windows\system32\MFC71CHS.DLL
+ 2003-03-18 19:44 . 2003-03-18 19:44 61440 c:\windows\system32\MFC71FRA.DLL
+ 2003-03-18 19:44 . 2003-03-18 19:44 61440 c:\windows\system32\MFC71ESP.DLL
+ 2003-03-18 19:44 . 2003-03-18 19:44 57344 c:\windows\system32\MFC71ENU.DLL
+ 2003-03-18 19:44 . 2003-03-18 19:44 65536 c:\windows\system32\MFC71DEU.DLL
+ 2011-08-04 08:20 . 2011-08-04 08:20 61936 c:\windows\system32\drivers\epfwtdi.sys
+ 2011-08-09 08:37 . 2011-08-09 08:37 39824 c:\windows\system32\drivers\epfwndis.sys
+ 2003-03-18 18:05 . 2003-03-18 18:05 89088 c:\windows\system32\atl71.dll
+ 2012-02-29 10:30 . 2012-02-29 10:30 86016 c:\windows\Installer\{FFFE7261-2318-4227-B827-E9E05E16DFE5}\ARPPRODUCTICON.exe
+ 2012-02-28 15:55 . 2012-02-28 15:55 10134 c:\windows\Installer\{FB80FA7C-A20D-43EA-A0C3-1E43F210D1A8}\callmsi.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 10134 c:\windows\Installer\{CE2DA11A-917F-4CF5-AB55-755EC115DD10}\ARPPRODUCTICON.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 86016 c:\windows\Installer\{BF439B41-0252-48DE-8B8B-0430CB26A181}\ARPPRODUCTICON.exe
+ 2012-02-29 10:31 . 2012-02-29 10:31 10134 c:\windows\Installer\{9D0798D0-AF6C-4E62-94B1-AEBF1A43E00A}\ARPPRODUCTICON.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 86016 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\ARPPRODUCTICON.exe
+ 2012-02-29 10:28 . 2012-02-29 10:28 10134 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF017}\ARPPRODUCTICON.exe
+ 2012-02-29 10:28 . 2012-02-29 10:28 22758 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF016}\ARPPRODUCTICON.exe
+ 2012-02-29 10:27 . 2012-02-29 10:27 22758 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF014}\ARPPRODUCTICON.exe
+ 2012-02-29 10:27 . 2012-02-29 10:27 86016 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF013}\NewShortcut1.exe
+ 2012-02-29 10:27 . 2012-02-29 10:27 22758 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF013}\ARPPRODUCTICON.exe
+ 2012-02-29 10:26 . 2012-02-29 10:26 22758 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF012}\ARPPRODUCTICON.exe
+ 2012-02-29 10:34 . 2012-02-29 10:34 10134 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF010}\ARPPRODUCTICON.exe
+ 2012-02-27 20:58 . 2012-02-27 20:58 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\dab766b18e6fe0a8f53a93c56be7b40e\System.Windows.Presentation.ni.dll
+ 2012-02-27 20:56 . 2012-02-27 20:56 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\31b65443e56a470d199f293085576e05\System.Web.DynamicData.Design.ni.dll
+ 2003-02-21 03:42 . 2003-02-21 03:42 348160 c:\windows\system32\msvcr71.dll
+ 2011-08-04 08:20 . 2011-08-04 08:20 147480 c:\windows\system32\drivers\epfw.sys
+ 2011-08-04 08:20 . 2011-08-04 08:20 118104 c:\windows\system32\drivers\ehdrv.sys
+ 2011-08-09 13:24 . 2011-08-09 13:24 154136 c:\windows\system32\drivers\eamon.sys
+ 2012-02-29 10:49 . 2012-02-29 10:49 867328 c:\windows\Installer\ac0247.msi
+ 2012-02-29 10:34 . 2012-02-29 10:34 621056 c:\windows\Installer\ac0241.msi
+ 2012-02-29 10:33 . 2012-02-29 10:33 247296 c:\windows\Installer\ac023b.msi
+ 2012-02-29 10:33 . 2012-02-29 10:33 267264 c:\windows\Installer\ac0235.msi
+ 2012-02-29 10:32 . 2012-02-29 10:32 940544 c:\windows\Installer\ac0230.msi
+ 2012-02-29 10:28 . 2012-02-29 10:28 976384 c:\windows\Installer\ac0211.msi
+ 2012-02-29 10:28 . 2012-02-29 10:28 940032 c:\windows\Installer\ac020b.msi
+ 2012-02-28 15:55 . 2012-02-28 15:55 105624 c:\windows\Installer\{FB80FA7C-A20D-43EA-A0C3-1E43F210D1A8}\egui.exe
+ 2012-02-29 10:33 . 2012-02-29 10:33 135168 c:\windows\Installer\{DB81779E-7CC5-4630-BCFC-754004956444}\misc.exe
+ 2012-02-29 10:33 . 2012-02-29 10:33 135168 c:\windows\Installer\{B61D21B6-469D-4423-B161-62DB20B8A70E}\misc.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut93_CC5820041A9C446BB9018F9ECF582DD1.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut92_CC5820041A9C446BB9018F9ECF582DD1.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut913_CC5820041A9C446BB9018F9ECF582DD1.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut912.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut911.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut9101.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut9100.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut910.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut91.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut903_CC5820041A9C446BB9018F9ECF582DD1.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut902.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut901.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut9001.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut9000.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut900.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut90.exe
+ 2012-02-29 10:32 . 2012-02-29 10:32 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}\NewShortcut9_1.exe
+ 2012-02-29 10:27 . 2012-02-29 10:27 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF014}\NewShortcut2.exe
+ 2012-02-29 10:26 . 2012-02-29 10:26 335872 c:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF012}\NewShortcut8.exe
+ 2012-02-29 10:26 . 2012-02-29 10:26 335872 c:\windows\Installer\{44A27085-0616-4181-A0C3-81C7ECA17F73}\NewShortcut5.exe
+ 2012-02-29 10:26 . 2012-02-29 10:26 335872 c:\windows\Installer\{44A27085-0616-4181-A0C3-81C7ECA17F73}\NewShortcut4.exe
+ 2000-05-23 20:45 . 2000-05-23 20:45 118784 c:\windows\Installer\$PatchCache$\Managed\E97718BD5CC70364CBCF570440594644\6.4.99\MSSTDFMT.DLL
+ 2012-02-27 21:04 . 2012-02-27 21:04 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\c2a12bd4056b44f8005a7eb3af161e6a\System.Xml.Linq.ni.dll
+ 2012-02-27 20:56 . 2012-02-27 20:56 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\fc63b434b2f253cd27625487f7b02ac0\System.Web.Routing.ni.dll
+ 2012-02-27 20:57 . 2012-02-27 20:57 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\67877f896b2b0e42286e838fe307f3fd\System.Web.RegularExpressions.ni.dll
+ 2012-02-27 20:57 . 2012-02-27 20:57 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\86650d4fb220f94f25bb5da42a03d454\System.Web.Extensions.Design.ni.dll
+ 2012-02-27 20:56 . 2012-02-27 20:56 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\654465871e547e131668874de7c60b8c\System.Web.Entity.ni.dll
+ 2012-02-27 20:56 . 2012-02-27 20:56 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\f0d6895f6e709d425cb5da6053c603d2\System.Web.Entity.Design.ni.dll
+ 2012-02-27 20:56 . 2012-02-27 20:56 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\3f3b7dc7208e302e39a2dfb5b2cb953b\System.Web.DynamicData.ni.dll
+ 2012-02-27 20:56 . 2012-02-27 20:56 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\e9cddd213343f15d611b14620d649bb0\System.Web.Abstractions.ni.dll
+ 2003-03-18 20:12 . 2003-03-18 20:12 1047552 c:\windows\system32\mfc71u.dll
+ 2003-03-18 20:20 . 2003-03-18 20:20 1060864 c:\windows\system32\mfc71.dll
+ 2012-02-29 10:32 . 2012-02-29 10:32 1250816 c:\windows\Installer\ac022a.msi
+ 2012-02-29 10:32 . 2012-02-29 10:32 7007744 c:\windows\Installer\ac0223.msi
+ 2012-02-29 10:31 . 2012-02-29 10:31 2472448 c:\windows\Installer\ac021d.msi
+ 2012-02-29 10:30 . 2012-02-29 10:30 1559552 c:\windows\Installer\ac0217.msi
+ 2012-02-29 10:27 . 2012-02-29 10:27 1579520 c:\windows\Installer\ac0205.msi
+ 2012-02-29 10:27 . 2012-02-29 10:27 1607168 c:\windows\Installer\ac01ff.msi
+ 2012-02-29 10:26 . 2012-02-29 10:26 1460224 c:\windows\Installer\ac01f9.msi
+ 2012-02-29 10:26 . 2012-02-29 10:26 2781184 c:\windows\Installer\ac01f3.msi
+ 2012-02-28 15:55 . 2012-02-28 15:55 1043968 c:\windows\Installer\717a00.msi
+ 2003-11-22 14:18 . 2003-11-22 14:18 2388752 c:\windows\Installer\$PatchCache$\Managed\E97718BD5CC70364CBCF570440594644\6.4.99\VBE6.DLL
+ 2003-08-03 08:56 . 2003-08-03 08:56 1146184 c:\windows\Installer\$PatchCache$\Managed\E97718BD5CC70364CBCF570440594644\6.4.99\FM20.DLL
+ 2012-02-27 21:04 . 2012-02-27 21:04 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\c4c671c737b553db8e07664816475333\System.WorkflowServices.ni.dll
+ 2012-02-27 21:04 . 2012-02-27 21:04 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\248ea47105ff4af6ee75e6fdd5b450a1\System.Workflow.Runtime.ni.dll
+ 2012-02-27 21:04 . 2012-02-27 21:04 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\80a288b6611668160334668cc2608e4a\System.Workflow.ComponentModel.ni.dll
+ 2012-02-27 21:04 . 2012-02-27 21:04 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\4c27548df5897320840ee0d65db38742\System.Workflow.Activities.ni.dll
+ 2012-02-27 20:57 . 2012-02-27 20:57 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\e9ba004858dcdb5958d86f26f043f85a\System.Web.Services.ni.dll
+ 2012-02-27 20:57 . 2012-02-27 20:57 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\030cde14924eefebc06c240dbfe093a4\System.Web.Mobile.ni.dll
+ 2012-02-27 20:56 . 2012-02-27 20:56 2405888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\6379c8ca8ae11effb415139990923ff1\System.Web.Extensions.ni.dll
+ 2012-02-27 20:55 . 2012-02-27 20:55 11817472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\29bdc8352d3c26e3c572ea60639dec3b\System.Web.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
hpzsetup.LNK - D:\HPZstub.exe [N/A]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"H/PC Connection Agent"="c:\progra~1\MI3AA1~1\wcescomm.exe"
"LightScribe Control Panel"=c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
"KernelFaultCheck"=%systemroot%\system32\dumprep 0 -k
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_02\bin\jusched.exe"
"NeroFilterCheck"=c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
"MyWebSearch Plugin"=rundll32 c:\progra~1\MYWEBS~1\bar\1.bin\M3PLUGIN.DLL,UPF
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" -start
"ISUSPM Startup"=c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
"Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Logitech\\Vid HD\\Vid.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer_Service.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"2024:TCP"= 2024:TCP:guyohzch
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [14.10.2007 15:05 685816]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [26.2.2012 19:29 24408]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 9:20 118104]
R1 LUMDriver;LUMDriver;c:\windows\system32\drivers\LUMDriver.sys [23.4.2005 9:21 14912]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [22.9.2011 12:03 974944]
R2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [28.2.2012 8:19 2886528]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [9.2.2012 14:13 1529152]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [13.10.2011 17:33 10064]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [26.2.2012 21:29 136176]
S2 jrjsmvutg;Server Helper;c:\windows\system32\svchost.exe -k netsvcs [17.8.2004 14:49 14336]
S2 tscmgmt;Terminal Server Connection Manager;c:\windows\system32\tscmgmt.exe [17.8.2004 14:49 8192]
S3 abvqjki;abvqjki;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 adsgsq;adsgsq;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 afbdk;afbdk;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 afnwhsr;afnwhsr;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 bzrzxjbh;bzrzxjbh;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 cbzhyf;cbzhyf;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ckacgrmz;ckacgrmz;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 corivuw;corivuw;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 cwxhmm;cwxhmm;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 cyphqy;cyphqy;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 daxbhk;daxbhk;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 dbtxmk;dbtxmk;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 dvhzf;dvhzf;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 egkusi;egkusi;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 eizcej;eizcej;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 evlwjmsh;evlwjmsh;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 evqzsnunx;evqzsnunx;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 fjlfi;fjlfi;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 fjqefsb;fjqefsb;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 gaxxmgbq;gaxxmgbq;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 gfpoqbde;gfpoqbde;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 gghjl;gghjl;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 gipaixwn;gipaixwn;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [26.2.2012 21:29 136176]
S3 hiylzjrij;hiylzjrij;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 hjqbqwcm;hjqbqwcm;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 hkzrnouy;hkzrnouy;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 idrmkl;idrmkl;\??\c:\docume~1\KraKen\LOCALS~1\Temp\idrmkl.sys --> c:\docume~1\KraKen\LOCALS~1\Temp\idrmkl.sys [?]
S3 igsiij;igsiij;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ihkad;ihkad;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ijhnsamdx;ijhnsamdx;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ipstvh;ipstvh;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 jlqqui;jlqqui;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 jpdezojbe;jpdezojbe;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 jqcrrfw;jqcrrfw;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 jscptory;jscptory;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 jygrwuyz;jygrwuyz;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 legvkhdh;legvkhdh;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ljepgj;ljepgj;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 lvtcdcz;lvtcdcz;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 lzqhtqb;lzqhtqb;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 mlnbpedm;mlnbpedm;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ncnks;ncnks;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ngtdzciy;ngtdzciy;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 nrmxzyvl;nrmxzyvl;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 obmszr;obmszr;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ohrjjjs;ohrjjjs;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 okesmnu;okesmnu;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ompsejc;ompsejc;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 pepxxn;pepxxn;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 pllgjgn;pllgjgn;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 pnfxbja;pnfxbja;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ptzls;ptzls;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 pvknfa;pvknfa;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 pvwbcrisk;pvwbcrisk;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 pymcfu;pymcfu;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 qigwd;qigwd;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 qkfidfax;qkfidfax;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 qqvapatz;qqvapatz;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 qtgmhikf;qtgmhikf;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 quivrcl;quivrcl;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 rbownqwm;rbownqwm;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 rplwjiamu;rplwjiamu;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 sbusb;Sound Blaster USB Audio Driver;c:\windows\system32\DRIVERS\sbusb.sys --> c:\windows\system32\DRIVERS\sbusb.sys [?]
S3 smmufitk;smmufitk;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 sonhzw;sonhzw;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 spvmqe;spvmqe;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 sqylkl;sqylkl;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 stomqt;stomqt;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 sucuwcj;sucuwcj;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 suwwbzoeb;suwwbzoeb;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 tdoke;tdoke;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 tgdfz;tgdfz;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 tnbefu;tnbefu;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 tuxhrel;tuxhrel;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 tvvdndsqg;tvvdndsqg;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 tzsduqj;tzsduqj;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 uavdcvo;uavdcvo;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ucuexm;ucuexm;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 vtnxuxin;vtnxuxin;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 wegoiriil;wegoiriil;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 wwyflsegb;wwyflsegb;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 xgwua;xgwua;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 xhsyvhxbw;xhsyvhxbw;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 xifcqf;xifcqf;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 xplvdwbsy;xplvdwbsy;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 xyfnzrdb;xyfnzrdb;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 yabmg;yabmg;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 yekth;yekth;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 ygbmst;ygbmst;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 yogggdcub;yogggdcub;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 yulpqlqk;yulpqlqk;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 yzziw;yzziw;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 zjwvgxh;zjwvgxh;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
S3 zrlwa;zrlwa;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - PSI_SVC_2
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
jrjsmvutg
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-06-20 11:47 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-02-26 20:29]
.
2012-02-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-02-26 20:29]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Settings,ProxyServer = 10.0.10.1:3128
uInternet Settings,ProxyOverride = localhost
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
TCP: DhcpNameServer = 10.0.10.1
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-02-29 17:21
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\abvqjki]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\adsgsq]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\afbdk]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\afnwhsr]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\bzrzxjbh]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\cbzhyf]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ckacgrmz]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\corivuw]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\cwxhmm]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\cyphqy]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\daxbhk]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\dbtxmk]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\dvhzf]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\egkusi]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\eizcej]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\evlwjmsh]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\evqzsnunx]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\fjlfi]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\fjqefsb]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\gaxxmgbq]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\gfpoqbde]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\gghjl]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\gipaixwn]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\hiylzjrij]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\hjqbqwcm]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\hkzrnouy]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\igsiij]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ihkad]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ijhnsamdx]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ipstvh]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\jlqqui]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\jpdezojbe]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\jqcrrfw]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\jscptory]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\jygrwuyz]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\legvkhdh]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ljepgj]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\lvtcdcz]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\lzqhtqb]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\mlnbpedm]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ncnks]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ngtdzciy]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\nrmxzyvl]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\obmszr]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ohrjjjs]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\okesmnu]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ompsejc]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\pepxxn]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\pllgjgn]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\pnfxbja]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ptzls]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\pvknfa]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\pvwbcrisk]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\pymcfu]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\qigwd]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\qkfidfax]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\qqvapatz]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\qtgmhikf]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\quivrcl]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\rbownqwm]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\rplwjiamu]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\smmufitk]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\sonhzw]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\spvmqe]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\sqylkl]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\stomqt]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\sucuwcj]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\suwwbzoeb]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\tdoke]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\tgdfz]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\tnbefu]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\tuxhrel]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\tvvdndsqg]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\tzsduqj]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\uavdcvo]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ucuexm]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\vtnxuxin]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\wegoiriil]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\wwyflsegb]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\xgwua]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\xhsyvhxbw]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\xifcqf]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\xplvdwbsy]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\xyfnzrdb]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\yabmg]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\yekth]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\ygbmst]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\yogggdcub]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\yulpqlqk]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\yzziw]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\zjwvgxh]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\zrlwa]
"ImagePath"="\??\c:\windows\system32\01.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\jrjsmvutg]
"ServiceDll"="c:\windows\system32\phqreek.dll"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1757981266-1292428093-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{473CC802-2DB2-B9EC-A114-6D587B64B552}*]
"hakldljdbhiffoka"=hex:6a,61,69,6c,65,6d,69,6c,6f,66,62,6d,6c,6f,62,6d,6a,70,
6f,67,00,00
"iaembbacnagcgmlgko"=hex:6a,61,69,6c,65,6d,69,6c,6f,66,62,6d,6c,6f,62,6d,6a,70,
6f,67,00,00
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{473CC802-2DB2-B9EC-A114-6D587B64B552}\InProcServer32*]
"jagmmnjpcbhbpkdimncd"=hex:6a,61,69,6c,65,6d,69,6c,6f,66,62,6d,6c,6f,62,6d,6a,
70,6f,67,00,00
"iagmonlbhblleoomno"=hex:6a,61,69,6c,65,6d,69,6c,6f,66,62,6d,6c,6f,62,6d,6a,70,
6f,67,00,00
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(3028)
c:\program files\TeamViewer\Version7\tv_w32.dll
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
.
Celkový čas: 2012-02-29 17:23:51
ComboFix-quarantined-files.txt 2012-02-29 16:23
ComboFix2.txt 2012-02-28 14:07
ComboFix3.txt 2012-02-27 20:58
.
Před spuštěním: Volných bajtů: 19 012 268 032
Po spuštění: Volných bajtů: 19 009 646 592
.
- - End Of File - - AC27F1CB3E1EB20B291DE3DE85A5332F

[Reklama]

[John.Ross]

A taková jedna věc.. combo při scriptování mi hlásí že AVG je stále aktivní... přitom v PC není ani nainstalovaný .. nechápu a připadne mi jako by byl zaplý jako AV, přitom je tam eset a předtím tam byl avast.

[jaro3]

Opravíme potom..

Budeme muset použít něco jiného , Combofix to nemaže . Odmažeme v OTL a pak se ke CF znovu vrátíme..

Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

[John.Ross]

OTL logfile created on: 29.2.2012 20:34:34 - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Documents and Settings\Táta\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

767,49 Mb Total Physical Memory | 365,79 Mb Available Physical Memory | 47,66% Memory free
1,46 Gb Paging File | 1,12 Gb Available in Paging File | 77,02% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,26 Gb Total Space | 17,74 Gb Free Space | 47,61% Space Free | Partition Type: NTFS

Computer Name: ADDDESIGN-PC2 | User Name: Táta | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Táta\Plocha\OTL.exe (OldTimer Tools)
PRC - c:\Program Files\TeamViewer\Version7\TeamViewer_Desktop.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\TeamViewer.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\tv_w32.exe (TeamViewer GmbH)
PRC - C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)


========== Modules (No Company Name) ==========

MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
MOD - C:\WINDOWS\system32\pdfcmnnt.dll ()


========== Win32 Services (SafeList) ==========

SRV - (TeamViewer7) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
SRV - (ekrn) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
SRV - (SolidWorks Licensing Service) -- C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe (SolidWorks)
SRV - (PSI_SVC_2) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
SRV - (tscmgmt) -- C:\WINDOWS\system32\tscmgmt.exe ()
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)


========== Driver Services (SafeList) ==========

DRV - (catchme) -- File not found
DRV - (aswKbd) -- C:\WINDOWS\System32\drivers\aswKbd.sys (AVAST Software)
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (LVRS) -- C:\WINDOWS\system32\drivers\lvrs.sys (Logitech Inc.)
DRV - (eamon) -- C:\WINDOWS\system32\drivers\eamon.sys (ESET)
DRV - (Epfwndis) -- C:\WINDOWS\system32\drivers\epfwndis.sys (ESET)
DRV - (epfw) -- C:\WINDOWS\system32\drivers\epfw.sys (ESET)
DRV - (epfwtdi) -- C:\WINDOWS\system32\drivers\epfwtdi.sys (ESET)
DRV - (ehdrv) -- C:\WINDOWS\system32\drivers\ehdrv.sys (ESET)
DRV - (FTDIBUS) -- C:\WINDOWS\system32\drivers\ftdibus.sys (FTDI Ltd.)
DRV - (FTSER2K) -- C:\WINDOWS\system32\drivers\ftser2k.sys (FTDI Ltd.)
DRV - (videX32) -- C:\WINDOWS\system32\DRIVERS\videX32.sys (VIA Technologies, Inc.)
DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (AvgTdi) -- C:\WINDOWS\System32\Drivers\avgtdi.sys (GRISOFT, s.r.o.)
DRV - (LUMDriver) -- C:\WINDOWS\system32\drivers\LUMDriver.sys (IBM)
DRV - (Hardlock) -- C:\WINDOWS\system32\drivers\hardlock.sys (Aladdin Knowledge Systems Ltd.)
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (PfModNT) -- C:\WINDOWS\system32\drivers\PFMODNT.SYS (Creative Technology Ltd.)
DRV - (ctsfm2k) -- C:\WINDOWS\system32\drivers\ctsfm2k.sys (Creative Technology Ltd)
DRV - (ossrv) -- C:\WINDOWS\system32\drivers\ctoss2k.sys (Creative Technology Ltd.)
DRV - (viaagp1) -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys (VIA Technologies, Inc.)
DRV - (Aspi32) -- C:\WINDOWS\System32\drivers\ASPI32.SYS (Adaptec)
DRV - (ms_mpu401) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 10.0.10.1:3128

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2012.02.26 23:29:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012.02.28 16:53:25 | 000,000,000 | ---D | M]

[2011.11.05 20:55:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2007.12.23 21:16:20 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
[2006.10.26 20:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2007.05.10 21:52:00 | 000,095,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\T\u00E1ta\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Táta\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Táta\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\
CHR - Extension: Gmail = C:\Documents and Settings\Táta\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.02.27 21:55:03 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKCU..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\hpzsetup.LNK = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 9738841828 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_02)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{25E3567B-4111-4D2D-AB3E-5EC99FEC7430}: DhcpNameServer = 10.0.10.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Táta\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Táta\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.10.14 14:03:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012.02.29 20:30:18 | 000,583,680 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Táta\Plocha\OTL.exe
[2012.02.29 17:23:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2012.02.29 11:31:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Protexis
[2012.02.29 11:31:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Corel
[2012.02.29 11:25:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CorelDRAW Graphics Suite X4
[2012.02.29 11:24:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Corel
[2012.02.29 11:21:25 | 000,000,000 | ---D | C] -- C:\Program Files\Corel
[2012.02.29 10:53:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\GIMP
[2012.02.29 10:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0
[2012.02.28 16:58:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\ESET
[2012.02.28 16:58:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\ESET
[2012.02.28 16:55:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2012.02.28 16:52:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\ESET
[2012.02.28 16:52:48 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2012.02.28 16:52:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2012.02.28 14:49:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\LOGY
[2012.02.28 14:33:05 | 002,062,896 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Táta\Plocha\TDSSKiller.exe
[2012.02.28 13:36:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\2HCS Fakturace 3
[2012.02.28 13:36:20 | 000,260,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx
[2012.02.28 13:36:20 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMAPI32.OCX
[2012.02.28 13:36:17 | 000,000,000 | ---D | C] -- C:\Program Files\2HCS
[2012.02.28 08:19:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 7
[2012.02.28 08:19:14 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2012.02.27 21:45:50 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012.02.27 21:44:01 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012.02.27 21:44:01 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012.02.27 21:44:01 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012.02.27 21:44:01 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012.02.27 21:22:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2012.02.27 21:15:52 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.02.27 21:15:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Táta\Dokumenty\Filmy
[2012.02.27 21:10:01 | 004,420,957 | R--- | C] (Swearware) -- C:\Documents and Settings\Táta\Plocha\ComboFix.exe
[2012.02.27 15:42:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\backups
[2012.02.27 15:31:15 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Documents and Settings\Táta\Plocha\ATF-Cleaner.exe
[2012.02.27 10:44:59 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Táta\Plocha\HijackThis.exe
[2012.02.27 10:23:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Malwarebytes
[2012.02.27 10:23:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2012.02.27 10:23:31 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.02.27 10:23:31 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.02.26 23:11:25 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2012.02.26 22:04:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\Stáhnout na externí HDD...JAKUB
[2012.02.26 21:31:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
[2012.02.26 21:29:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2012.02.26 19:29:13 | 000,024,408 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswKbd.sys
[2012.02.26 18:49:02 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msmpu401.sys
[2012.02.26 18:49:02 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys
[2012.02.22 10:23:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\PCHealth
[2012.02.22 10:05:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2012.02.22 10:05:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2012.02.22 10:05:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2012.02.22 10:03:58 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2012.02.22 10:03:58 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2012.02.22 10:03:58 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2012.02.22 10:03:57 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2012.02.22 10:03:57 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2012.02.22 10:03:57 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2012.02.22 10:03:56 | 000,000,000 | ---D | C] -- C:\f50b39369c4fcb2f0514f47cc9f0
[2012.02.21 15:28:06 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\IECompatCache
[2012.02.21 15:23:57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\PrivacIE
[2012.02.21 15:19:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\IETldCache
[2012.02.21 15:08:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2012.02.21 15:07:35 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2012.02.21 15:02:57 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012.02.21 11:49:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\Microsoft Help
[2012.02.21 11:09:08 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2012.02.21 11:07:42 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2012.02.21 11:06:54 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2012.02.21 11:06:28 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2012.02.21 11:06:05 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2012.02.21 11:04:01 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2012.02.21 11:03:39 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2012.02.21 11:03:30 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2012.02.21 11:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2012.02.21 11:00:01 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2012.02.21 10:58:38 | 002,194,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2012.02.21 10:58:37 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2012.02.21 10:58:36 | 002,150,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2012.02.21 10:58:34 | 002,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2012.02.21 10:56:42 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2012.02.21 10:55:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HP
[2012.02.21 10:55:32 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2012.02.21 10:55:27 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2012.02.21 10:55:19 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2012.02.21 10:55:04 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2012.02.21 10:54:53 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2012.02.21 10:54:41 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2012.02.21 10:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EPSON
[2012.02.21 10:52:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\EPSON
[2012.02.21 10:52:31 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL
[2012.02.21 10:52:28 | 000,081,408 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_TD4BHEE.DLL
[2012.02.21 10:52:27 | 000,093,696 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_TLBHEE.DLL
[2012.02.21 10:51:49 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2012.02.21 10:50:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Epson Software
[2012.02.21 10:50:04 | 000,475,410 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\ensppmon.dll
[2012.02.21 10:50:04 | 000,458,129 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\ensppui.dll
[2012.02.21 10:50:04 | 000,249,344 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enspres.dll
[2012.02.21 10:50:04 | 000,249,344 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enpres.dll
[2012.02.21 10:50:03 | 000,475,410 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enppmon.dll
[2012.02.21 10:50:03 | 000,458,129 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enppui.dll
[2012.02.21 10:50:00 | 000,000,000 | ---D | C] -- C:\Program Files\EpsonNet
[2012.02.21 10:49:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Nabídka Start\Programy\EPSON Software
[2012.02.21 10:49:28 | 000,000,000 | ---D | C] -- C:\Program Files\EPSON Software
[2012.02.21 10:49:19 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2012.02.21 10:45:09 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2012.02.21 10:44:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\EPSON
[2012.02.21 10:40:51 | 000,017,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2012.02.21 10:40:49 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2012.02.21 10:32:15 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2012.02.21 10:31:48 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll
[2012.02.20 13:49:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Application Data
[2012.02.20 12:54:27 | 000,015,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2012.02.20 12:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2012.02.20 12:16:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2012.02.20 10:06:55 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2012.02.20 10:06:55 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2012.02.20 10:06:54 | 000,059,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwma.dll
[2012.02.20 09:49:09 | 000,000,000 | ---D | C] -- C:\output
[2012.02.20 09:31:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\PhotoScape
[2012.02.20 09:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PhotoScape
[2012.02.20 09:29:59 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoScape
[2012.02.20 09:21:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Filter Forge 3
[2012.02.20 08:48:19 | 000,028,992 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2012.02.20 08:47:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\podXP
[2012.02.17 12:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Mikrotik
[2012.02.15 13:18:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\.gimp-2.6
[2012.02.15 13:18:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\gegl-0.0
[2012.02.15 12:42:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\XnView
[2012.02.15 12:42:48 | 000,000,000 | ---D | C] -- C:\Program Files\XnView
[2012.02.15 11:44:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\inkscape
[2012.02.15 11:40:13 | 000,000,000 | ---D | C] -- C:\Program Files\Inkscape
[2012.02.13 12:18:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\Reklamka
[2012.02.09 14:45:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\XnView
[2012.02.09 13:26:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\OpenOffice.org
[2012.02.09 12:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\ADDDESIGN
[2012.02.09 10:45:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012.02.09 10:30:20 | 001,372,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2012.02.09 10:30:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2012.02.09 10:30:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2012.02.09 10:30:14 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm
[2012.02.09 10:30:13 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm
[2012.02.09 10:30:12 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm
[2012.02.09 10:30:08 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll
[2012.02.09 10:30:04 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2012.02.09 10:30:03 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2012.02.09 10:30:03 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2012.02.09 10:30:02 | 000,651,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2012.02.09 10:30:02 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2012.02.09 10:30:02 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2012.02.09 10:30:02 | 000,056,320 | ---- | C] (Společnost Microsoft) -- C:\WINDOWS\System32\dot3msm.dll
[2012.02.09 10:30:02 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2012.02.09 10:30:02 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2012.02.09 10:30:02 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2012.02.09 10:30:01 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2012.02.09 10:30:01 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2012.02.09 10:30:01 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2012.02.09 10:29:59 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2012.02.09 10:29:59 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2012.02.09 10:29:59 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2012.02.09 10:29:59 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2012.02.09 10:29:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2012.02.09 10:29:58 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2012.02.09 10:29:58 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2012.02.09 10:29:58 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2012.02.09 10:29:58 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2012.02.09 10:29:58 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2012.02.09 10:29:57 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2012.02.09 10:29:56 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2012.02.09 10:29:56 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2012.02.09 10:29:56 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2012.02.09 10:29:56 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2012.02.09 10:29:54 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2012.02.09 10:29:54 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2012.02.09 10:29:53 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2012.02.09 10:29:53 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2012.02.09 10:29:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2012.02.09 10:29:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs
[2012.02.09 10:29:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2012.02.09 10:25:40 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe
[2012.02.09 10:23:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2012.02.09 10:18:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2012.02.08 13:12:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\SignBlazer Elements for USCutter
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\SBD files
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\Hsprint
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\Program Files\Cutting Technologies
[2012.02.08 13:05:11 | 000,073,032 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\drivers\ftser2k.sys
[2012.02.08 13:05:11 | 000,067,400 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftcserco.dll
[2012.02.08 13:05:11 | 000,052,552 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftserui2.dll
[2012.02.08 13:05:08 | 000,198,464 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftd2xx.dll
[2012.02.08 13:05:08 | 000,197,952 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\FTLang.dll
[2012.02.08 13:05:08 | 000,105,288 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftbusui.dll
[2012.02.08 13:05:08 | 000,060,104 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\drivers\ftdibus.sys
[2012.02.06 15:06:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\OpenOffice.org 3.3
[2012.02.06 15:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2012.02.06 09:56:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\DWGeditor
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[John.Ross]

========== Files/Folders - Created Within 30 Days ==========

[2012.02.29 20:30:18 | 000,583,680 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Táta\Plocha\OTL.exe
[2012.02.29 17:23:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2012.02.29 11:31:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Protexis
[2012.02.29 11:31:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Corel
[2012.02.29 11:25:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CorelDRAW Graphics Suite X4
[2012.02.29 11:24:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Corel
[2012.02.29 11:21:25 | 000,000,000 | ---D | C] -- C:\Program Files\Corel
[2012.02.29 10:53:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\GIMP
[2012.02.29 10:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0
[2012.02.28 16:58:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\ESET
[2012.02.28 16:58:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\ESET
[2012.02.28 16:55:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2012.02.28 16:52:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\ESET
[2012.02.28 16:52:48 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2012.02.28 16:52:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2012.02.28 14:49:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\LOGY
[2012.02.28 14:33:05 | 002,062,896 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Táta\Plocha\TDSSKiller.exe
[2012.02.28 13:36:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\2HCS Fakturace 3
[2012.02.28 13:36:20 | 000,260,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx
[2012.02.28 13:36:20 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMAPI32.OCX
[2012.02.28 13:36:17 | 000,000,000 | ---D | C] -- C:\Program Files\2HCS
[2012.02.28 08:19:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 7
[2012.02.28 08:19:14 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2012.02.27 21:45:50 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012.02.27 21:44:01 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012.02.27 21:44:01 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012.02.27 21:44:01 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012.02.27 21:44:01 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012.02.27 21:22:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2012.02.27 21:15:52 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.02.27 21:15:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Táta\Dokumenty\Filmy
[2012.02.27 21:10:01 | 004,420,957 | R--- | C] (Swearware) -- C:\Documents and Settings\Táta\Plocha\ComboFix.exe
[2012.02.27 15:42:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\backups
[2012.02.27 15:31:15 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Documents and Settings\Táta\Plocha\ATF-Cleaner.exe
[2012.02.27 10:44:59 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Táta\Plocha\HijackThis.exe
[2012.02.27 10:23:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Malwarebytes
[2012.02.27 10:23:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2012.02.27 10:23:31 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.02.27 10:23:31 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.02.26 23:11:25 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2012.02.26 22:04:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\Stáhnout na externí HDD...JAKUB
[2012.02.26 21:31:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
[2012.02.26 21:29:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2012.02.26 19:29:13 | 000,024,408 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswKbd.sys
[2012.02.26 18:49:02 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msmpu401.sys
[2012.02.26 18:49:02 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys
[2012.02.22 10:23:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\PCHealth
[2012.02.22 10:05:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2012.02.22 10:05:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2012.02.22 10:05:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2012.02.22 10:03:58 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2012.02.22 10:03:58 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2012.02.22 10:03:58 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2012.02.22 10:03:57 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2012.02.22 10:03:57 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2012.02.22 10:03:57 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2012.02.22 10:03:56 | 000,000,000 | ---D | C] -- C:\f50b39369c4fcb2f0514f47cc9f0
[2012.02.21 15:28:06 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\IECompatCache
[2012.02.21 15:23:57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\PrivacIE
[2012.02.21 15:19:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\IETldCache
[2012.02.21 15:08:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2012.02.21 15:07:35 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2012.02.21 15:02:57 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012.02.21 11:49:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\Microsoft Help
[2012.02.21 11:09:08 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2012.02.21 11:07:42 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2012.02.21 11:06:54 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2012.02.21 11:06:28 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2012.02.21 11:06:05 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2012.02.21 11:04:01 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2012.02.21 11:03:39 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2012.02.21 11:03:30 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2012.02.21 11:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2012.02.21 11:00:01 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2012.02.21 10:58:38 | 002,194,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2012.02.21 10:58:37 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2012.02.21 10:58:36 | 002,150,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2012.02.21 10:58:34 | 002,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2012.02.21 10:56:42 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2012.02.21 10:55:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HP
[2012.02.21 10:55:32 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2012.02.21 10:55:27 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2012.02.21 10:55:19 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2012.02.21 10:55:04 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2012.02.21 10:54:53 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2012.02.21 10:54:41 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2012.02.21 10:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EPSON
[2012.02.21 10:52:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\EPSON
[2012.02.21 10:52:31 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL
[2012.02.21 10:52:28 | 000,081,408 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_TD4BHEE.DLL
[2012.02.21 10:52:27 | 000,093,696 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_TLBHEE.DLL
[2012.02.21 10:51:49 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2012.02.21 10:50:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Epson Software
[2012.02.21 10:50:04 | 000,475,410 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\ensppmon.dll
[2012.02.21 10:50:04 | 000,458,129 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\ensppui.dll
[2012.02.21 10:50:04 | 000,249,344 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enspres.dll
[2012.02.21 10:50:04 | 000,249,344 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enpres.dll
[2012.02.21 10:50:03 | 000,475,410 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enppmon.dll
[2012.02.21 10:50:03 | 000,458,129 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enppui.dll
[2012.02.21 10:50:00 | 000,000,000 | ---D | C] -- C:\Program Files\EpsonNet
[2012.02.21 10:49:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Nabídka Start\Programy\EPSON Software
[2012.02.21 10:49:28 | 000,000,000 | ---D | C] -- C:\Program Files\EPSON Software
[2012.02.21 10:49:19 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2012.02.21 10:45:09 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2012.02.21 10:44:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\EPSON
[2012.02.21 10:40:51 | 000,017,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2012.02.21 10:40:49 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2012.02.21 10:32:15 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2012.02.21 10:31:48 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll
[2012.02.20 13:49:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Application Data
[2012.02.20 12:54:27 | 000,015,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2012.02.20 12:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2012.02.20 12:16:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2012.02.20 10:06:55 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2012.02.20 10:06:55 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2012.02.20 10:06:54 | 000,059,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwma.dll
[2012.02.20 09:49:09 | 000,000,000 | ---D | C] -- C:\output
[2012.02.20 09:31:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\PhotoScape
[2012.02.20 09:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PhotoScape
[2012.02.20 09:29:59 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoScape
[2012.02.20 09:21:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Filter Forge 3
[2012.02.20 08:48:19 | 000,028,992 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2012.02.20 08:47:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\podXP
[2012.02.17 12:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Mikrotik
[2012.02.15 13:18:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\.gimp-2.6
[2012.02.15 13:18:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\gegl-0.0
[2012.02.15 12:42:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\XnView
[2012.02.15 12:42:48 | 000,000,000 | ---D | C] -- C:\Program Files\XnView
[2012.02.15 11:44:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\inkscape
[2012.02.15 11:40:13 | 000,000,000 | ---D | C] -- C:\Program Files\Inkscape
[2012.02.13 12:18:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\Reklamka
[2012.02.09 14:45:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\XnView
[2012.02.09 13:26:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\OpenOffice.org
[2012.02.09 12:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\ADDDESIGN
[2012.02.09 10:45:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012.02.09 10:30:20 | 001,372,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2012.02.09 10:30:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2012.02.09 10:30:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2012.02.09 10:30:14 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm
[2012.02.09 10:30:13 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm
[2012.02.09 10:30:12 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm
[2012.02.09 10:30:08 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll
[2012.02.09 10:30:04 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2012.02.09 10:30:03 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2012.02.09 10:30:03 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2012.02.09 10:30:02 | 000,651,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2012.02.09 10:30:02 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2012.02.09 10:30:02 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2012.02.09 10:30:02 | 000,056,320 | ---- | C] (Společnost Microsoft) -- C:\WINDOWS\System32\dot3msm.dll
[2012.02.09 10:30:02 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2012.02.09 10:30:02 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2012.02.09 10:30:02 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2012.02.09 10:30:01 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2012.02.09 10:30:01 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2012.02.09 10:30:01 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2012.02.09 10:29:59 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2012.02.09 10:29:59 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2012.02.09 10:29:59 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2012.02.09 10:29:59 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2012.02.09 10:29:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2012.02.09 10:29:58 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2012.02.09 10:29:58 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2012.02.09 10:29:58 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2012.02.09 10:29:58 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2012.02.09 10:29:58 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2012.02.09 10:29:57 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2012.02.09 10:29:56 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2012.02.09 10:29:56 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2012.02.09 10:29:56 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2012.02.09 10:29:56 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2012.02.09 10:29:54 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2012.02.09 10:29:54 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2012.02.09 10:29:53 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2012.02.09 10:29:53 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2012.02.09 10:29:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2012.02.09 10:29:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs
[2012.02.09 10:29:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2012.02.09 10:25:40 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe
[2012.02.09 10:23:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2012.02.09 10:18:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2012.02.08 13:12:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\SignBlazer Elements for USCutter
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\SBD files
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\Hsprint
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\Program Files\Cutting Technologies
[2012.02.08 13:05:11 | 000,073,032 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\drivers\ftser2k.sys
[2012.02.08 13:05:11 | 000,067,400 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftcserco.dll
[2012.02.08 13:05:11 | 000,052,552 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftserui2.dll
[2012.02.08 13:05:08 | 000,198,464 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftd2xx.dll
[2012.02.08 13:05:08 | 000,197,952 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\FTLang.dll
[2012.02.08 13:05:08 | 000,105,288 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftbusui.dll
[2012.02.08 13:05:08 | 000,060,104 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\drivers\ftdibus.sys
[2012.02.06 15:06:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\OpenOffice.org 3.3
[2012.02.06 15:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2012.02.06 09:56:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\DWGeditor
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.02.29 20:30:15 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Táta\Plocha\OTL.exe
[2012.02.29 19:42:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012.02.29 14:19:33 | 000,002,516 | -HS- | M] () -- C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
[2012.02.29 14:19:18 | 000,000,088 | RHS- | M] () -- C:\Documents and Settings\All Users\Data aplikací\F458A35D9E.sys
[2012.02.29 11:27:05 | 000,001,992 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\CorelDRAW X4.lnk
[2012.02.29 10:53:06 | 000,000,778 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\GIMP 2.lnk
[2012.02.29 08:24:26 | 000,002,250 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.02.29 08:24:25 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012.02.29 08:15:48 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.02.29 08:15:46 | 804,839,424 | -HS- | M] () -- C:\hiberfil.sys
[2012.02.28 14:26:11 | 000,001,325 | ---- | M] () -- C:\Documents and Settings\Táta\.recently-used.xbel
[2012.02.28 13:36:27 | 000,001,667 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\2HCS Fakturace 3.lnk
[2012.02.27 21:55:03 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012.02.27 21:45:56 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012.02.27 21:21:17 | 000,002,504 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012.02.27 21:10:47 | 004,420,957 | R--- | M] (Swearware) -- C:\Documents and Settings\Táta\Plocha\ComboFix.exe
[2012.02.27 15:31:18 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Documents and Settings\Táta\Plocha\ATF-Cleaner.exe
[2012.02.27 12:59:34 | 002,062,896 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Táta\Plocha\TDSSKiller.exe
[2012.02.27 10:45:00 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Táta\Plocha\HijackThis.exe
[2012.02.27 10:23:36 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.02.27 09:33:19 | 000,446,846 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.02.27 09:33:19 | 000,443,850 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.02.27 09:33:19 | 000,085,316 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.02.27 09:33:19 | 000,073,290 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.02.26 23:40:27 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.02.26 22:25:41 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2012.02.26 21:31:57 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2012.02.23 17:11:24 | 000,024,408 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswKbd.sys
[2012.02.22 10:17:28 | 003,616,808 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.02.21 12:11:14 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.02.21 11:47:54 | 000,000,010 | ---- | M] () -- C:\WINDOWS\Wininit.ini
[2012.02.21 11:47:53 | 000,000,385 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\hpzsetup.LNK
[2012.02.21 11:14:55 | 000,000,296 | ---- | M] () -- C:\WINDOWS\hpntwksetup.ini
[2012.02.21 10:51:03 | 000,001,987 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Příručka pro síť EPSON WF-7015 Series.lnk
[2012.02.21 10:50:41 | 000,001,987 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Uživatelská příručka EPSON WF-7015 Series.lnk
[2012.02.20 12:34:42 | 000,008,704 | ---- | M] () -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.02.20 09:30:10 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\PhotoScape.lnk
[2012.02.15 12:42:57 | 000,001,464 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\XnView.lnk
[2012.02.15 11:42:53 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Inkscape.lnk
[2012.02.13 13:00:30 | 000,002,477 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\Microsoft Office Excel 2007.lnk
[2012.02.09 14:13:28 | 000,031,552 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2012.02.09 14:13:18 | 000,028,992 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2012.02.09 10:54:54 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012.02.09 10:23:12 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2012.02.08 13:12:38 | 000,001,838 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\SignBlazer Elements for USCutter.lnk
[2012.02.06 15:06:52 | 000,000,849 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\OpenOffice.org 3.3.lnk
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.02.29 13:18:14 | 000,002,516 | -HS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
[2012.02.29 13:18:14 | 000,000,088 | RHS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\F458A35D9E.sys
[2012.02.29 11:27:05 | 000,001,992 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\CorelDRAW X4.lnk
[2012.02.29 10:53:06 | 000,000,778 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\GIMP 2.lnk
[2012.02.28 14:26:11 | 000,001,325 | ---- | C] () -- C:\Documents and Settings\Táta\.recently-used.xbel
[2012.02.28 13:36:27 | 000,001,667 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\2HCS Fakturace 3.lnk
[2012.02.28 13:36:20 | 000,278,528 | ---- | C] () -- C:\WINDOWS\System32\mejlovani.dll
[2012.02.28 13:36:20 | 000,053,760 | ---- | C] () -- C:\WINDOWS\System32\ZlibTool.ocx
[2012.02.27 21:45:56 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2012.02.27 21:45:52 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2012.02.27 21:44:01 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012.02.27 21:44:01 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.02.27 21:44:01 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012.02.27 21:44:01 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012.02.27 21:44:01 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012.02.27 10:23:36 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.02.26 21:31:57 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2012.02.26 21:29:59 | 000,000,940 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012.02.26 21:29:58 | 000,000,936 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012.02.21 11:47:53 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\hpzsetup.LNK
[2012.02.21 11:05:41 | 000,000,296 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2012.02.21 10:51:03 | 000,001,987 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Příručka pro síť EPSON WF-7015 Series.lnk
[2012.02.21 10:50:40 | 000,001,987 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Uživatelská příručka EPSON WF-7015 Series.lnk
[2012.02.20 12:16:38 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Help.lnk
[2012.02.20 09:30:10 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\PhotoScape.lnk
[2012.02.15 12:42:57 | 000,001,464 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\XnView.lnk
[2012.02.15 11:43:11 | 000,000,720 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Inkscape.lnk
[2012.02.15 11:42:53 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Inkscape.lnk
[2012.02.09 13:26:54 | 000,002,477 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\Microsoft Office Excel 2007.lnk
[2012.02.09 10:30:17 | 000,674,168 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2012.02.09 10:30:17 | 000,069,570 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2012.02.09 10:30:17 | 000,028,164 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2012.02.09 10:30:17 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2012.02.09 10:30:17 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2012.02.09 10:30:17 | 000,001,746 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2012.02.09 10:30:17 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2012.02.09 10:30:15 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2012.02.09 10:30:15 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2012.02.09 10:30:15 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2012.02.09 10:30:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2012.02.09 10:30:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2012.02.09 10:30:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2012.02.09 10:30:15 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2012.02.09 10:30:15 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2012.02.09 10:30:15 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2012.02.09 10:30:15 | 000,058,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2012.02.09 10:30:14 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2012.02.09 10:30:14 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2012.02.09 10:30:14 | 000,086,446 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2012.02.09 10:30:14 | 000,066,170 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2012.02.09 10:30:14 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2012.02.09 10:30:14 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2012.02.09 10:30:14 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2012.02.09 10:30:14 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2012.02.09 10:30:14 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2012.02.09 10:30:14 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2012.02.09 10:30:14 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2012.02.09 10:30:14 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2012.02.09 10:30:14 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2012.02.09 10:30:14 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2012.02.09 10:30:14 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2012.02.09 10:30:14 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2012.02.09 10:30:14 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2012.02.09 10:30:14 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2012.02.09 10:30:14 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2012.02.09 10:30:14 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2012.02.09 10:30:14 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2012.02.09 10:30:14 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2012.02.09 10:30:14 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2012.02.09 10:30:14 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2012.02.09 10:30:14 | 000,001,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2012.02.09 10:30:14 | 000,001,480 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2012.02.09 10:30:14 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2012.02.09 10:30:14 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2012.02.09 10:30:14 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2012.02.09 10:30:14 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2012.02.09 10:30:14 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2012.02.09 10:30:14 | 000,001,042 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2012.02.09 10:30:14 | 000,001,034 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2012.02.09 10:30:14 | 000,000,777 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2012.02.09 10:30:13 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2012.02.09 10:30:13 | 000,036,870 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2012.02.09 10:30:13 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2012.02.09 10:30:13 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2012.02.09 10:30:13 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2012.02.09 10:30:13 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2012.02.09 10:30:13 | 000,001,465 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2012.02.09 10:30:13 | 000,001,462 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2012.02.09 10:30:13 | 000,001,263 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2012.02.09 10:30:13 | 000,001,059 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2012.02.09 10:30:13 | 000,000,809 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2012.02.09 10:30:13 | 000,000,806 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2012.02.09 10:30:13 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2012.02.09 10:30:13 | 000,000,774 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2012.02.09 10:30:13 | 000,000,722 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2012.02.09 10:30:13 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2012.02.09 10:30:12 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2012.02.09 10:30:12 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2012.02.09 10:30:12 | 000,184,130 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2012.02.09 10:30:12 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2012.02.09 10:30:12 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2012.02.09 10:30:12 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2012.02.09 10:30:12 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2012.02.09 10:30:12 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2012.02.09 10:30:12 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2012.02.09 10:30:12 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2012.02.09 10:30:12 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2012.02.09 10:30:12 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2012.02.09 10:30:12 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2012.02.08 13:12:38 | 000,001,838 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\SignBlazer Elements for USCutter.lnk
[2012.02.06 15:06:51 | 000,000,849 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\OpenOffice.org 3.3.lnk
[2011.11.06 15:32:01 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe
[2011.11.06 15:32:01 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2011.11.06 15:31:58 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe
[2011.11.06 14:30:06 | 000,004,998 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\mtbjfghn.xbe
[2011.11.06 13:23:37 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe
[2011.11.06 13:23:37 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2011.11.06 11:17:58 | 000,000,222 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2011.11.06 10:53:19 | 000,000,347 | ---- | C] () -- C:\WINDOWS\CTWave32.INI
[2011.07.26 07:48:54 | 000,028,418 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini

========== LOP Check ==========

[2012.02.06 10:49:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Autodesk
[2012.02.27 21:23:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2007.10.14 14:49:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVG7
[2012.02.06 10:16:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DassaultSystemes
[2012.02.21 10:52:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EPSON
[2012.02.28 16:52:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.11.05 20:54:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2007.12.27 14:48:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LightScribe
[2007.10.25 20:41:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MSScanAppDataDir
[2008.12.25 10:08:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2009.07.30 21:56:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
[2009.07.30 22:04:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle VideoSpin
[2012.02.20 12:26:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2011.11.05 23:23:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2009.07.30 22:01:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\VideoSpin
[2011.11.05 23:20:13 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{32364CEA-7855-4A3C-B674-53D8E9B97936}
[2007.10.14 17:49:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\AVG7
[2011.11.06 19:12:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\Carambis
[2012.02.06 10:09:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\DassaultSystemes
[2007.12.25 06:41:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\Dealio
[2012.02.06 09:56:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\DWGeditor
[2012.02.28 16:58:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\ESET
[2012.02.20 09:24:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\Filter Forge 3
[2007.11.30 00:23:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\ICQ Toolbar
[2012.02.15 11:44:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\inkscape
[2012.02.17 12:00:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\Mikrotik
[2012.02.09 13:26:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\OpenOffice.org
[2008.12.25 20:19:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\PC Suite
[2012.02.20 11:00:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\PhotoScape
[2012.02.27 15:25:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\TeamViewer
[2011.11.05 23:21:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\TuneUp Software
[2011.11.06 12:43:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\Uniblue
[2012.02.15 13:37:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Táta\Data aplikací\XnView

========== Purity Check ==========



< End of report >

[John.Ross]

OTL Extras logfile created on: 29.2.2012 20:34:39 - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Documents and Settings\Táta\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

767,49 Mb Total Physical Memory | 365,79 Mb Available Physical Memory | 47,66% Memory free
1,46 Gb Paging File | 1,12 Gb Available in Paging File | 77,02% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,26 Gb Total Space | 17,74 Gb Free Space | 47,61% Space Free | Partition Type: NTFS

Computer Name: ADDDESIGN-PC2 | User Name: Táta | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
jsfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Prozkoumat v XnView] -- "C:\Program Files\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"2024:TCP" = 2024:TCP:*:Enabled:guyohzch
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
"C:\Program Files\Windows Live\Messenger\livecall.exe" = C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"D:\setup\hppnet01.exe" = D:\setup\hppnet01.exe:*:Enabled:hppnet01.exe
"D:\setup\hppniprint01.exe" = D:\setup\hppniprint01.exe:*:Enabled:hppniprint01.exe
"D:\setup\hppniprint64.exe" = D:\setup\hppniprint64.exe:*:Enabled:hppniprint64.exe
"D:\setup\hppdnld\hppdnld.exe" = D:\setup\hppdnld\hppdnld.exe:*:Enabled:hppdnld.exe
"D:\setup\hppnac01.exe" = D:\setup\hppnac01.exe:*:Enabled:hppnac01.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Messenger\msmsgs.exe" = C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath -- (Skype Technologies S.A.)
"C:\Program Files\Logitech\Vid HD\Vid.exe" = C:\Program Files\Logitech\Vid HD\Vid.exe:*:Enabled:Logitech Vid HD -- (Logitech Inc.)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\TeamViewer\Version7\TeamViewer.exe" = C:\Program Files\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}" = CorelDRAW(R) Graphics Suite X4
"_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}" = CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator 0.8.0
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{239BB983-8A2D-4974-B780-2ADAE32752D5}" = Windows Live installer
"{26621E14-A45B-45CD-9ED9-7A0A9B585DB4}" = SolidWorks Installation Manager
"{32364CEA-7855-4A3C-B674-53D8E9B97936}" = TuneUp Utilities 2012
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print
"{44A27085-0616-4181-A0C3-81C7ECA17F73}" = CorelDRAW Graphics Suite X4
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{7784A172-61F1-445E-8368-601607E0DD22}" = MP3 Player Utilities 3.68
"{7F05E704-30A6-421A-97A7-8EEB1C7FF010}" = CorelDRAW Graphics SUite X4 - ICA
"{7F05E704-30A6-421A-97A7-8EEB1C7FF012}" = CorelDRAW Graphics Suite X4 - Capture
"{7F05E704-30A6-421A-97A7-8EEB1C7FF013}" = CorelDRAW Graphics Suite X4 - Draw
"{7F05E704-30A6-421A-97A7-8EEB1C7FF014}" = CorelDRAW Graphics Suite X4 - PP
"{7F05E704-30A6-421A-97A7-8EEB1C7FF016}" = CorelDRAW Graphics Suite X4 - Content
"{7F05E704-30A6-421A-97A7-8EEB1C7FF017}" = CorelDRAW Graphics Suite X4 - Filters
"{7F05E704-30A6-421A-97A7-8EEB1C7FF019}" = CorelDRAW Graphics Suite X4 - FontNav
"{7F947BFE-C2DF-4779-9909-5BEE746BD0C4}" = Microsoft .NET Framework 2.0 Language Pack - CSY
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0014-0000-0000-0000000FF1CE}" = Microsoft Office Professional 2007
"{90120000-0014-0000-0000-0000000FF1CE}_PRO_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0014-0000-0000-0000000FF1CE}_PRO_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_PRO_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_PRO_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_PRO_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_PRO_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_PRO_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_PRO_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_PRO_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_PRO_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PRO_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_PRO_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_PRO_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D0798D0-AF6C-4E62-94B1-AEBF1A43E00A}" = CorelDRAW Graphics Suite X4 - IPM
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A95A76C9-6F65-477E-83A0-9F884B6DC21B}" = TuneUp Utilities Language Pack (en-US)
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.6
"{AC76BA86-7AD7-1029-7B44-A81200000003}" = Adobe Reader 8 - Czech
"{AEB9948B-4FF2-47C9-990E-47014492A0FE}" = MSXML 6.0 Parser
"{af6131fc-32da-45ea-a1e7-fe634f8f2722}.sdb" = SignBlazer5.5 XP buttons
"{B61D21B6-469D-4423-B161-62DB20B8A70E}" = Visual Basic for Applications (R) Core - English
"{BB65C393-C76E-4F06-9B0C-2124AA8AF97B}" = Adobe Flash Player 9 ActiveX
"{BC61F51E-8AF7-46B9-AF20-B33B5EE81029}" = Nero 7 Essentials
"{BD8A0C60-1AEB-11D6-B8E1-00025521AE60}" = VBA (3821b)
"{BF439B41-0252-48DE-8B8B-0430CB26A181}" = CorelDRAW Graphics Suite X4 - VBA
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE2DA11A-917F-4CF5-AB55-755EC115DD10}" = CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension
"{CE86A0E7-818D-43EC-A181-59BA9BD3EF2E}" = LightScribe 1.8.13.1
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
"{D5B94160-4A07-4956-9C73-8C5EEFEF180F}" = OpenOffice.org 3.3
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DB81779E-7CC5-4630-BCFC-754004956444}" = Visual Basic for Applications (R) Core
"{E728441A-7820-4B1C-87C9-DE7BE37B2953}" = Download Navigator
"{FB80FA7C-A20D-43EA-A0C3-1E43F210D1A8}" = ESET Smart Security
"{FC0C72DD-A491-43FF-B377-67273E4D94D7}" = Opera 9.20
"{FFFE7261-2318-4227-B827-E9E05E16DFE5}" = CorelDRAW Graphics Suite X4 - Lang CZ
"2HCS Fakturace 3_is1" = 2HCS Fakturace v. 3.7.262
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"C-Media Audio" = C-Media 3D Audio
"EPSON WF-7015 Series" = EPSON WF-7015 Series Printer Uninstall
"EPSON WF-7015 Series Netg" = Příručka pro síť EPSON WF-7015 Series
"EPSON WF-7015 Series Useg" = Uživatelská příručka EPSON WF-7015 Series
"Google Chrome" = Google Chrome
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Inkscape" = Inkscape 0.48.0
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Ovladače zařízení
"Logitech Vid" = Logitech Vid HD
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.60.1.1000
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - CSY" = Microsoft .NET Framework 2.0 Language Pack - CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"PhotoScape" = PhotoScape
"PRO" = Microsoft Office Professional 2007
"SB_USCutter_Elements_ID_is1" = SignBlazer Elements for USCutter release 6.0.21
"SysInfo" = Creative System Information
"TeamViewer 7" = TeamViewer 7
"TuneUp Utilities 2012" = TuneUp Utilities 2012
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinRAR archiver" = WinRAR archiver
"XnView_is1" = XnView 1.98

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 21.2.2012 9:11:32 | Computer Name = ADDDESIGN-PC2 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Update for Outlook 2003: Junk E-mail Filter (KB2597968):
OUTLFLTR produktu Microsoft Office Professional Edition 2003 nebylo možné nainstalovat.
Kód chyby: 1603. Instalační služba systému Windows může vytvořit soubor protokolu
s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace
naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error - 21.2.2012 9:19:39 | Computer Name = ADDDESIGN-PC2 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Aktualizace SP-3 (Service Pack 3) produktu Office 2003:
MAINSP3 produktu Microsoft Office Professional Edition 2003 nebylo možné nainstalovat.
Kód chyby: 1603. Instalační služba systému Windows může vytvořit soubor protokolu
s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace
naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error - 21.2.2012 9:21:30 | Computer Name = ADDDESIGN-PC2 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Update for Outlook 2003: Junk E-mail Filter (KB2596520):
OUTLFLTR produktu Microsoft Office Professional Edition 2003 nebylo možné nainstalovat.
Kód chyby: 1603. Instalační služba systému Windows může vytvořit soubor protokolu
s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace
naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error - 21.2.2012 10:01:02 | Computer Name = ADDDESIGN-PC2 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
quartz.dll, verze 6.5.2600.6169, adresa chyby 0x000177c2.

Error - 21.2.2012 10:53:14 | Computer Name = ADDDESIGN-PC2 | Source = MsiInstaller | ID = 11327
Description = Produkt: Microsoft Office Professional Edition 2003 - Chyba 1327.
Jednotka E:\ není platná.

Error - 21.2.2012 10:53:14 | Computer Name = ADDDESIGN-PC2 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Update for Outlook 2003: Junk E-mail Filter (KB2597968):
OUTLFLTR produktu Microsoft Office Professional Edition 2003 nebylo možné nainstalovat.
Kód chyby: 1603. Instalační služba systému Windows může vytvořit soubor protokolu
s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace
naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error - 21.2.2012 10:53:58 | Computer Name = ADDDESIGN-PC2 | Source = MsiInstaller | ID = 11327
Description = Produkt: Microsoft Office Professional Edition 2003 - Chyba 1327.
Jednotka E:\ není platná.

Error - 21.2.2012 10:53:58 | Computer Name = ADDDESIGN-PC2 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Aktualizace SP-3 (Service Pack 3) produktu Office 2003:
MAINSP3 produktu Microsoft Office Professional Edition 2003 nebylo možné nainstalovat.
Kód chyby: 1603. Instalační služba systému Windows může vytvořit soubor protokolu
s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace
naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error - 21.2.2012 10:54:03 | Computer Name = ADDDESIGN-PC2 | Source = MsiInstaller | ID = 11327
Description = Produkt: Microsoft Office Professional Edition 2003 - Chyba 1327.
Jednotka E:\ není platná.

Error - 21.2.2012 10:54:03 | Computer Name = ADDDESIGN-PC2 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Update for Outlook 2003: Junk E-mail Filter (KB2596520):
OUTLFLTR produktu Microsoft Office Professional Edition 2003 nebylo možné nainstalovat.
Kód chyby: 1603. Instalační služba systému Windows může vytvořit soubor protokolu
s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace
naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

[ System Events ]
Error - 27.2.2012 16:48:02 | Computer Name = ADDDESIGN-PC2 | Source = Service Control Manager | ID = 7034
Description = Služba TeamViewer 7 byla neočekávaně ukončena. Tento stav nastal již
3krát.

Error - 28.2.2012 9:40:03 | Computer Name = ADDDESIGN-PC2 | Source = Service Control Manager | ID = 7000
Description = Služba WBHWDOCT neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 28.2.2012 9:40:03 | Computer Name = ADDDESIGN-PC2 | Source = Service Control Manager | ID = 7023
Description = Služba Server Helper byla ukončena s následující chybou: %%126

Error - 28.2.2012 9:48:14 | Computer Name = ADDDESIGN-PC2 | Source = Service Control Manager | ID = 7000
Description = Služba WBHWDOCT neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 28.2.2012 9:48:14 | Computer Name = ADDDESIGN-PC2 | Source = Service Control Manager | ID = 7023
Description = Služba Server Helper byla ukončena s následující chybou: %%126

Error - 28.2.2012 12:10:57 | Computer Name = ADDDESIGN-PC2 | Source = Service Control Manager | ID = 7000
Description = Služba WBHWDOCT neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 28.2.2012 12:10:57 | Computer Name = ADDDESIGN-PC2 | Source = Service Control Manager | ID = 7023
Description = Služba Server Helper byla ukončena s následující chybou: %%126

Error - 29.2.2012 3:16:06 | Computer Name = ADDDESIGN-PC2 | Source = Service Control Manager | ID = 7000
Description = Služba WBHWDOCT neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 29.2.2012 3:16:06 | Computer Name = ADDDESIGN-PC2 | Source = Service Control Manager | ID = 7023
Description = Služba Server Helper byla ukončena s následující chybou: %%126

Error - 29.2.2012 3:16:09 | Computer Name = ADDDESIGN-PC2 | Source = Print | ID = 19
Description = Došlo k chybě sdílení tiskárny + 1722, tiskárna PDFCreator název sdílení
Tiskárna.


< End of report >

[jaro3]

Odinstaluj:
Dealio-- jestli najdeš..

Aktualizuj javu:
Java SE Runtime Environment 7

Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-7-windows-i586-p.exe nebo
jre-7-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
DRV - (catchme) -- File not found
DRV - (aswKbd) -- C:\WINDOWS\System32\drivers\aswKbd.sys (AVAST Software)
DRV - (AvgTdi) -- C:\WINDOWS\System32\Drivers\avgtdi.sys (GRISOFT, s.r.o.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 10.0.10.1:3128
[2011.11.05 20:55:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
O1 HOSTS File: ([2012.02.27 21:55:03 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
[2012.02.28 14:33:05 | 002,062,896 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Táta\Plocha\TDSSKiller.exe

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
c:\windows\Tasks\*.job
C:\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\WINDOWS\System32\drivers\aswKbd.sys
C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
C:\Documents and Settings\All Users\Data aplikací\F458A35D9E.sys
C:\Documents and Settings\Táta\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Documents and Settings\All Users\Data aplikací\AVAST Software
C:\Documents and Settings\All Users\Data aplikací\AVG7
C:\Documents and Settings\Táta\Data aplikací\AVG7
C:\Documents and Settings\Táta\Data aplikací\Dealio
C:\Documents and Settings\Táta\Data aplikací\ICQ Toolbar

:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"2024:TCP" =-

:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]


Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

Spusť OTL.
Ujisti se , že jsou všechna ostatní okna zavřena , aby nerušily práci programu.
Když se okno programu objeví , nahoře pod nápisem Výstup změň nastavení na Minimální výstup.
Pod Vlastní skenování/opravy vlož následující text zobrazený zeleně:

Kód: Vybrat vše

netsvcs
%SYSTEMDRIVE%\*.*
%systemroot%\*. /mp /s
CREATERESTOREPOINT
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\drivers\*.sys /90

Klikni na na Prohledat .
Neměň žádná jiná nastavení , aby mohl program nerušeně běžet.
Sken netrvá dlouho .
Až sken skončí , objeví se na ploše dva textové soubory :
OTL.Txt a Extras.Txt
Zkopíruj sem postupně oba dva logy.

[John.Ross]

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service catchme stopped successfully!
Service catchme deleted successfully!
File File not found not found.
Error: Unable to stop service aswKbd!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\aswKbd deleted successfully.
C:\WINDOWS\system32\drivers\aswKbd.sys moved successfully.
Service AvgTdi stopped successfully!
Service AvgTdi deleted successfully!
C:\WINDOWS\system32\drivers\avgtdi.sys moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions folder moved successfully.
127.0.0.1 localhost removed from HOSTS file successfully
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ipp\ deleted successfully.
File Protocol\Handler\ipp - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
C:\Documents and Settings\Táta\Plocha\TDSSKiller.exe moved successfully.
========== FILES ==========
C:\WINDOWS\System32\CONFIG.TMP moved successfully.
C:\WINDOWS\000001_.tmp moved successfully.
C:\WINDOWS\003272_.tmp moved successfully.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET4.tmp moved successfully.
C:\WINDOWS\SET8.tmp moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\aswKbd.sys not found.
C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys moved successfully.
C:\Documents and Settings\All Users\Data aplikací\F458A35D9E.sys moved successfully.
C:\Documents and Settings\Táta\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\Documents and Settings\All Users\Data aplikací\AVAST Software folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\AVG7 folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\AVG7\QUEUE\OUT folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\AVG7\QUEUE\ACTIVE folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\AVG7\QUEUE folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\AVG7\Log folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\AVG7 folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\Dealio\kb124\temp folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\Dealio\kb124\rules folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\Dealio\kb124\res folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\Dealio\kb124 folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\Dealio folder moved successfully.
C:\Documents and Settings\Táta\Data aplikací\ICQ Toolbar folder moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\2024:TCP deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41620 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33557 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: Táta
->Temp folder emptied: 34254 bytes
->Temporary Internet Files folder emptied: 2869548 bytes
->Google Chrome cache emptied: 263526025 bytes
->Flash cache emptied: 53001 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 439 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 22760724 bytes

Total Files Cleaned = 276,00 mb


[EMPTYFLASH]

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: Táta
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.33.2 log created on 03012012_003031

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

[John.Ross]

OTL logfile created on: 1.3.2012 0:46:00 - Run 2
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Documents and Settings\Táta\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

767,49 Mb Total Physical Memory | 408,59 Mb Available Physical Memory | 53,24% Memory free
1,46 Gb Paging File | 1,17 Gb Available in Paging File | 80,57% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,26 Gb Total Space | 17,74 Gb Free Space | 47,61% Space Free | Partition Type: NTFS

Computer Name: ADDDESIGN-PC2 | User Name: Táta | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - C:\Documents and Settings\Táta\Plocha\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\TeamViewer\Version7\TeamViewer_Desktop.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - c:\Program Files\TeamViewer\Version7\TeamViewer.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\tv_w32.exe (TeamViewer GmbH)
PRC - C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
PRC - C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)


========== Modules (No Company Name) ==========

MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\WINDOWS\system32\pdfcmnnt.dll ()


========== Win32 Services (SafeList) ==========

SRV - (jrjsmvutg) -- File not found
SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (TeamViewer7) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
SRV - (ekrn) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
SRV - (SolidWorks Licensing Service) -- C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe (SolidWorks)
SRV - (PSI_SVC_2) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
SRV - (tscmgmt) -- C:\WINDOWS\system32\tscmgmt.exe ()
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)


========== Driver Services (SafeList) ==========

DRV - (TuneUpUtilitiesDrv) -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (LVRS) -- C:\WINDOWS\system32\drivers\lvrs.sys (Logitech Inc.)
DRV - (eamon) -- C:\WINDOWS\system32\drivers\eamon.sys (ESET)
DRV - (Epfwndis) -- C:\WINDOWS\system32\drivers\epfwndis.sys (ESET)
DRV - (epfw) -- C:\WINDOWS\system32\drivers\epfw.sys (ESET)
DRV - (epfwtdi) -- C:\WINDOWS\system32\drivers\epfwtdi.sys (ESET)
DRV - (ehdrv) -- C:\WINDOWS\system32\drivers\ehdrv.sys (ESET)
DRV - (FTDIBUS) -- C:\WINDOWS\system32\drivers\ftdibus.sys (FTDI Ltd.)
DRV - (FTSER2K) -- C:\WINDOWS\system32\drivers\ftser2k.sys (FTDI Ltd.)
DRV - (videX32) -- C:\WINDOWS\system32\DRIVERS\videX32.sys (VIA Technologies, Inc.)
DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (LUMDriver) -- C:\WINDOWS\system32\drivers\LUMDriver.sys (IBM)
DRV - (Hardlock) -- C:\WINDOWS\system32\drivers\hardlock.sys (Aladdin Knowledge Systems Ltd.)
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (PfModNT) -- C:\WINDOWS\system32\drivers\PFMODNT.SYS (Creative Technology Ltd.)
DRV - (ctsfm2k) -- C:\WINDOWS\system32\drivers\ctsfm2k.sys (Creative Technology Ltd)
DRV - (ossrv) -- C:\WINDOWS\system32\drivers\ctoss2k.sys (Creative Technology Ltd.)
DRV - (viaagp1) -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys (VIA Technologies, Inc.)
DRV - (Aspi32) -- C:\WINDOWS\System32\drivers\ASPI32.SYS (Adaptec)
DRV - (ms_mpu401) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" =

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012.02.28 16:53:25 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 7.0.0.147 (Enabled) = C:\Program Files\Java\jre7\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 7 (Enabled) = C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Táta\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Táta\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\
CHR - Extension: Gmail = C:\Documents and Settings\Táta\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.03.01 00:31:36 | 000,000,002 | RH-- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {3F3714A9-89A4-46BE-8AF3-D0C9D1FB03F9} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {6D53ADB7-6AD5-4A59-BFE4-7B57D2F4AA89} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - No CLSID value found.
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe" File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\hpzsetup.LNK = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 9738841828 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{25E3567B-4111-4D2D-AB3E-5EC99FEC7430}: DhcpNameServer = 10.0.10.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Táta\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Táta\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.10.14 14:03:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found
NetSvcs: jrjsmvutg - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012.03.01 00:30:31 | 000,000,000 | ---D | C] -- C:\_OTL
[2012.03.01 00:26:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Sun
[2012.03.01 00:25:33 | 000,544,656 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll
[2012.03.01 00:25:33 | 000,214,408 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012.03.01 00:25:33 | 000,173,960 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.03.01 00:25:33 | 000,173,960 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.03.01 00:23:56 | 020,196,744 | ---- | C] (Oracle Corporation) -- C:\Documents and Settings\Táta\Plocha\jre-7-windows-i586.exe
[2012.03.01 00:06:24 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012.02.29 20:30:18 | 000,583,680 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Táta\Plocha\OTL.exe
[2012.02.29 17:23:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2012.02.29 11:31:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Protexis
[2012.02.29 11:31:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Corel
[2012.02.29 11:25:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CorelDRAW Graphics Suite X4
[2012.02.29 11:24:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Corel
[2012.02.29 11:21:25 | 000,000,000 | ---D | C] -- C:\Program Files\Corel
[2012.02.29 10:53:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\GIMP
[2012.02.29 10:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0
[2012.02.28 16:58:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\ESET
[2012.02.28 16:58:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\ESET
[2012.02.28 16:55:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2012.02.28 16:52:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\ESET
[2012.02.28 16:52:48 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2012.02.28 16:52:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2012.02.28 14:49:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\LOGY
[2012.02.28 13:36:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\2HCS Fakturace 3
[2012.02.28 13:36:20 | 000,260,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx
[2012.02.28 13:36:20 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMAPI32.OCX
[2012.02.28 13:36:17 | 000,000,000 | ---D | C] -- C:\Program Files\2HCS
[2012.02.28 08:19:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 7
[2012.02.28 08:19:14 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2012.02.27 21:45:50 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012.02.27 21:44:01 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012.02.27 21:44:01 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012.02.27 21:44:01 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012.02.27 21:44:01 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012.02.27 21:22:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2012.02.27 21:15:52 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.02.27 21:15:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Táta\Dokumenty\Filmy
[2012.02.27 21:10:01 | 004,420,957 | R--- | C] (Swearware) -- C:\Documents and Settings\Táta\Plocha\ComboFix.exe
[2012.02.27 15:42:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\backups
[2012.02.27 15:31:15 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Documents and Settings\Táta\Plocha\ATF-Cleaner.exe
[2012.02.27 10:44:59 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Táta\Plocha\HijackThis.exe
[2012.02.27 10:23:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Malwarebytes
[2012.02.27 10:23:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2012.02.27 10:23:31 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.02.27 10:23:31 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.02.26 23:11:25 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2012.02.26 22:04:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\Stáhnout na externí HDD...JAKUB
[2012.02.26 21:31:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
[2012.02.26 21:29:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2012.02.26 18:49:02 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msmpu401.sys
[2012.02.26 18:49:02 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys
[2012.02.22 10:23:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\PCHealth
[2012.02.22 10:05:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2012.02.22 10:05:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2012.02.22 10:05:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2012.02.22 10:03:58 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2012.02.22 10:03:58 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2012.02.22 10:03:58 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2012.02.22 10:03:57 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2012.02.22 10:03:57 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2012.02.22 10:03:57 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2012.02.22 10:03:56 | 000,000,000 | ---D | C] -- C:\f50b39369c4fcb2f0514f47cc9f0
[2012.02.21 15:28:06 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\IECompatCache
[2012.02.21 15:23:57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\PrivacIE
[2012.02.21 15:19:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\IETldCache
[2012.02.21 15:08:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2012.02.21 15:07:35 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2012.02.21 15:02:57 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012.02.21 11:49:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\Microsoft Help
[2012.02.21 11:09:08 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2012.02.21 11:07:42 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2012.02.21 11:06:54 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2012.02.21 11:06:28 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2012.02.21 11:06:05 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2012.02.21 11:04:01 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2012.02.21 11:03:39 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2012.02.21 11:03:30 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2012.02.21 11:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2012.02.21 11:00:01 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2012.02.21 10:58:38 | 002,194,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2012.02.21 10:58:37 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2012.02.21 10:58:36 | 002,150,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2012.02.21 10:58:34 | 002,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2012.02.21 10:56:42 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2012.02.21 10:55:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HP
[2012.02.21 10:55:32 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2012.02.21 10:55:27 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2012.02.21 10:55:19 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2012.02.21 10:55:04 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2012.02.21 10:54:53 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2012.02.21 10:54:41 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2012.02.21 10:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EPSON
[2012.02.21 10:52:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\EPSON
[2012.02.21 10:52:31 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL
[2012.02.21 10:52:28 | 000,081,408 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_TD4BHEE.DLL
[2012.02.21 10:52:27 | 000,093,696 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_TLBHEE.DLL
[2012.02.21 10:51:49 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2012.02.21 10:50:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Epson Software
[2012.02.21 10:50:04 | 000,475,410 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\ensppmon.dll
[2012.02.21 10:50:04 | 000,458,129 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\ensppui.dll
[2012.02.21 10:50:04 | 000,249,344 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enspres.dll
[2012.02.21 10:50:04 | 000,249,344 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enpres.dll
[2012.02.21 10:50:03 | 000,475,410 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enppmon.dll
[2012.02.21 10:50:03 | 000,458,129 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enppui.dll
[2012.02.21 10:50:00 | 000,000,000 | ---D | C] -- C:\Program Files\EpsonNet
[2012.02.21 10:49:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Nabídka Start\Programy\EPSON Software
[2012.02.21 10:49:28 | 000,000,000 | ---D | C] -- C:\Program Files\EPSON Software
[2012.02.21 10:49:19 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2012.02.21 10:45:09 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2012.02.21 10:44:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\EPSON
[2012.02.21 10:40:51 | 000,017,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2012.02.21 10:40:49 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2012.02.21 10:32:15 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2012.02.21 10:31:48 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll
[2012.02.20 13:49:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Application Data
[2012.02.20 12:54:27 | 000,015,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2012.02.20 12:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2012.02.20 12:16:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2012.02.20 10:06:55 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2012.02.20 10:06:55 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2012.02.20 10:06:54 | 000,059,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwma.dll
[2012.02.20 09:49:09 | 000,000,000 | ---D | C] -- C:\output
[2012.02.20 09:31:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\PhotoScape
[2012.02.20 09:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PhotoScape
[2012.02.20 09:29:59 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoScape
[2012.02.20 09:21:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Filter Forge 3
[2012.02.20 08:48:19 | 000,028,992 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2012.02.20 08:47:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\podXP
[2012.02.17 12:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Mikrotik
[2012.02.15 13:18:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\.gimp-2.6
[2012.02.15 13:18:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\gegl-0.0
[2012.02.15 12:42:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\XnView
[2012.02.15 12:42:48 | 000,000,000 | ---D | C] -- C:\Program Files\XnView
[2012.02.15 11:44:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\inkscape
[2012.02.15 11:40:13 | 000,000,000 | ---D | C] -- C:\Program Files\Inkscape
[2012.02.13 12:18:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\Reklamka
[2012.02.09 14:45:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\XnView
[2012.02.09 13:26:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\OpenOffice.org
[2012.02.09 12:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\ADDDESIGN
[2012.02.09 10:45:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012.02.09 10:30:20 | 001,372,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2012.02.09 10:30:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2012.02.09 10:30:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2012.02.09 10:30:14 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm
[2012.02.09 10:30:13 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm
[2012.02.09 10:30:12 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm
[2012.02.09 10:30:08 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll
[2012.02.09 10:30:04 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2012.02.09 10:30:03 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2012.02.09 10:30:03 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2012.02.09 10:30:02 | 000,651,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2012.02.09 10:30:02 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2012.02.09 10:30:02 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2012.02.09 10:30:02 | 000,056,320 | ---- | C] (Společnost Microsoft) -- C:\WINDOWS\System32\dot3msm.dll
[2012.02.09 10:30:02 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2012.02.09 10:30:02 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2012.02.09 10:30:02 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2012.02.09 10:30:01 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2012.02.09 10:30:01 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2012.02.09 10:30:01 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2012.02.09 10:29:59 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2012.02.09 10:29:59 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2012.02.09 10:29:59 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2012.02.09 10:29:59 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2012.02.09 10:29:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2012.02.09 10:29:58 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2012.02.09 10:29:58 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2012.02.09 10:29:58 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2012.02.09 10:29:58 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2012.02.09 10:29:58 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2012.02.09 10:29:57 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2012.02.09 10:29:56 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2012.02.09 10:29:56 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2012.02.09 10:29:56 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2012.02.09 10:29:56 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2012.02.09 10:29:54 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2012.02.09 10:29:54 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2012.02.09 10:29:53 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2012.02.09 10:29:53 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2012.02.09 10:29:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2012.02.09 10:29:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs
[2012.02.09 10:29:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2012.02.09 10:25:40 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe
[2012.02.09 10:23:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2012.02.09 10:18:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2012.02.08 13:12:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\SignBlazer Elements for USCutter
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\SBD files
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\Hsprint
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\Program Files\Cutting Technologies
[2012.02.08 13:05:11 | 000,073,032 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\drivers\ftser2k.sys
[2012.02.08 13:05:11 | 000,067,400 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftcserco.dll
[2012.02.08 13:05:11 | 000,052,552 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftserui2.dll
[2012.02.08 13:05:08 | 000,198,464 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftd2xx.dll
[2012.02.08 13:05:08 | 000,197,952 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\FTLang.dll
[2012.02.08 13:05:08 | 000,105,288 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftbusui.dll
[2012.02.08 13:05:08 | 000,060,104 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\drivers\ftdibus.sys
[2012.02.06 15:06:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\OpenOffice.org 3.3
[2012.02.06 15:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2012.02.06 09:56:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\DWGeditor

[John.Ross]

========== Files - Modified Within 30 Days ==========

[2012.03.01 00:40:24 | 000,002,250 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.03.01 00:36:04 | 003,616,976 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.03.01 00:35:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.03.01 00:35:28 | 804,839,424 | -HS- | M] () -- C:\hiberfil.sys
[2012.03.01 00:31:36 | 000,000,002 | RH-- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012.03.01 00:25:10 | 000,214,408 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012.03.01 00:25:09 | 000,173,960 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.03.01 00:25:09 | 000,173,960 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.03.01 00:25:09 | 000,128,000 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2012.03.01 00:25:08 | 000,544,656 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll
[2012.03.01 00:24:26 | 020,196,744 | ---- | M] (Oracle Corporation) -- C:\Documents and Settings\Táta\Plocha\jre-7-windows-i586.exe
[2012.02.29 20:30:15 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Táta\Plocha\OTL.exe
[2012.02.29 11:27:05 | 000,001,992 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\CorelDRAW X4.lnk
[2012.02.29 10:53:06 | 000,000,778 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\GIMP 2.lnk
[2012.02.28 14:26:11 | 000,001,325 | ---- | M] () -- C:\Documents and Settings\Táta\.recently-used.xbel
[2012.02.28 13:36:27 | 000,001,667 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\2HCS Fakturace 3.lnk
[2012.02.27 21:45:56 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012.02.27 21:21:17 | 000,002,504 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012.02.27 21:10:47 | 004,420,957 | R--- | M] (Swearware) -- C:\Documents and Settings\Táta\Plocha\ComboFix.exe
[2012.02.27 15:31:18 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Documents and Settings\Táta\Plocha\ATF-Cleaner.exe
[2012.02.27 10:45:00 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Táta\Plocha\HijackThis.exe
[2012.02.27 10:23:36 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.02.27 09:33:19 | 000,446,846 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.02.27 09:33:19 | 000,443,850 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.02.27 09:33:19 | 000,085,316 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.02.27 09:33:19 | 000,073,290 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.02.26 23:40:27 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.02.26 22:25:41 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2012.02.26 21:31:57 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2012.02.21 12:11:14 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.02.21 11:47:54 | 000,000,010 | ---- | M] () -- C:\WINDOWS\Wininit.ini
[2012.02.21 11:47:53 | 000,000,385 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\hpzsetup.LNK
[2012.02.21 11:14:55 | 000,000,296 | ---- | M] () -- C:\WINDOWS\hpntwksetup.ini
[2012.02.21 10:51:03 | 000,001,987 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Příručka pro síť EPSON WF-7015 Series.lnk
[2012.02.21 10:50:41 | 000,001,987 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Uživatelská příručka EPSON WF-7015 Series.lnk
[2012.02.20 09:30:10 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\PhotoScape.lnk
[2012.02.15 12:42:57 | 000,001,464 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\XnView.lnk
[2012.02.15 11:42:53 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Inkscape.lnk
[2012.02.13 13:00:30 | 000,002,477 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\Microsoft Office Excel 2007.lnk
[2012.02.09 14:13:28 | 000,031,552 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2012.02.09 14:13:18 | 000,028,992 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2012.02.09 10:54:54 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012.02.09 10:23:12 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2012.02.08 13:12:38 | 000,001,838 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\SignBlazer Elements for USCutter.lnk
[2012.02.06 15:06:52 | 000,000,849 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\OpenOffice.org 3.3.lnk

========== Files Created - No Company Name ==========

[2012.02.29 11:27:05 | 000,001,992 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\CorelDRAW X4.lnk
[2012.02.29 10:53:06 | 000,000,778 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\GIMP 2.lnk
[2012.02.28 14:26:11 | 000,001,325 | ---- | C] () -- C:\Documents and Settings\Táta\.recently-used.xbel
[2012.02.28 13:36:27 | 000,001,667 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\2HCS Fakturace 3.lnk
[2012.02.28 13:36:20 | 000,278,528 | ---- | C] () -- C:\WINDOWS\System32\mejlovani.dll
[2012.02.28 13:36:20 | 000,053,760 | ---- | C] () -- C:\WINDOWS\System32\ZlibTool.ocx
[2012.02.27 21:45:56 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2012.02.27 21:45:52 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2012.02.27 21:44:01 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012.02.27 21:44:01 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.02.27 21:44:01 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012.02.27 21:44:01 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012.02.27 21:44:01 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012.02.27 10:23:36 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.02.26 21:31:57 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2012.02.21 11:47:53 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\hpzsetup.LNK
[2012.02.21 11:05:41 | 000,000,296 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2012.02.21 10:51:03 | 000,001,987 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Příručka pro síť EPSON WF-7015 Series.lnk
[2012.02.21 10:50:40 | 000,001,987 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Uživatelská příručka EPSON WF-7015 Series.lnk
[2012.02.20 12:16:38 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Help.lnk
[2012.02.20 09:30:10 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\PhotoScape.lnk
[2012.02.15 12:42:57 | 000,001,464 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\XnView.lnk
[2012.02.15 11:43:11 | 000,000,720 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Inkscape.lnk
[2012.02.15 11:42:53 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Inkscape.lnk
[2012.02.09 13:26:54 | 000,002,477 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\Microsoft Office Excel 2007.lnk
[2012.02.09 10:30:17 | 000,674,168 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2012.02.09 10:30:17 | 000,069,570 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2012.02.09 10:30:17 | 000,028,164 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2012.02.09 10:30:17 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2012.02.09 10:30:17 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2012.02.09 10:30:17 | 000,001,746 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2012.02.09 10:30:17 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2012.02.09 10:30:15 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2012.02.09 10:30:15 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2012.02.09 10:30:15 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2012.02.09 10:30:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2012.02.09 10:30:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2012.02.09 10:30:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2012.02.09 10:30:15 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2012.02.09 10:30:15 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2012.02.09 10:30:15 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2012.02.09 10:30:15 | 000,058,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2012.02.09 10:30:14 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2012.02.09 10:30:14 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2012.02.09 10:30:14 | 000,086,446 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2012.02.09 10:30:14 | 000,066,170 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2012.02.09 10:30:14 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2012.02.09 10:30:14 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2012.02.09 10:30:14 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2012.02.09 10:30:14 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2012.02.09 10:30:14 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2012.02.09 10:30:14 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2012.02.09 10:30:14 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2012.02.09 10:30:14 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2012.02.09 10:30:14 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2012.02.09 10:30:14 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2012.02.09 10:30:14 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2012.02.09 10:30:14 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2012.02.09 10:30:14 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2012.02.09 10:30:14 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2012.02.09 10:30:14 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2012.02.09 10:30:14 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2012.02.09 10:30:14 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2012.02.09 10:30:14 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2012.02.09 10:30:14 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2012.02.09 10:30:14 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2012.02.09 10:30:14 | 000,001,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2012.02.09 10:30:14 | 000,001,480 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2012.02.09 10:30:14 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2012.02.09 10:30:14 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2012.02.09 10:30:14 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2012.02.09 10:30:14 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2012.02.09 10:30:14 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2012.02.09 10:30:14 | 000,001,042 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2012.02.09 10:30:14 | 000,001,034 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2012.02.09 10:30:14 | 000,000,777 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2012.02.09 10:30:13 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2012.02.09 10:30:13 | 000,036,870 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2012.02.09 10:30:13 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2012.02.09 10:30:13 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2012.02.09 10:30:13 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2012.02.09 10:30:13 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2012.02.09 10:30:13 | 000,001,465 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2012.02.09 10:30:13 | 000,001,462 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2012.02.09 10:30:13 | 000,001,263 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2012.02.09 10:30:13 | 000,001,059 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2012.02.09 10:30:13 | 000,000,809 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2012.02.09 10:30:13 | 000,000,806 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2012.02.09 10:30:13 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2012.02.09 10:30:13 | 000,000,774 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2012.02.09 10:30:13 | 000,000,722 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2012.02.09 10:30:13 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2012.02.09 10:30:12 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2012.02.09 10:30:12 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2012.02.09 10:30:12 | 000,184,130 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2012.02.09 10:30:12 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2012.02.09 10:30:12 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2012.02.09 10:30:12 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2012.02.09 10:30:12 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2012.02.09 10:30:12 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2012.02.09 10:30:12 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2012.02.09 10:30:12 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2012.02.09 10:30:12 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2012.02.09 10:30:12 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2012.02.09 10:30:12 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2012.02.08 13:12:38 | 000,001,838 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\SignBlazer Elements for USCutter.lnk
[2012.02.06 15:06:51 | 000,000,849 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\OpenOffice.org 3.3.lnk
[2011.11.06 15:32:01 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe
[2011.11.06 15:32:01 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2011.11.06 15:31:58 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe
[2011.11.06 14:30:06 | 000,004,998 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\mtbjfghn.xbe
[2011.11.06 13:23:37 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe
[2011.11.06 13:23:37 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2011.11.06 11:17:58 | 000,000,222 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2011.11.06 10:53:19 | 000,000,347 | ---- | C] () -- C:\WINDOWS\CTWave32.INI
[2011.07.26 07:48:54 | 000,028,418 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini

========== Custom Scans ==========


< %SYSTEMDRIVE%\*.* >
[2007.10.14 14:03:20 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2007.12.23 13:57:12 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2012.02.27 21:45:56 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2001.10.25 15:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004.08.03 23:00:04 | 000,261,312 | RHS- | M] () -- C:\cmldr
[2012.02.29 17:23:51 | 000,049,290 | ---- | M] () -- C:\ComboFix.txt
[2007.10.14 14:03:20 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2012.03.01 00:35:28 | 804,839,424 | -HS- | M] () -- C:\hiberfil.sys
[2007.10.14 14:03:20 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2007.10.14 14:03:20 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004.08.03 21:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2012.02.09 10:23:12 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2012.03.01 00:35:27 | 805,306,368 | -HS- | M] () -- C:\pagefile.sys

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2007.10.14 15:38:55 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2007.10.14 15:38:55 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2007.10.14 15:38:55 | 000,450,560 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\drivers\*.sys /90 >
[2011.12.10 15:24:06 | 000,020,464 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys

< End of report >

[John.Ross]

OTL logfile created on: 1.3.2012 1:36:28 - Run 2
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Documents and Settings\Táta\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

767,49 Mb Total Physical Memory | 434,52 Mb Available Physical Memory | 56,62% Memory free
1,46 Gb Paging File | 0,97 Gb Available in Paging File | 66,31% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,26 Gb Total Space | 17,61 Gb Free Space | 47,27% Space Free | Partition Type: NTFS

Computer Name: ADDDESIGN-PC2 | User Name: Táta | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - C:\Documents and Settings\Táta\Plocha\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\TeamViewer\Version7\TeamViewer_Desktop.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - c:\Program Files\TeamViewer\Version7\TeamViewer.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\tv_w32.exe (TeamViewer GmbH)
PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
PRC - C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)


========== Modules (No Company Name) ==========

MOD - C:\Program Files\Google\Chrome\Application\17.0.963.56\ppgooglenaclpluginchrome.dll ()
MOD - C:\Program Files\Google\Chrome\Application\17.0.963.56\pdf.dll ()
MOD - C:\Program Files\Google\Chrome\Application\17.0.963.56\avutil-51.dll ()
MOD - C:\Program Files\Google\Chrome\Application\17.0.963.56\avformat-53.dll ()
MOD - C:\Program Files\Google\Chrome\Application\17.0.963.56\avcodec-53.dll ()
MOD - C:\Program Files\Google\Chrome\Application\17.0.963.56\gcswf32.dll ()
MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
MOD - C:\WINDOWS\system32\pdfcmnnt.dll ()


========== Win32 Services (SafeList) ==========

SRV - (jrjsmvutg) -- File not found
SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (TeamViewer7) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
SRV - (ekrn) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
SRV - (SolidWorks Licensing Service) -- C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe (SolidWorks)
SRV - (PSI_SVC_2) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
SRV - (tscmgmt) -- C:\WINDOWS\system32\tscmgmt.exe ()
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)


========== Driver Services (SafeList) ==========

DRV - (TuneUpUtilitiesDrv) -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (LVRS) -- C:\WINDOWS\system32\drivers\lvrs.sys (Logitech Inc.)
DRV - (eamon) -- C:\WINDOWS\system32\drivers\eamon.sys (ESET)
DRV - (Epfwndis) -- C:\WINDOWS\system32\drivers\epfwndis.sys (ESET)
DRV - (epfw) -- C:\WINDOWS\system32\drivers\epfw.sys (ESET)
DRV - (epfwtdi) -- C:\WINDOWS\system32\drivers\epfwtdi.sys (ESET)
DRV - (ehdrv) -- C:\WINDOWS\system32\drivers\ehdrv.sys (ESET)
DRV - (FTDIBUS) -- C:\WINDOWS\system32\drivers\ftdibus.sys (FTDI Ltd.)
DRV - (FTSER2K) -- C:\WINDOWS\system32\drivers\ftser2k.sys (FTDI Ltd.)
DRV - (videX32) -- C:\WINDOWS\system32\DRIVERS\videX32.sys (VIA Technologies, Inc.)
DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (LUMDriver) -- C:\WINDOWS\system32\drivers\LUMDriver.sys (IBM)
DRV - (Hardlock) -- C:\WINDOWS\system32\drivers\hardlock.sys (Aladdin Knowledge Systems Ltd.)
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (PfModNT) -- C:\WINDOWS\system32\drivers\PFMODNT.SYS (Creative Technology Ltd.)
DRV - (ctsfm2k) -- C:\WINDOWS\system32\drivers\ctsfm2k.sys (Creative Technology Ltd)
DRV - (ossrv) -- C:\WINDOWS\system32\drivers\ctoss2k.sys (Creative Technology Ltd.)
DRV - (viaagp1) -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys (VIA Technologies, Inc.)
DRV - (Aspi32) -- C:\WINDOWS\System32\drivers\ASPI32.SYS (Adaptec)
DRV - (ms_mpu401) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" =

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012.02.28 16:53:25 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\T\u00E1ta\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 7.0.0.147 (Enabled) = C:\Program Files\Java\jre7\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 7 (Enabled) = C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Táta\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Táta\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\
CHR - Extension: Gmail = C:\Documents and Settings\Táta\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.03.01 00:31:36 | 000,000,002 | RH-- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {3F3714A9-89A4-46BE-8AF3-D0C9D1FB03F9} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {6D53ADB7-6AD5-4A59-BFE4-7B57D2F4AA89} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - No CLSID value found.
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe" File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\hpzsetup.LNK = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 9738841828 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{25E3567B-4111-4D2D-AB3E-5EC99FEC7430}: DhcpNameServer = 10.0.10.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Táta\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Táta\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.10.14 14:03:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found
NetSvcs: jrjsmvutg - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012.03.01 00:30:31 | 000,000,000 | ---D | C] -- C:\_OTL
[2012.03.01 00:26:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Sun
[2012.03.01 00:25:33 | 000,544,656 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll
[2012.03.01 00:25:33 | 000,214,408 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012.03.01 00:25:33 | 000,173,960 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.03.01 00:25:33 | 000,173,960 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.03.01 00:23:56 | 020,196,744 | ---- | C] (Oracle Corporation) -- C:\Documents and Settings\Táta\Plocha\jre-7-windows-i586.exe
[2012.03.01 00:06:24 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012.02.29 20:30:18 | 000,583,680 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Táta\Plocha\OTL.exe
[2012.02.29 17:23:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2012.02.29 11:31:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Protexis
[2012.02.29 11:31:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Corel
[2012.02.29 11:25:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CorelDRAW Graphics Suite X4
[2012.02.29 11:24:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Corel
[2012.02.29 11:21:25 | 000,000,000 | ---D | C] -- C:\Program Files\Corel
[2012.02.29 10:53:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\GIMP
[2012.02.29 10:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0
[2012.02.28 16:58:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\ESET
[2012.02.28 16:58:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\ESET
[2012.02.28 16:55:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2012.02.28 16:52:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\ESET
[2012.02.28 16:52:48 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2012.02.28 16:52:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2012.02.28 14:49:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\LOGY
[2012.02.28 13:36:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\2HCS Fakturace 3
[2012.02.28 13:36:20 | 000,260,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx
[2012.02.28 13:36:20 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMAPI32.OCX
[2012.02.28 13:36:17 | 000,000,000 | ---D | C] -- C:\Program Files\2HCS
[2012.02.28 08:19:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 7
[2012.02.28 08:19:14 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2012.02.27 21:45:50 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012.02.27 21:44:01 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012.02.27 21:44:01 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012.02.27 21:44:01 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012.02.27 21:44:01 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012.02.27 21:22:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2012.02.27 21:15:52 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.02.27 21:15:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Táta\Dokumenty\Filmy
[2012.02.27 21:10:01 | 004,420,957 | R--- | C] (Swearware) -- C:\Documents and Settings\Táta\Plocha\ComboFix.exe
[2012.02.27 15:42:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\backups
[2012.02.27 15:31:15 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Documents and Settings\Táta\Plocha\ATF-Cleaner.exe
[2012.02.27 10:44:59 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Táta\Plocha\HijackThis.exe
[2012.02.27 10:23:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Malwarebytes
[2012.02.27 10:23:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2012.02.27 10:23:31 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.02.27 10:23:31 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.02.26 23:11:25 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2012.02.26 22:04:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Plocha\Stáhnout na externí HDD...JAKUB
[2012.02.26 21:31:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
[2012.02.26 21:29:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2012.02.26 18:49:02 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msmpu401.sys
[2012.02.26 18:49:02 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys
[2012.02.22 10:23:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\PCHealth
[2012.02.22 10:05:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2012.02.22 10:05:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2012.02.22 10:05:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2012.02.22 10:03:58 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2012.02.22 10:03:58 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2012.02.22 10:03:58 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2012.02.22 10:03:57 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2012.02.22 10:03:57 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2012.02.22 10:03:57 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2012.02.22 10:03:56 | 000,000,000 | ---D | C] -- C:\f50b39369c4fcb2f0514f47cc9f0
[2012.02.21 15:28:06 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\IECompatCache
[2012.02.21 15:23:57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\PrivacIE
[2012.02.21 15:19:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Táta\IETldCache
[2012.02.21 15:08:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2012.02.21 15:07:35 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2012.02.21 15:02:57 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012.02.21 11:49:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Local Settings\Data aplikací\Microsoft Help
[2012.02.21 11:09:08 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2012.02.21 11:07:42 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2012.02.21 11:06:54 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2012.02.21 11:06:28 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2012.02.21 11:06:05 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2012.02.21 11:04:01 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2012.02.21 11:03:39 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2012.02.21 11:03:30 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2012.02.21 11:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2012.02.21 11:00:01 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2012.02.21 10:58:38 | 002,194,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2012.02.21 10:58:37 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2012.02.21 10:58:36 | 002,150,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2012.02.21 10:58:34 | 002,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2012.02.21 10:56:42 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2012.02.21 10:55:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HP
[2012.02.21 10:55:32 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2012.02.21 10:55:27 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2012.02.21 10:55:19 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2012.02.21 10:55:04 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2012.02.21 10:54:53 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2012.02.21 10:54:41 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2012.02.21 10:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EPSON
[2012.02.21 10:52:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\EPSON
[2012.02.21 10:52:31 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL
[2012.02.21 10:52:28 | 000,081,408 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_TD4BHEE.DLL
[2012.02.21 10:52:27 | 000,093,696 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_TLBHEE.DLL
[2012.02.21 10:51:49 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2012.02.21 10:50:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Epson Software
[2012.02.21 10:50:04 | 000,475,410 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\ensppmon.dll
[2012.02.21 10:50:04 | 000,458,129 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\ensppui.dll
[2012.02.21 10:50:04 | 000,249,344 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enspres.dll
[2012.02.21 10:50:04 | 000,249,344 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enpres.dll
[2012.02.21 10:50:03 | 000,475,410 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enppmon.dll
[2012.02.21 10:50:03 | 000,458,129 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enppui.dll
[2012.02.21 10:50:00 | 000,000,000 | ---D | C] -- C:\Program Files\EpsonNet
[2012.02.21 10:49:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Nabídka Start\Programy\EPSON Software
[2012.02.21 10:49:28 | 000,000,000 | ---D | C] -- C:\Program Files\EPSON Software
[2012.02.21 10:49:19 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2012.02.21 10:45:09 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2012.02.21 10:44:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\EPSON
[2012.02.21 10:40:51 | 000,017,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2012.02.21 10:40:49 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2012.02.21 10:32:15 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2012.02.21 10:31:48 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll
[2012.02.20 13:49:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Application Data
[2012.02.20 12:54:27 | 000,015,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2012.02.20 12:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2012.02.20 12:16:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2012.02.20 10:06:55 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2012.02.20 10:06:55 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2012.02.20 10:06:54 | 000,059,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwma.dll
[2012.02.20 09:49:09 | 000,000,000 | ---D | C] -- C:\output
[2012.02.20 09:31:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\PhotoScape
[2012.02.20 09:30:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PhotoScape
[2012.02.20 09:29:59 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoScape
[2012.02.20 09:21:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Filter Forge 3
[2012.02.20 08:48:19 | 000,028,992 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2012.02.20 08:47:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\podXP
[2012.02.17 12:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\Mikrotik
[2012.02.15 13:18:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\.gimp-2.6
[2012.02.15 13:18:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\gegl-0.0
[2012.02.15 12:42:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\XnView
[2012.02.15 12:42:48 | 000,000,000 | ---D | C] -- C:\Program Files\XnView
[2012.02.15 11:44:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\inkscape
[2012.02.15 11:40:13 | 000,000,000 | ---D | C] -- C:\Program Files\Inkscape
[2012.02.13 12:18:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\Reklamka
[2012.02.09 14:45:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\XnView
[2012.02.09 13:26:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\OpenOffice.org
[2012.02.09 12:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Dokumenty\ADDDESIGN
[2012.02.09 10:45:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012.02.09 10:30:20 | 001,372,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2012.02.09 10:30:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2012.02.09 10:30:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2012.02.09 10:30:14 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm
[2012.02.09 10:30:13 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm
[2012.02.09 10:30:12 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm
[2012.02.09 10:30:08 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll
[2012.02.09 10:30:04 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2012.02.09 10:30:03 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2012.02.09 10:30:03 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2012.02.09 10:30:02 | 000,651,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2012.02.09 10:30:02 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2012.02.09 10:30:02 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2012.02.09 10:30:02 | 000,056,320 | ---- | C] (Společnost Microsoft) -- C:\WINDOWS\System32\dot3msm.dll
[2012.02.09 10:30:02 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2012.02.09 10:30:02 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2012.02.09 10:30:02 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2012.02.09 10:30:01 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2012.02.09 10:30:01 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2012.02.09 10:30:01 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2012.02.09 10:30:00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2012.02.09 10:29:59 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2012.02.09 10:29:59 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2012.02.09 10:29:59 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2012.02.09 10:29:59 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2012.02.09 10:29:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2012.02.09 10:29:58 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2012.02.09 10:29:58 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2012.02.09 10:29:58 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2012.02.09 10:29:58 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2012.02.09 10:29:58 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2012.02.09 10:29:57 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2012.02.09 10:29:56 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2012.02.09 10:29:56 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2012.02.09 10:29:56 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2012.02.09 10:29:56 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2012.02.09 10:29:54 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2012.02.09 10:29:54 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2012.02.09 10:29:53 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2012.02.09 10:29:53 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2012.02.09 10:29:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2012.02.09 10:29:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs
[2012.02.09 10:29:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2012.02.09 10:25:40 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe
[2012.02.09 10:23:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2012.02.09 10:18:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2012.02.08 13:12:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\SignBlazer Elements for USCutter
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\SBD files
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\Hsprint
[2012.02.08 13:12:15 | 000,000,000 | ---D | C] -- C:\Program Files\Cutting Technologies
[2012.02.08 13:05:11 | 000,073,032 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\drivers\ftser2k.sys
[2012.02.08 13:05:11 | 000,067,400 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftcserco.dll
[2012.02.08 13:05:11 | 000,052,552 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftserui2.dll
[2012.02.08 13:05:08 | 000,198,464 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftd2xx.dll
[2012.02.08 13:05:08 | 000,197,952 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\FTLang.dll
[2012.02.08 13:05:08 | 000,105,288 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\ftbusui.dll
[2012.02.08 13:05:08 | 000,060,104 | ---- | C] (FTDI Ltd.) -- C:\WINDOWS\System32\drivers\ftdibus.sys
[2012.02.06 15:06:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\OpenOffice.org 3.3
[2012.02.06 15:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2012.02.06 09:56:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Táta\Data aplikací\DWGeditor

[John.Ross]

========== Files - Modified Within 30 Days ==========

[2012.03.01 00:40:24 | 000,002,250 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.03.01 00:36:04 | 003,616,976 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.03.01 00:35:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.03.01 00:35:28 | 804,839,424 | -HS- | M] () -- C:\hiberfil.sys
[2012.03.01 00:31:36 | 000,000,002 | RH-- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012.03.01 00:25:10 | 000,214,408 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012.03.01 00:25:09 | 000,173,960 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.03.01 00:25:09 | 000,173,960 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.03.01 00:25:09 | 000,128,000 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2012.03.01 00:25:08 | 000,544,656 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll
[2012.03.01 00:24:26 | 020,196,744 | ---- | M] (Oracle Corporation) -- C:\Documents and Settings\Táta\Plocha\jre-7-windows-i586.exe
[2012.02.29 20:30:15 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Táta\Plocha\OTL.exe
[2012.02.29 11:27:05 | 000,001,992 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\CorelDRAW X4.lnk
[2012.02.29 10:53:06 | 000,000,778 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\GIMP 2.lnk
[2012.02.28 14:26:11 | 000,001,325 | ---- | M] () -- C:\Documents and Settings\Táta\.recently-used.xbel
[2012.02.28 13:36:27 | 000,001,667 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\2HCS Fakturace 3.lnk
[2012.02.27 21:45:56 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012.02.27 21:21:17 | 000,002,504 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012.02.27 21:10:47 | 004,420,957 | R--- | M] (Swearware) -- C:\Documents and Settings\Táta\Plocha\ComboFix.exe
[2012.02.27 15:31:18 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Documents and Settings\Táta\Plocha\ATF-Cleaner.exe
[2012.02.27 10:45:00 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Táta\Plocha\HijackThis.exe
[2012.02.27 10:23:36 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.02.27 09:33:19 | 000,446,846 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.02.27 09:33:19 | 000,443,850 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.02.27 09:33:19 | 000,085,316 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.02.27 09:33:19 | 000,073,290 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.02.26 23:40:27 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.02.26 22:25:41 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2012.02.26 21:31:57 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2012.02.21 12:11:14 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.02.21 11:47:54 | 000,000,010 | ---- | M] () -- C:\WINDOWS\Wininit.ini
[2012.02.21 11:47:53 | 000,000,385 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\hpzsetup.LNK
[2012.02.21 11:14:55 | 000,000,296 | ---- | M] () -- C:\WINDOWS\hpntwksetup.ini
[2012.02.21 10:51:03 | 000,001,987 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Příručka pro síť EPSON WF-7015 Series.lnk
[2012.02.21 10:50:41 | 000,001,987 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Uživatelská příručka EPSON WF-7015 Series.lnk
[2012.02.20 09:30:10 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\PhotoScape.lnk
[2012.02.15 12:42:57 | 000,001,464 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\XnView.lnk
[2012.02.15 11:42:53 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Inkscape.lnk
[2012.02.13 13:00:30 | 000,002,477 | ---- | M] () -- C:\Documents and Settings\Táta\Plocha\Microsoft Office Excel 2007.lnk
[2012.02.09 14:13:28 | 000,031,552 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2012.02.09 14:13:18 | 000,028,992 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2012.02.09 10:54:54 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012.02.09 10:23:12 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2012.02.08 13:12:38 | 000,001,838 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\SignBlazer Elements for USCutter.lnk
[2012.02.06 15:06:52 | 000,000,849 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\OpenOffice.org 3.3.lnk

========== Files Created - No Company Name ==========

[2012.02.29 11:27:05 | 000,001,992 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\CorelDRAW X4.lnk
[2012.02.29 10:53:06 | 000,000,778 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\GIMP 2.lnk
[2012.02.28 14:26:11 | 000,001,325 | ---- | C] () -- C:\Documents and Settings\Táta\.recently-used.xbel
[2012.02.28 13:36:27 | 000,001,667 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\2HCS Fakturace 3.lnk
[2012.02.28 13:36:20 | 000,278,528 | ---- | C] () -- C:\WINDOWS\System32\mejlovani.dll
[2012.02.28 13:36:20 | 000,053,760 | ---- | C] () -- C:\WINDOWS\System32\ZlibTool.ocx
[2012.02.27 21:45:56 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2012.02.27 21:45:52 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2012.02.27 21:44:01 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012.02.27 21:44:01 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.02.27 21:44:01 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012.02.27 21:44:01 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012.02.27 21:44:01 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012.02.27 10:23:36 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.02.26 21:31:57 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2012.02.21 11:47:53 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\hpzsetup.LNK
[2012.02.21 11:05:41 | 000,000,296 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2012.02.21 10:51:03 | 000,001,987 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Příručka pro síť EPSON WF-7015 Series.lnk
[2012.02.21 10:50:40 | 000,001,987 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Uživatelská příručka EPSON WF-7015 Series.lnk
[2012.02.20 12:16:38 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Help.lnk
[2012.02.20 09:30:10 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\PhotoScape.lnk
[2012.02.15 12:42:57 | 000,001,464 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\XnView.lnk
[2012.02.15 11:43:11 | 000,000,720 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Inkscape.lnk
[2012.02.15 11:42:53 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Inkscape.lnk
[2012.02.09 13:26:54 | 000,002,477 | ---- | C] () -- C:\Documents and Settings\Táta\Plocha\Microsoft Office Excel 2007.lnk
[2012.02.09 10:30:17 | 000,674,168 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2012.02.09 10:30:17 | 000,069,570 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2012.02.09 10:30:17 | 000,028,164 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2012.02.09 10:30:17 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2012.02.09 10:30:17 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2012.02.09 10:30:17 | 000,001,746 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2012.02.09 10:30:17 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2012.02.09 10:30:15 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2012.02.09 10:30:15 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2012.02.09 10:30:15 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2012.02.09 10:30:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2012.02.09 10:30:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2012.02.09 10:30:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2012.02.09 10:30:15 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2012.02.09 10:30:15 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2012.02.09 10:30:15 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2012.02.09 10:30:15 | 000,058,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2012.02.09 10:30:14 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2012.02.09 10:30:14 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2012.02.09 10:30:14 | 000,086,446 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2012.02.09 10:30:14 | 000,066,170 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2012.02.09 10:30:14 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2012.02.09 10:30:14 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2012.02.09 10:30:14 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2012.02.09 10:30:14 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2012.02.09 10:30:14 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2012.02.09 10:30:14 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2012.02.09 10:30:14 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2012.02.09 10:30:14 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2012.02.09 10:30:14 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2012.02.09 10:30:14 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2012.02.09 10:30:14 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2012.02.09 10:30:14 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2012.02.09 10:30:14 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2012.02.09 10:30:14 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2012.02.09 10:30:14 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2012.02.09 10:30:14 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2012.02.09 10:30:14 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2012.02.09 10:30:14 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2012.02.09 10:30:14 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2012.02.09 10:30:14 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2012.02.09 10:30:14 | 000,001,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2012.02.09 10:30:14 | 000,001,480 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2012.02.09 10:30:14 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2012.02.09 10:30:14 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2012.02.09 10:30:14 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2012.02.09 10:30:14 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2012.02.09 10:30:14 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2012.02.09 10:30:14 | 000,001,042 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2012.02.09 10:30:14 | 000,001,034 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2012.02.09 10:30:14 | 000,000,777 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2012.02.09 10:30:13 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2012.02.09 10:30:13 | 000,036,870 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2012.02.09 10:30:13 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2012.02.09 10:30:13 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2012.02.09 10:30:13 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2012.02.09 10:30:13 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2012.02.09 10:30:13 | 000,001,465 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2012.02.09 10:30:13 | 000,001,462 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2012.02.09 10:30:13 | 000,001,263 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2012.02.09 10:30:13 | 000,001,059 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2012.02.09 10:30:13 | 000,000,809 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2012.02.09 10:30:13 | 000,000,806 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2012.02.09 10:30:13 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2012.02.09 10:30:13 | 000,000,774 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2012.02.09 10:30:13 | 000,000,722 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2012.02.09 10:30:13 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2012.02.09 10:30:12 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2012.02.09 10:30:12 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2012.02.09 10:30:12 | 000,184,130 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2012.02.09 10:30:12 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2012.02.09 10:30:12 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2012.02.09 10:30:12 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2012.02.09 10:30:12 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2012.02.09 10:30:12 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2012.02.09 10:30:12 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2012.02.09 10:30:12 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2012.02.09 10:30:12 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2012.02.09 10:30:12 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2012.02.09 10:30:12 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2012.02.08 13:12:38 | 000,001,838 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\SignBlazer Elements for USCutter.lnk
[2012.02.06 15:06:51 | 000,000,849 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\OpenOffice.org 3.3.lnk
[2011.11.06 15:32:01 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe
[2011.11.06 15:32:01 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
[2011.11.06 15:31:58 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe
[2011.11.06 14:30:06 | 000,004,998 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\mtbjfghn.xbe
[2011.11.06 13:23:37 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe
[2011.11.06 13:23:37 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2011.11.06 11:17:58 | 000,000,222 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2011.11.06 10:53:19 | 000,000,347 | ---- | C] () -- C:\WINDOWS\CTWave32.INI
[2011.07.26 07:48:54 | 000,028,418 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini

========== Custom Scans ==========


< %SYSTEMDRIVE%\*.* >
[2007.10.14 14:03:20 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2007.12.23 13:57:12 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2012.02.27 21:45:56 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2001.10.25 15:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004.08.03 23:00:04 | 000,261,312 | RHS- | M] () -- C:\cmldr
[2012.02.29 17:23:51 | 000,049,290 | ---- | M] () -- C:\ComboFix.txt
[2007.10.14 14:03:20 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2012.03.01 00:35:28 | 804,839,424 | -HS- | M] () -- C:\hiberfil.sys
[2007.10.14 14:03:20 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2007.10.14 14:03:20 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004.08.03 21:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2012.02.09 10:23:12 | 000,250,576 | RHS- | M] () -- C:\ntldr
[2012.03.01 00:35:27 | 805,306,368 | -HS- | M] () -- C:\pagefile.sys

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2007.10.14 15:38:55 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2007.10.14 15:38:55 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2007.10.14 15:38:55 | 000,450,560 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\drivers\*.sys /90 >
[2011.12.10 15:24:06 | 000,020,464 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys

< End of report >