FB Vir

Zpráva

Pinehead · #1 Příspěvek od **Pinehead** » 19 črc 2011 19:48

Dobrý den, cca před 3 dny přišel bratrovi na FB v chatu odkaz na youtube.com kliknul na nej něco se prej začalo stahovat tak to prej zrušil a od té doby zlobí net.a ve spravci úloh se dokola spouští ufa.exe a využívá 90% procesoru.Předem díky
Přikládám RSIT log.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Honza at 2011-07-19 20:40:23
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 9 GB (7%) free of 126 GB
Total RAM: 1535 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:41:06, on 19.7.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\AVG\AVG9\avgfws9.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\AVG\AVG9\avgam.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\update.5.0\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\update.5.0\svchost.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RunDLL32.exe
C:\Documents and Settings\Honza\Data aplikací\Microsoft\conhost.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\Stardock\CursorFX\CursorFX.exe
C:\Program Files\NETGATE\Registry Cleaner\RegistryCleaner.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\STK02N\STK02NM.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\program files\google\chrome\application\chrome.exe
C:\program files\google\chrome\application\chrome.exe
C:\WINDOWS\ufa\ufa.exe
C:\program files\google\chrome\application\chrome.exe
C:\Program Files\Lavasoft\Ad-aware 6\Ad-aware.exe
C:\program files\google\chrome\application\chrome.exe
C:\program files\google\chrome\application\chrome.exe
C:\program files\google\chrome\application\chrome.exe
C:\program files\google\chrome\application\chrome.exe
C:\Documents and Settings\Honza\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Honza.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... tbid=60040
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60040
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60040
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60040
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:58889
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45A2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll
F3 - REG:win.ini: load=C:\DOCUME~1\Honza\LOCALS~1\Temp\csrss.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [conhost] C:\Documents and Settings\Honza\Data aplikací\Microsoft\conhost.exe
O4 - HKLM\..\Run: [systemup] "C:\WINDOWS\systemup.exe" stand
O4 - HKCU\..\Run: [CursorFX] "C:\Program Files\Stardock\CursorFX\CursorFX.exe"
O4 - HKCU\..\Run: [SpyEmergency] C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe
O4 - HKCU\..\Run: [NETGATERegistryCleaner] C:\Program Files\NETGATE\Registry Cleaner\RegistryCleaner.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1801674531-1580818891-839522115-1008\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: santa.bat
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: STK02N 2.4 PNP Monitor.lnk = ?
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Search - ?p=ZJfox000
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O15 - Trusted Zone: http://asia.msi.com.tw
O15 - Trusted Zone: http://global.msi.com.tw
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/microso ... 4875457748
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 4875443857
O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/L ... nstall.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: AVG Firewall (avgfws9) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgfws9.exe
O23 - Service: AVG9IDSAgent (AVGIDSAgent) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Služba Google Update (gupdate1c9b31ca71b55d4) (gupdate1c9b31ca71b55d4) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NETGATE Registry Cleaner Service (NGRegClnSrv) - NETGATE Technologies s.r.o. - C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: srvbtcclient - Unknown owner - C:\WINDOWS\update.5.0\svchost.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Windows Presentation Foundation Font Cache 4.0.0.0 (WPFFontCache_v0400) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (file missing)
O23 - Service: wxpdrivers - Unknown owner - C:\WINDOWS\update.1\svchost.exe (file missing)

--
End of file - 12660 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\One-Click Tweak.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{55E75352-1DA8-477D-9AAA-5E3A7F4541C8}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.crawler.com/homepage.aspx?tbid=60040"
prefs.js - "extensions.enabledItems" - "{76063e7f-3558-4b68-8287-54eb6512adc0}:2.7.1, {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.9, {20a82645-c095-46ed-80e3-08825760534b}:1.1, {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.11.2, {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.2.20100119091315, radiobar@toolbar:1.0.0, {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}:6.0.18, jqs@sun.com:1.0, plugin@gameplaylabs.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.18"

"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\Program Files\Real\RealPlayer\browserrecord
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{3f963a5b-e555-4543-90e2-c3908898db71}"=C:\Program Files\AVG\AVG9\Firefox

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pack.google.com/Google Updater;version=13]
"Description"=Google Updater
"Path"=C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.3.69]
"Description"=RealJukebox Netscape Plugin
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69]
"Description"=6.0.12.69
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{800b5000-a755-47e1-992b-48a1c1357f07}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
AskHPRFF.js
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nppl3260.xpt
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsIBitCometAgent.xpt
nsINIProcessor.js
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
np32dsw.dll
npBitCometAgent.dll
npdeployJava1.dll
npnul32.dll
NPOFFICE.DLL
nppdf32.dll
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpjplug.dll
QuickTimePlugin.class
ShockwavePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
avg_igeared.xml
crawlersrch.xml
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\extensions\
plugin@gameplaylabs.com
radiobar@toolbar
{0b38152b-1b20-484d-a11f-5e04a9b0661f}
{20a82645-c095-46ed-80e3-08825760534b}
{635abd67-4fe9-1b23-4f01-e679fa7484c1}
{76063e7f-3558-4b68-8287-54eb6512adc0}
{800b5000-a755-47e1-992b-48a1c1357f07}
{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}

C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\
askcom.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-12.xml
icqplugin-13.xml
icqplugin-14.xml
icqplugin-15.xml
icqplugin-16.xml
icqplugin-17.xml
icqplugin-18.xml
icqplugin-19.xml
icqplugin-2.xml
icqplugin-20.xml
icqplugin-21.xml
icqplugin-22.xml
icqplugin-23.xml
icqplugin-24.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.xml
mywebsearch.xml
web-search.xml
winamp-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader - C:\Program Files\Winamp Toolbar\winamptb.dll [2009-02-19 1262888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-11-26 304736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll [2009-03-02 636216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2011-07-19 1623392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-04-02 668656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-06-30 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-06-30 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - Winamp Toolbar - C:\Program Files\Winamp Toolbar\winamptb.dll [2009-02-19 1262888]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NPSStartup"= []
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-04-10 16126464]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-05-25 13895272]
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit -login []
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2011-05-05 1632360]
"conhost"=C:\Documents and Settings\Honza\Data aplikací\Microsoft\conhost.exe [2011-07-17 171520]
"tray_ico"= []
"tray_ico1"= []
"tray_ico2"= []
"tray_ico3"= []
"tray_ico4"= []
"systemup"=C:\WINDOWS\systemup.exe stand []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CursorFX"=C:\Program Files\Stardock\CursorFX\CursorFX.exe [2008-07-07 416768]
"SpyEmergency"=C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe []
"NETGATERegistryCleaner"=C:\Program Files\NETGATE\Registry Cleaner\RegistryCleaner.exe [2011-07-02 1932656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2008-11-02 167936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-11-11 417792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
[]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
STK02N 2.4 PNP Monitor.lnk - C:\WINDOWS\STK02N\STK02NM.exe

C:\Documents and Settings\Honza\Nabídka Start\Programy\Po spuštění
santa.bat
Stardock ObjectDock.lnk - C:\Program Files\Stardock\ObjectDock\ObjectDock.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="wbsys.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2011-07-19 12536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WB]
C:\Program Files\Stardock\Object Desktop\ThemeManager\fastload.dll [2001-12-20 24576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wxpdrivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\wxpdrivers]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"NoSecCPL"=0
"NoDispCPL"=0
"NoDispScrSavPage"=0
"NoDispAppearancePage"=0
"NoDispSettingsPage"=0
"NoDevMgrPage"=0
"NoConfigPage"=0
"NoVirtMemPage"=0
"NoFileSysPage"=0
"NoNetSetup"=0
"NoNetSetupIDPage"=0
"NoNetSetupSecurityPage"=0
"NoWorkgroupContents"=0
"NoEntireNetwork"=0
"NoFileSharingControl"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0
"EnableSecureUIAPaths"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDesktop"=0
"NoFolderOptions"=0
"RestrictRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoFolderOptions"=0x00000000

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ Library"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\bmyfmhzxf.exe"="C:\WINDOWS\system32\bmyfmhzxf.exe:*:Enabled:Microsoft OCX"
"C:\WINDOWS\system32\wrzpyvxiy.exe"="C:\WINDOWS\system32\wrzpyvxiy.exe:*:Enabled:Microsoft OCX"
"C:\WINDOWS\system32\myaqhaaqm.exe"="C:\WINDOWS\system32\myaqhaaqm.exe:*:Enabled:Microsoft OCX"
"C:\WINDOWS\system32\ridklelye.exe"="C:\WINDOWS\system32\ridklelye.exe:*:Enabled:Microsoft OCX"
"C:\WINDOWS\system32\gmahyrkqj.exe"="C:\WINDOWS\system32\gmahyrkqj.exe:*:Enabled:Microsoft OCX"
"C:\WINDOWS\system32\amkexoypm.exe"="C:\WINDOWS\system32\amkexoypm.exe:*:Enabled:Microsoft OCX"
"C:\WINDOWS\system32\vcljaldpr.exe"="C:\WINDOWS\system32\vcljaldpr.exe:*:Enabled:Microsoft OCX"
"C:\WINDOWS\system32\eunydkqfv.exe"="C:\WINDOWS\system32\eunydkqfv.exe:*:Enabled:Microsoft OCX"
"C:\WINDOWS\system32\yzrhurpdo.exe"="C:\WINDOWS\system32\yzrhurpdo.exe:*:Enabled:Microsoft OCX"
"C:\WINDOWS\system32\hvtyanrzw.exe"="C:\WINDOWS\system32\hvtyanrzw.exe:*:Enabled:Microsoft OCX"
"C:\WINDOWS\system32\qwanbfthr.exe"="C:\WINDOWS\system32\qwanbfthr.exe:*:Enabled:Microsoft OCX"
"C:\Program Files\BitLord\BitLord.exe"="C:\Program Files\BitLord\BitLord.exe:*:Enabled:BitLord"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\Program Files\Cenega Czech\VIETCONG\vietcong.exe"="C:\Program Files\Cenega Czech\VIETCONG\vietcong.exe:*:Enabled:vietcong"
"C:\Program Files\BitLord\Downloads\GmHack.EXE"="C:\Program Files\BitLord\Downloads\GmHack.EXE:*:Enabled:Control"
"C:\Games\Paintball2\paintball2.exe"="C:\Games\Paintball2\paintball2.exe:*:Enabled:paintball2"
"C:\Documents and Settings\Honza\Plocha\StrongDC.exe"="C:\Documents and Settings\Honza\Plocha\StrongDC.exe:*:Enabled:StrongDC++"
"C:\WINDOWS\system32\drivers\ntndis.exe"="C:\WINDOWS\system32\drivers\ntndis.exe:*:Enabled:Control"
"C:\World of Warcraft\GmHack.EXE"="C:\World of Warcraft\GmHack.EXE:*:Enabled:Control"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\Sports Interactive\Football Manager 2008\fm.exe"="C:\Program Files\Sports Interactive\Football Manager 2008\fm.exe:*:Disabled:Football Manager 2008"
"C:\Program Files\Winamp Remote\bin\Orb.exe"="C:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb"
"C:\Program Files\Winamp Remote\bin\OrbTray.exe"="C:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray"
"C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe"="C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client"
"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\Documents and Settings\Petr\Plocha\strong\StrongDC.exe"="C:\Documents and Settings\Petr\Plocha\strong\StrongDC.exe:*:Enabled:StrongDC++"
"C:\Documents and Settings\Honza\Plocha\Programy\StrongDC.exe"="C:\Documents and Settings\Honza\Plocha\Programy\StrongDC.exe:*:Enabled:StrongDC++"
"C:\Documents and Settings\Honza\Plocha\strong\StrongDC.exe"="C:\Documents and Settings\Honza\Plocha\strong\StrongDC.exe:*:Enabled:StrongDC++"
"C:\Documents and Settings\Petr\Plocha\StrongDC.exe"="C:\Documents and Settings\Petr\Plocha\StrongDC.exe:*:Enabled:StrongDC++"
"C:\World of Warcraft\Repair.exe"="C:\World of Warcraft\Repair.exe:*:Enabled:Blizzard Repair Utility"
"C:\World of Warcraft\Launcher.exe"="C:\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\World of Warcraft\Repair.exe"="C:\Program Files\World of Warcraft\Repair.exe:*:Enabled:Blizzard Repair Utility"
"C:\Program Files\BitLord2\BitLord.exe"="C:\Program Files\BitLord2\BitLord.exe:*:Enabled:Bitlord2"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Hamachi\hamachi.exe"="C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\xerox\nwwia\XrxFTPLt.exe"="C:\Program Files\xerox\nwwia\XrxFTPLt.exe:*:Enabled:XrxFTPLt"
"C:\Casino\ParadiseCasino - Czech\casino.exe"="C:\Casino\ParadiseCasino - Czech\casino.exe:*:Enabled:casino"
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server"
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server"
"C:\Program Files\Electronic Arts\Need for Speed Carbon\NFSC.exe"="C:\Program Files\Electronic Arts\Need for Speed Carbon\NFSC.exe:*:Enabled:NFSC"
"C:\Program Files\Metin2_CZ\metin2client.bin"="C:\Program Files\Metin2_CZ\metin2client.bin:*:Enabled:metin2client"
"C:\WINDOWS\system32\LEXPPS.EXE"="C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\Program Files\TrackMania Sunrise\TmSunrise.exe"="C:\Program Files\TrackMania Sunrise\TmSunrise.exe:*:Enabled:TmSunrise"
"C:\Program Files\TmNationsForever\TmForever.exe"="C:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"C:\Documents and Settings\Honza\Local Settings\Temp\Rar$EX01.532\Empire Earth\Empire Earth.exe"="C:\Documents and Settings\Honza\Local Settings\Temp\Rar$EX01.532\Empire Earth\Empire Earth.exe:*:Enabled:Empire Earth"
"C:\Program Files\World of Warcraft\Launcher.exe"="C:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\World of Warcraft\WoW-3.2.0-enGB-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.2.0-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Valve\hltv.exe"="C:\Program Files\Valve\hltv.exe:*:Enabled:HLTV Launcher"
"C:\Program Files\Heroes of Newerth\hon.exe"="C:\Program Files\Heroes of Newerth\hon.exe:*:Enabled:Heroes of Newerth"
"C:\Documents and Settings\Honza\Dokumenty\Stažené soubory\WoW-BurningCrusade-enGB-Installer-downloader.exe"="C:\Documents and Settings\Honza\Dokumenty\Stažené soubory\WoW-BurningCrusade-enGB-Installer-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\WINDOWS\system32\qbjsnltxn.exe"="C:\WINDOWS\system32\qbjsnltxn.exe:*:Enabled:Microsoft OCX"
"C:\Program Files\Counter-Strike Source\hl2.exe"="C:\Program Files\Counter-Strike Source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe"="C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe:*:Enabled:speed2"
"C:\Program Files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe:*:Enabled:Pro Evolution Soccer 2009"
"C:\Program Files\World of Warcraft\World of Warcraft\WoW-3.2.0-enGB-downloader.exe"="C:\Program Files\World of Warcraft\World of Warcraft\WoW-3.2.0-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\World of Warcraft\World of Warcraft\Launcher.exe"="C:\Program Files\World of Warcraft\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\Activision Value\Monster Garage\MonsterGarage.exe"="C:\Program Files\Activision Value\Monster Garage\MonsterGarage.exe:*:Enabled:Monster Garage"
"C:\Program Files\Activision Value\Street Legal Racing Redline\StreetLegal_Redline.exe"="C:\Program Files\Activision Value\Street Legal Racing Redline\StreetLegal_Redline.exe:*:Enabled:Street Legal 2"
"C:\Documents and Settings\Honza\Data aplikací\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe"="C:\Documents and Settings\Honza\Data aplikací\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe:*:Enabled:Main program for Octoshape client"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Firefly Studios\Stronghold Crusader\Stronghold Crusader.exe"="C:\Program Files\Firefly Studios\Stronghold Crusader\Stronghold Crusader.exe:*:Enabled:Stronghold Crusader"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager"
"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe:*:Disabled:RealNetworks Scheduler"
"C:\Documents and Settings\All Users\Data aplikací\Electronic Arts\Need For Speed World\Data\nfsw.exe"="C:\Documents and Settings\All Users\Data aplikací\Electronic Arts\Need For Speed World\Data\nfsw.exe:*:Enabled:Need for Speed World"
"C:\Documents and Settings\Honza\Dokumenty\Nová složka (2)\Sindicate\client.bin"="C:\Documents and Settings\Honza\Dokumenty\Nová složka (2)\Sindicate\client.bin:*:Enabled:client"
"C:\Program Files\QuadCoreM2\metin2client.bin"="C:\Program Files\QuadCoreM2\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Honza\Dokumenty\Downloads\Metin2client.bin"="C:\Documents and Settings\Honza\Dokumenty\Downloads\Metin2client.bin:*:Enabled:Metin2client"
"C:\Documents and Settings\Honza\Plocha\World of Warcraft2\Launcher.exe"="C:\Documents and Settings\Honza\Plocha\World of Warcraft2\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Documents and Settings\Honza\Plocha\World of Warcraft2\Launcher.patch.exe"="C:\Documents and Settings\Honza\Plocha\World of Warcraft2\Launcher.patch.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\World of Warcraft\Launcher.patch.exe"="C:\Program Files\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\Metin2\metin2client.bin"="C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\Honza\Dokumenty\QaudcoreM2\QC2011\core.bin"="C:\Documents and Settings\Honza\Dokumenty\QaudcoreM2\QC2011\core.bin:*:Enabled:core"
"C:\Documents and Settings\Honza\Dokumenty\Downloads\WoW-enGB-Installer-downloader.exe"="C:\Documents and Settings\Honza\Dokumenty\Downloads\WoW-enGB-Installer-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Documents and Settings\Honza\Dokumenty\Downloads\WoW-BurningCrusade-enGB-Installer-downloader.exe"="C:\Documents and Settings\Honza\Dokumenty\Downloads\WoW-BurningCrusade-enGB-Installer-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Documents and Settings\Honza\Dokumenty\Downloads\Celestial-World\CelestialWorld.exe"="C:\Documents and Settings\Honza\Dokumenty\Downloads\Celestial-World\CelestialWorld.exe:*:Enabled:Customizable 2010 Client Launcher"
"C:\Games\World_of_Tanks_closed_Beta\WorldOfTanks.exe"="C:\Games\World_of_Tanks_closed_Beta\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\Program Files\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe"="C:\Program Files\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Documents and Settings\Honza\Local Settings\Temp\Blizzard Installer Bootstrap - 1991e2b4\Installer.exe"="C:\Documents and Settings\Honza\Local Settings\Temp\Blizzard Installer Bootstrap - 1991e2b4\Installer.exe:*:Enabled:Blizzard Installer"
"C:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe"="C:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe:*:Enabled:aTube Catcher to download and convert videos."
"C:\Program Files\ICQ7.4\ICQ.exe"="C:\Program Files\ICQ7.4\ICQ.exe:*:Enabled:ICQ7.4"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"C:\Program Files\Garena\Garena.exe"="C:\Program Files\Garena\Garena.exe:*:Enabled:Garena"
"C:\Program Files\MSI\Live Update 5\LU5.exe"="C:\Program Files\MSI\Live Update 5\LU5.exe:*:Enabled:LU5"
"C:\Documents and Settings\Honza\Dokumenty\WARCEAFT 3 NEW DOTA\Warcraft III\Warcraft III.exe"="C:\Documents and Settings\Honza\Dokumenty\WARCEAFT 3 NEW DOTA\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\Documents and Settings\Honza\Dokumenty\Downloads\Flash-Player.exe"="C:\Documents and Settings\Honza\Dokumenty\Downloads\Flash-Player.exe:*:Enabled:C:\Documents and Settings\Honza\Dokumenty\Downloads\Flash-Player.exe"
"C:\WINDOWS\update.1\svchost.exe"="C:\WINDOWS\update.1\svchost.exe:*:Enabled:C:\WINDOWS\update.1\svchost.exe"
"C:\WINDOWS\services32.exe"="C:\WINDOWS\services32.exe:*:Enabled:C:\WINDOWS\services32.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.4\ICQ.exe"="C:\Program Files\ICQ7.4\ICQ.exe:*:Enabled:ICQ7.4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=iyvu9_32.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.WMV3"=wmv9vcm.dll
"VIDC.FMVC"=fmcodec.dll

======List of files/folders created in the last 1 month======

2011-07-19 20:40:24 ----D---- C:\Program Files\trend micro
2011-07-19 20:40:23 ----D---- C:\rsit
2011-07-19 19:04:54 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2011-07-19 18:26:16 ----D---- C:\WINDOWS\system32\drivers\Avg
2011-07-19 18:25:54 ----A---- C:\WINDOWS\system32\drivers\avgrkx86.sys
2011-07-19 18:25:54 ----A---- C:\WINDOWS\system32\drivers\AVGIDSxx.sys
2011-07-19 18:25:53 ----A---- C:\WINDOWS\system32\drivers\avgtdix.sys
2011-07-19 18:25:53 ----A---- C:\WINDOWS\system32\drivers\avgldx86.sys
2011-07-19 18:25:52 ----A---- C:\WINDOWS\system32\drivers\avgmfx86.sys
2011-07-19 18:25:21 ----A---- C:\WINDOWS\system32\drivers\avgfwdx.sys
2011-07-19 18:25:21 ----A---- C:\WINDOWS\system32\avgfwdx.dll
2011-07-19 18:25:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\avg9
2011-07-19 17:42:30 ----D---- C:\Documents and Settings\Honza\Data aplikací\NETGATE Registry Cleaner
2011-07-19 17:42:27 ----D---- C:\Program Files\NETGATE
2011-07-19 16:58:21 ----D---- C:\Program Files\AVG
2011-07-19 10:38:25 ----D---- C:\Program Files\World of Warcraft
2011-07-19 07:19:51 ----D---- C:\Program Files\Advanced PC Tweaker
2011-07-19 07:12:53 ----A---- C:\WINDOWS\wininit.ini
2011-07-19 00:01:11 ----D---- C:\Program Files\TeaTimer (Spybot - Search & Destroy)
2011-07-19 00:01:10 ----D---- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
2011-07-19 00:01:09 ----D---- C:\Program Files\SDHelper (Spybot - Search & Destroy)
2011-07-18 23:57:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-07-18 23:56:55 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-07-18 23:56:16 ----D---- C:\PPK_CD
2011-07-18 23:35:51 ----D---- C:\Program Files\Lavasoft
2011-07-18 08:02:57 ----A---- C:\WINDOWS\w_distrib_iplist.txt
2011-07-18 08:02:35 ----HD---- C:\WINDOWS\update.3
2011-07-17 21:29:38 ----A---- C:\WINDOWS\ddh_iplist.txt
2011-07-17 21:28:48 ----D---- C:\Microsoft
2011-07-17 21:28:38 ----A---- C:\WINDOWS\gbot111.exe
2011-07-17 21:28:26 ----A---- C:\WINDOWS\iecheck_iplist.txt
2011-07-17 21:28:01 ----HD---- C:\WINDOWS\update.2
2011-07-17 21:25:36 ----D---- C:\WINDOWS\ufa
2011-07-17 21:25:36 ----D---- C:\WINDOWS\rpcminer
2011-07-17 21:25:36 ----D---- C:\WINDOWS\phoenix
2011-07-17 21:25:30 ----A---- C:\WINDOWS\unrar.exe
2011-07-17 21:23:17 ----A---- C:\WINDOWS\btc_client_iplist.txt
2011-07-17 21:22:45 ----HD---- C:\WINDOWS\update.5.0
2011-07-17 21:19:27 ----D---- C:\WINDOWS\av_ico
2011-07-17 21:19:13 ----A---- C:\WINDOWS\iplist.txt
2011-07-17 21:18:37 ----A---- C:\WINDOWS\front_ip_list.txt
2011-07-17 21:16:58 ----HD---- C:\WINDOWS\update.1
2011-07-17 21:16:39 ----HD---- C:\WINDOWS\update.tray-7-0-lnk
2011-07-17 21:16:39 ----HD---- C:\WINDOWS\update.tray-7-0
2011-07-17 20:58:13 ----A---- C:\WINDOWS\winlog-ids.txt
2011-07-17 20:58:13 ----A---- C:\WINDOWS\winlog-dirs.txt
2011-07-17 10:54:57 ----D---- C:\Program Files\Common Files\Java
2011-07-17 10:54:35 ----A---- C:\WINDOWS\system32\javaws.exe
2011-07-17 10:54:35 ----A---- C:\WINDOWS\system32\javaw.exe
2011-07-17 10:54:35 ----A---- C:\WINDOWS\system32\java.exe
2011-07-15 18:04:38 ----D---- C:\Documents and Settings\Honza\Data aplikací\InstallShield
2011-07-13 17:54:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-07-13 17:50:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2555917$
2011-07-13 17:37:59 ----A---- C:\WINDOWS\SpeederXP.INI
2011-07-13 17:32:54 ----D---- C:\WINDOWS\system32\windowspowershell
2011-07-13 17:32:43 ----HDC---- C:\WINDOWS\$NtUninstallKB926139-v2$
2011-07-13 17:30:58 ----D---- C:\CrystalDiskMark002700B3
2011-07-12 20:56:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Drivers HeadQuarters Inc
2011-07-12 20:54:01 ----D---- C:\Documents and Settings\Honza\Data aplikací\GetRightToGo
2011-07-05 19:44:35 ----A---- C:\WINDOWS\War3Unin.dat
2011-07-05 19:44:34 ----A---- C:\WINDOWS\War3Unin.pif
2011-07-05 19:44:34 ----A---- C:\WINDOWS\War3Unin.exe
2011-07-05 19:41:58 ----D---- C:\Program Files\Warcraft III
2011-07-05 10:27:06 ----A---- C:\Documents and Settings\Honza\Data aplikací\room_v3.dat
2011-07-05 10:15:35 ----D---- C:\Program Files\Garena
2011-07-04 16:24:28 ----SHD---- C:\WINDOWS\system32\SCKMYS
2011-07-02 17:48:52 ----D---- C:\Program Files\Creative
2011-07-02 17:28:26 ----RA---- C:\WINDOWS\system32\MafiaSetup.exe
2011-06-30 03:01:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2541763$
2011-06-29 19:40:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\Playrix Entertainment
2011-06-29 19:39:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\AWEM
2011-06-29 19:38:29 ----D---- C:\Program Files\Superhry.cz

======List of files/folders modified in the last 1 month======

2011-07-19 20:40:35 ----D---- C:\WINDOWS\Temp
2011-07-19 20:40:24 ----RD---- C:\Program Files
2011-07-19 19:33:02 ----D---- C:\WINDOWS\system32
2011-07-19 19:32:37 ----D---- C:\WINDOWS\system32\CatRoot2
2011-07-19 19:32:33 ----D---- C:\WINDOWS
2011-07-19 19:31:39 ----SD---- C:\WINDOWS\Tasks
2011-07-19 19:29:19 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-07-19 19:05:41 ----D---- C:\WINDOWS\system32\drivers
2011-07-19 19:05:39 ----HD---- C:\WINDOWS\inf
2011-07-19 19:03:54 ----D---- C:\WINDOWS\Prefetch
2011-07-19 18:32:45 ----SD---- C:\Documents and Settings\Honza\Data aplikací\Microsoft
2011-07-19 18:25:09 ----SHD---- C:\WINDOWS\Installer
2011-07-19 18:24:37 ----HD---- C:\Config.Msi
2011-07-19 17:42:30 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-07-19 17:01:33 ----D---- C:\WINDOWS\Minidump
2011-07-19 16:28:00 ----D---- C:\WINDOWS\system32\CatRoot
2011-07-19 16:03:16 ----D---- C:\Program Files\ABBYY FineReader 4.0 Sprint
2011-07-19 10:38:25 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2011-07-19 10:32:02 ----D---- C:\Documents and Settings\Honza\Data aplikací\Skype
2011-07-19 10:28:08 ----D---- C:\WINDOWS\system32\drivers\etc
2011-07-19 10:11:16 ----A---- C:\boot.ini
2011-07-18 19:30:05 ----D---- C:\Program Files\BitComet
2011-07-18 19:26:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype Extras
2011-07-18 19:15:55 ----D---- C:\Documents and Settings\Honza\Data aplikací\skypePM
2011-07-18 19:13:38 ----A---- C:\WINDOWS\ModemLog_Standardní modem 1 200 bitů za sekundu.txt
2011-07-18 19:13:22 ----D---- C:\WINDOWS\system32\ias
2011-07-18 16:43:53 ----D---- C:\WINDOWS\system32\Restore
2011-07-18 14:15:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google Updater
2011-07-18 09:24:55 ----A---- C:\WINDOWS\NeroDigital.ini
2011-07-18 08:52:15 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2011-07-17 21:30:26 ----SHD---- C:\System Volume Information
2011-07-17 21:28:48 ----D---- C:\Program Files\Internet Explorer
2011-07-17 11:10:10 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2011-07-17 10:54:57 ----D---- C:\Program Files\Common Files
2011-07-17 10:54:29 ----D---- C:\Program Files\Java
2011-07-15 18:25:34 ----D---- C:\Program Files\Electronic Arts
2011-07-15 18:21:48 ----D---- C:\WINDOWS\Debug
2011-07-15 18:18:16 ----D---- C:\Program Files\Packard Bell Diamond 2450
2011-07-15 18:17:39 ----D---- C:\Program Files\Mozilla Thunderbird
2011-07-15 18:17:17 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-07-15 18:17:07 ----D---- C:\WINDOWS\twain_32
2011-07-15 18:05:05 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-07-15 18:05:03 ----HD---- C:\Program Files\InstallShield Installation Information
2011-07-15 18:05:03 ----D---- C:\Program Files\AMD
2011-07-15 08:45:33 ----D---- C:\Documents and Settings\Honza\Data aplikací\ICQ
2011-07-14 17:48:45 ----D---- C:\Downloads
2011-07-14 17:30:35 ----D---- C:\WINDOWS\system32\DirectX
2011-07-14 04:57:24 ----D---- C:\WINDOWS\system32\config
2011-07-13 17:55:10 ----RSD---- C:\WINDOWS\assembly
2011-07-13 17:54:55 ----D---- C:\WINDOWS\Microsoft.NET
2011-07-13 17:51:09 ----A---- C:\WINDOWS\system32\MRT.exe
2011-07-13 17:51:02 ----D---- C:\Program Files\Microsoft Office
2011-07-13 17:44:52 ----D---- C:\WINDOWS\AppPatch
2011-07-13 08:45:31 ----HD---- C:\WINDOWS\$hf_mig$
2011-07-12 20:31:07 ----D---- C:\Program Files\Lavalys
2011-07-09 18:22:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
2011-07-05 23:35:47 ----D---- C:\Documents and Settings\Honza\Data aplikací\Hamachi
2011-06-24 18:52:29 ----D---- C:\Program Files\Mozilla Firefox
2011-06-24 03:05:56 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-06-24 03:05:46 ----D---- C:\WINDOWS\WinSxS

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSErHrxpx;AVG9IDSErHr; C:\WINDOWS\System32\Drivers\AVGIDSxx.sys [2011-07-19 25168]
R0 AvgRkx86;avgrkx86.sys; C:\WINDOWS\System32\Drivers\avgrkx86.sys [2011-07-19 52872]
R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a); C:\WINDOWS\System32\drivers\sfdrv01a.sys [2006-07-05 63352]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2006-06-14 13680]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2006-07-10 27032]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINDOWS\System32\drivers\sfvfs02.sys [2007-01-12 82296]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2008-10-25 114048]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-01-11 717296]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2011-07-19 216400]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2011-07-19 29584]
R1 AvgTdiX;AVG Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2011-07-19 243024]
R1 giveio;giveio; \??\C:\WINDOWS\system32\DRIVERS\giveio.sys []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2008-11-02 56572]
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
R3 Avgfwdx;Avgfwdx; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2011-07-19 30104]
R3 AVGIDSDriverxpx;AVG9IDSDriver; \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys []
R3 AVGIDSFilterxpx;AVG9IDSFilter; \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys []
R3 AVGIDSShimxpx;AVG9IDSShim; \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys []
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 gHidPnp;USB Device Enhanced Function Driver; C:\WINDOWS\System32\Drivers\gHidPnp.Sys [2006-07-14 14848]
R3 gMouUsb;USB Mouse Device Drv; C:\WINDOWS\system32\DRIVERS\gMouUsb.sys [2006-07-14 9984]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-04-10 4397568]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-05-25 12753664]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-02-18 47360]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\System32\DRIVERS\Rtenicxp.sys [2010-03-08 220112]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 vaxscsi;vaxscsi; C:\WINDOWS\System32\Drivers\vaxscsi.sys [2009-11-08 223128]
S3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
S3 Avgfwfd;AVG network filter service; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2011-07-19 30104]
S3 BeSk81;BeSk81; \??\C:\DOCUME~1\Honza\LOCALS~1\Temp\Rar$EX01.094\Let's Engine 3.0 +Auto-delete + Double Kill hack + Damage Hack + Delay Hack\BeSk8.sys []
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys []
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys []
S3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys []
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys []
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 DCamUSBSTK02N;Standard Camera; C:\WINDOWS\system32\DRIVERS\STK02NW2.sys [2007-03-12 101520]
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys []
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-12-22 15664]
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena\safedrv.sys []
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 GT680x;GrandTechICNameNT; C:\WINDOWS\System32\Drivers\gt680x.sys [2001-11-08 18120]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507; \??\C:\PROGRA~1\MSI\MSIWDev\msibios32_100507.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 npkcrypt;npkcrypt; \??\C:\Program Files\Lineage II\system\npkcrypt.sys []
S3 npkcusb;npkcusb; \??\C:\Program Files\Lineage II\system\npkcusb.sys []
S3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files\MSI\Live Update 5\NTIOLib.sys []
S3 NTIOLib_1_0_8;NTIOLib_1_0_8; \??\C:\PROGRA~1\MSI\MSIWDev\NTIOLib.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 s117bus;Sony Ericsson Device 117 driver (WDM); C:\WINDOWS\system32\DRIVERS\s117bus.sys [2007-06-25 82984]
S3 s117mdfl;Sony Ericsson Device 117 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s117mdfl.sys [2007-06-25 14888]
S3 s117mdm;Sony Ericsson Device 117 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s117mdm.sys [2007-06-25 108456]
S3 s117mgmt;Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s117mgmt.sys [2007-06-25 100264]
S3 s117nd5;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS); C:\WINDOWS\system32\DRIVERS\s117nd5.sys [2007-06-25 22952]
S3 s117obex;Sony Ericsson Device 117 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s117obex.sys [2007-06-25 98344]
S3 s117unic;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM); C:\WINDOWS\system32\DRIVERS\s117unic.sys [2007-06-25 98856]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:\WINDOWS\system32\DRIVERS\se59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:\WINDOWS\system32\DRIVERS\se59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:\WINDOWS\system32\DRIVERS\se59unic.sys [2006-09-05 90800]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-10-24 6784]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2008-11-11 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2008-11-11 19968]
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2008-11-11 24832]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 dwshd;dwshd; C:\WINDOWS\System32\drivers\dwshd.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-05-29 144712]
R2 avg9emc;AVG E-mail Scanner; C:\Program Files\AVG\AVG9\avgemc.exe [2011-07-19 921952]
R2 avg9wd;AVG WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2011-07-19 308136]
R2 avgfws9;AVG Firewall; C:\Program Files\AVG\AVG9\avgfws9.exe [2011-07-19 2331544]
R2 AVGIDSAgent;AVG9IDSAgent; C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-07-19 5897808]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe [2009-02-28 81920]
R2 FsUsbExService;FsUsbExService; C:\WINDOWS\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
R2 NGRegClnSrv;NETGATE Registry Cleaner Service; C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe [2011-06-27 464752]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-05-25 154728]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-05-25 2214504]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2011-07-17 66872]
R2 srvbtcclient;srvbtcclient; C:\WINDOWS\update.5.0\svchost.exe [2011-07-17 340480]
R2 StarWindService;StarWind iSCSI Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe [2005-04-02 217600]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe [2009-02-28 2732032]
S2 gupdate1c9b31ca71b55d4;Služba Google Update (gupdate1c9b31ca71b55d4); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-02 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-02 183280]
S2 wxpdrivers;wxpdrivers; C:\WINDOWS\update.1\svchost.exe srv []
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-02 133104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#2 Příspěvek od **Caroprd111** » 19 črc 2011 19:53

Zdravím

Stáhněte OTL http://oldtimer.geekstogo.com/OTL.exe na plochu

Spusťte, poté do spodního políčka vložte následující skript.

Kód: Vybrat vše

 netsvcs
drivers32
savembr:0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

/md5start
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
hal.dll
logevent.dll
netlogon.dll
ntelogon.dll
scecli.dll
sceclt.dll
ws2_32.dll
autochk.exe
csrss.exe
explorer.exe
lsass.exe
services.exe
smss.exe
spoolsv.exe
svchost.exe
userinit.exe
winlogon.exe
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
cdrom.sys 
Changer.sys
fastfat.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys 
JakNDis.sys
KR10N.sys
mv61xx.sys
ndis.sys
ntfs.sys
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys 
nvrd32.sys 
nvstor.sys
nvstor32.sys
symmpi.sys
tcpip.sys
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
/md5stop

C:\windows\system32\spool\prtprocs|dll;true;true;true /FP
%systemroot%\system32\drivers\*.sys /5
%systemroot%\system32\drivers\*.sys /X 
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\system32\*.* /5
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\config\*.sav 
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\*.* /U /s
%systemroot%\*. /mp /s
%ALLUSERSPROFILE%\Data Aplikací\*.*
%ALLUSERSPROFILE%\Data Aplikací\*.exe /s
%ALLUSERSPROFILE%\Dáta aplikácií\*.*
%ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s
%APPDATA%\*.
%APPDATA%\*.*
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe


HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

Označte položku Pro všechny uživatele.
Označte položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Klikněte na tlačítko Prohledat
Po dokončení, sem vložte logy OTL.Txt a Extras.txt

Pinehead · #3 Příspěvek od **Pinehead** » 19 črc 2011 20:54

OTL.Txt a Extras.txt

http://vyosek.ic.cz/havet/uploader.php

#4 Příspěvek od **Caroprd111** » 19 črc 2011 20:56

Vložte prosím logy normálně do příspěvku. Pokud se do jednoho nevejdou, tak je rozdělte.

Pinehead · #5 Příspěvek od **Pinehead** » 19 črc 2011 21:12

OTL logfile created on: 19.7.2011 21:02:34 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Honza\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,50 Gb Total Physical Memory | 0,44 Gb Available Physical Memory | 29,38% Memory free
3,35 Gb Paging File | 2,35 Gb Available in Paging File | 69,95% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 123,11 Gb Total Space | 9,09 Gb Free Space | 7,38% Space Free | Partition Type: NTFS
Drive D: | 4,87 Gb Total Space | 0,03 Gb Free Space | 0,57% Space Free | Partition Type: NTFS
Drive K: | 1,90 Gb Total Space | 0,58 Gb Free Space | 30,40% Space Free | Partition Type: FAT

Computer Name: PETR-JRFNPVYNNY | User Name: Honza | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.07.19 21:01:25 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Honza\Plocha\OTL.exe
PRC - [2011.07.19 19:04:58 | 002,069,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2011.07.19 19:04:55 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2011.07.19 19:04:54 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2011.07.19 19:04:50 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2011.07.19 19:04:45 | 000,596,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011.07.19 19:04:44 | 005,897,808 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2011.07.19 19:04:44 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2011.07.19 19:04:41 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgfws9.exe
PRC - [2011.07.19 19:04:40 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2011.07.19 19:04:40 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2011.07.19 19:04:38 | 000,842,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2011.07.17 21:20:13 | 000,340,480 | ---- | M] () -- C:\WINDOWS\update.5.0\svchost.exe
PRC - [2011.07.17 21:20:13 | 000,340,480 | ---- | M] () -- C:\WINDOWS\update.5.0\svchost.exe
PRC - [2011.07.17 20:58:24 | 000,171,520 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\conhost.exe
PRC - [2011.07.09 06:51:19 | 001,012,792 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2011.07.02 11:59:40 | 001,932,656 | ---- | M] (NETGATE Technologies s.r.o.) -- C:\Program Files\NETGATE\Registry Cleaner\RegistryCleaner.exe
PRC - [2011.06.29 12:20:24 | 000,743,936 | ---- | M] (Ufasoft) -- C:\WINDOWS\ufa\ufa.exe
PRC - [2011.06.27 12:31:22 | 000,464,752 | ---- | M] (NETGATE Technologies s.r.o.) -- C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe
PRC - [2011.05.25 09:25:59 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2009.02.28 01:23:46 | 000,081,920 | ---- | M] (Firebird Project) -- C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe
PRC - [2009.02.28 01:23:42 | 002,732,032 | ---- | M] (Firebird Project) -- C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe
PRC - [2008.07.07 17:46:45 | 000,416,768 | ---- | M] (Stardock Corporation) -- C:\Program Files\Stardock\CursorFX\CursorFX.exe
PRC - [2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.08.09 09:27:52 | 000,073,728 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
PRC - [2007.04.30 19:43:54 | 003,450,608 | ---- | M] (Stardock) -- C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
PRC - [2007.03.21 19:50:00 | 000,163,840 | ---- | M] (Syntek Ltd.) -- C:\WINDOWS\STK02N\STK02NM.exe
PRC - [2005.04.02 03:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

========== Modules (SafeList) ==========

MOD - [2011.07.19 21:01:25 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Honza\Plocha\OTL.exe
MOD - [2010.08.23 18:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2008.03.12 22:00:32 | 000,035,144 | ---- | M] ( ) -- C:\Program Files\Stardock\CursorFX\CurXP0.dll
MOD - [2007.04.30 19:18:50 | 000,112,400 | ---- | M] () -- C:\Program Files\Stardock\ObjectDock\DockShellHook.dll
MOD - [2003.02.26 22:27:44 | 000,036,864 | ---- | M] (Stardock.Net, Inc) -- C:\WINDOWS\system32\wbsys.dll
MOD - [2003.02.26 22:24:32 | 000,028,740 | ---- | M] (Stardock.Net, Inc) -- C:\Program Files\Stardock\Object Desktop\ThemeManager\wbhelp.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (wxpdrivers)
SRV - File not found [On_Demand | Stopped] -- -- (WPFFontCache_v0400)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.07.19 19:04:50 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2011.07.19 19:04:44 | 005,897,808 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011.07.19 19:04:41 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgfws9.exe -- (avgfws9)
SRV - [2011.07.19 19:04:40 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2011.07.17 21:20:13 | 000,340,480 | ---- | M] () [Auto | Running] -- C:\WINDOWS\update.5.0\svchost.exe -- (srvbtcclient)
SRV - [2011.06.27 12:31:22 | 000,464,752 | ---- | M] (NETGATE Technologies s.r.o.) [Auto | Running] -- C:\Program Files\NETGATE\Registry Cleaner\RegistryCleanerSrv.exe -- (NGRegClnSrv)
SRV - [2011.05.25 09:25:59 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2009.02.28 01:23:46 | 000,081,920 | ---- | M] (Firebird Project) [Auto | Running] -- C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe -- (FirebirdGuardianDefaultInstance)
SRV - [2009.02.28 01:23:42 | 002,732,032 | ---- | M] (Firebird Project) [On_Demand | Running] -- C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe -- (FirebirdServerDefaultInstance)
SRV - [2008.04.07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007.08.09 09:27:52 | 000,073,728 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2005.04.02 03:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe -- (StarWindService)

========== Driver Services (SafeList) ==========

DRV - [2011.07.19 19:04:56 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2011.07.19 19:04:54 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2011.07.19 19:04:46 | 000,122,448 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys -- (AVGIDSDriverxpx)
DRV - [2011.07.19 19:04:46 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys -- (AVGIDSFilterxpx)
DRV - [2011.07.19 19:04:46 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys -- (AVGIDSShimxpx)
DRV - [2011.07.19 19:04:46 | 000,025,168 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\AVGIDSxx.sys -- (AVGIDSErHrxpx)
DRV - [2011.07.19 19:04:42 | 000,030,104 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwfd)
DRV - [2011.07.19 19:04:42 | 000,030,104 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwdx)
DRV - [2011.07.19 19:04:40 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2011.07.19 19:04:38 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2011.05.16 17:54:09 | 000,023,456 | ---- | M] (Phoenix Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\DrvAgent32.sys -- (DrvAgent32)
DRV - [2011.01.27 14:43:20 | 000,007,680 | ---- | M] (MSI) [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\MSIWDev\NTIOLib.sys -- (NTIOLib_1_0_8)
DRV - [2010.10.20 14:43:08 | 000,007,680 | ---- | M] (MSI) [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\Live Update 5\NTIOLib.sys -- (NTIOLib_1_0_4)
DRV - [2010.05.10 10:44:42 | 000,025,912 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\MSIWDev\msibios32_100507.sys -- (MSI_MSIBIOS_010507)
DRV - [2010.03.08 10:41:48 | 000,220,112 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2009.11.08 18:34:24 | 000,223,128 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\vaxscsi.sys -- (vaxscsi)
DRV - [2009.03.31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.03.20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009.03.20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009.03.20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2009.03.18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.02.05 22:06:10 | 000,023,152 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009.01.11 21:18:38 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.11.11 13:42:00 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2008.11.11 13:41:00 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2008.11.11 13:41:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2008.11.02 10:44:10 | 000,056,572 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2008.10.25 11:16:01 | 000,114,048 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2007.09.17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007.06.25 09:43:38 | 000,098,344 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117obex.sys -- (s117obex)
DRV - [2007.06.25 09:43:36 | 000,108,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mdm.sys -- (s117mdm)
DRV - [2007.06.25 09:43:36 | 000,100,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mgmt.sys -- (s117mgmt) Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM)
DRV - [2007.06.25 09:43:36 | 000,098,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117unic.sys -- (s117unic) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM)
DRV - [2007.06.25 09:43:36 | 000,022,952 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117nd5.sys -- (s117nd5) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS)
DRV - [2007.06.25 09:43:26 | 000,014,888 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mdfl.sys -- (s117mdfl)
DRV - [2007.06.25 09:43:22 | 000,082,984 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117bus.sys -- (s117bus) Sony Ericsson Device 117 driver (WDM)
DRV - [2007.04.10 13:04:40 | 004,397,568 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.03.12 15:25:00 | 000,101,520 | ---- | M] (Syntek Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\STK02NW2.sys -- (DCamUSBSTK02N)
DRV - [2007.01.12 20:09:53 | 000,082,296 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2006.09.05 22:09:26 | 000,086,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59obex.sys -- (se59obex)
DRV - [2006.09.05 22:08:40 | 000,088,624 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59mgmt.sys -- (se59mgmt) Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM)
DRV - [2006.09.05 22:07:52 | 000,097,088 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59mdm.sys -- (se59mdm)
DRV - [2006.09.05 22:07:48 | 000,009,360 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59mdfl.sys -- (se59mdfl)
DRV - [2006.09.05 22:07:00 | 000,061,536 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59bus.sys -- (se59bus) Sony Ericsson Device 089 driver (WDM)
DRV - [2006.09.05 22:06:28 | 000,018,704 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59nd5.sys -- (se59nd5) Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS)
DRV - [2006.09.05 22:06:22 | 000,090,800 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59unic.sys -- (se59unic) Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM)
DRV - [2006.07.14 07:33:58 | 000,009,984 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gMouUsb.sys -- (gMouUsb)
DRV - [2006.07.14 07:30:52 | 000,014,848 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gHidPnp.sys -- (gHidPnp)
DRV - [2006.07.10 18:19:58 | 000,027,032 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2006.07.05 14:46:06 | 000,063,352 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a) StarForce Protection Environment Driver (version 1.x.a)
DRV - [2006.07.01 22:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.06.14 16:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.09.21 17:24:58 | 000,005,248 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\giveio.sys -- (giveio)
DRV - [2001.11.08 09:53:54 | 000,018,120 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gt680x.sys -- (GT680x)
DRV - [1999.09.10 14:06:00 | 000,025,244 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... tbid=60040
IE - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60040
IE - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..\URLSearchHook: {57BCA5FA-5DBB-45A2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
IE - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:58889

IE - HKU\S-1-5-21-1801674531-1580818891-839522115-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/sli ... ie7&query="
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "moz2-ytff-"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "moz2-ytff-"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.crawler.com/homepage.aspx?tbid=60040"
FF - prefs.js..extensions.enabledItems: {76063e7f-3558-4b68-8287-54eb6512adc0}:2.7.1
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.9
FF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.11.2
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.2.20100119091315
FF - prefs.js..extensions.enabledItems: radiobar@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: plugin@gameplaylabs.com:1.0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: File not found
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=13: C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.69: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@octoshape.com/Octoshape Streaming Services,version=1.0: C:\Documents and Settings\Honza\Data aplikací\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Honza\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2008.11.26 18:26:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2011.07.19 19:30:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.18\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.06.24 18:52:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.18\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.06.24 18:52:20 | 000,000,000 | ---D | M]

[2010.03.05 22:45:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Extensions
[2010.03.05 22:45:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Extensions\songbird@songbirdnest.com
[2011.07.18 22:19:19 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\extensions
[2009.10.29 19:20:03 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2009.09.02 04:37:29 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.02.26 18:45:07 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010.02.26 18:45:04 | 000,000,000 | ---D | M] (Gladiatus Tools) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\extensions\{76063e7f-3558-4b68-8287-54eb6512adc0}
[2011.04.21 16:04:28 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.06.13 12:15:48 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2011.03.14 17:15:16 | 000,000,000 | ---D | M] (GamePlayLabs Plugin) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\extensions\plugin@gameplaylabs.com
[2010.03.17 23:13:07 | 000,000,000 | ---D | M] (RadioBar Toolbar) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\extensions\radiobar@toolbar
[2011.07.08 13:42:17 | 000,002,386 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\askcom.xml
[2011.07.02 14:08:03 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-1.xml
[2009.06.13 13:04:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-10.xml
[2009.07.16 13:20:54 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-11.xml
[2009.07.23 11:15:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-12.xml
[2009.08.04 23:44:27 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-13.xml
[2009.09.12 12:23:06 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-14.xml
[2009.10.29 12:07:31 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-15.xml
[2009.12.16 20:04:21 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-16.xml
[2009.12.17 19:47:03 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-17.xml
[2010.01.13 14:20:19 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-18.xml
[2010.02.19 11:59:08 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-19.xml
[2008.11.27 06:43:41 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-2.xml
[2010.03.16 12:26:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-20.xml
[2010.04.03 06:31:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-21.xml
[2010.04.07 06:29:54 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-22.xml
[2011.06.24 18:52:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-23.xml
[2011.07.15 18:15:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-24.xml
[2008.12.21 10:13:05 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-3.xml
[2009.02.05 12:54:31 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-4.xml
[2009.02.05 14:39:45 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-5.xml
[2009.03.07 16:11:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-6.xml
[2009.03.29 09:04:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-7.xml
[2009.04.22 21:42:19 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-8.xml
[2009.04.29 05:28:58 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin-9.xml
[2010.05.12 17:40:48 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\icqplugin.xml
[2010.02.03 08:47:41 | 000,009,977 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\mywebsearch.xml
[2010.04.17 21:43:40 | 000,001,589 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\web-search.xml
[2009.10.29 18:10:10 | 000,001,196 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\zn8wlmjq.default\searchplugins\winamp-search.xml
[2011.07.18 22:19:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009.07.14 16:53:17 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\{0B38152B-1B20-484D-A11F-5E04A9B0661F}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\{20A82645-C095-46ED-80E3-08825760534B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\{635ABD67-4FE9-1B23-4F01-E679FA7484C1}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\{76063E7F-3558-4B68-8287-54EB6512ADC0}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\PLUGIN@GAMEPLAYLABS.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\RADIOBAR@TOOLBAR
[2010.04.20 19:09:16 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2008.11.11 09:38:54 | 000,663,552 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2011.05.04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2007.07.26 13:05:16 | 000,001,329 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\crawlersrch.xml
[2011.05.15 16:15:17 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.05.15 16:15:17 | 000,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2011.05.15 16:15:17 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.05.15 16:15:17 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2011.05.15 16:15:17 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2011.07.19 10:28:08 | 000,434,916 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 123fporn.info
O1 - Hosts: 14993 more lines...
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O3 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..\Toolbar\WebBrowser: (no name) - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No CLSID value found.
O3 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [conhost] C:\Documents and Settings\Honza\Data aplikací\Microsoft\conhost.exe ()
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [systemup] File not found
O4 - HKLM..\Run: [tray_ico] File not found
O4 - HKLM..\Run: [tray_ico1] File not found
O4 - HKLM..\Run: [tray_ico2] File not found
O4 - HKLM..\Run: [tray_ico3] File not found
O4 - HKLM..\Run: [tray_ico4] File not found
O4 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005..\Run: [CursorFX] C:\Program Files\Stardock\CursorFX\CursorFX.exe (Stardock Corporation)
O4 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005..\Run: [NETGATERegistryCleaner] C:\Program Files\NETGATE\Registry Cleaner\RegistryCleaner.exe (NETGATE Technologies s.r.o.)
O4 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005..\Run: [SpyEmergency] File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\STK02N 2.4 PNP Monitor.lnk = C:\WINDOWS\STK02N\STK02NM.exe (Syntek Ltd.)
O4 - Startup: C:\Documents and Settings\Honza\Nabídka Start\Programy\Po spuštění\santa.bat ()
O4 - Startup: C:\Documents and Settings\Honza\Nabídka Start\Programy\Po spuštění\Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe (Stardock)
F3 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005 WinNT: Load - (C:\DOCUME~1\Honza\LOCALS~1\Temp\csrss.exe) - File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFolderOptions = [binary data]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: RestrictRun = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoSecCPL = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCPL = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDevMgrPage = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoConfigPage = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoVirtMemPage = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoFileSysPage = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoNetSetup = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoNetSetupIDPage = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoNetSetupSecurityPage = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoWorkgroupContents = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoEntireNetwork = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoFileSharingControl = 0
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1008\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-21-1801674531-1580818891-839522115-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..Trusted Domains: com ([www.msi] http in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..Trusted Domains: com.tw ([asia.msi] http in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..Trusted Domains: com.tw ([global.msi] http in Trusted sites)
O16 - DPF: {41564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mvadvd.cab (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/microso ... 4875457748 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 4875443857 (MUWebControl Class)
O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} http://liveupdate.msi.com.tw/autobios/L ... nstall.cab (WebSDev Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (wbsys.dll) - C:\WINDOWS\System32\wbsys.dll (Stardock.Net, Inc)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005 Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005 Winlogon: Shell - (C:\Documents and Settings\Honza\Data aplikací\dwm.exe) - File not found
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\WB: DllName - C:\Program Files\Stardock\Object Desktop\ThemeManager\fastload.dll - C:\Program Files\Stardock\Object Desktop\ThemeManager\fastload.dll (Stardock)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Honza\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Honza\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O31 - SafeBoot: AlternateShell - services32.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.10.24 20:51:16 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{0f4d2ea1-1179-11de-81e4-001d92ab8255}\Shell\Auto\command - "" = I:\dukopuuwk.exe
O33 - MountPoints2\{0f4d2ea1-1179-11de-81e4-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL dukopuuwk.exe
O33 - MountPoints2\{0f4d2eee-1179-11de-81e4-001d92ab8255}\Shell\Auto\command - "" = F:\iclgesbqh.exe
O33 - MountPoints2\{0f4d2eee-1179-11de-81e4-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL iclgesbqh.exe
O33 - MountPoints2\{330b5814-b29b-11de-824e-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL vepsvmpbn.exe
O33 - MountPoints2\{330b5815-b29b-11de-824e-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL gmabubsxa.exe
O33 - MountPoints2\{7c9eb94f-01da-11de-81d7-001d92ab8255}\Shell\Auto\command - "" = I:\xwpwqkryq.exe
O33 - MountPoints2\{7c9eb94f-01da-11de-81d7-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL xwpwqkryq.exe
O33 - MountPoints2\{93c55c64-1b36-11de-81e9-001d92ab8255}\Shell\Auto\command - "" = F:\vuxwirlrm.exe
O33 - MountPoints2\{93c55c64-1b36-11de-81e9-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL vuxwirlrm.exe
O33 - MountPoints2\{b3f2893c-a208-11dd-819d-001d92ab8255}\Shell\Auto\command - "" = J:\daftlmsje.exe
O33 - MountPoints2\{b3f2893c-a208-11dd-819d-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL daftlmsje.exe
O33 - MountPoints2\{cfcd8688-a259-11dd-819e-001d92ab8255}\Shell\Auto\command - "" = I:\zdwavfrjm.exe
O33 - MountPoints2\{cfcd8688-a259-11dd-819e-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL zdwavfrjm.exe
O33 - MountPoints2\{d4b563d4-a686-11dd-81a6-001d92ab8255}\Shell\Auto\command - "" = I:\pkyzwpfji.exe
O33 - MountPoints2\{d4b563d4-a686-11dd-81a6-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL pkyzwpfji.exe
O33 - MountPoints2\L\Shell - "" = AutoRun
O33 - MountPoints2\M\Shell - "" = AutoRun
O33 - MountPoints2\N\Shell - "" = AutoRun
O33 - MountPoints2\O\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk /r \??\J:) - File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Ligos Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll (Ligos Corporation)
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll (Ligos Corporation)
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Ligos Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Ligos Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\System32\vp6vfw.dll (EA.com/On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\System32\vp6vfw.dll (EA.com/On2.com)
Drivers32: vidc.VP62 - C:\WINDOWS\System32\vp6vfw.dll (EA.com/On2.com)
Drivers32: VIDC.WMV3 - C:\WINDOWS\System32\wmv9vcm.dll (Microsoft Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.YVU9 - C:\WINDOWS\System32\iyvu9_32.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2011.07.19 21:01:22 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Honza\Plocha\OTL.exe
[2011.07.19 20:40:24 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.07.19 20:40:23 | 000,000,000 | ---D | C] -- C:\rsit
[2011.07.19 19:04:54 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2011.07.19 18:26:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\AVG 9.0
[2011.07.19 18:26:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Avg
[2011.07.19 18:25:54 | 000,052,872 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys
[2011.07.19 18:25:54 | 000,025,168 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\AVGIDSxx.sys
[2011.07.19 18:25:53 | 000,243,024 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2011.07.19 18:25:53 | 000,216,400 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2011.07.19 18:25:52 | 000,029,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2011.07.19 18:25:21 | 000,050,968 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgfwdx.dll
[2011.07.19 18:25:21 | 000,030,104 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgfwdx.sys
[2011.07.19 18:25:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\avg9
[2011.07.19 17:42:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Data aplikací\NETGATE Registry Cleaner
[2011.07.19 17:42:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\NETGATE Registry Cleaner
[2011.07.19 17:42:27 | 000,000,000 | ---D | C] -- C:\Program Files\NETGATE
[2011.07.19 16:58:21 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011.07.19 16:57:23 | 008,188,184 | ---- | C] (NETGATE Technologies s.r.o. ) -- C:\Documents and Settings\Honza\Plocha\rc-setup-ngt.exe
[2011.07.19 11:06:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\World of Warcraft
[2011.07.19 10:38:25 | 000,000,000 | ---D | C] -- C:\Program Files\World of Warcraft
[2011.07.19 07:19:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Plocha\Advanced PC Tweaker
[2011.07.19 07:19:51 | 000,000,000 | ---D | C] -- C:\Program Files\Advanced PC Tweaker
[2011.07.19 00:08:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Spybot - Search & Destroy
[2011.07.19 00:01:45 | 016,409,960 | ---- | C] (Safer Networking Limited ) -- C:\Documents and Settings\Honza\Plocha\setup-spybotsd162.exe
[2011.07.19 00:01:11 | 000,000,000 | ---D | C] -- C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[2011.07.19 00:01:10 | 000,000,000 | ---D | C] -- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
[2011.07.19 00:01:09 | 000,000,000 | ---D | C] -- C:\Program Files\SDHelper (Spybot - Search & Destroy)
[2011.07.18 23:57:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2011.07.18 23:56:55 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011.07.18 23:56:16 | 000,000,000 | ---D | C] -- C:\PPK_CD
[2011.07.18 23:35:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Nabídka Start\Programy\Lavasoft Ad-aware 6
[2011.07.18 23:35:51 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2011.07.18 22:38:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Honza\Recent
[2011.07.18 08:02:35 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.3
[2011.07.17 21:28:48 | 000,000,000 | ---D | C] -- C:\Microsoft
[2011.07.17 21:28:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.2
[2011.07.17 21:25:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ufa
[2011.07.17 21:25:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\rpcminer
[2011.07.17 21:25:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\phoenix
[2011.07.17 21:25:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\WinRAR
[2011.07.17 21:22:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.5.0
[2011.07.17 21:19:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\av_ico
[2011.07.17 21:16:58 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.1
[2011.07.17 21:16:39 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-7-0-lnk
[2011.07.17 21:16:39 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-7-0
[2011.07.17 10:54:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.07.17 10:54:35 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011.07.17 10:54:35 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011.07.17 10:54:35 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011.07.15 18:04:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Data aplikací\InstallShield
[2011.07.14 17:47:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Dokumenty\NFS ProStreet
[2011.07.14 17:43:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Electronic Arts
[2011.07.13 17:33:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Windows PowerShell 1.0
[2011.07.13 17:32:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windowspowershell
[2011.07.13 17:30:58 | 000,000,000 | ---D | C] -- C:\CrystalDiskMark002700B3
[2011.07.12 20:56:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\PC Drivers HeadQuarters Inc
[2011.07.12 20:54:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Data aplikací\GetRightToGo
[2011.07.09 21:16:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Plocha\Nová složka
[2011.07.05 23:45:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Nabídka Start\Programy\Garena
[2011.07.05 21:02:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Dokumenty\warkraft
[2011.07.05 20:13:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Dokumenty\WARCEAFT 3 NEW DOTA
[2011.07.05 19:44:34 | 000,139,264 | ---- | C] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe
[2011.07.05 19:44:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Nabídka Start\Programy\Warcraft III
[2011.07.05 19:41:58 | 000,000,000 | ---D | C] -- C:\Program Files\Warcraft III
[2011.07.05 10:15:35 | 000,000,000 | ---D | C] -- C:\Program Files\Garena
[2011.07.04 16:24:28 | 000,000,000 | -HSD | C] -- C:\WINDOWS\System32\SCKMYS
[2011.07.02 17:48:52 | 000,000,000 | ---D | C] -- C:\Program Files\Creative
[2011.06.29 19:40:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Playrix Entertainment
[2011.06.29 19:39:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AWEM
[2011.06.29 19:39:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Nabídka Start\Programy\Superhry.cz
[2011.06.29 19:38:29 | 000,000,000 | ---D | C] -- C:\Program Files\Superhry.cz
[2009.02.18 21:27:31 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Honza\Data aplikací\pcouffin.sys
[2008.10.28 17:59:12 | 322,523,176 | ---- | C] (Microsoft Corporation) -- C:\Program Files\windowsxp-kb936929-sp3-x86-csy_7af606916b887dba9dd38ae282505ce2c2b81b08.exe
[2001.11.08 09:53:54 | 000,018,120 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\gt680x.sys
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

Pinehead · #6 Příspěvek od **Pinehead** » 19 črc 2011 21:13

========== Files - Modified Within 30 Days ==========

[2011.07.19 21:14:06 | 000,000,466 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{55E75352-1DA8-477D-9AAA-5E3A7F4541C8}.job
[2011.07.19 21:05:14 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.07.19 21:01:25 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Honza\Plocha\OTL.exe
[2011.07.19 20:26:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.07.19 19:31:39 | 000,000,960 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2011.07.19 19:31:39 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.07.19 19:30:38 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.07.19 19:04:56 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2011.07.19 19:04:54 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2011.07.19 19:04:54 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2011.07.19 19:04:46 | 000,025,168 | ---- | M] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\AVGIDSxx.sys
[2011.07.19 19:04:42 | 000,050,968 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgfwdx.dll
[2011.07.19 19:04:42 | 000,030,104 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgfwdx.sys
[2011.07.19 19:04:40 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2011.07.19 19:04:38 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys
[2011.07.19 18:26:22 | 041,948,701 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2011.07.19 18:26:22 | 000,568,130 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavifw.avm
[2011.07.19 18:26:22 | 000,113,461 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2011.07.19 18:26:22 | 000,001,507 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\AVG 9.0.lnk
[2011.07.19 18:26:20 | 006,061,540 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\avi7.avg
[2011.07.19 18:26:20 | 000,463,779 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2011.07.19 18:26:20 | 000,113,263 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2011.07.19 17:42:30 | 000,000,873 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\NETGATE Registry Cleaner.lnk
[2011.07.19 15:13:38 | 044,018,688 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\eav_nt32_csy.msi
[2011.07.19 15:13:32 | 008,188,184 | ---- | M] (NETGATE Technologies s.r.o. ) -- C:\Documents and Settings\Honza\Plocha\rc-setup-ngt.exe
[2011.07.19 11:06:22 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\World of Warcraft.lnk
[2011.07.19 10:30:32 | 000,005,460 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\67A6.23A
[2011.07.19 10:28:08 | 000,434,916 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.07.19 10:11:16 | 000,000,420 | ---- | M] () -- C:\boot.ini
[2011.07.19 07:22:00 | 000,000,042 | ---- | M] () -- C:\WINDOWS\System32\APCT.lie
[2011.07.19 07:19:52 | 000,000,804 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\Advanced PC Tweaker.lnk
[2011.07.19 07:19:52 | 000,000,759 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\Advanced PC Tweaker 1-Click Tweak.lnk
[2011.07.19 07:13:06 | 000,000,196 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2011.07.19 00:08:52 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\Spybot - Search & Destroy.lnk
[2011.07.19 00:03:53 | 016,409,960 | ---- | M] (Safer Networking Limited ) -- C:\Documents and Settings\Honza\Plocha\setup-spybotsd162.exe
[2011.07.18 23:35:53 | 000,000,731 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\Ad-aware 6.0.lnk
[2011.07.18 22:56:42 | 000,000,500 | ---- | M] () -- C:\WINDOWS\tasks\One-Click Tweak.job
[2011.07.18 19:15:25 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20110719-102808.backup
[2011.07.18 16:41:44 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.bak
[2011.07.18 09:24:55 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011.07.18 08:52:22 | 000,022,328 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011.07.18 08:02:35 | 000,000,199 | ---- | M] () -- C:\WINDOWS\info1
[2011.07.17 22:34:29 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hîsts
[2011.07.17 21:28:38 | 000,169,472 | ---- | M] () -- C:\WINDOWS\gbot111.exe
[2011.07.17 21:25:35 | 005,589,370 | ---- | M] () -- C:\WINDOWS\phoenix.rar
[2011.07.17 21:25:35 | 000,246,272 | ---- | M] () -- C:\WINDOWS\unrar.exe
[2011.07.17 21:25:35 | 000,182,617 | ---- | M] () -- C:\WINDOWS\ufa.rar
[2011.07.17 21:25:29 | 000,904,792 | ---- | M] () -- C:\WINDOWS\geoiplist.rar
[2011.07.17 21:25:22 | 001,075,284 | ---- | M] () -- C:\WINDOWS\rpcminer.rar
[2011.07.17 21:19:12 | 000,000,000 | ---- | M] () -- C:\WINDOWS\loader2.exe_ok
[2011.07.17 21:15:43 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.07.17 03:24:20 | 004,636,907 | ---- | M] () -- C:\WINDOWS\geoiplist
[2011.07.15 15:56:49 | 000,004,775 | ---- | M] () -- C:\Documents and Settings\Honza\Utility.xml
[2011.07.15 09:13:25 | 000,103,736 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2011.07.15 08:42:40 | 005,050,024 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\LiL Seint (Ne)byla to chyba, vm.mp3
[2011.07.14 17:44:00 | 000,001,857 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Need for Speed™ ProStreet.lnk
[2011.07.14 17:28:28 | 000,120,320 | ---- | M] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.07.14 04:57:14 | 000,217,656 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.07.13 17:38:16 | 000,000,056 | ---- | M] () -- C:\WINDOWS\SpeederXP.INI
[2011.07.13 11:32:27 | 000,000,960 | ---- | M] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\SRDownloader.nast
[2011.07.13 11:32:20 | 000,035,601 | ---- | M] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\SRDownloader.err
[2011.07.13 11:28:54 | 000,000,904 | ---- | M] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\SRDownloader (1).nast
[2011.07.12 20:49:13 | 000,001,012 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\BiosAgent Plus.lnk
[2011.07.09 18:19:23 | 000,273,504 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011.07.09 18:19:23 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011.07.09 18:19:07 | 000,273,504 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011.07.08 19:29:27 | 000,027,446 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\reg.jpg
[2011.07.06 16:38:02 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011.07.05 23:45:49 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\Garena.lnk
[2011.07.05 20:00:55 | 000,078,554 | ---- | M] () -- C:\WINDOWS\War3Unin.dat
[2011.07.05 19:48:09 | 000,002,829 | ---- | M] () -- C:\WINDOWS\War3Unin.pif
[2011.07.05 19:48:08 | 000,139,264 | ---- | M] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe
[2011.07.05 10:27:06 | 000,045,202 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\room_v3.dat
[2011.06.29 19:39:21 | 000,001,552 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\Superhry.cz.lnk
[2011.06.24 03:05:56 | 000,443,064 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.06.24 03:05:56 | 000,439,780 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.06.24 03:05:56 | 000,084,426 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.06.24 03:05:56 | 000,072,790 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.06.23 10:48:51 | 000,271,200 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2011.06.20 12:03:57 | 000,126,883 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\fofinka.jpg
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.07.19 21:05:14 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.07.19 18:26:22 | 000,568,130 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\iavifw.avm
[2011.07.19 18:26:22 | 000,113,461 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2011.07.19 18:26:22 | 000,001,507 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\AVG 9.0.lnk
[2011.07.19 18:26:20 | 041,948,701 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2011.07.19 18:26:20 | 000,463,779 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2011.07.19 18:26:20 | 000,113,263 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2011.07.19 18:26:16 | 006,061,540 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\avi7.avg
[2011.07.19 17:42:30 | 000,000,873 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\NETGATE Registry Cleaner.lnk
[2011.07.19 16:57:33 | 108,608,616 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\AVG 9.0 (full, cz).rar
[2011.07.19 16:57:25 | 044,018,688 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\eav_nt32_csy.msi
[2011.07.19 16:57:03 | 108,608,018 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\AVG Internet Security 9.0 + serial [crack] licence do 2018.rar
[2011.07.19 11:06:22 | 000,000,720 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\World of Warcraft.lnk
[2011.07.19 07:22:00 | 000,000,042 | ---- | C] () -- C:\WINDOWS\System32\APCT.lie
[2011.07.19 07:19:52 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\Advanced PC Tweaker.lnk
[2011.07.19 07:19:52 | 000,000,759 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\Advanced PC Tweaker 1-Click Tweak.lnk
[2011.07.19 07:12:53 | 000,000,196 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2011.07.19 00:08:52 | 000,000,933 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\Spybot - Search & Destroy.lnk
[2011.07.18 23:35:53 | 000,000,731 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\Ad-aware 6.0.lnk
[2011.07.18 22:56:41 | 000,000,500 | ---- | C] () -- C:\WINDOWS\tasks\One-Click Tweak.job
[2011.07.17 21:28:38 | 000,169,472 | ---- | C] () -- C:\WINDOWS\gbot111.exe
[2011.07.17 21:25:35 | 000,182,617 | ---- | C] () -- C:\WINDOWS\ufa.rar
[2011.07.17 21:25:33 | 005,589,370 | ---- | C] () -- C:\WINDOWS\phoenix.rar
[2011.07.17 21:25:31 | 004,636,907 | ---- | C] () -- C:\WINDOWS\geoiplist
[2011.07.17 21:25:30 | 000,246,272 | ---- | C] () -- C:\WINDOWS\unrar.exe
[2011.07.17 21:25:29 | 000,904,792 | ---- | C] () -- C:\WINDOWS\geoiplist.rar
[2011.07.17 21:25:21 | 001,075,284 | ---- | C] () -- C:\WINDOWS\rpcminer.rar
[2011.07.17 21:20:14 | 000,000,199 | ---- | C] () -- C:\WINDOWS\info1
[2011.07.17 21:19:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\loader2.exe_ok
[2011.07.17 20:58:24 | 000,005,460 | ---- | C] () -- C:\Documents and Settings\Honza\Data aplikací\67A6.23A
[2011.07.15 15:56:43 | 000,004,775 | ---- | C] () -- C:\Documents and Settings\Honza\Utility.xml
[2011.07.15 08:42:20 | 005,050,024 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\LiL Seint (Ne)byla to chyba, vm.mp3
[2011.07.14 17:44:00 | 000,001,857 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Need for Speed™ ProStreet.lnk
[2011.07.13 17:37:59 | 000,000,056 | ---- | C] () -- C:\WINDOWS\SpeederXP.INI
[2011.07.13 11:28:54 | 000,000,904 | ---- | C] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\SRDownloader (1).nast
[2011.07.12 20:49:13 | 000,001,012 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\BiosAgent Plus.lnk
[2011.07.08 19:26:29 | 000,027,446 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\reg.jpg
[2011.07.05 23:45:49 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\Garena.lnk
[2011.07.05 19:44:35 | 000,078,554 | ---- | C] () -- C:\WINDOWS\War3Unin.dat
[2011.07.05 19:44:34 | 000,002,829 | ---- | C] () -- C:\WINDOWS\War3Unin.pif
[2011.07.05 10:27:06 | 000,045,202 | ---- | C] () -- C:\Documents and Settings\Honza\Data aplikací\room_v3.dat
[2011.07.02 17:28:26 | 000,319,488 | R--- | C] () -- C:\WINDOWS\System32\MafiaSetup.exe
[2011.06.29 19:39:21 | 000,001,552 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\Superhry.cz.lnk
[2011.06.26 19:11:36 | 000,357,404 | ---- | C] () -- C:\Documents and Settings\Honza\Dokumenty\DSC00158.JPG
[2011.06.20 12:04:06 | 000,126,883 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\fofinka.jpg
[2011.06.08 14:59:41 | 002,123,582 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2011.06.08 14:50:04 | 000,273,504 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011.06.08 14:48:06 | 000,273,504 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011.06.08 14:48:06 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011.06.08 14:10:34 | 000,000,960 | ---- | C] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\SRDownloader.nast
[2011.06.08 14:09:23 | 000,035,601 | ---- | C] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\SRDownloader.err
[2011.05.27 17:12:09 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\drivers\giveio.sys
[2010.12.13 11:06:08 | 000,120,248 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2010.11.07 14:42:01 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\SRDownloader (3).nast
[2010.11.07 14:41:44 | 000,000,045 | ---- | C] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\SRDownloader (3).err
[2010.11.06 15:17:36 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2010.08.08 14:27:48 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\SI.bin
[2010.07.27 15:46:43 | 000,009,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\gMouUsb.sys
[2010.07.27 15:46:42 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\gHidPnp.sys
[2010.04.05 19:51:17 | 000,000,082 | ---- | C] () -- C:\WINDOWS\wb.ini
[2010.04.01 20:15:31 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2010.03.27 14:51:36 | 000,000,511 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2010.02.24 17:11:48 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\fusioncache.dat
[2009.12.17 21:07:09 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\vbzlib1.dll
[2009.12.01 22:57:25 | 000,000,346 | ---- | C] () -- C:\WINDOWS\lexstat.ini
[2009.12.01 14:46:34 | 000,134,919 | ---- | C] () -- C:\WINDOWS\HPHins12.dat
[2009.12.01 14:46:34 | 000,014,916 | ---- | C] () -- C:\WINDOWS\hphmdl12.dat
[2009.12.01 14:46:22 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2009.11.27 14:37:29 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2009.11.25 13:49:38 | 000,034,564 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009.11.08 18:34:24 | 000,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\vaxscsi.sys
[2009.10.26 16:46:33 | 000,000,492 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2009.10.16 14:34:52 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2009.10.16 14:34:52 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2009.10.16 14:33:54 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Honza\Data aplikací\$_hpcst$.hpc
[2009.10.06 16:21:53 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\xrxscnui.dll
[2009.07.12 11:00:58 | 000,000,007 | ---- | C] () -- C:\WINDOWS\sbacknt.bin
[2009.04.22 00:19:06 | 000,172,173 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2009.03.04 20:18:06 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009.03.03 13:18:04 | 000,080,416 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2009.02.18 23:28:18 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009.02.18 21:28:11 | 000,000,671 | ---- | C] () -- C:\Documents and Settings\Honza\Data aplikací\vso_ts_preview.xml
[2009.02.18 21:27:31 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Honza\Data aplikací\inst.exe
[2009.02.18 21:27:31 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Honza\Data aplikací\pcouffin.cat
[2009.02.18 21:27:31 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Honza\Data aplikací\pcouffin.inf
[2009.02.16 18:21:49 | 000,000,030 | ---- | C] () -- C:\WINDOWS\ClonyCDs.ini
[2009.02.16 18:20:38 | 000,000,154 | ---- | C] () -- C:\WINDOWS\Clony.ini
[2009.01.21 14:21:47 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.01.16 22:59:27 | 000,220,160 | ---- | C] () -- C:\WINDOWS\System32\WoWEmuHacker.exe
[2009.01.16 22:56:22 | 000,001,816 | ---- | C] () -- C:\WINDOWS\TSearch.INI
[2009.01.11 22:31:19 | 000,066,872 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2009.01.11 22:31:17 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.01.11 22:31:13 | 000,103,736 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2009.01.03 20:46:11 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2008.12.11 15:34:53 | 000,000,912 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2008.11.20 21:56:14 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.11.10 17:24:08 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2008.11.10 17:24:08 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\LameEncShim.dll
[2008.10.25 08:00:37 | 000,120,320 | ---- | C] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.10.24 23:01:10 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2008.10.24 22:43:45 | 000,004,265 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.10.24 22:42:48 | 000,217,656 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008.10.24 22:09:44 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2008.10.24 21:39:24 | 000,000,067 | ---- | C] () -- C:\WINDOWS\xpsyspad.ini
[2008.10.24 21:26:35 | 000,001,172 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2008.10.24 21:25:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008.10.24 20:52:45 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008.10.24 20:49:02 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008.09.04 12:16:00 | 002,059,264 | ---- | C] () -- C:\WINDOWS\setup_rangers_2.exe
[2008.02.01 08:18:14 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\FlashSys.sys
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2007.02.09 12:24:08 | 000,491,520 | ---- | C] () -- C:\WINDOWS\System32\mp3lib.dll
[2007.02.09 12:24:01 | 000,070,018 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2005.10.14 11:56:50 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,778,240 | ---- | C] () -- C:\WINDOWS\System32\DivXsm.exe
[2005.10.14 11:56:50 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005.10.14 11:56:48 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\MMSwitch.dll
[2005.10.14 11:56:48 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\MMAVILNG.exe
[2004.08.02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2001.10.25 15:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001.10.25 15:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001.10.25 15:00:00 | 000,443,064 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001.10.25 15:00:00 | 000,439,780 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2001.10.25 15:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001.10.25 15:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2001.10.25 15:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001.10.25 15:00:00 | 000,084,426 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2001.10.25 15:00:00 | 000,072,790 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001.10.25 15:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001.10.25 15:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2001.10.25 15:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001.10.25 15:00:00 | 000,013,576 | ---- | C] () -- C:\WINDOWS\System32\syscorecfg256.dll
[2001.10.25 15:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001.10.25 15:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2001.10.25 15:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[1990.11.25 06:21:04 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll

========== LOP Check ==========

[2011.02.26 19:20:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Age of Empires 3
[2010.11.19 16:45:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
[2009.11.27 15:11:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alibre Design
[2011.07.19 18:25:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\avg9
[2011.06.29 19:39:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AWEM
[2009.12.08 15:45:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Companys Portal
[2011.05.14 00:26:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EA Core
[2011.05.14 00:26:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2010.11.19 17:27:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FarmFrenzy3_Madagascar
[2008.11.13 06:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Grisoft
[2011.04.21 16:04:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2009.11.27 14:20:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IMSIDesign
[2010.01.10 15:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MGS
[2011.07.12 20:56:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Drivers HeadQuarters Inc
[2009.10.16 14:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2011.06.29 19:40:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Playrix Entertainment
[2009.07.05 08:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Propellerhead Software
[2009.12.20 15:35:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.03.18 13:18:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2009.03.08 14:06:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\vsosdk
[2008.10.25 11:14:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WinZip
[2010.03.05 22:31:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010.07.08 15:39:51 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{7D93B3B9-36B7-4383-9666-CFAD7F2AC87E}
[2009.06.27 12:16:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2011.04.22 20:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\avidemux
[2009.02.16 19:06:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\DeepBurner
[2011.07.12 20:54:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\GetRightToGo
[2011.07.15 08:45:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\ICQ
[2008.12.18 20:39:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Leadertech
[2010.02.11 22:52:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\LG Electronics
[2009.07.10 16:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Mount&Blade
[2010.10.15 23:18:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Need for Speed World
[2011.07.19 17:42:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\NETGATE Registry Cleaner
[2010.08.30 12:28:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Octoshape
[2009.10.16 14:40:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\PC Suite
[2009.07.05 09:11:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Propellerhead Software
[2009.10.16 14:33:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Samsung
[2010.06.19 23:14:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Sierra Entertainment
[2010.03.05 22:45:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Songbird2
[2009.02.23 21:11:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Sports Interactive
[2010.06.29 20:50:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\temp
[2008.12.04 20:18:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Thunderbird
[2010.03.18 13:24:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Ubisoft
[2011.05.30 20:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Unity
[2009.10.06 16:48:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\vghd
[2011.05.06 22:43:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Vso
[2011.03.13 00:40:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\wargaming.net
[2010.03.05 23:13:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\WindSolutions
[2009.10.06 16:22:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Xerox
[2009.12.01 12:07:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Host\Data aplikací\ICQ
[2011.05.05 10:06:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Host\Data aplikací\Inbox Toolbar
[2010.02.15 13:57:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Host\Data aplikací\PC Suite
[2009.01.05 14:52:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Host\Data aplikací\Thunderbird
[2011.07.18 22:56:42 | 000,000,500 | ---- | M] () -- C:\WINDOWS\Tasks\One-Click Tweak.job
[2011.07.19 21:14:06 | 000,000,466 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{55E75352-1DA8-477D-9AAA-5E3A7F4541C8}.job

========== Purity Check ==========

========== Custom Scans ==========

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CursorFX" = "C:\Program Files\Stardock\CursorFX\CursorFX.exe" -- [2008.07.07 17:46:45 | 000,416,768 | ---- | M] (Stardock Corporation)
"SpyEmergency" = C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe
"NETGATERegistryCleaner" = C:\Program Files\NETGATE\Registry Cleaner\RegistryCleaner.exe -- [2011.07.02 11:59:40 | 001,932,656 | ---- | M] (NETGATE Technologies s.r.o.)

< >

< MD5 for: AGP440.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:AGP440.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\agp440.sys
[2008.04.14 01:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2004.08.03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys

< MD5 for: ATAPI.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2001.10.25 15:00:00 | 000,086,656 | ---- | M] (Microsoft Corporation) MD5=A64013E98426E1877CB653685C5C0009 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 09:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\autochk.exe
[2008.04.14 09:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.17 15:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:cdrom.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\cdrom.sys
[2008.04.14 01:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2009.12.22 20:39:20 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.17 15:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 09:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\cryptsvc.dll
[2008.04.14 09:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: CSRSS.EXE >
[2004.08.17 15:49:24 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=490E6E57E54FAF5F23F658EA188405A1 -- C:\WINDOWS\$NtServicePackUninstall$\csrss.exe
[2008.04.14 09:52:18 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\ServicePackFiles\i386\csrss.exe
[2008.04.14 05:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\csrss.exe
[2008.04.14 09:52:18 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\system32\csrss.exe

< MD5 for: EVENTLOG.DLL >
[2008.04.14 09:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\eventlog.dll
[2008.04.14 09:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.17 15:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 09:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\explorer.exe
[2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: FASTFAT.SYS >
[2004.08.03 23:14:18 | 000,143,360 | ---- | M] (Microsoft Corporation) MD5=3117F595E9615E04F05A54FC15A03B20 -- C:\WINDOWS\$NtServicePackUninstall$\fastfat.sys
[2008.04.14 01:44:30 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\ServicePackFiles\i386\fastfat.sys
[2008.04.13 21:14:29 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\fastfat.sys
[2008.04.14 01:44:30 | 000,143,744 | ---- | M] (Microsoft Corporation) MD5=38D332A6D56AF32635675F132548343E -- C:\WINDOWS\system32\drivers\fastfat.sys

< MD5 for: HAL.DLL >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:hal.dll
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 01:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\hal.dll
[2008.04.14 01:01:30 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2004.08.03 22:59:10 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:Changer.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.14 01:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\changer.sys
[2004.08.03 23:00:14 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=DAF1A8193B6CAF0FB858CADCC5C4AF4A -- C:\WINDOWS\$NtServicePackUninstall$\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 10:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.25 15:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 08:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\isapnp.sys
[2008.04.14 08:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.17 15:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 09:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\lsass.exe
[2008.04.14 09:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\ndis.sys
[2008.04.14 01:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004.08.17 15:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 09:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\netlogon.dll
[2008.04.14 09:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NTFS.SYS >
[2008.04.14 01:45:54 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\ServicePackFiles\i386\ntfs.sys
[2008.04.13 21:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\ntfs.sys
[2008.04.14 01:45:54 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\system32\drivers\ntfs.sys
[2004.08.03 23:15:10 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\$NtServicePackUninstall$\ntfs.sys

< MD5 for: SCECLI.DLL >
[2004.08.17 15:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\scecli.dll
[2008.04.14 09:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.02.09 13:18:56 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=3D107D45CCFDB266E91D84B52CD7F430 -- C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe
[2004.08.17 15:49:28 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=6E401E61F952FBBF708AFBECEFAFAE81 -- C:\WINDOWS\$NtServicePackUninstall$\services.exe
[2009.02.09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\dllcache\services.exe
[2009.02.09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\services.exe
[2008.04.14 09:52:46 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\ServicePackFiles\i386\services.exe
[2008.04.14 05:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\services.exe

< MD5 for: SMSS.EXE >
[2004.08.17 15:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 09:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\smss.exe
[2008.04.14 09:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SPOOLSV.EXE >
[2004.08.17 15:49:28 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=21B6FAA88044A41640E03EBB68BE93E8 -- C:\WINDOWS\$NtServicePackUninstall$\spoolsv.exe
[2010.08.17 15:19:36 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=258DD5D4283FD9F9A7166BE9AE45CE73 -- C:\WINDOWS\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[2010.08.17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\dllcache\spoolsv.exe
[2010.08.17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\spoolsv.exe
[2008.04.14 09:52:50 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\$NtUninstallKB2347290$\spoolsv.exe
[2008.04.14 09:52:50 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\ServicePackFiles\i386\spoolsv.exe
[2008.04.14 05:22:48 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\spoolsv.exe

< MD5 for: SVCHOST.EXE >
[2011.07.17 21:20:13 | 000,340,480 | ---- | M] () MD5=1733B4BD3F88618E348977328B384762 -- C:\WINDOWS\update.5.0\svchost.exe
[2011.07.18 08:02:35 | 000,727,552 | ---- | M] () MD5=3BAA8053C7F4184FA4E226E8993A4838 -- C:\WINDOWS\update.3\svchost.exe
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\svchost.exe
[2008.04.14 09:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.17 15:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
[2011.07.17 21:27:56 | 000,483,328 | ---- | M] () MD5=EFB19E06A994F184B781A3C948E77E6E -- C:\WINDOWS\update.2\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.14 01:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\userinit.exe
[2008.04.14 09:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.17 15:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: VAXSCSI.SYS >
[2009.11.08 18:34:24 | 000,223,128 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\vaxscsi.sys

< MD5 for: WINLOGON.EXE >
[2004.08.17 15:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\winlogon.exe
[2008.04.14 09:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.17 15:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 09:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\SoftwareDistribution\Download\1dab8d41b73a912c39f7d3fd77a4df39\ws2_32.dll
[2008.04.14 09:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2008.07.06 14:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2006.06.03 22:29:06 | 000,076,288 | ---- | M] (Hewlett-Packard Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp4pi.dll
[2007.04.09 14:23:54 | 000,028,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
[2008.07.06 14:06:10 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\x64\filterpipelineprintproc.dll

< %systemroot%\system32\drivers\*.sys /5 >
[2011.07.19 19:04:42 | 000,030,104 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\system32\drivers\avgfwdx.sys
[2011.07.19 19:04:46 | 000,025,168 | ---- | M] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\system32\drivers\AVGIDSxx.sys
[2011.07.19 19:04:40 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\system32\drivers\avgldx86.sys
[2011.07.19 19:04:54 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\system32\drivers\avgmfx86.sys
[2011.07.19 19:04:38 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\system32\drivers\avgrkx86.sys
[2011.07.19 19:04:56 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\system32\drivers\avgtdix.sys
[2011.07.18 08:52:22 | 000,022,328 | ---- | M] () -- C:\WINDOWS\system32\drivers\PnkBstrK.sys

< %systemroot%\system32\drivers\*.sys /X >
[2002.07.23 10:07:44 | 000,008,014 | ---- | M] () -- C:\WINDOWS\system32\drivers\A2Dfw.usb
[2008.04.14 09:51:38 | 000,004,255 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv01nt5.dll
[2008.04.14 09:51:38 | 000,003,967 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv02nt5.dll
[2008.04.14 09:51:38 | 000,003,615 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv05nt5.dll
[2008.04.14 09:51:38 | 000,003,647 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv07nt5.dll
[2008.04.14 09:51:38 | 000,003,135 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv08nt5.dll
[2008.04.14 09:51:38 | 000,003,711 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv09nt5.dll
[2008.04.14 09:51:38 | 000,003,775 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv11nt5.dll
[2004.07.17 11:36:24 | 000,064,352 | ---- | M] () -- C:\WINDOWS\system32\drivers\ativmc20.cod
[2008.04.14 09:51:38 | 000,021,183 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv01nt5.dll
[2008.04.14 09:51:38 | 000,011,359 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv02nt5.dll
[2008.04.14 09:51:38 | 000,025,471 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv04nt5.dll
[2008.04.14 09:51:38 | 000,014,143 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv06nt5.dll
[2008.04.14 09:51:38 | 000,017,279 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv10nt5.dll
[2008.04.14 09:51:40 | 000,015,423 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
[2004.07.17 22:55:24 | 000,129,045 | ---- | M] () -- C:\WINDOWS\system32\drivers\cxthsfs2.cty
[2001.10.25 15:00:00 | 003,440,660 | ---- | M] () -- C:\WINDOWS\system32\drivers\gm.dls
[2001.10.25 15:00:00 | 000,000,646 | ---- | M] () -- C:\WINDOWS\system32\drivers\gmreadme.txt
[2004.07.17 11:35:00 | 000,067,866 | ---- | M] () -- C:\WINDOWS\system32\drivers\netwlan5.img
[2002.09.05 11:29:26 | 000,007,314 | ---- | M] () -- C:\WINDOWS\system32\drivers\PS1Dfw.usb
[2008.04.14 09:51:56 | 000,003,901 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\siint5.dll
[2008.04.14 09:52:06 | 000,011,325 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\vchnt5.dll

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2009.01.11 21:18:38 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
[2009.11.08 18:34:24 | 000,223,128 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\vaxscsi.sys

< %systemroot%\system32\*.* /5 >
[2011.07.19 07:22:00 | 000,000,042 | ---- | M] () -- C:\WINDOWS\system32\APCT.lie
[2011.07.19 19:04:42 | 000,050,968 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\system32\avgfwdx.dll
[2011.07.19 19:04:54 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\system32\avgrsstx.dll
[2011.07.17 10:54:29 | 000,003,421 | ---- | M] () -- C:\WINDOWS\system32\jupdate-1.6.0_26-b03.log
[2011.07.17 11:10:10 | 000,066,872 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
[2011.07.15 09:13:25 | 000,103,736 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.ex0
[2011.07.18 08:52:15 | 000,103,736 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe
[2011.07.17 21:15:43 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[6 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\*.dll /lockedfiles >
[6 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\config\*.sav >
[2008.10.24 22:41:46 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2008.10.24 22:41:46 | 000,610,304 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2008.10.24 22:41:46 | 000,417,792 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\*.* /U /s >
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[6 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[53 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[6 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1 C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp -> ]
[2 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< %systemroot%\*. /mp /s >

< %ALLUSERSPROFILE%\Data Aplikací\*.* >
[2008.10.24 22:43:20 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\desktop.ini
[2009.12.01 14:55:44 | 000,000,814 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\hpzinstall.log

< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
[2008.07.08 00:54:31 | 002,397,336 | ---- | M] (Stardock Corporation ) -- C:\Documents and Settings\All Users\Data Aplikací\{7D93B3B9-36B7-4383-9666-CFAD7F2AC87E}\CursorFX_setup.exe
[2011.07.19 18:25:57 | 000,610,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Documents and Settings\All Users\Data Aplikací\avg9\update\backup\avgiproxy.exe
[2011.07.19 18:25:58 | 000,875,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Documents and Settings\All Users\Data Aplikací\avg9\update\backup\avgupd.exe
[2010.07.07 23:51:04 | 000,056,969 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\ASPEncoder\Uninstaller.exe
[2010.07.07 23:51:18 | 000,057,409 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\ControlPanel\Uninstaller.exe
[2010.07.07 23:51:31 | 000,054,128 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Converter\Uninstaller.exe
[2010.07.07 23:51:32 | 000,054,153 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DFXPlugin\Uninstaller.exe
[2010.07.07 23:51:33 | 000,056,458 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DivXDecoderShortcut\Uninstaller.exe
[2010.07.07 23:53:00 | 000,056,765 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DivXPlusShortcuts\Uninstaller.exe
[2010.07.07 23:51:33 | 000,054,174 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DSAACDecoder\Uninstaller.exe
[2010.07.07 23:51:34 | 000,057,532 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DSASPDecoder\Uninstaller.exe
[2010.07.07 23:51:35 | 000,054,166 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DSAVCDecoder\Uninstaller.exe
[2010.07.07 23:51:35 | 000,057,054 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DSDesktopComponents\Uninstaller.exe
[2010.07.07 23:51:18 | 000,054,101 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\MPEG2Plugin\Uninstaller.exe
[2010.07.07 23:51:17 | 000,052,963 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\MSVC80CRTRedist\Uninstaller.exe
[2010.07.07 23:52:54 | 000,057,715 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Player\Uninstaller.exe
[2010.07.07 23:51:10 | 000,054,073 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Qt4.5\Uninstaller.exe
[2010.07.07 23:50:27 | 000,895,256 | ---- | M] (DivX, Inc. ) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Setup\DivXSetup.exe
[2010.07.07 23:51:27 | 000,054,644 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\TranscodeEngine\Uninstaller.exe
[2010.07.07 23:52:38 | 000,084,062 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\TransferWizard\Uninstaller.exe
[2010.07.07 23:52:55 | 000,053,600 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Update\Uninstaller.exe
[2010.07.07 23:52:59 | 000,056,997 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\WebPlayer\Uninstaller.exe
[2011.05.25 09:25:59 | 000,194,152 | ---- | M] (NVIDIA Corporation) -- C:\Documents and Settings\All Users\Data Aplikací\NVIDIA\Updatus\WLMerger.exe

< %ALLUSERSPROFILE%\Dáta aplikácií\*.* >

< %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s >

< %APPDATA%\*. >
[2009.03.29 19:44:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Adobe
[2010.03.05 22:33:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Apple Computer
[2011.04.22 20:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\avidemux
[2009.02.16 19:06:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\DeepBurner
[2010.07.06 01:50:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\DivX
[2011.07.12 20:54:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\GetRightToGo
[2010.05.08 15:06:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Google
[2011.07.05 23:35:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Hamachi
[2009.12.01 18:09:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Help
[2011.06.08 14:53:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\HP
[2010.07.22 13:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\HpUpdate
[2011.07.15 08:45:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\ICQ
[2008.10.24 22:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Identities
[2011.07.15 18:04:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\InstallShield
[2008.12.18 20:39:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Leadertech
[2010.02.11 22:52:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\LG Electronics
[2009.03.29 20:04:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Macromedia
[2011.07.19 18:32:45 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Honza\Data aplikací\Microsoft
[2010.12.09 21:02:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Microsoft Games
[2009.07.10 16:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Mount&Blade
[2010.08.30 12:28:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Mozilla
[2011.02.21 07:50:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\MSN6
[2010.10.15 23:18:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Need for Speed World
[2011.07.19 17:42:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\NETGATE Registry Cleaner
[2010.08.30 12:28:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Octoshape
[2009.10.16 14:40:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\PC Suite
[2009.07.05 09:11:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Propellerhead Software
[2009.09.09 17:54:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Real
[2009.10.16 14:33:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Samsung
[2010.06.11 21:40:22 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\Honza\Data aplikací\SecuROM
[2010.06.19 23:14:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Sierra Entertainment
[2011.07.19 10:32:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Skype
[2011.07.18 19:15:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\skypePM
[2010.03.05 22:45:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Songbird2
[2009.02.23 21:11:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Sports Interactive
[2010.04.20 19:08:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Sun
[2010.06.29 20:50:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\temp
[2008.12.04 20:18:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Thunderbird
[2010.03.18 13:24:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Ubisoft
[2011.05.30 20:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Unity
[2009.10.06 16:48:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\vghd
[2011.05.06 22:43:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Vso
[2011.03.13 00:40:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\wargaming.net
[2010.03.05 23:13:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\WindSolutions
[2008.12.10 19:07:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\WinRAR
[2009.10.06 16:22:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Xerox

< %APPDATA%\*.* >
[2009.10.16 14:33:54 | 000,002,528 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\$_hpcst$.hpc
[2011.07.19 21:35:01 | 000,007,413 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\67A6.23A
[2008.10.24 22:43:20 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\Honza\Data aplikací\desktop.ini
[2009.02.18 21:27:31 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\inst.exe
[2009.02.18 21:27:31 | 000,007,887 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\pcouffin.cat
[2009.02.18 21:27:31 | 000,001,144 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\pcouffin.inf
[2009.02.18 21:27:40 | 000,000,034 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\pcouffin.log
[2009.02.18 21:27:31 | 000,047,360 | ---- | M] (VSO Software) -- C:\Documents and Settings\Honza\Data aplikací\pcouffin.sys
[2011.07.05 10:27:06 | 000,045,202 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\room_v3.dat
[2011.05.06 22:43:08 | 000,000,671 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\vso_ts_preview.xml

< %APPDATA%\*.exe /s >
[2009.02.18 21:27:31 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\inst.exe
[2011.07.17 20:58:24 | 000,171,520 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\conhost.exe
[2010.08.07 17:19:33 | 000,012,862 | R--- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{0E2B767B-EA6A-489B-BF83-8083FE1DB661}\_1EEFFF72773535163E4216.exe
[2009.01.28 20:46:40 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{89661B04-C646-4412-B6D3-5E19F02F1F37}\ARPPRODUCTICON.exe
[2010.10.01 20:25:34 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2009.01.08 15:44:06 | 000,070,936 | ---- | M] (Octoshape ApS) -- C:\Documents and Settings\Honza\Data aplikací\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
[2010.06.28 15:47:12 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Honza\Data aplikací\Real\Update\setup3.10\setup.exe
[2011.01.30 19:05:02 | 000,510,120 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Honza\Data aplikací\Real\Update\setup3.14\setup.exe
[2011.07.12 21:46:56 | 000,308,864 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Honza\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\8.01\rnupgagent.exe
[2011.07.12 21:34:46 | 025,827,984 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Honza\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\8.01\stub_data\RealPlayer.exe
[2011.05.28 00:32:56 | 000,675,088 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Honza\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\8.01\stub_exe\RealPlayer.exe
[2009.10.16 14:36:36 | 000,069,632 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Samsung\New PC Studio\DriverChecker.exe

< %SYSTEMDRIVE%\*.exe >
[2009.03.28 20:33:55 | 000,000,000 | RHS- | M] () -- C:\agytpaofs.exe
[2009.04.11 19:37:23 | 000,000,000 | RHS- | M] () -- C:\baumnsbig.exe
[2009.03.06 14:07:33 | 000,000,000 | RHS- | M] () -- C:\bawyszyeh.exe
[2009.03.23 22:09:17 | 000,000,000 | RHS- | M] () -- C:\bmvpnabqg.exe
[2009.03.06 14:00:08 | 000,000,000 | RHS- | M] () -- C:\bsbziekhr.exe
[2009.04.07 11:41:57 | 000,000,000 | RHS- | M] () -- C:\ckynoaxan.exe
[2009.04.13 16:20:15 | 000,000,000 | RHS- | M] () -- C:\cxgnbcqxp.exe
[2008.12.17 01:51:36 | 000,000,000 | RHS- | M] () -- C:\dtolyklrz.exe
[2009.11.11 21:00:38 | 000,000,000 | RHS- | M] () -- C:\edrujizbg.exe
[2009.04.07 11:42:43 | 000,000,000 | RHS- | M] () -- C:\eezqtsnzu.exe
[2009.04.11 19:44:14 | 000,000,000 | RHS- | M] () -- C:\ezwiznhzp.exe
[2009.03.15 20:09:10 | 000,000,000 | RHS- | M] () -- C:\fdjsluzad.exe
[2009.03.28 21:42:30 | 000,000,000 | RHS- | M] () -- C:\hhattrxpu.exe
[2009.04.01 16:46:54 | 000,080,384 | RHS- | M] () -- C:\hhthjbjet.exe
[2009.03.06 14:06:08 | 000,000,000 | RHS- | M] () -- C:\htbvourxp.exe
[2009.04.07 11:51:59 | 000,000,000 | RHS- | M] () -- C:\iccuunrxd.exe
[2009.04.11 19:49:00 | 000,000,000 | RHS- | M] () -- C:\igxqyvaht.exe
[2009.03.06 14:03:18 | 000,000,000 | RHS- | M] () -- C:\jgeuztvej.exe
[2009.04.01 16:48:01 | 000,000,000 | RHS- | M] () -- C:\kcvigsmfq.exe
[2009.12.12 01:59:10 | 000,080,384 | RHS- | M] () -- C:\kevfwgwkk.exe
[2009.04.07 11:43:28 | 000,000,000 | RHS- | M] () -- C:\kpjypfflc.exe
[2009.03.28 20:43:34 | 000,000,000 | RHS- | M] () -- C:\ljpkrzncq.exe
[2009.04.11 19:34:03 | 000,000,000 | RHS- | M] () -- C:\lofpfhjhk.exe
[2010.03.23 20:58:07 | 000,003,639 | ---- | M] () -- C:\mitm.exe
[2009.04.07 11:52:05 | 000,000,000 | RHS- | M] () -- C:\ngsarmgdg.exe
[2009.03.06 14:00:43 | 000,000,000 | RHS- | M] () -- C:\noukjhjnn.exe
[2009.04.11 19:36:14 | 000,000,000 | RHS- | M] () -- C:\nqcqxupyr.exe
[2009.03.06 13:59:19 | 000,000,000 | RHS- | M] () -- C:\nuosoniop.exe
[2009.03.28 20:54:48 | 000,000,000 | RHS- | M] () -- C:\ouwefteag.exe
[2009.04.07 11:55:27 | 000,000,000 | RHS- | M] () -- C:\pcuhqmvks.exe
[2009.03.28 20:59:38 | 000,000,000 | RHS- | M] () -- C:\qsgbmebkv.exe
[2009.03.06 14:07:18 | 000,000,000 | RHS- | M] () -- C:\redjbdmzm.exe
[2009.04.09 12:07:30 | 000,000,000 | RHS- | M] () -- C:\sfyuopqom.exe
[2009.04.13 16:23:24 | 000,000,000 | RHS- | M] () -- C:\slexzetqe.exe
[2009.04.11 19:50:08 | 000,000,000 | RHS- | M] () -- C:\sobemyoyd.exe
[2009.04.07 11:53:50 | 000,000,000 | RHS- | M] () -- C:\txlesmnij.exe
[2009.03.28 21:42:24 | 000,000,000 | RHS- | M] () -- C:\ulntbkkfd.exe
[2009.04.01 16:42:51 | 000,000,000 | RHS- | M] () -- C:\uufbjtsts.exe
[2009.04.07 11:53:09 | 000,000,000 | RHS- | M] () -- C:\uurglnqls.exe
[2009.04.11 19:49:27 | 000,080,384 | RHS- | M] () -- C:\uzaqtavua.exe
[2009.03.28 21:16:03 | 000,000,000 | RHS- | M] () -- C:\wbzexysuk.exe
[2009.11.22 21:05:43 | 000,000,000 | RHS- | M] () -- C:\ygsymison.exe
[2009.04.11 19:51:16 | 000,000,000 | RHS- | M] () -- C:\yqxuxjhch.exe
[1 C:\*.tmp files -> C:\*.tmp -> ]

< >

< >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-07-13 15:54:22

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s >
"StateIndex" = 1

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
BOOTEXECUTE REG_MULTI_SZ autocheck autochk /r \??\J:\0autocheck autochk *\0\0

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER

< >

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition (bootscreen)" /fastdetect /usepmtimer /noexecute=AlwaysOff /KERNEL=kernel1.exe
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /usepmtimer /noexecute=AlwaysOff
[spybotsd]
timeout.old=30

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.07.19 21:05:14 | 000,000,512 | ---- | M] () MD5=9079297771060200C3E496DABCC5B777 -- C:\PhysicalMBR.bin
[1 C:\*.tmp files -> C:\*.tmp -> ]

< End of report >

Pinehead · #7 Příspěvek od **Pinehead** » 19 črc 2011 21:15

OTL Extras logfile created on: 19.7.2011 21:02:34 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Honza\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,50 Gb Total Physical Memory | 0,44 Gb Available Physical Memory | 29,38% Memory free
3,35 Gb Paging File | 2,35 Gb Available in Paging File | 69,95% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 123,11 Gb Total Space | 9,09 Gb Free Space | 7,38% Space Free | Partition Type: NTFS
Drive D: | 4,87 Gb Total Space | 0,03 Gb Free Space | 0,57% Space Free | Partition Type: NTFS
Drive K: | 1,90 Gb Total Space | 0,58 Gb Free Space | 30,40% Space Free | Partition Type: FAT

Computer Name: PETR-JRFNPVYNNY | User Name: Honza | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 1
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"DisableThumbnailCache" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"26202:TCP" = 26202:TCP:*:Enabled:BitComet 26202 TCP
"26202:UDP" = 26202:UDP:*:Enabled:BitComet 26202 UDP
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
"3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724
"26000:TCP" = 26000:TCP:*:Enabled:s

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.4\ICQ.exe" = C:\Program Files\ICQ7.4\ICQ.exe:*:Enabled:ICQ7.4 -- (ICQ, LLC.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ6\ICQ.exe" = C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ Library
"C:\WINDOWS\system32\bmyfmhzxf.exe" = C:\WINDOWS\system32\bmyfmhzxf.exe:*:Enabled:Microsoft OCX
"C:\WINDOWS\system32\wrzpyvxiy.exe" = C:\WINDOWS\system32\wrzpyvxiy.exe:*:Enabled:Microsoft OCX
"C:\WINDOWS\system32\myaqhaaqm.exe" = C:\WINDOWS\system32\myaqhaaqm.exe:*:Enabled:Microsoft OCX
"C:\WINDOWS\system32\ridklelye.exe" = C:\WINDOWS\system32\ridklelye.exe:*:Enabled:Microsoft OCX
"C:\WINDOWS\system32\gmahyrkqj.exe" = C:\WINDOWS\system32\gmahyrkqj.exe:*:Enabled:Microsoft OCX
"C:\WINDOWS\system32\amkexoypm.exe" = C:\WINDOWS\system32\amkexoypm.exe:*:Enabled:Microsoft OCX
"C:\WINDOWS\system32\vcljaldpr.exe" = C:\WINDOWS\system32\vcljaldpr.exe:*:Enabled:Microsoft OCX
"C:\WINDOWS\system32\eunydkqfv.exe" = C:\WINDOWS\system32\eunydkqfv.exe:*:Enabled:Microsoft OCX
"C:\WINDOWS\system32\yzrhurpdo.exe" = C:\WINDOWS\system32\yzrhurpdo.exe:*:Enabled:Microsoft OCX
"C:\WINDOWS\system32\hvtyanrzw.exe" = C:\WINDOWS\system32\hvtyanrzw.exe:*:Enabled:Microsoft OCX
"C:\WINDOWS\system32\qwanbfthr.exe" = C:\WINDOWS\system32\qwanbfthr.exe:*:Enabled:Microsoft OCX
"C:\Program Files\BitLord\BitLord.exe" = C:\Program Files\BitLord\BitLord.exe:*:Enabled:BitLord
"C:\WINDOWS\system32\dpnsvr.exe" = C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server -- (Microsoft Corporation)
"C:\Program Files\Cenega Czech\VIETCONG\vietcong.exe" = C:\Program Files\Cenega Czech\VIETCONG\vietcong.exe:*:Enabled:vietcong -- ()
"C:\Program Files\BitLord\Downloads\GmHack.EXE" = C:\Program Files\BitLord\Downloads\GmHack.EXE:*:Enabled:Control
"C:\Games\Paintball2\paintball2.exe" = C:\Games\Paintball2\paintball2.exe:*:Enabled:paintball2
"C:\Documents and Settings\Honza\Plocha\StrongDC.exe" = C:\Documents and Settings\Honza\Plocha\StrongDC.exe:*:Enabled:StrongDC++
"C:\WINDOWS\system32\drivers\ntndis.exe" = C:\WINDOWS\system32\drivers\ntndis.exe:*:Enabled:Control
"C:\World of Warcraft\GmHack.EXE" = C:\World of Warcraft\GmHack.EXE:*:Enabled:Control
"C:\Program Files\eMule\emule.exe" = C:\Program Files\eMule\emule.exe:*:Enabled:eMule -- (http://www.emule-project.net)
"C:\Program Files\Sports Interactive\Football Manager 2008\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2008\fm.exe:*:Disabled:Football Manager 2008
"C:\Program Files\Winamp Remote\bin\Orb.exe" = C:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb
"C:\Program Files\Winamp Remote\bin\OrbTray.exe" = C:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray
"C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe" = C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client
"C:\Program Files\Warcraft III\Warcraft III.exe" = C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III -- (Blizzard Entertainment)
"C:\Documents and Settings\Petr\Plocha\strong\StrongDC.exe" = C:\Documents and Settings\Petr\Plocha\strong\StrongDC.exe:*:Enabled:StrongDC++
"C:\Documents and Settings\Honza\Plocha\Programy\StrongDC.exe" = C:\Documents and Settings\Honza\Plocha\Programy\StrongDC.exe:*:Enabled:StrongDC++ -- (Big Muscle, KohlSoft® Corporation

)
"C:\Documents and Settings\Honza\Plocha\strong\StrongDC.exe" = C:\Documents and Settings\Honza\Plocha\strong\StrongDC.exe:*:Enabled:StrongDC++
"C:\Documents and Settings\Petr\Plocha\StrongDC.exe" = C:\Documents and Settings\Petr\Plocha\StrongDC.exe:*:Enabled:StrongDC++
"C:\World of Warcraft\Repair.exe" = C:\World of Warcraft\Repair.exe:*:Enabled:Blizzard Repair Utility
"C:\World of Warcraft\Launcher.exe" = C:\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher
"C:\Program Files\World of Warcraft\Repair.exe" = C:\Program Files\World of Warcraft\Repair.exe:*:Enabled:Blizzard Repair Utility
"C:\Program Files\BitLord2\BitLord.exe" = C:\Program Files\BitLord2\BitLord.exe:*:Enabled:Bitlord2
"C:\Program Files\BitComet\BitComet.exe" = C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe -- (www.BitComet.com)
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent
"C:\Program Files\Hamachi\hamachi.exe" = C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6
"C:\Program Files\xerox\nwwia\XrxFTPLt.exe" = C:\Program Files\xerox\nwwia\XrxFTPLt.exe:*:Enabled:XrxFTPLt -- ()
"C:\Casino\ParadiseCasino - Czech\casino.exe" = C:\Casino\ParadiseCasino - Czech\casino.exe:*:Enabled:casino
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)
"C:\Program Files\Electronic Arts\Need for Speed Carbon\NFSC.exe" = C:\Program Files\Electronic Arts\Need for Speed Carbon\NFSC.exe:*:Enabled:NFSC
"C:\Program Files\Metin2_CZ\metin2client.bin" = C:\Program Files\Metin2_CZ\metin2client.bin:*:Enabled:metin2client
"C:\WINDOWS\system32\LEXPPS.EXE" = C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\TrackMania Sunrise\TmSunrise.exe" = C:\Program Files\TrackMania Sunrise\TmSunrise.exe:*:Enabled:TmSunrise
"C:\Program Files\TmNationsForever\TmForever.exe" = C:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever
"C:\Documents and Settings\Honza\Local Settings\Temp\Rar$EX01.532\Empire Earth\Empire Earth.exe" = C:\Documents and Settings\Honza\Local Settings\Temp\Rar$EX01.532\Empire Earth\Empire Earth.exe:*:Enabled:Empire Earth
"C:\Program Files\World of Warcraft\Launcher.exe" = C:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher
"C:\Program Files\World of Warcraft\WoW-3.2.0-enGB-downloader.exe" = C:\Program Files\World of Warcraft\WoW-3.2.0-enGB-downloader.exe:*:Enabled:Blizzard Downloader
"C:\Program Files\Valve\hl.exe" = C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher
"C:\Program Files\Valve\hltv.exe" = C:\Program Files\Valve\hltv.exe:*:Enabled:HLTV Launcher
"C:\Program Files\Heroes of Newerth\hon.exe" = C:\Program Files\Heroes of Newerth\hon.exe:*:Enabled:Heroes of Newerth
"C:\Documents and Settings\Honza\Dokumenty\Stažené soubory\WoW-BurningCrusade-enGB-Installer-downloader.exe" = C:\Documents and Settings\Honza\Dokumenty\Stažené soubory\WoW-BurningCrusade-enGB-Installer-downloader.exe:*:Enabled:Blizzard Downloader
"C:\WINDOWS\system32\qbjsnltxn.exe" = C:\WINDOWS\system32\qbjsnltxn.exe:*:Enabled:Microsoft OCX
"C:\Program Files\Counter-Strike Source\hl2.exe" = C:\Program Files\Counter-Strike Source\hl2.exe:*:Enabled:hl2
"C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe" = C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe:*:Enabled:speed2
"C:\Program Files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe:*:Enabled:Pro Evolution Soccer 2009
"C:\Program Files\World of Warcraft\World of Warcraft\WoW-3.2.0-enGB-downloader.exe" = C:\Program Files\World of Warcraft\World of Warcraft\WoW-3.2.0-enGB-downloader.exe:*:Enabled:Blizzard Downloader
"C:\Program Files\World of Warcraft\World of Warcraft\Launcher.exe" = C:\Program Files\World of Warcraft\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher
"C:\Program Files\Activision Value\Monster Garage\MonsterGarage.exe" = C:\Program Files\Activision Value\Monster Garage\MonsterGarage.exe:*:Enabled:Monster Garage
"C:\Program Files\Activision Value\Street Legal Racing Redline\StreetLegal_Redline.exe" = C:\Program Files\Activision Value\Street Legal Racing Redline\StreetLegal_Redline.exe:*:Enabled:Street Legal 2 -- (Invictus Games Ltd.)
"C:\Documents and Settings\Honza\Data aplikací\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" = C:\Documents and Settings\Honza\Data aplikací\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe:*:Enabled:Main program for Octoshape client -- (Octoshape ApS)
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Program Files\Firefly Studios\Stronghold Crusader\Stronghold Crusader.exe" = C:\Program Files\Firefly Studios\Stronghold Crusader\Stronghold Crusader.exe:*:Enabled:Stronghold Crusader
"C:\Program Files\Electronic Arts\EADM\Core.exe" = C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager
"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" = C:\Program Files\Common Files\Real\Update_OB\realsched.exe:*:Disabled:RealNetworks Scheduler -- (RealNetworks, Inc.)
"C:\Documents and Settings\All Users\Data aplikací\Electronic Arts\Need For Speed World\Data\nfsw.exe" = C:\Documents and Settings\All Users\Data aplikací\Electronic Arts\Need For Speed World\Data\nfsw.exe:*:Enabled:Need for Speed World
"C:\Documents and Settings\Honza\Dokumenty\Nová složka (2)\Sindicate\client.bin" = C:\Documents and Settings\Honza\Dokumenty\Nová složka (2)\Sindicate\client.bin:*:Enabled:client
"C:\Program Files\QuadCoreM2\metin2client.bin" = C:\Program Files\QuadCoreM2\metin2client.bin:*:Enabled:metin2client
"C:\Documents and Settings\Honza\Dokumenty\Downloads\Metin2client.bin" = C:\Documents and Settings\Honza\Dokumenty\Downloads\Metin2client.bin:*:Enabled:Metin2client
"C:\Documents and Settings\Honza\Plocha\World of Warcraft2\Launcher.exe" = C:\Documents and Settings\Honza\Plocha\World of Warcraft2\Launcher.exe:*:Enabled:Blizzard Launcher
"C:\Documents and Settings\Honza\Plocha\World of Warcraft2\Launcher.patch.exe" = C:\Documents and Settings\Honza\Plocha\World of Warcraft2\Launcher.patch.exe:*:Enabled:Blizzard Launcher
"C:\Program Files\World of Warcraft\Launcher.patch.exe" = C:\Program Files\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher
"C:\Program Files\Metin2\metin2client.bin" = C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client
"C:\Documents and Settings\Honza\Dokumenty\QaudcoreM2\QC2011\core.bin" = C:\Documents and Settings\Honza\Dokumenty\QaudcoreM2\QC2011\core.bin:*:Enabled:core
"C:\Documents and Settings\Honza\Dokumenty\Downloads\WoW-enGB-Installer-downloader.exe" = C:\Documents and Settings\Honza\Dokumenty\Downloads\WoW-enGB-Installer-downloader.exe:*:Enabled:Blizzard Downloader
"C:\Documents and Settings\Honza\Dokumenty\Downloads\WoW-BurningCrusade-enGB-Installer-downloader.exe" = C:\Documents and Settings\Honza\Dokumenty\Downloads\WoW-BurningCrusade-enGB-Installer-downloader.exe:*:Enabled:Blizzard Downloader
"C:\Documents and Settings\Honza\Dokumenty\Downloads\Celestial-World\CelestialWorld.exe" = C:\Documents and Settings\Honza\Dokumenty\Downloads\Celestial-World\CelestialWorld.exe:*:Enabled:Customizable 2010 Client Launcher
"C:\Games\World_of_Tanks_closed_Beta\WorldOfTanks.exe" = C:\Games\World_of_Tanks_closed_Beta\WorldOfTanks.exe:*:Enabled:World of Tanks
"C:\Program Files\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe" = C:\Program Files\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe:*:Enabled:Blizzard Downloader
"C:\Documents and Settings\Honza\Local Settings\Temp\Blizzard Installer Bootstrap - 1991e2b4\Installer.exe" = C:\Documents and Settings\Honza\Local Settings\Temp\Blizzard Installer Bootstrap - 1991e2b4\Installer.exe:*:Enabled:Blizzard Installer
"C:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe" = C:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe:*:Enabled:aTube Catcher to download and convert videos. -- (DsNET)
"C:\Program Files\ICQ7.4\ICQ.exe" = C:\Program Files\ICQ7.4\ICQ.exe:*:Enabled:ICQ7.4 -- (ICQ, LLC.)
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe" = C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- ()
"C:\Program Files\Garena\Garena.exe" = C:\Program Files\Garena\Garena.exe:*:Enabled:Garena -- (Garena Online PTE LTD)
"C:\Program Files\MSI\Live Update 5\LU5.exe" = C:\Program Files\MSI\Live Update 5\LU5.exe:*:Enabled:LU5 -- ()
"C:\Documents and Settings\Honza\Dokumenty\WARCEAFT 3 NEW DOTA\Warcraft III\Warcraft III.exe" = C:\Documents and Settings\Honza\Dokumenty\WARCEAFT 3 NEW DOTA\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III -- (Blizzard Entertainment)
"C:\Documents and Settings\Honza\Dokumenty\Downloads\Flash-Player.exe" = C:\Documents and Settings\Honza\Dokumenty\Downloads\Flash-Player.exe:*:Enabled:C:\Documents and Settings\Honza\Dokumenty\Downloads\Flash-Player.exe
"C:\WINDOWS\update.1\svchost.exe" = C:\WINDOWS\update.1\svchost.exe:*:Enabled:C:\WINDOWS\update.1\svchost.exe
"C:\WINDOWS\services32.exe" = C:\WINDOWS\services32.exe:*:Enabled:C:\WINDOWS\services32.exe
"C:\WINDOWS\update.2\svchost.exe" = C:\WINDOWS\update.2\svchost.exe:*:Enabled:C:\WINDOWS\update.2\svchost.exe -- ()
"C:\WINDOWS\update.3\svchost.exe" = C:\WINDOWS\update.3\svchost.exe:*:Enabled:C:\WINDOWS\update.3\svchost.exe -- ()
"C:\WINDOWS\sysdriver32.exe" = C:\WINDOWS\sysdriver32.exe:*:Enabled:sysdriver32
"C:\Program Files\AVG\AVG9\avgam.exe" = C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgdiagex.exe" = C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgemc.exe" = C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{009E5DF2-3F97-480B-89DA-F2D5E672E14A}_is1" = Live Update 5
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}" = Microsoft Games for Windows - LIVE Redistributable
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0E2B767B-EA6A-489B-BF83-8083FE1DB661}" = Pcsx2 0.9.6
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}" = LG PC Suite II
"{14EC807A-F88E-4FCF-8013-CB909F930E88}_is1" = PDF-Tools 4
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F77C418-2C90-459C-BD33-B56A4182B9FA}" = System Requirements Lab CYRI
"{20749F76-4228-43AD-8AB5-E7B20D8040C4}" = hph_readme
"{2300EE96-0A41-4FAB-BD03-989EC44577A0}" = Acronis Disk Director Suite
"{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress
"{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D.com FurMark 1.9.0
"{266C7330-C0F4-49E5-8F20-A56F9F822875}" = SweetIM Toolbar for Internet Explorer 3.3
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 26
"{2E376AD9-5C49-4F7D-A0BA-6A44E8FA5A3B}" = Next Generation Visualisations
"{330DED45-0E5A-4092-8127-F643B5E7913C}" = TurboCAD Designer 15
"{350C97C4-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36DC3E2F-CD8C-4953-9E8F-9A1916D10AA1}" = hph_software
"{36FDBE6E-6684-462B-AE98-9A39A1B200CC}" = HP Product Assistant
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm
"{49FC50FC-F965-40D9-89B4-CBFF80941033}" = Windows Movie Maker 2.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D243BA7-9AC4-46D1-90E5-EEB88974F501}" = Microsoft Games for Windows - LIVE
"{4EA684E9-5C81-4033-A696-3019EC57AC3A}" = HPProductAssistant
"{5335DADB-34BA-4AE8-A519-648D78498846}" = Skype™ 5.3
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{66910000-8B30-4973-A159-6371345AFFA5}" = WebReg
"{669595F6-17BE-482D-8143-8C01C2ECA2CF}" = Alibre Design
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package
"{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}" = ICQ7.4
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.4.8.123
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{818ABC3C-635C-4651-8183-D0E9640B7DD1}" = HP Update
"{8331C3EA-0C91-43AA-A4D4-27221C631139}" = Status
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8CE4E6E9-9D55-43FB-9DDB-688C976BFC05}" = Unload
"{8D273DE5-ABFA-4BD0-A9D7-EE9C971438C4}_is1" = PDF-Viewer
"{8DAE4336-2B71-11D4-9A6C-006067325E47}" = Baldur's Gate 2
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90F50409-6000-11D3-8CFE-0150048383C9}" = Visual Basic for Applications (R) Core
"{90F60409-6000-11D3-8CFE-0150048383C9}" = Visual Basic for Applications (R) Core - English
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A1E4213E-06AD-4C58-8315-92F11531D960}" = SweetIM for Messenger 2.6
"{A2B4621B-CEB9-4E44-95FD-3500D4DB3727}" = ioCentre
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A8D93648-9F7F-407D-915C-62044644C3DA}" = MSI to redistribute MS VS2005 CRT libraries
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1029-7B44-A93000000001}" = Adobe Reader 9.3 - Czech
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3
"{ACCCEE83-B49B-4964-8A4F-378B8FBC9F75}" = hph_ProductContext
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B19F9155-9337-4807-B5EF-ED471DDB2CCE}" = hph_software_req
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.85
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.3.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{BE365801-FB4B-49D7-87D2-9477EE371F1C}" = D1300_Help
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1080852-065E-4991-9260-F3756E3CC182}" = CursorFX
"{C13F11D1-00BA-44DF-B626-35E1C03F85E5}" = D1300
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{C3ABE126-2BB2-4246-BFE1-6797679B3579}" = LG USB Modem driver
"{C69405BB-27AF-4940-B3DA-04910B4DFD23}_is1" = aTube Catcher 1.0
"{C7F54CF8-D6FB-4E0A-93A3-E68AE0D6C476}" = SolutionCenter
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC419DDC-E0F0-4013-B25A-6FA036516F0D}" = Need for Speed™ ProStreet
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B7}" = WinZip 12.0
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2A3C9D5-0B56-4656-8277-7EDC65D62B6E}" = HP Photosmart and Deskjet 7.0 Software (csy)
"{DBC20735-34E6-4E97-A9E5-2066B66B243D}" = TrayApp
"{DCF5C463-BD5C-4982-91F9-2C3F8F9E9C88}" = Vietcong & Vietcong: Fist Alpha
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E1B80DEE-A795-4258-8445-074C06AE3AB8}" = MarketResearch
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E42E07F5-5A90-4BA9-B55A-79FCF9EAF9B5}" = STK02N 2.4
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{EF5B1E83-1403-4F0E-A8E6-C169DF0CCE8C}" = LG PC Suite II
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Balíček ovladače systému Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Balíček ovladače systému Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Balíček ovladače systému Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"ABBYY FineReader 4.0 Sprint" = ABBYY FineReader 4.0 Sprint
"Ad-aware 6 Personal" = Ad-aware 6 Personal
"Adobe Acrobat 4.0" = Adobe Acrobat 4.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Advanced PC Tweaker_is1" = Advanced PC Tweaker v4.2
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"Applian Director1.1" = Applian Director
"aTube Catcher" = aTube Catcher
"audcle" = Plus! MP3 Audio Converter LE
"AVG9Uninstall" = AVG 9.0
"BitComet" = BitComet 1.11
"Browser Plugin" = Browser Plugin
"CCleaner" = CCleaner (remove only)
"CDex" = CDex - Open Source Digital Audio CD Extractor
"Company's Calendar_is1" = Company's Calendar ver. 1.0.1.315
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"CursorFX" = CursorFX
"Czech Soccer Manager 2002 Final Editionverze 4.0 (31.3.2006)" = Czech Soccer Manager 2002 Final Edition
"DivX Setup.divx.com" = DivX Setup
"DriverAgent.exe" = DriverAgent by eSupport.com
"drmtool.inf" = Personal License Update Wizard for Windows Media Player
"EAX Unified" = EAX Unified
"eMule" = eMule
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"FBDBServer_2_1_is1" = Firebird 2.1.2.18118 (Win32)
"GameParkClient_is1" = GamePark
"Garena" = Garena 2010
"Google Chrome" = Google Chrome
"Google Updater" = Google Updater
"Hodiny_is1" = Hodiny
"HP Imaging Device Functions" = HP Imaging Device Functions 7.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 7.0
"HPExtendedCapabilities" = HP Customer Participation Program 7.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Indeo® Software" = Indeo® Software
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{8DAE4336-2B71-11D4-9A6C-006067325E47}" = Baldur's Gate 2
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"Krteček_is1" = Krteček 2.1.2
"Language Pack for Ad-aware 6" = Language Pack for Ad-aware 6
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package
"mmmusic" = Movie Maker Background Music Files
"mmsounds" = Movie Maker Sound Effects
"mmtitle" = Movie Maker Title Images
"Mozilla Firefox (3.6.18)" = Mozilla Firefox (3.6.18)
"mplibwiz.inf" = Media Library Management Wizard
"mpxlswiz.inf" = Windows Media Player Playlist Import to Excel Wizard
"mpxptray.inf" = Windows Media Player Tray Control
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NeroMultiInstaller!UninstallKey" = Nero Suite
"NETGATE Registry Cleaner_is1" = NETGATE Registry Cleaner
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"ObjectDock" = ObjectDock
"OpenAL" = OpenAL
"Picasa 3" = Picasa 3
"Plus500" = Plus500
"POD-Bot 2.5" = POD-Bot 2.5
"PowerISO" = PowerISO
"RealPlayer 6.0" = RealPlayer
"Replay Media Catcher 3.11" = Replay Media Catcher
"Room Arranger" = Room Arranger
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"Songbird-release-1434" = Songbird 1.4.2 (Build 1434)
"The KMPlayer" = The KMPlayer (remove only)
"Theme Manager" = Theme Manager
"wa2wmp" = Windows Media Player Skin Importer
"Winamp Toolbar" = Winamp Toolbar
"WindowBlinds" = WindowBlinds
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMBK2" = Windows Media Bonus Pack for Windows XP
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"World of Warcraft" = World of Warcraft
"World of Warcraft Desktop" = World of Warcraft Desktop
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XP SysPad V6.0.5.9.2 by XTORT.net ©_is1" = XP SysPad V6.0.5.9.2 by XTORT.net ©
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Octoshape Streaming Services" = Octoshape Streaming Services
"UnityWebPlayer" = Unity Web Player
"Warcraft III" = Warcraft III: All Products

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 17.4.2009 15:45:04 | Computer Name = PETR-JRFNPVYNNY | Source = avast! | ID = 33554522
Description =

Error - 17.4.2009 15:45:04 | Computer Name = PETR-JRFNPVYNNY | Source = avast! | ID = 33554522
Description =

Error - 21.4.2009 13:35:03 | Computer Name = PETR-JRFNPVYNNY | Source = avast! | ID = 33554522
Description =

Error - 23.4.2009 10:12:47 | Computer Name = PETR-JRFNPVYNNY | Source = avast! | ID = 33554522
Description =

Error - 8.5.2009 8:29:52 | Computer Name = PETR-JRFNPVYNNY | Source = avast! | ID = 33554522
Description =

Error - 8.5.2009 8:29:52 | Computer Name = PETR-JRFNPVYNNY | Source = avast! | ID = 33554522
Description =

Error - 8.5.2009 8:29:52 | Computer Name = PETR-JRFNPVYNNY | Source = avast! | ID = 33554522
Description =

Error - 23.5.2009 11:37:00 | Computer Name = PETR-JRFNPVYNNY | Source = avast! | ID = 33554522
Description =

Error - 27.5.2009 7:27:56 | Computer Name = PETR-JRFNPVYNNY | Source = avast! | ID = 33554522
Description =

Error - 11.12.2009 19:56:03 | Computer Name = PETR-JRFNPVYNNY | Source = avast! | ID = 33554522
Description =

[ Application Events ]
Error - 11.7.2011 5:38:44 | Computer Name = PETR-JRFNPVYNNY | Source = Application Error | ID = 1000
Description = Chybující aplikace divxupdate.exe, verze 1.0.1.10, chybující modul
msvcp80.dll, verze 8.0.50727.6195, adresa chyby 0x000100b5.

Error - 12.7.2011 21:28:09 | Computer Name = PETR-JRFNPVYNNY | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x063bc260.

Error - 13.7.2011 6:24:10 | Computer Name = PETR-JRFNPVYNNY | Source = Application Error | ID = 1000
Description = Chybující aplikace wmplayer.exe, verze 11.0.5721.5145, chybující modul
quartz.dll, verze 6.5.2600.5933, adresa chyby 0x0009622e.

Error - 13.7.2011 11:32:28 | Computer Name = PETR-JRFNPVYNNY | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace DiskMark.exe, verze 3.0.1.2010, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 13.7.2011 11:37:29 | Computer Name = PETR-JRFNPVYNNY | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace DiskMark.exe, verze 3.0.1.2010, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 14.7.2011 8:58:23 | Computer Name = PETR-JRFNPVYNNY | Source = Application Error | ID = 1000
Description = Chybující aplikace chrome.exe, verze 0.0.0.0, chybující modul msvcr80.dll,
verze 8.0.50727.6195, adresa chyby 0x000173c1.

Error - 15.7.2011 12:08:27 | Computer Name = PETR-JRFNPVYNNY | Source = Application Error | ID = 1000
Description = Chybující aplikace lu5.exe, verze 5.0.60.0, chybující modul lu5.exe,
verze 5.0.60.0, adresa chyby 0x00047705.

Error - 15.7.2011 12:08:50 | Computer Name = PETR-JRFNPVYNNY | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace ashDisp.exe, verze 4.8.1335.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 15.7.2011 17:27:07 | Computer Name = PETR-JRFNPVYNNY | Source = Application Error | ID = 1000
Description = Chybující aplikace chrome.exe, verze 0.0.0.0, chybující modul msvcr80.dll,
verze 8.0.50727.6195, adresa chyby 0x000173e8.

Error - 18.7.2011 2:38:36 | Computer Name = PETR-JRFNPVYNNY | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x0539c260.

[ System Events ]
Error - 19.7.2011 10:03:06 | Computer Name = PETR-JRFNPVYNNY | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 19.7.2011 10:03:06 | Computer Name = PETR-JRFNPVYNNY | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 19.7.2011 10:03:06 | Computer Name = PETR-JRFNPVYNNY | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 19.7.2011 10:03:06 | Computer Name = PETR-JRFNPVYNNY | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 19.7.2011 10:03:07 | Computer Name = PETR-JRFNPVYNNY | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 19.7.2011 10:03:07 | Computer Name = PETR-JRFNPVYNNY | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 19.7.2011 11:04:52 | Computer Name = PETR-JRFNPVYNNY | Source = Service Control Manager | ID = 7034
Description = Služba AVG9IDSAgent byla neočekávaně ukončena. Tento stav nastal již
1krát.

Error - 19.7.2011 11:06:07 | Computer Name = PETR-JRFNPVYNNY | Source = System Error | ID = 1003
Description = Kód chyby 1000007e, parametr1 c0000005, parametr2 ae055773, parametr3
f78daae0, parametr4 f78da7dc.

Error - 19.7.2011 11:49:26 | Computer Name = PETR-JRFNPVYNNY | Source = sr | ID = 1
Description = Filtr nástroje Obnovení systému zjistil neočekávanou chybu 0xC000007F
při zpracování souboru desktop.ini na svazku HarddiskVolume2. Sledování svazku
bylo ukončeno.

Error - 19.7.2011 13:32:26 | Computer Name = PETR-JRFNPVYNNY | Source = Service Control Manager | ID = 7011
Description = Vypršel časový limit (30000 milisekund) čekání na odezvu transakce
služby avg9wd.

< End of report >

#8 Příspěvek od **Caroprd111** » 19 črc 2011 21:58

Znovu spusťte OTL a do spodního bílého okna vložte následující skript. Poté klikněte na Opravit, PC se restartuje, výsledný log vložte sem.

Kód: Vybrat vše

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]

:OTL
SRV - File not found [Auto | Stopped] -- -- (wxpdrivers)
SRV - File not found [On_Demand | Stopped] -- -- (WPFFontCache_v0400)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.07.17 21:20:13 | 000,340,480 | ---- | M] () [Auto | Running] -- C:\WINDOWS\update.5.0\svchost.exe -- (srvbtcclient)
IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found
HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... p=aus&qkw=%s&tbid=60040
IE - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60040
IE - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "moz2-ytff-"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "moz2-ytff-"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.crawler.com/homepage.aspx?tbid=60040"
FF - prefs.js..extensions.enabledItems: {76063e7f-3558-4b68-8287-54eb6512adc0}:2.7.1
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.9
FF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.11.2
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.2.20100119091315
FF - prefs.js..extensions.enabledItems: radiobar@toolbar:1.0.0
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\{0B38152B-1B20-484D-A11F-5E04A9B0661F}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\{20A82645-C095-46ED-80E3-08825760534B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\{635ABD67-4FE9-1B23-4F01-E679FA7484C1}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\{76063E7F-3558-4B68-8287-54EB6512ADC0}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\PLUGIN@GAMEPLAYLABS.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\ZN8WLMJQ.DEFAULT\EXTENSIONS\RADIOBAR@TOOLBAR
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O4 - HKLM..\Run: [conhost] C:\Documents and Settings\Honza\Data aplikací\Microsoft\conhost.exe ()
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [systemup] File not found
O4 - HKLM..\Run: [tray_ico] File not found
O4 - HKLM..\Run: [tray_ico1] File not found
O4 - HKLM..\Run: [tray_ico2] File not found
O4 - HKLM..\Run: [tray_ico3] File not found
O4 - HKLM..\Run: [tray_ico4] File not found
O4 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005..\Run: [SpyEmergency] File not found
F3 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005 WinNT: Load - (C:\DOCUME~1\Honza\LOCALS~1\Temp\csrss.exe) - File not found
O15 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..Trusted Domains: com ([www.msi] http in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..Trusted Domains: com.tw ([asia.msi] http in Trusted sites)
O15 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005\..Trusted Domains: com.tw ([global.msi] http in Trusted sites)
O16 - DPF: {41564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mvadvd.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O20 - HKU\S-1-5-21-1801674531-1580818891-839522115-1005 Winlogon: Shell - (C:\Documents and Settings\Honza\Data aplikací\dwm.exe) - File not found
O31 - SafeBoot: AlternateShell - services32.exe
O33 - MountPoints2\{0f4d2ea1-1179-11de-81e4-001d92ab8255}\Shell\Auto\command - "" = I:\dukopuuwk.exe
O33 - MountPoints2\{0f4d2ea1-1179-11de-81e4-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL dukopuuwk.exe
O33 - MountPoints2\{0f4d2eee-1179-11de-81e4-001d92ab8255}\Shell\Auto\command - "" = F:\iclgesbqh.exe
O33 - MountPoints2\{0f4d2eee-1179-11de-81e4-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL iclgesbqh.exe
O33 - MountPoints2\{330b5814-b29b-11de-824e-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL vepsvmpbn.exe
O33 - MountPoints2\{330b5815-b29b-11de-824e-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL gmabubsxa.exe
O33 - MountPoints2\{7c9eb94f-01da-11de-81d7-001d92ab8255}\Shell\Auto\command - "" = I:\xwpwqkryq.exe
O33 - MountPoints2\{7c9eb94f-01da-11de-81d7-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL xwpwqkryq.exe
O33 - MountPoints2\{93c55c64-1b36-11de-81e9-001d92ab8255}\Shell\Auto\command - "" = F:\vuxwirlrm.exe
O33 - MountPoints2\{93c55c64-1b36-11de-81e9-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL vuxwirlrm.exe
O33 - MountPoints2\{b3f2893c-a208-11dd-819d-001d92ab8255}\Shell\Auto\command - "" = J:\daftlmsje.exe
O33 - MountPoints2\{b3f2893c-a208-11dd-819d-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL daftlmsje.exe
O33 - MountPoints2\{cfcd8688-a259-11dd-819e-001d92ab8255}\Shell\Auto\command - "" = I:\zdwavfrjm.exe
O33 - MountPoints2\{cfcd8688-a259-11dd-819e-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL zdwavfrjm.exe
O33 - MountPoints2\{d4b563d4-a686-11dd-81a6-001d92ab8255}\Shell\Auto\command - "" = I:\pkyzwpfji.exe
O33 - MountPoints2\{d4b563d4-a686-11dd-81a6-001d92ab8255}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL pkyzwpfji.exe
O33 - MountPoints2\L\Shell - "" = AutoRun
O33 - MountPoints2\M\Shell - "" = AutoRun
O33 - MountPoints2\N\Shell - "" = AutoRun
O33 - MountPoints2\O\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk /r \??\J:) - File not found
[2011.07.18 08:02:35 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.3
[2011.07.17 21:28:48 | 000,000,000 | ---D | C] -- C:\Microsoft
[2011.07.17 21:28:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.2
[2011.07.17 21:25:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\ufa
[2011.07.17 21:25:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\rpcminer
[2011.07.17 21:25:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\phoenix
[2011.07.19 21:14:06 | 000,000,466 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{55E75352-1DA8-477D-9AAA-5E3A7F4541C8}.job
[2011.07.17 21:22:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.5.0
[2011.07.17 21:19:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\av_ico
[2011.07.17 21:16:58 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.1
[2011.07.17 21:16:39 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-7-0-lnk
[2011.07.17 21:16:39 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-7-0
[2011.07.18 08:02:35 | 000,000,199 | ---- | M] () -- C:\WINDOWS\info1
[2011.07.17 21:28:38 | 000,169,472 | ---- | C] () -- C:\WINDOWS\gbot111.exe
[2011.07.17 21:25:35 | 000,182,617 | ---- | C] () -- C:\WINDOWS\ufa.rar
[2011.07.17 21:25:33 | 005,589,370 | ---- | C] () -- C:\WINDOWS\phoenix.rar
[2011.07.17 21:25:31 | 004,636,907 | ---- | C] () -- C:\WINDOWS\geoiplist
[2011.07.17 21:25:30 | 000,246,272 | ---- | C] () -- C:\WINDOWS\unrar.exe
[2011.07.17 21:25:29 | 000,904,792 | ---- | C] () -- C:\WINDOWS\geoiplist.rar
[2011.07.17 21:25:21 | 001,075,284 | ---- | C] () -- C:\WINDOWS\rpcminer.rar
[2011.07.17 21:20:14 | 000,000,199 | ---- | C] () -- C:\WINDOWS\info1
[2011.07.17 21:19:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\loader2.exe_ok
[2011.07.17 20:58:24 | 000,005,460 | ---- | C] () -- C:\Documents and Settings\Honza\Data aplikací\67A6.23A
[2011.07.17 21:28:38 | 000,169,472 | ---- | M] () -- C:\WINDOWS\gbot111.exe
[2011.07.17 21:25:35 | 005,589,370 | ---- | M] () -- C:\WINDOWS\phoenix.rar
[2011.07.17 21:25:35 | 000,246,272 | ---- | M] () -- C:\WINDOWS\unrar.exe
[2011.07.17 21:25:35 | 000,182,617 | ---- | M] () -- C:\WINDOWS\ufa.rar
[2011.07.17 21:25:29 | 000,904,792 | ---- | M] () -- C:\WINDOWS\geoiplist.rar
[2011.07.17 21:25:22 | 001,075,284 | ---- | M] () -- C:\WINDOWS\rpcminer.rar
[2011.07.17 21:19:12 | 000,000,000 | ---- | M] () -- C:\WINDOWS\loader2.exe_ok
[2011.07.17 03:24:20 | 004,636,907 | ---- | M] () -- C:\WINDOWS\geoiplist
[2008.09.04 12:16:00 | 002,059,264 | ---- | C] () -- C:\WINDOWS\setup_rangers_2.exe
2010.03.05 22:31:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010.07.08 15:39:51 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{7D93B3B9-36B7-4383-9666-CFAD7F2AC87E}
[2009.06.27 12:16:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2010.06.29 20:50:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\temp
[2011.07.19 21:14:06 | 000,000,466 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{55E75352-1DA8-477D-9AAA-5E3A7F4541C8}.job
[2009.01.16 22:59:27 | 000,220,160 | ---- | C] () -- C:\WINDOWS\System32\WoWEmuHacker.exe
[2008.10.24 22:09:44 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2009.03.28 20:33:55 | 000,000,000 | RHS- | M] () -- C:\agytpaofs.exe
[2009.04.11 19:37:23 | 000,000,000 | RHS- | M] () -- C:\baumnsbig.exe
[2009.03.06 14:07:33 | 000,000,000 | RHS- | M] () -- C:\bawyszyeh.exe
[2009.03.23 22:09:17 | 000,000,000 | RHS- | M] () -- C:\bmvpnabqg.exe
[2009.03.06 14:00:08 | 000,000,000 | RHS- | M] () -- C:\bsbziekhr.exe
[2009.04.07 11:41:57 | 000,000,000 | RHS- | M] () -- C:\ckynoaxan.exe
[2009.04.13 16:20:15 | 000,000,000 | RHS- | M] () -- C:\cxgnbcqxp.exe
[2008.12.17 01:51:36 | 000,000,000 | RHS- | M] () -- C:\dtolyklrz.exe
[2009.11.11 21:00:38 | 000,000,000 | RHS- | M] () -- C:\edrujizbg.exe
[2009.04.07 11:42:43 | 000,000,000 | RHS- | M] () -- C:\eezqtsnzu.exe
[2009.04.11 19:44:14 | 000,000,000 | RHS- | M] () -- C:\ezwiznhzp.exe
[2009.03.15 20:09:10 | 000,000,000 | RHS- | M] () -- C:\fdjsluzad.exe
[2009.03.28 21:42:30 | 000,000,000 | RHS- | M] () -- C:\hhattrxpu.exe
[2009.04.01 16:46:54 | 000,080,384 | RHS- | M] () -- C:\hhthjbjet.exe
[2009.03.06 14:06:08 | 000,000,000 | RHS- | M] () -- C:\htbvourxp.exe
[2009.04.07 11:51:59 | 000,000,000 | RHS- | M] () -- C:\iccuunrxd.exe
[2009.04.11 19:49:00 | 000,000,000 | RHS- | M] () -- C:\igxqyvaht.exe
[2009.03.06 14:03:18 | 000,000,000 | RHS- | M] () -- C:\jgeuztvej.exe
[2009.04.01 16:48:01 | 000,000,000 | RHS- | M] () -- C:\kcvigsmfq.exe
[2009.12.12 01:59:10 | 000,080,384 | RHS- | M] () -- C:\kevfwgwkk.exe
[2009.04.07 11:43:28 | 000,000,000 | RHS- | M] () -- C:\kpjypfflc.exe
[2009.03.28 20:43:34 | 000,000,000 | RHS- | M] () -- C:\ljpkrzncq.exe
[2009.04.11 19:34:03 | 000,000,000 | RHS- | M] () -- C:\lofpfhjhk.exe
[2010.03.23 20:58:07 | 000,003,639 | ---- | M] () -- C:\mitm.exe
[2009.04.07 11:52:05 | 000,000,000 | RHS- | M] () -- C:\ngsarmgdg.exe
[2009.03.06 14:00:43 | 000,000,000 | RHS- | M] () -- C:\noukjhjnn.exe
[2009.04.11 19:36:14 | 000,000,000 | RHS- | M] () -- C:\nqcqxupyr.exe
[2009.03.06 13:59:19 | 000,000,000 | RHS- | M] () -- C:\nuosoniop.exe
[2009.03.28 20:54:48 | 000,000,000 | RHS- | M] () -- C:\ouwefteag.exe
[2009.04.07 11:55:27 | 000,000,000 | RHS- | M] () -- C:\pcuhqmvks.exe
[2009.03.28 20:59:38 | 000,000,000 | RHS- | M] () -- C:\qsgbmebkv.exe
[2009.03.06 14:07:18 | 000,000,000 | RHS- | M] () -- C:\redjbdmzm.exe
[2009.04.09 12:07:30 | 000,000,000 | RHS- | M] () -- C:\sfyuopqom.exe
[2009.04.13 16:23:24 | 000,000,000 | RHS- | M] () -- C:\slexzetqe.exe
[2009.04.11 19:50:08 | 000,000,000 | RHS- | M] () -- C:\sobemyoyd.exe
[2009.04.07 11:53:50 | 000,000,000 | RHS- | M] () -- C:\txlesmnij.exe
[2009.03.28 21:42:24 | 000,000,000 | RHS- | M] () -- C:\ulntbkkfd.exe
[2009.04.01 16:42:51 | 000,000,000 | RHS- | M] () -- C:\uufbjtsts.exe
[2009.04.07 11:53:09 | 000,000,000 | RHS- | M] () -- C:\uurglnqls.exe
[2009.04.11 19:49:27 | 000,080,384 | RHS- | M] () -- C:\uzaqtavua.exe
[2009.03.28 21:16:03 | 000,000,000 | RHS- | M] () -- C:\wbzexysuk.exe
[2009.11.22 21:05:43 | 000,000,000 | RHS- | M] () -- C:\ygsymison.exe
[2009.04.11 19:51:16 | 000,000,000 | RHS- | M] () -- C:\yqxuxjhch.exe
[2009.02.18 21:27:31 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Honza\Data aplikací\inst.exe

Znáte soubor santa.bat a adresy 213.46.172.36 213.46.172.37

Pinehead · #9 Příspěvek od **Pinehead** » 19 črc 2011 22:50

nic mi to neřiká

Pinehead · #10 Příspěvek od **Pinehead** » 19 črc 2011 23:25

All processes killed
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Dokumenty

User: Honua

User: Honza
->Temp folder emptied: 592988 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 8668577 bytes
->Google Chrome cache emptied: 594288 bytes
->Flash cache emptied: 405 bytes

User: Host
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 12223615 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 99160935 bytes
->Flash cache emptied: 3468 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 3358231 bytes

User: Petr

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1099861 bytes
%systemroot%\System32 .tmp files removed: 7861200 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 116 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 236253560 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 353,00 mb

[EMPTYFLASH]

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: Dokumenty

User: Honua

User: Honza
->Flash cache emptied: 0 bytes

User: Host
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: Petr

User: UpdatusUser
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

Unable to start service SRService!
========== OTL ==========
Service wxpdrivers stopped successfully!
Service wxpdrivers deleted successfully!
Service WPFFontCache_v0400 stopped successfully!
Service WPFFontCache_v0400 deleted successfully!
Service AppMgmt stopped successfully!
Service AppMgmt deleted successfully!
Service srvbtcclient stopped successfully!
Service srvbtcclient deleted successfully!
File C:\WINDOWS\update.5.0\svchost.exe not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
HKU\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-1801674531-1580818891-839522115-1005\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "http://slirsredirect.search.aol.com/sli ... ie7&query=" removed from browser.search.defaulturl
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "moz2-ytff-" removed from browser.search.param.yahoo-fr
Prefs.js: "moz2-ytff-" removed from browser.search.param.yahoo-fr-cjkt
Prefs.js: "Ask.com" removed from browser.search.selectedEngine
Prefs.js: true removed from browser.search.useDBForOrder
Prefs.js: "http://www.crawler.com/homepage.aspx?tbid=60040" removed from browser.startup.homepage
Prefs.js: {76063e7f-3558-4b68-8287-54eb6512adc0}:2.7.1 removed from extensions.enabledItems
Prefs.js: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.9 removed from extensions.enabledItems
Prefs.js: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.11.2 removed from extensions.enabledItems
Prefs.js: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.2.20100119091315 removed from extensions.enabledItems
Prefs.js: radiobar@toolbar:1.0.0 removed from extensions.enabledItems
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\conhost deleted successfully.
File C:\Documents and Settings\Honza\Data aplikací\Microsoft\conhost.exe not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NPSStartup deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\systemup deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico1 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico2 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico3 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico4 deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1801674531-1580818891-839522115-1005\Software\Microsoft\Windows\CurrentVersion\Run\\SpyEmergency deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\Load:C:\DOCUME~1\Honza\LOCALS~1\Temp\csrss.exe deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\com\www.msi\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\com.tw\asia.msi\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\com.tw\global.msi\ deleted successfully.
Starting removal of ActiveX control {41564D57-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\wmvadvd.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{41564D57-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{41564D57-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41564D57-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry value HKEY_USERS\S-1-5-21-1801674531-1580818891-839522115-1005\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:C:\Documents and Settings\Honza\Data aplikací\dwm.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\\AlternateShell deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0f4d2ea1-1179-11de-81e4-001d92ab8255}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0f4d2ea1-1179-11de-81e4-001d92ab8255}\ not found.
File I:\dukopuuwk.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0f4d2ea1-1179-11de-81e4-001d92ab8255}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0f4d2ea1-1179-11de-81e4-001d92ab8255}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL dukopuuwk.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0f4d2eee-1179-11de-81e4-001d92ab8255}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0f4d2eee-1179-11de-81e4-001d92ab8255}\ not found.
File F:\iclgesbqh.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0f4d2eee-1179-11de-81e4-001d92ab8255}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0f4d2eee-1179-11de-81e4-001d92ab8255}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL iclgesbqh.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{330b5814-b29b-11de-824e-001d92ab8255}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{330b5814-b29b-11de-824e-001d92ab8255}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL vepsvmpbn.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{330b5815-b29b-11de-824e-001d92ab8255}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{330b5815-b29b-11de-824e-001d92ab8255}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL gmabubsxa.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c9eb94f-01da-11de-81d7-001d92ab8255}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7c9eb94f-01da-11de-81d7-001d92ab8255}\ not found.
File I:\xwpwqkryq.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c9eb94f-01da-11de-81d7-001d92ab8255}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7c9eb94f-01da-11de-81d7-001d92ab8255}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL xwpwqkryq.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{93c55c64-1b36-11de-81e9-001d92ab8255}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{93c55c64-1b36-11de-81e9-001d92ab8255}\ not found.
File F:\vuxwirlrm.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{93c55c64-1b36-11de-81e9-001d92ab8255}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{93c55c64-1b36-11de-81e9-001d92ab8255}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL vuxwirlrm.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3f2893c-a208-11dd-819d-001d92ab8255}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b3f2893c-a208-11dd-819d-001d92ab8255}\ not found.
File J:\daftlmsje.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3f2893c-a208-11dd-819d-001d92ab8255}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b3f2893c-a208-11dd-819d-001d92ab8255}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL daftlmsje.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cfcd8688-a259-11dd-819e-001d92ab8255}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cfcd8688-a259-11dd-819e-001d92ab8255}\ not found.
File I:\zdwavfrjm.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cfcd8688-a259-11dd-819e-001d92ab8255}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cfcd8688-a259-11dd-819e-001d92ab8255}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL zdwavfrjm.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d4b563d4-a686-11dd-81a6-001d92ab8255}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d4b563d4-a686-11dd-81a6-001d92ab8255}\ not found.
File I:\pkyzwpfji.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d4b563d4-a686-11dd-81a6-001d92ab8255}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d4b563d4-a686-11dd-81a6-001d92ab8255}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL pkyzwpfji.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\L\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\M\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\N\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\O\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk /r \??\J: deleted successfully.
C:\WINDOWS\update.3 folder moved successfully.
C:\Microsoft folder moved successfully.
C:\WINDOWS\update.2 folder moved successfully.
C:\WINDOWS\ufa folder moved successfully.
C:\WINDOWS\rpcminer folder moved successfully.
C:\WINDOWS\phoenix\kernels\poclbm folder moved successfully.
C:\WINDOWS\phoenix\kernels\phatk folder moved successfully.
C:\WINDOWS\phoenix\kernels folder moved successfully.
C:\WINDOWS\phoenix folder moved successfully.
C:\WINDOWS\tasks\User_Feed_Synchronization-{55E75352-1DA8-477D-9AAA-5E3A7F4541C8}.job moved successfully.
C:\WINDOWS\update.5.0 folder moved successfully.
C:\WINDOWS\av_ico folder moved successfully.
C:\WINDOWS\update.1 folder moved successfully.
C:\WINDOWS\update.tray-7-0-lnk folder moved successfully.
C:\WINDOWS\update.tray-7-0 folder moved successfully.
C:\WINDOWS\info1 moved successfully.
C:\WINDOWS\gbot111.exe moved successfully.
C:\WINDOWS\ufa.rar moved successfully.
C:\WINDOWS\phoenix.rar moved successfully.
C:\WINDOWS\geoiplist moved successfully.
C:\WINDOWS\unrar.exe moved successfully.
C:\WINDOWS\geoiplist.rar moved successfully.
C:\WINDOWS\rpcminer.rar moved successfully.
File C:\WINDOWS\info1 not found.
C:\WINDOWS\loader2.exe_ok moved successfully.
C:\Documents and Settings\Honza\Data aplikací\67A6.23A moved successfully.
File C:\WINDOWS\gbot111.exe not found.
File C:\WINDOWS\phoenix.rar not found.
File C:\WINDOWS\unrar.exe not found.
File C:\WINDOWS\ufa.rar not found.
File C:\WINDOWS\geoiplist.rar not found.
File C:\WINDOWS\rpcminer.rar not found.
File C:\WINDOWS\loader2.exe_ok not found.
File C:\WINDOWS\geoiplist not found.
C:\WINDOWS\setup_rangers_2.exe moved successfully.
C:\Documents and Settings\All Users\Data aplikací\{7D93B3B9-36B7-4383-9666-CFAD7F2AC87E} folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}\x86 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} folder moved successfully.
C:\Documents and Settings\Honza\Data aplikací\temp folder moved successfully.
File C:\WINDOWS\Tasks\User_Feed_Synchronization-{55E75352-1DA8-477D-9AAA-5E3A7F4541C8}.job not found.
File C:\WINDOWS\System32\WoWEmuHacker.exe not found.
C:\WINDOWS\system32\ChCfg.exe moved successfully.
C:\agytpaofs.exe moved successfully.
C:\baumnsbig.exe moved successfully.
C:\bawyszyeh.exe moved successfully.
C:\bmvpnabqg.exe moved successfully.
C:\bsbziekhr.exe moved successfully.
C:\ckynoaxan.exe moved successfully.
C:\cxgnbcqxp.exe moved successfully.
C:\dtolyklrz.exe moved successfully.
C:\edrujizbg.exe moved successfully.
C:\eezqtsnzu.exe moved successfully.
C:\ezwiznhzp.exe moved successfully.
C:\fdjsluzad.exe moved successfully.
C:\hhattrxpu.exe moved successfully.
C:\hhthjbjet.exe moved successfully.
C:\htbvourxp.exe moved successfully.
C:\iccuunrxd.exe moved successfully.
C:\igxqyvaht.exe moved successfully.
C:\jgeuztvej.exe moved successfully.
C:\kcvigsmfq.exe moved successfully.
C:\kevfwgwkk.exe moved successfully.
C:\kpjypfflc.exe moved successfully.
C:\ljpkrzncq.exe moved successfully.
C:\lofpfhjhk.exe moved successfully.
C:\mitm.exe moved successfully.
C:\ngsarmgdg.exe moved successfully.
C:\noukjhjnn.exe moved successfully.
C:\nqcqxupyr.exe moved successfully.
C:\nuosoniop.exe moved successfully.
C:\ouwefteag.exe moved successfully.
C:\pcuhqmvks.exe moved successfully.
C:\qsgbmebkv.exe moved successfully.
C:\redjbdmzm.exe moved successfully.
C:\sfyuopqom.exe moved successfully.
C:\slexzetqe.exe moved successfully.
C:\sobemyoyd.exe moved successfully.
C:\txlesmnij.exe moved successfully.
C:\ulntbkkfd.exe moved successfully.
C:\uufbjtsts.exe moved successfully.
C:\uurglnqls.exe moved successfully.
C:\uzaqtavua.exe moved successfully.
C:\wbzexysuk.exe moved successfully.
C:\ygsymison.exe moved successfully.
C:\yqxuxjhch.exe moved successfully.
C:\Documents and Settings\Honza\Data aplikací\inst.exe moved successfully.

OTL by OldTimer - Version 3.2.26.1 log created on 07202011_001051

Files\Folders moved on Reboot...
C:\Documents and Settings\Honza\Local Settings\Temp\etilqs_1PzYWmCTmTfULG1IS5FT moved successfully.
C:\Documents and Settings\Honza\Local Settings\Temp\etilqs_vNLhB2VMfynzFBcWoTdr moved successfully.

Registry entries deleted on Reboot...

Pinehead · #11 Příspěvek od **Pinehead** » 20 črc 2011 08:42

a nastal dalsi problém prestal mi fungovat internet na Google chrome, pise to neco s proxy servrem?

#12 Příspěvek od **Caroprd111** » 20 črc 2011 11:10

Znovu sopusťte OTL s následujícím skriptem (Opravit).

Kód: Vybrat vše

:OTL
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O4 - Startup: C:\Documents and Settings\Honza\Nabídka Start\Programy\Po spuštění\santa.bat ()

:commands
[reboot]

Pokud přestane fungovat internet, tak nastavte parametry připojení dle poskytovatele. Co konkrétně Vám píše Chrome?

Pinehead · #13 Příspěvek od **Pinehead** » 20 črc 2011 11:45

K serveru proxy se nelze připojit.

========== OTL ==========
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer| /E : value set successfully!
C:\Documents and Settings\Honza\Nabídka Start\Programy\Po spuštění\santa.bat moved successfully.
========== COMMANDS ==========
Error: Unable to interpret <[reboot> in the current context!

OTL by OldTimer - Version 3.2.26.1 log created on 07202011_131654

#14 Příspěvek od **Caroprd111** » 20 črc 2011 12:58

Zkuste proxy vypnout http://web.natur.cuni.cz/student/nastaveni-proxy

Pinehead · #15 Příspěvek od **Pinehead** » 20 črc 2011 13:24

Caroprd111 píše:Zkuste proxy vypnout http://web.natur.cuni.cz/student/nastaveni-proxy

zté stranky sem toho moc nepobral

VIRY.CZ

FB Vir

FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir

Re: FB Vir