Kontrola logu - díky

Zpráva

Milan Nehasil · #1 Příspěvek od **Milan Nehasil** » 25 lis 2011 09:04

Můžete mi prosím někdo pomoci ? Počítač je pomalý, nainstalován ESET a počítač vyčištěn, nainstalován SpyBot a počítač také vyčištěn, ale pořád to drhne.
Dííky za pomoc.

Logfile of random's system information tool 1.09 (written by random/random)
Run by martin at 2011-11-25 08:57:34
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 3 GB (2%) free of 153 GB
Total RAM: 2046 MB (67% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\PCConfidential.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-11-25 1623392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-07-25 321312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3CF7606-E683-4375-A372-96B75DA0AEF7}]
GdfrDUEn Class - C:\Program Files\Stylish Profile\enlbrdr.dll [2010-01-07 185344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-05-17 1490312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{3BB63FD4-3C00-44D7-94A9-5DE211900DEF}
{3041d03e-fd4b-44e0-b742-2d9b88305f98}
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-03-28 1017592]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-05-17 1490312]
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Zástupce stránky vlastností sběrnice High Definition Audio"=C:\WINDOWS\system32\HDAudPropShortcut.exe [2004-03-17 61952]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-09-24 77824]
"AlcWzrd"=C:\WINDOWS\ALCWZRD.EXE [2004-09-25 2557952]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2004-09-24 57344]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-09-17 13574144]
"nwiz"=nwiz.exe /install []
"LogitechVideoRepair"=C:\Program Files\Logitech\Video\ISStart.exe [2005-06-08 458752]
"LogitechVideoTray"=C:\Program Files\Logitech\Video\LogiTray.exe [2005-06-08 217088]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"NeroFilterCheck"=C:\WINDOWS\System32\NeroCheck.exe [2001-07-09 155648]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-09-17 86016]
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2011-10-28 2078048]
"NPSStartup"= []
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-03-21 1230704]
"UserFaultCheck"=C:\WINDOWS\system32\dumprep 0 -u []
""= []
"ApnUpdater"=C:\Program Files\Ask.com\Updater\Updater.exe [2011-05-17 395144]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-09-08 3076144]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LogitechSoftwareUpdate"=C:\Program Files\Logitech\Video\ManifestEngine.exe [2005-06-08 196608]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe [2005-10-28 94208]
"NCLaunch"=C:\WINDOWS\NCLAUNCH.EXe [2007-09-05 65536]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\\Phone\Skype.exe [2010-09-02 13351304]
"AutoStartNPSAgent"=C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]
"Steam"=c:\program files\steam\steam.exe [2011-08-11 1242448]
"ICQ"=C:\Program Files\ICQ7.1\ICQ.exe [2011-01-05 133432]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2008-07-22 2772992]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Ralink Wireless Utility.lnk - C:\Program Files\RALINK\Common\RaUI.exe

C:\Documents and Settings\martin\Nabídka Start\Programy\Po spuštění
fliptoast.lnk - C:\Program Files\fliptoast\fliptoast.exe
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2010-07-18 12536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe"="C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe:*:Enabled:Kodak Software Updater"
"C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe"="C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe:*:Enabled:EasyShare"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQLite\ICQLite.exe"="C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"C:\Program Files\Codemasters\Colin McRae Rally 04\cmr4.exe"="C:\Program Files\Codemasters\Colin McRae Rally 04\cmr4.exe:*:Enabled:Colin McRae Rally 04 Application"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\Ubisoft\Splinter Cell Pandora Tomorrow\pandora.exe"="C:\Program Files\Ubisoft\Splinter Cell Pandora Tomorrow\pandora.exe:*:Enabled:pandora"
"C:\Program Files\TrackMania Sunrise Extreme Demo\TmSunriseExtremeDemo.exe"="C:\Program Files\TrackMania Sunrise Extreme Demo\TmSunriseExtremeDemo.exe:*:Enabled:TmSunriseExtremeDemo"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\AOL\Active Virus Shield\avp.exe"="C:\Program Files\AOL\Active Virus Shield\avp.exe:*:Enabled:Active Virus Shield"
"C:\Program Files\Opera\Opera.exe"="C:\Program Files\Opera\Opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Valve\hltv.exe"="C:\Program Files\Valve\hltv.exe:*:Enabled:HLTV Launcher"
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"C:\Program Files\Ubisoft\Splinter Cell Pandora Tomorrow\online\System\shadowstrike_static_retail.exe"="C:\Program Files\Ubisoft\Splinter Cell Pandora Tomorrow\online\System\shadowstrike_static_retail.exe:*:Enabled:shadowstrike_static_retail"
"C:\Program Files\Ubisoft\ATC for Splinter Cell Pandora Tomorrow\atcscpt.exe"="C:\Program Files\Ubisoft\ATC for Splinter Cell Pandora Tomorrow\atcscpt.exe:*:Enabled:Advanced Tactical Center for Splinter Cell Pandora Tomorrow"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\Program Files\messenger\msmsgs.exe"="C:\Program Files\messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race\Race_Steam.exe"="C:\Program Files\Steam\SteamApps\bugs_bunny203\race\Race_Steam.exe:*:Enabled:Race"
"C:\Program Files\Microsoft Games\FS2002\fs2002.exe"="C:\Program Files\Microsoft Games\FS2002\fs2002.exe:*:Enabled:Microsoft Flight Simulator Module"
"C:\Program Files\EA GAMES\Need for Speed Most Wanted\speed.exe"="C:\Program Files\EA GAMES\Need for Speed Most Wanted\speed.exe:*:Enabled:speed"
"C:\Program Files\Boiling Point - Cesta do pekel\XENUS.EXE"="C:\Program Files\Boiling Point - Cesta do pekel\XENUS.EXE:*:Disabled:XENUS"
"C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\Program Files\EA GAMES\NFSC.exe"="C:\Program Files\EA GAMES\NFSC.exe:*:Enabled:NFSC"
"C:\Program Files\Codemasters\Colin McRae Rally 2005\CMR5.EXE"="C:\Program Files\Codemasters\Colin McRae Rally 2005\CMR5.EXE:*:Enabled:Colin McRae Rally 2005 Application"
"C:\Program Files\Techland\Xpand Rally\xpandrally.exe"="C:\Program Files\Techland\Xpand Rally\xpandrally.exe:*:Enabled:XpandRally"
"C:\Program Files\Ubi Soft\IL2 Sturmovik\il2.exe"="C:\Program Files\Ubi Soft\IL2 Sturmovik\il2.exe:*:Enabled:il2"
"C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Double Agent\SCDA-Offline\System\SplinterCell4.exe"="C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Double Agent\SCDA-Offline\System\SplinterCell4.exe:*:Enabled:SplinterCell4"
"C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Double Agent\SCDA-Online\System\SCDA_online.exe"="C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Double Agent\SCDA-Online\System\SCDA_online.exe:*:Enabled:SCDA_online"
"C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe"="C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe:*:Enabled:speed2"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Codemasters\GRID\GRID.exe"="C:\Program Files\Codemasters\GRID\GRID.exe:*:Enabled:GRID Executable"
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race\SteamProxy.exe"="C:\Program Files\Steam\SteamApps\bugs_bunny203\race\SteamProxy.exe:*:Enabled:Race - The WTCC Game"
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race\RaceConfig_Steam.exe"="C:\Program Files\Steam\SteamApps\bugs_bunny203\race\RaceConfig_Steam.exe:*:Enabled:Race - The WTCC Game"
"C:\Program Files\Steam\SteamApps\bugs_bunny203\raceds\RaceDedicatedServer_Steam.exe"="C:\Program Files\Steam\SteamApps\bugs_bunny203\raceds\RaceDedicatedServer_Steam.exe:*:Enabled:Race Dedicated Server"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Steam\SteamApps\bugs_bunny203\stcc demo\STCC_Demo_Steam.exe"="C:\Program Files\Steam\SteamApps\bugs_bunny203\stcc demo\STCC_Demo_Steam.exe:*:Enabled:RACE 07"
"C:\Program Files\QuickTime\QuickTimePlayer.exe"="C:\Program Files\QuickTime\QuickTimePlayer.exe:*:Enabled:QuickTime Player"
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\Race_Steam.exe"="C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\Race_Steam.exe:*:Enabled:RACE 07"
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race07ds\RaceDedicatedServer_Steam.exe"="C:\Program Files\Steam\SteamApps\bugs_bunny203\race07ds\RaceDedicatedServer_Steam.exe:*:Enabled:RACE 07"
"C:\Program Files\PHANTAGRAM\Kingdom Under Fire\KingdomUnderFire.exe"="C:\Program Files\PHANTAGRAM\Kingdom Under Fire\KingdomUnderFire.exe:*:Enabled:KUFMain"
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\SteamProxy.exe"="C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\SteamProxy.exe:*:Enabled:RACE 07"
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\Config.exe"="C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\Config.exe:*:Enabled:RACE 07"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\ICQ7.1\ICQ.exe"="C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1"
"C:\Program Files\ICQ7.1\aolload.exe"="C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server"
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\steamapps\common\trackmania nations forever\TmForever.exe"="C:\Program Files\Steam\steamapps\common\trackmania nations forever\TmForever.exe:*:Enabled:TrackMania Nations Forever"
"C:\Program Files\Steam\steamapps\common\trackmania nations forever\TmForeverLauncher.exe"="C:\Program Files\Steam\steamapps\common\trackmania nations forever\TmForeverLauncher.exe:*:Enabled:TrackMania Nations Forever"
"C:\Program Files\TrackMania Sunrise\TmSunrise.exe"="C:\Program Files\TrackMania Sunrise\TmSunrise.exe:*:Enabled:TmSunrise"
"C:\Program Files\Steam\steamapps\common\alien swarm\srcds.exe"="C:\Program Files\Steam\steamapps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server"
"C:\Program Files\Steam\steamapps\common\alien swarm\swarm.exe"="C:\Program Files\Steam\steamapps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Disabled:EA Download Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.1\ICQ.exe"="C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1"
"C:\Program Files\ICQ7.1\aolload.exe"="C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=lvcodec2.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.l3acm"=C:\WINDOWS\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.iv50"=ir50_32.dll
"vidc.iv41"=ir41_32.ax
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"VIDC.HFYU"=huffyuv.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.wmv3"=wmv9vcm.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.iac2"=C:\WINDOWS\System32\iac25_32.ax
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=DivX.dll
"msacm.lameacm"=lameACM.acm
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
"vidc.DIVX"=DivX.dll

======List of files/folders created in the last 1 month======

2011-11-25 08:57:34 ----D---- C:\rsit
2011-11-25 08:57:34 ----D---- C:\Program Files\trend micro
2011-11-24 13:51:04 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-11-24 13:47:02 ----A---- C:\WINDOWS\wininit.ini
2011-11-24 12:53:31 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-11-24 12:53:31 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-11-24 12:49:37 ----D---- C:\WINDOWS\CSC
2011-11-24 09:24:27 ----DC---- C:\Documents and Settings\All Users\Data aplikací\ESET
2011-11-24 09:24:27 ----D---- C:\Program Files\ESET
2011-11-24 07:11:59 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2011-11-24 07:11:51 ----D---- C:\Program Files\Spyware Terminator
2011-11-24 07:09:04 ----A---- C:\WINDOWS\system32\d3d9caps.dat
2011-11-23 13:49:15 ----SHD---- C:\found.004
2011-11-03 20:51:04 ----D---- C:\Program Files\fliptoast

======List of files/folders modified in the last 1 month======

2011-11-25 08:57:34 ----RD---- C:\Program Files
2011-11-25 08:57:29 ----D---- C:\WINDOWS\Prefetch
2011-11-25 08:55:23 ----D---- C:\WINDOWS\system32
2011-11-25 08:55:19 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-11-25 08:54:19 ----D---- C:\Program Files\Steam
2011-11-25 08:53:20 ----D---- C:\WINDOWS\Temp
2011-11-25 08:52:41 ----D---- C:\WINDOWS
2011-11-25 08:13:40 ----D---- C:\WINDOWS\system32\inetsrv
2011-11-24 12:51:59 ----D---- C:\WINDOWS\SoftwareDistribution
2011-11-24 12:51:55 ----D---- C:\WINDOWS\Minidump
2011-11-24 09:26:56 ----SHD---- C:\WINDOWS\Installer
2011-11-24 09:26:39 ----HDC---- C:\Config.Msi
2011-11-24 09:26:21 ----HD---- C:\WINDOWS\inf
2011-11-24 09:26:21 ----D---- C:\WINDOWS\system32\drivers
2011-11-24 09:26:11 ----D---- C:\WINDOWS\system32\CatRoot2
2011-11-24 09:20:58 ----DC---- C:\Documents and Settings\All Users\Data aplikací\avg9
2011-11-24 07:07:18 ----D---- C:\WINDOWS\system32\drivers\etc
2011-11-23 14:14:17 ----D---- C:\Documents and Settings\martin\Data aplikací\ICQ
2011-11-23 14:13:12 ----D---- C:\Documents and Settings\martin\Data aplikací\Skype
2011-11-23 14:10:29 ----D---- C:\Program Files\Outlook Express
2011-11-23 14:10:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-11-23 14:10:26 ----D---- C:\WINDOWS\system32\usmt
2011-11-23 14:10:24 ----D---- C:\Program Files\Common Files
2011-11-23 13:05:11 ----D---- C:\WINDOWS\system32\Adobe
2011-11-23 13:05:11 ----D---- C:\Program Files\Common Files\Adobe
2011-11-23 13:05:11 ----D---- C:\Program Files\Adobe
2011-11-23 11:56:58 ----D---- C:\WINDOWS\Logs
2011-11-23 11:56:51 ----SHD---- C:\RECYCLER
2011-11-23 11:56:21 ----D---- C:\Program Files\CCleaner
2011-11-23 11:31:41 ----DC---- C:\Documents and Settings
2011-11-04 16:59:44 ----D---- C:\WINDOWS\system32\drivers\Avg
2011-10-28 22:54:36 ----A---- C:\WINDOWS\NeroDigital.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\System32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 prohlp02;StarForce Protection Helper Driver v2; C:\WINDOWS\System32\drivers\prohlp02.sys [2004-09-03 115680]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\WINDOWS\System32\drivers\prosync1.sys [2004-07-19 7040]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-06-10 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a); C:\WINDOWS\System32\drivers\sfdrv01a.sys [2006-07-05 63352]
R0 sfhlp01;StarForce Protection Helper Driver; C:\WINDOWS\System32\drivers\sfhlp01.sys [2003-12-01 4832]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2006-06-14 13680]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2006-07-10 27032]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINDOWS\System32\drivers\sfvfs02.sys [2007-01-12 82296]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-15 76544]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2011-10-26 29712]
R1 AvgTdiX;AVG Free Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2011-05-05 243152]
R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2011-08-04 103112]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-09-03 54368]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.5.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2010-03-01 21419]
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2011-08-09 154136]
R2 STEC3;STEC3; \??\C:\WINDOWS\system32\STEC3.sys []
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\System32\DRIVERS\e100b325.sys [2004-02-10 154112]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2004-09-25 2276672]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2008-09-17 6132576]
R3 RT61;Ralink RT61 Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT61.sys [2007-07-28 483968]
R3 SMBios;Intel (R) System Management BIOS Service; C:\WINDOWS\System32\DRIVERS\SMBios.sys [2004-06-07 36484]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2010-07-18 216400]
S1 cdrbsvsd;cdrbsvsd; C:\WINDOWS\system32\drivers\cdrbsvsd.sys []
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 Amps2prt;A4Tech PS/2 Port Mouse Driver; C:\WINDOWS\system32\DRIVERS\Amps2prt.sys [2006-05-09 13824]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cpuz134;cpuz134; \??\C:\DOCUME~1\martin\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys []
S3 HdAudAddService;Ovladač funkcí Microsoft UAA pro služby sběrnice High Definition Audio; C:\WINDOWS\system32\drivers\HdAudio.sys [2004-03-17 113664]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-12-06 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-12-06 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-12-06 21568]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys []
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 QCMerced;Logitech QuickCam Communicate; C:\WINDOWS\System32\DRIVERS\LVCM.sys []
S3 s117bus;Sony Ericsson Device 117 driver (WDM); C:\WINDOWS\system32\DRIVERS\s117bus.sys [2007-06-25 82984]
S3 s117mdfl;Sony Ericsson Device 117 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s117mdfl.sys [2007-06-25 14888]
S3 s117mdm;Sony Ericsson Device 117 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s117mdm.sys [2007-06-25 108456]
S3 s117mgmt;Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s117mgmt.sys [2007-06-25 100264]
S3 s117nd5;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS); C:\WINDOWS\system32\DRIVERS\s117nd5.sys [2007-06-25 22952]
S3 s117obex;Sony Ericsson Device 117 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s117obex.sys [2007-06-25 98344]
S3 s117unic;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM); C:\WINDOWS\system32\DRIVERS\s117unic.sys [2007-06-25 98856]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 sonypvs1;Sony Digital Imaging Video2; C:\WINDOWS\System32\DRIVERS\sonypvs1.sys []
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys []
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2005-06-14 104576]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-07-18 308136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-09-08 974944]
R2 FsUsbExService;FsUsbExService; C:\WINDOWS\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-03-28 246520]
R2 IISADMIN;Správa služby IIS; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-09-17 163908]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 SMTPSVC;Simple Mail Transport Protocol (SMTP); C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 SNMP;SNMP; C:\WINDOWS\System32\snmp.exe [2008-04-14 32768]
R2 W3SVC;Publikování na webu; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15872]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268288]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-25 135664]
S2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-25 135664]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-05-25 182768]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#2 Příspěvek od **Mc_Murphy** » 25 lis 2011 14:18

Zdravím.

Dej mi minutku, hnedle se na to mrknu.

#3 Příspěvek od **Mc_Murphy** » 25 lis 2011 15:00

Spybot - Search & Destroy zase rychle odinstaluj. Program má svá nejlepší léta již dávno za sebou a není schopen čelit aktuálním hrozbám. Jako antispyware program tam vidím Spyware Terminator.

Uvolni nějaké místo na systémovém disku C:\ => 3 GB je opravdu málo, systém se dusí!

V nabídce Přidat nebo odebrat programy odinstaluj všechny nepotřebné toolbary! Jsou to veliká "zdržovadla" systému a v případě například Ask.com Toolbar, Conduit Engine a dalších se dá hovořit už i o havěti. Máš jich tam dost nechutnou sbírku.

Odeber Skype a ICQ ze spouštění po startu systému - zdržovačka.

Ono vůbec v programech po spouštění systému tam máš opravdu pěkný bordel, jen co je pravda! To jsem už dlouho neviděl. Se potom nediv, že počítač je rychlý jako postřelený hlemýžď.

Jak tak koukám na µTorrent, BitTorrent a ten hezký seznam her - to bude průser s cracky, keygeny a nelegálním software, viď?

Konkrétně asi takový ESET nebude zakoupen, co?

A vůbec - máš tam jako antivir AVG i ESET - dva antiviry v systému způsobují kolizi. Ty nemáš legálně ani jeden z nich, je to tak? A co systém, jak ten je na tom?

Původně jsem měl napsaný opravný script, ale počkám si na odpovědi na mé dotazy, protože tohle je opravdu sbírka... Obrázek

Milan Nehasil · #4 Příspěvek od **Milan Nehasil** » 25 lis 2011 16:57

Díky za tipy.
Počítač není můj a já se snažím s ním něco udělat. Je to takovej klasickej počítač mladýho kluka, kterej jen instaluje hry a nekouká na nějakou údržbu. A když mi to jeho táta přinesl, tak už to ani nenabootovalo.

Až po odeslání logu jsem zjistil, že na disku je krutě málo místa. Snažil jsem se odinstalovat AVG, který bylo v nějakým divným nechodícím stavu. Stáhnul jsem si ESET zkušební verzi, protože s tím mám nejlepší zkušenosti, takže ESET není nelegál, ale je to čerstvě nainstalovaný trial, který po odvirování odinstaluju a dám tam free avast.

Bohužel počítadlo jsem nechal v práci, takže budu pokračovat až v pondělí. Každopádně díky za cenné rady, který budu hned v pondělí aplikovat. Zatím jsem odinstaloval nějaký zbytečnosti a co se různých toolbarů týká, to jsem odinstaloval jako první, protože vím, že to je většinou k ničemu. Ale tohle všechno jsem dělal před odesláním logu.

Díky moc, pokračování bohužel v pondělí.

#5 Příspěvek od **Mc_Murphy** » 25 lis 2011 20:01

Počítač není můj a já se snažím s ním něco udělat. Je to takovej klasickej počítač mladýho kluka, kterej jen instaluje hry a nekouká na nějakou údržbu. A když mi to jeho táta přinesl, tak už to ani nenabootovalo.

Neděláš to jako obživu, že ne? To bych opravdu nerad zjistil.

Až po odeslání logu jsem zjistil, že na disku je krutě málo místa. Snažil jsem se odinstalovat AVG, který bylo v nějakým divným nechodícím stavu. Stáhnul jsem si ESET zkušební verzi, protože s tím mám nejlepší zkušenosti, takže ESET není nelegál, ale je to čerstvě nainstalovaný trial, který po odvirování odinstaluju a dám tam free avast.

Ano, na disku je málo místa. Pokud jsi něco odebral, super. Něco ještě "bude odejíto" mnou a dalšími postupy.
Na kompletní odebrání AVG nestačí klasická odinstalace, musí použít remover. Zkus použít tento.
A s ESETem pochopitelně pryč ještě předtím. Žádné cracky a obnovovačky trial verzí. To už legální rozhodně není. Na ESET budeš muset ale také použít jejich remover. Takže to zkus odtud.
Až potom tam prdni Avast!, který Ti schvaluji.

Bohužel počítadlo jsem nechal v práci, takže budu pokračovat až v pondělí. Každopádně díky za cenné rady, který budu hned v pondělí aplikovat. Zatím jsem odinstaloval nějaký zbytečnosti a co se různých toolbarů týká, to jsem odinstaloval jako první, protože vím, že to je většinou k ničemu. Ale tohle všechno jsem dělal před odesláním logu.

Všechny toolbary jsi rozhodně neodinstaloval, protože v počítači je stále ICQToolBar, Ask Toolbar a uTorrentBar Toolbar. A nejsou to jen zbytečnosti, ale konkrétně Ask nebo ICQ jsou už skoro havěť.

Díky moc, pokračování bohužel v pondělí.

Mrkni na ty antiviry - pryč s oběma a chci tam vidět tedy ten Avast!. Pak zkontroluj ještě ty toolbary, mrkni také na cracky, protože těch tam bude milion a jeden, tím jsem si jistý. Také se raději poptej na legalitu systému, protože já se na ni v pondělí rozhodně podívám. S nelegálním software tu pracovat nehodlám.

Milan Nehasil · #6 Příspěvek od **Milan Nehasil** » 26 lis 2011 16:16

Ahoj, jen upřesnění.

Neděláš to jako obživu, že ne? To bych opravdu nerad zjistil.
Tak to určitě ne, já se živím trochu jinak. Tohle jsem vzal jen z kamarádství. Pokud tedy nepočítáš flašku, kterou za to dostanu

.

Na kompletní odebrání AVG nestačí klasická odinstalace, musí použít remover. Zkus použít tento.
A s ESETem pochopitelně pryč ještě předtím. Žádné cracky a obnovovačky trial verzí. To už legální rozhodně není. Na ESET budeš muset ale také použít jejich remover. Takže to zkus odtud.
Až potom tam prdni Avast!, který Ti schvaluji.

Odinstaloval jsem to Removerem od AVG až po odeslání logu. Ten počítač měl jen 512MB paměti, což je na XP krutě málo a pokud bych tam dal Avast asi by se to už skoro nehnulo. Takže jsem tam přidal 2GB, trochu se to rozhýbalo, ale furt nic moc. ESET našel 4 viry, CCleaner našel asi 200 problémů v registrech a kdysi dobrý spybot našel asi 300 spyware. Odinstaloval jsem SpyBot a zkusil jsem ještě Spyware Terminator, ten našel dalších asi 15 problémů.

Mrkni na ty antiviry - pryč s oběma a chci tam vidět tedy ten Avast!. Pak zkontroluj ještě ty toolbary, mrkni také na cracky, protože těch tam bude milion a jeden, tím jsem si jistý. Také se raději poptej na legalitu systému, protože já se na ni v pondělí rozhodně podívám. S nelegálním software tu pracovat nehodlám.

Windows asi legální budou, koupili ten počítač s OEM verzí někde v krámě a update Windows jde bez problémů. Jestli si to synáček přeinstaloval a nedokázal opsat číslo z licenční nálepky, to nevím.

Díky za rady.
Milan

#7 Příspěvek od **Mc_Murphy** » 26 lis 2011 18:26

Tak to určitě ne, já se živím trochu jinak. Tohle jsem vzal jen z kamarádství. Pokud tedy nepočítáš flašku, kterou za to dostanu .

Tak chci potom aspoň dva panáky.

Odinstaloval jsem to Removerem od AVG až po odeslání logu.

Hele, bylo by fajn, kdybys to dělal buď všechno sám, nebo to necháš na mně. Uznej sám, že takhle to nejde. Hodíš mi sem log, já do toho čučím určitý čas, sestavím postup a Ty mi pak napíšeš, že je všechno jinak a cos všechno provedl mezitím. Takhle to prostě nejde dělat!

Ten počítač měl jen 512MB paměti, což je na XP krutě málo a pokud bych tam dal Avast asi by se to už skoro nehnulo. Takže jsem tam přidal 2GB, trochu se to rozhýbalo, ale furt nic moc.

Nesmysl, nesmysl a znovu další nesmysl. Mám dva velice velice staré PC, jeden s 512 MB RAM, druhý s 1 GB. Na obou běhá Avast a na obou naprosto bez problémů. Děláš sto věcí naráz, instaluješ, odinstaluješ, pořád něco, divíš se a svádíš to na Avast.

ESET našel 4 viry, CCleaner našel asi 200 problémů v registrech a kdysi dobrý spybot našel asi 300 spyware. Odinstaloval jsem SpyBot a zkusil jsem ještě Spyware Terminator, ten našel dalších asi 15 problémů.

Znovu, co jsem psal nahoře - děláš milion věcí mimo to, co tu řešíme. Tak buď si to dokonči sám, nebo budeš dělat přesně to, co Ti píšu. Jiná možnost nebude, protože to pak vážně nemá cenu.

Windows asi legální budou, koupili ten počítač s OEM verzí někde v krámě a update Windows jde bez problémů. Jestli si to synáček přeinstaloval a nedokázal opsat číslo z licenční nálepky, to nevím.

"Asi" je pěkná vlastnost. Je mi jedno, co s tím kdo co dělal, to je Tvůj, případně jejich problém. Já řešit nelegál nebudu, hotovo dvacet.

Milan Nehasil · #8 Příspěvek od **Milan Nehasil** » 27 lis 2011 00:23

ok samozřejmě to nechám na Tobě. S viry máš určitě větší zkušenosti, ale k Tvé reakci :

Tak chci potom aspoň dva panáky.
V tom nevidím problém. Alespoň fiktivně. Po skončení pošlu darovací SMS, ostatně tak jsem to udělal už několikrát. Takže v podstatě ušetří společnost, která provozuje doménu viry.cz a můžeš si dát o panáka víc

Hele, bylo by fajn, kdybys to dělal buď všechno sám, nebo to necháš na mně. Uznej sám, že takhle to nejde. Hodíš mi sem log, já do toho čučím určitý čas, sestavím postup a Ty mi pak napíšeš, že je všechno jinak a cos všechno provedl mezitím. Takhle to prostě nejde dělat!

Jasně souhlasím, ale bylo to tím, že se mého problému napsaného ve fóru dlouho nikdo neujal a já to chtěl mít hotové do víkendu. Ale moc jsem toho zatím neudělal. Odinstaloval jsem AVG, spustil Ccleaner, odstraňovač spyware a spustil antivira a to zvládne průměrný uživatel PC. Navíc jsem jen kouknul do registrů co se spouští po zapnutí. Ale odstranění nějakých zahnízděných trojanů a podobně, přiznám se na to opravdu nemám. Já se zabývám v IT úplně něčím jiným a jsem rád když mi s tímhle někdo pomůže.

Nesmysl, nesmysl a znovu další nesmysl. Mám dva velice velice staré PC, jeden s 512 MB RAM, druhý s 1 GB. Na obou běhá Avast a na obou naprosto bez problémů. Děláš sto věcí naráz, instaluješ, odinstaluješ, pořád něco, divíš se a svádíš to na Avast.

Pokud ty počítače jsou jen na internet a programování tak je to Ok. Samozřejmě záleží na tom, co je vše na počítači nainstalováno. Já si pamatuji Avast ještě za verze 4 a to byla opravdu brzda systému pokud na počítači bylo méně jak 512 MB. Pokud byl na počítači ESET nebo Avsat byl rozdíl ve výkonu počítače. Ale zase je fakt, že od verze 5 je Avast již lepší.

Znovu, co jsem psal nahoře - děláš milion věcí mimo to, co tu řešíme. Tak buď si to dokonči sám, nebo budeš dělat přesně to, co Ti píšu. Jiná možnost nebude, protože to pak vážně nemá cenu.

OK. Je to tak jak píšu nahoře. Nemám na to abych hledal v systému co je tam špatně. Já jsem jen uživatel antiviru. To že dělám milion věcí vyplývalo z toho, že jsem chtěl mít ten počítač hotový do víkendu a jelikož dlouho se mého problému nikdo neujal, tak jsem spustil antivir a další nástroje. Samozřejmě budu rád když mi někdo poradí co s tím.

"Asi" je pěkná vlastnost. Je mi jedno, co s tím kdo co dělal, to je Tvůj, případně jejich problém. Já řešit nelegál nebudu, hotovo dvacet.

Souhlasím. Dále bez komentáře.

Vždy jsem si vážil lidí, kteří dokážou ve svém volném čase pomáhat ostatním v jakékoliv formě. Proto jsem již několikrát po odstranění virů za pomocí některého z Tvých kolegů odeslal darovací SMS, protože jsem nechtěl být nikomu nic dlužen za dobrou pomoc. Takže samozřejmě jsem rád když mi někdo pomůže. Ale nejsem zase úplná trubka, která má počítač jen na hry. Hru na počítači jsem hrál naposledy asi před 10ti lety. (Pokud nepočítám PokerStar

)

Každopádně díky za pomoc.

#9 Příspěvek od **Mc_Murphy** » 27 lis 2011 07:07

OK, v pohodě, díky za román, nějak se s tím popereme.

Snad jen drobnou poznámku k tomu Avastu - ten se opravdu hodně moc změnil a zlepšil. V současné době patří mezi špičku na freeware scéně, dokonce si osobně myslím, že je nejlepší a často i lepší jak mnohý placený antivir. Jak jsem psal, mám jej i na PC s 512 MB RAM, 1 GHz Athlon, WinXP SP3 (čili žádná pecka) a nemám tam rozhodně žádné programátorské věci, klasika - Office, spousta her a dalších prográmků, takže obava o zpomalování Avastem je opravdu zcestná, proto jsem se tak ozval.

Tak jdeme na to. Jelikož nevím, co všechno se v PC změnilo, požádám Tě o nový log, tentokráte z prográmku OTL. Je podrobnější a mně osobně se s ním lépe pracuje.
Návody čti pečlivě a nedělej mezi tím žádné jiné kroky, ať se z toho nějak vymotáme, prosím.

Takže stáhni OTL z tohoto odkazu a ulož jej na Plochu.

Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
Zaškrtni okénko Pro všechny uživatele.
Zaškrtni okénko Kontrola na havěť "LOP".
Zaškrtni okénko Kontrola na havěť "Purity".
Stáři souborů změň z 30 dnů na 7 dnů.
Do spodního okénka Vlastní skenování/opravy vlož tento script:

Kód: Vybrat vše

safebootminimal 
safebootnetwork
drivers32
savembr:0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
/md5start
scecli.dll
autochk.exe
csrss.exe
explorer.exe
lsass.exe
services.exe
smss.exe
spoolsv.exe
svchost.exe
userinit.exe
winlogon.exe
atapi.sys
cdrom.sys 
ndis.sys
ntfs.sys
tcpip.sys
%SystemDrive%\PhysicalMBR.bin
/md5stop
C:\windows\system32\spool\prtprocs|dll;true;true;true /FP
%systemroot%\system32\drivers\*.sys /5
%systemroot%\system32\drivers\*.sys /X 
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\system32\*.* /5
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\config\*.sav 
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\Tasks\*.job /s
%systemroot%\*.* /U /s
%systemroot%\*. /mp /s
%ALLUSERSPROFILE%\Data Aplikací\*.*
%ALLUSERSPROFILE%\Data Aplikací\*.exe /s
%ALLUSERSPROFILE%\Dáta aplikácií\*.*
%ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s
%APPDATA%\*.
%APPDATA%\*.*
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
*crack* /s
*keygen* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
*legalizator* /s
*registration* /s
*Office 2010* /s
*AutoRearm* /s
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

Klikni na tlačítko Prohledat.
Po dokončení skenu se objeví logy OTL.txt a Extras.txt, oba mi sem vlož.
Logy se nevejdou do jednoho, rozděl je tedy prosím do více příspěvků.

Milan Nehasil · #10 Příspěvek od **Milan Nehasil** » 28 lis 2011 08:29

Takže tady je první část OTL logu :

OTL logfile created on: 2011-11-28 07:59:04 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\martin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: yyyy-MM-dd

2.00 Gb Total Physical Memory | 1.50 Gb Available Physical Memory | 75.09% Memory free
2.63 Gb Paging File | 2.30 Gb Available in Paging File | 87.61% Paging File free
Paging file location(s): C:\pagefile.sys 800 2500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149.04 Gb Total Space | 4.14 Gb Free Space | 2.78% Space Free | Partition Type: NTFS
Drive E: | 245.88 Mb Total Space | 56.48 Mb Free Space | 22.97% Space Free | Partition Type: FAT32

Computer Name: HOME-Q95W1Q7965 | User Name: martin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011-11-28 07:08:02 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\martin\Plocha\OTL.exe
PRC - [2011-03-21 22:10:00 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011-01-05 09:18:50 | 000,133,432 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ7.1\ICQ.exe
PRC - [2010-03-28 15:47:30 | 000,246,520 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2009-04-02 17:05:22 | 000,102,400 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
PRC - [2009-03-31 08:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2008-04-14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe
PRC - [2008-04-14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-10-17 15:02:50 | 001,114,112 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\RALINK\Common\RaUI.exe
PRC - [2007-09-05 20:12:13 | 000,065,536 | ---- | M] (Northcode Inc.) -- C:\WINDOWS\NCLAUNCH.EXe
PRC - [2005-10-28 16:25:44 | 000,094,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2005-06-08 15:14:44 | 000,217,088 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Video\LogiTray.exe
PRC - [2005-06-08 14:44:56 | 000,192,512 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Video\FxSvr2.exe
PRC - [2004-09-25 01:20:10 | 002,557,952 | ---- | M] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
PRC - [2004-09-24 03:27:18 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE

========== Win32 Services (SafeList) ==========

SRV - [2010-03-28 15:47:30 | 000,246,520 | ---- | M] () [Auto | Running] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009-03-31 08:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008-04-14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC)
SRV - [2008-04-14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (SMTPSVC) Simple Mail Transport Protocol (SMTP)
SRV - [2008-04-14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2008-04-07 08:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)

========== Driver Services (SafeList) ==========

DRV - [2009-03-31 08:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009-03-20 09:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009-03-20 09:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009-03-20 09:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2008-09-11 18:18:38 | 000,002,368 | ---- | M] (AntiCracking) [Kernel | Auto | Running] -- C:\WINDOWS\system32\STEC3.sys -- (STEC3)
DRV - [2007-09-17 14:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007-07-28 16:10:18 | 000,483,968 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt61.sys -- (RT61)
DRV - [2007-06-25 10:43:38 | 000,098,344 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117obex.sys -- (s117obex)
DRV - [2007-06-25 10:43:36 | 000,108,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mdm.sys -- (s117mdm)
DRV - [2007-06-25 10:43:36 | 000,100,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mgmt.sys -- (s117mgmt) Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM)
DRV - [2007-06-25 10:43:36 | 000,098,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117unic.sys -- (s117unic) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM)
DRV - [2007-06-25 10:43:36 | 000,022,952 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117nd5.sys -- (s117nd5) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS)
DRV - [2007-06-25 10:43:26 | 000,014,888 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mdfl.sys -- (s117mdfl)
DRV - [2007-06-25 10:43:22 | 000,082,984 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117bus.sys -- (s117bus) Sony Ericsson Device 117 driver (WDM)
DRV - [2007-01-12 19:09:53 | 000,082,296 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2006-07-10 17:19:58 | 000,027,032 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2006-07-05 13:46:06 | 000,063,352 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a) StarForce Protection Environment Driver (version 1.x.a)
DRV - [2006-06-14 15:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2006-05-09 09:27:30 | 000,013,824 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amps2prt.sys -- (Amps2prt)
DRV - [2005-08-10 13:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2004-09-25 01:27:32 | 002,276,672 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2004-09-03 18:23:10 | 000,115,680 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2004-09-03 18:19:07 | 000,054,368 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2004-07-19 15:49:54 | 000,007,040 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\prosync1.sys -- (prosync1)
DRV - [2004-06-07 04:43:52 | 000,036,484 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SMBios.sys -- (SMBios) Intel (R)
DRV - [2004-03-17 15:10:40 | 000,113,664 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004-03-08 12:55:50 | 000,013,567 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
DRV - [2003-12-01 16:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp01.sys -- (sfhlp01)
DRV - [1999-09-10 12:06:00 | 000,025,244 | R--- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\ASPI32.sys -- (Aspi32)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)

IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search13.net/
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571: C:\Program Files\Haihaisoft Universal Player\Codec\Plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739: C:\Program Files\Haihaisoft Universal Player\Codec\Plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011-03-31 11:28:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011-03-31 11:28:13 | 000,000,000 | ---D | M]

[2009-02-05 18:46:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\martin\Data aplikací\Mozilla\Firefox\extensions
[2009-02-05 18:46:26 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Documents and Settings\martin\Data aplikací\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}

========== Chrome ==========

CHR - default_search_provider: Google ()
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - Extension: No name found = C:\Documents and Settings\martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae\2.1.1.94_0\
CHR - Extension: No name found = C:\Documents and Settings\martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.1.94_0\

O1 HOSTS File: ([2011-11-24 07:07:07 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found.
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found.
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [AlcWzrd] C:\WINDOWS\ALCWZRD.EXE (RealTek Semicoductor Corp.)
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe (Logitech Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u File not found
O4 - HKLM..\Run: [Zástupce stránky vlastností sběrnice High Definition Audio] C:\WINDOWS\System32\Hdaudpropshortcut.exe (Windows (R) Server 2003 DDK provider)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [ICQ] C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [LogitechSoftwareUpdate] C:\Program Files\Logitech\Video\ManifestEngine.exe (Logitech Inc.)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [NCLaunch] C:\WINDOWS\NCLAUNCH.EXe (Northcode Inc.)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [Steam] c:\program files\steam\steam.exe (Valve Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.)
O4 - Startup: C:\Documents and Settings\martin\Nabídka Start\Programy\Po spuštění\fliptoast.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html File not found
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O9 - Extra Button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (DivXBrowserPlugin Object)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 8975562765 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - (avgrsstx.dll) - File not found
O24 - Desktop Components:0 () - http://sphotos.ak.fbcdn.net/hphotos-ak- ... 9354_n.jpg
O24 - Desktop Components:1 (Aktuální domovská stránka) - About:Home
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007-02-10 14:20:49 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{7ef966ae-8e02-11dc-bd77-001320621dbd}\Shell - "" = AutoRun
O33 - MountPoints2\{7ef966ae-8e02-11dc-bd77-001320621dbd}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\...com [@ = ComFile] -- Reg Error: Key error. File not found
O37 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\...exe [@ = exefile] -- Reg Error: Key error. File not found

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: PSEXESVC - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: PSEXESVC - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: UploadMgr - Service
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.HFYU - C:\WINDOWS\System32\huffyuv.dll (Disappearing Inc.)
Drivers32: VIDC.I420 - lvcodec2.dll File not found
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.wmv3 - C:\WINDOWS\System32\WMV9VCM.dll (Microsoft Corporation)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2011-11-28 07:56:58 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\martin\Plocha\OTL.exe
[2011-11-25 11:50:38 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\martin\Recent
[2011-11-25 11:09:30 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF26549.exe
[2011-11-25 10:19:15 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011-11-25 10:16:21 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF16050.exe
[2011-11-25 09:38:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\martin\Data aplikací\AVG
[2011-11-25 09:14:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011-11-25 09:11:22 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011-11-25 09:11:22 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011-11-25 09:11:22 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011-11-25 09:11:22 | 000,089,504 | ---- | C] (Smallfrogs Studio) -- C:\WINDOWS\fdsv.exe
[2011-11-25 09:11:22 | 000,029,696 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011-11-25 09:11:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011-11-25 09:11:14 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF3344.exe
[2011-11-25 09:11:01 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011-11-25 08:57:34 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011-11-25 08:57:34 | 000,000,000 | ---D | C] -- C:\rsit
[2011-11-24 12:53:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Spybot - Search & Destroy
[2011-11-24 12:53:31 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011-11-24 12:53:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2011-11-24 12:49:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\CSC
[2011-11-24 11:42:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2011-11-24 07:11:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2011-11-24 07:11:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Spyware Terminator 2012
[2011-11-24 07:11:51 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Terminator
[2011-11-23 13:49:15 | 000,000,000 | -HSD | C] -- C:\found.004
[2011-11-23 11:56:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2011-11-28 08:01:01 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2011-11-28 08:00:33 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011-11-28 07:53:28 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-11-28 07:53:27 | 000,131,072 | ---- | M] () -- C:\Documents and Settings\martin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-11-28 07:51:11 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011-11-28 07:50:37 | 000,530,510 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011-11-28 07:50:37 | 000,495,458 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-11-28 07:50:37 | 000,121,184 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011-11-28 07:50:37 | 000,085,476 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011-11-28 07:48:54 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-11-28 07:48:46 | 000,192,489 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011-11-28 07:48:33 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011-11-28 07:48:31 | 000,000,416 | ---- | M] () -- C:\WINDOWS\tasks\PCConfidential.job
[2011-11-28 07:47:37 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-11-28 07:47:12 | 061,657,056 | ---- | M] () -- C:\Documents and Settings\martin\Plocha\setup_av_free.exe
[2011-11-28 07:08:02 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\martin\Plocha\OTL.exe
[2011-11-25 11:09:24 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF26549.exe
[2011-11-25 10:19:45 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2011-11-25 10:15:49 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF16050.exe
[2011-11-25 09:10:58 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF3344.exe
[2011-11-24 13:47:07 | 000,000,506 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2011-11-24 07:11:57 | 000,000,725 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Spyware Terminator 2012.lnk
[2011-11-24 07:09:08 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-11-24 07:07:07 | 000,000,736 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011-11-23 11:56:27 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011-11-28 08:00:33 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011-11-28 07:56:35 | 061,657,056 | ---- | C] () -- C:\Documents and Settings\martin\Plocha\setup_av_free.exe
[2011-11-25 10:19:45 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2011-11-25 10:19:35 | 000,261,312 | ---- | C] () -- C:\cmldr
[2011-11-25 09:11:22 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011-11-25 09:11:22 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011-11-25 09:11:22 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011-11-25 09:11:22 | 000,049,152 | ---- | C] () -- C:\WINDOWS\VFIND.exe
[2011-11-24 13:47:02 | 000,000,506 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2011-11-24 07:11:57 | 000,000,725 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Spyware Terminator 2012.lnk
[2011-11-24 07:09:04 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-11-23 11:56:27 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2011-02-24 19:15:13 | 000,183,112 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011-02-22 20:05:10 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.INI
[2011-01-29 14:16:37 | 000,054,132 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-07-03 18:16:04 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010-07-03 18:16:03 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010-07-03 18:15:10 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\martin\Data aplikací\$_hpcst$.hpc
[2010-05-16 13:51:34 | 000,000,264 | ---- | C] () -- C:\WINDOWS\_delis32.ini
[2008-09-11 18:19:18 | 000,000,029 | ---- | C] () -- C:\WINDOWS\AlphaPlayer.INI
[2008-05-26 21:22:14 | 000,015,552 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008-05-26 21:22:10 | 000,021,464 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008-05-26 21:22:04 | 000,014,910 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008-05-26 20:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008-05-26 20:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008-05-11 19:15:20 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2008-04-01 16:15:27 | 000,104,668 | ---- | C] () -- C:\WINDOWS\hpqins16.dat
[2008-03-01 15:04:45 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2008-02-02 15:09:39 | 000,023,016 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.ini
[2008-02-02 15:09:39 | 000,001,008 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.ini
[2008-02-02 15:09:14 | 000,058,716 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
[2008-02-02 15:09:13 | 000,014,691 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
[2008-02-02 15:09:11 | 000,018,097 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
[2008-02-02 15:09:04 | 000,003,568 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2008-02-01 16:59:31 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2008-01-10 13:16:20 | 000,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008-01-10 13:15:30 | 000,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2007-12-30 15:25:32 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2007-12-30 15:24:50 | 000,008,138 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2007-10-25 16:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2007-10-03 10:58:58 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\martin\Local Settings\Data aplikací\fusioncache.dat
[2007-09-04 17:56:10 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2007-09-04 11:17:25 | 000,000,221 | ---- | C] () -- C:\WINDOWS\NCLogConfig.ini
[2007-06-26 13:15:14 | 000,001,751 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\QTSBandwidthCache
[2007-06-17 12:07:31 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2007-05-11 14:34:03 | 000,000,380 | ---- | C] () -- C:\WINDOWS\Rollemup.ini
[2007-04-24 15:28:59 | 007,287,808 | ---- | C] () -- C:\WINDOWS\System32\vistaui(2)(2).exe
[2007-02-10 16:54:08 | 000,000,836 | ---- | C] () -- C:\Documents and Settings\martin\Data aplikací\ViewerApp.dat
[2007-01-28 17:46:34 | 000,000,823 | ---- | C] () -- C:\WINDOWS\System32\unins000.dat
[2007-01-18 18:33:21 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2007-01-17 20:31:40 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007-01-16 19:42:28 | 000,131,072 | ---- | C] () -- C:\Documents and Settings\martin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007-01-16 18:44:59 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007-01-16 18:44:58 | 000,005,120 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2007-01-16 18:34:22 | 000,000,047 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2007-01-16 18:33:45 | 000,000,526 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2007-01-16 18:33:37 | 000,000,666 | ---- | C] () -- C:\WINDOWS\WEBTRAN4.INI
[2007-01-16 18:33:33 | 000,004,413 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2007-01-16 18:33:33 | 000,001,038 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2007-01-16 18:27:46 | 000,000,676 | ---- | C] () -- C:\WINDOWS\im32st.dat
[2007-01-16 18:11:58 | 000,000,514 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007-01-16 17:59:09 | 000,001,076 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2007-01-16 16:37:34 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTKHDAUD.DAT
[2007-01-14 14:42:40 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2007-01-13 20:19:15 | 000,081,920 | R--- | C] () -- C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe
[2007-01-13 16:01:03 | 000,004,265 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007-01-13 16:00:04 | 000,268,600 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2007-01-13 15:58:07 | 001,657,376 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2007-01-13 15:58:06 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2007-01-13 15:58:06 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2007-01-13 15:58:05 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2007-01-13 15:58:05 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2007-01-13 15:58:04 | 001,503,232 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2007-01-13 15:58:04 | 001,346,080 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2007-01-13 15:58:04 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2007-01-13 15:58:04 | 000,449,056 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2007-01-13 15:58:03 | 000,436,768 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2007-01-13 15:50:55 | 000,012,288 | R--- | C] () -- C:\WINDOWS\System32\e100bmsg.dll
[2007-01-13 15:36:57 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2007-01-13 15:36:56 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\RTCOMDLL.dll
[2007-01-13 15:36:56 | 000,156,160 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2007-01-13 15:14:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2007-01-13 15:09:15 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004-08-02 13:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2003-04-16 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2003-04-16 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2003-04-16 13:00:00 | 000,530,510 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2003-04-16 13:00:00 | 000,495,458 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2003-04-16 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2003-04-16 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2003-04-16 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2003-04-16 13:00:00 | 000,121,184 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2003-04-16 13:00:00 | 000,085,476 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2003-04-16 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2003-04-16 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2003-04-16 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2003-04-16 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2003-04-16 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2003-04-16 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[1999-01-27 13:39:06 | 000,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll
[1997-06-13 07:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== LOP Check ==========

[2011-11-24 07:11:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Data aplikací\Spyware Terminator
[2007-01-16 18:14:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ACD Systems
[2011-11-25 10:11:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\avg9
[2008-12-30 17:44:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Codemasters
[2011-03-14 22:25:50 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2007-02-24 15:31:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Downloaded Installations
[2010-05-24 20:33:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2010-05-27 19:13:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2008-08-06 13:06:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2007-07-06 13:26:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nokia
[2007-03-26 13:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2010-03-01 18:18:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ralink Driver
[2008-08-26 21:01:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2011-11-25 13:09:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2011-11-25 11:06:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010-07-29 08:37:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TrackMania
[2008-07-27 09:59:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2009-09-13 16:56:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009-04-06 18:48:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2007-01-16 18:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ACD Systems
[2011-11-25 09:38:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\AVG
[2011-01-29 13:55:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\com.w3i.FlipToast
[2007-02-24 15:05:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Datalayer
[2011-07-23 09:30:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\DDMSettings
[2010-07-30 00:17:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Desktopicon
[2011-01-29 13:53:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\FinalTorrent
[2007-01-13 20:20:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\FotoWire
[2009-07-11 18:48:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Haihaisoft
[2009-07-11 18:48:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Haihaisoft Universal Player
[2011-11-28 07:50:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ICQ
[2007-01-16 20:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ICQ Toolbar
[2007-01-16 20:22:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ICQLite
[2009-12-05 10:47:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Image Zone Express
[2010-05-23 16:22:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Leadertech
[2007-07-01 19:02:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\MakeUpPilot
[2008-02-02 13:40:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Nokia
[2007-01-16 18:40:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Opera
[2008-02-02 13:32:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\PC Suite
[2009-02-26 18:09:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Printer Info Cache
[2010-07-03 18:14:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Samsung
[2007-07-29 14:50:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Sereniti
[2008-11-30 17:50:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Sony
[2007-04-23 19:45:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Stardock
[2007-01-24 18:52:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ubi.com
[2011-01-29 13:41:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Uniblue
[2011-11-25 12:02:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\uTorrent
[2008-01-27 14:14:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Vista Start Menu
[2008-01-27 14:01:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ViStart
[2008-10-21 18:20:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Windows Desktop Search
[2008-10-29 16:08:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Windows Search
[2009-06-03 15:04:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Zoner
[2011-10-30 18:08:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ostatní\Data aplikací\Windows Search
[2011-11-28 07:48:31 | 000,000,416 | ---- | M] () -- C:\WINDOWS\Tasks\PCConfidential.job
[2011-11-28 08:01:01 | 000,000,236 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

========== Purity Check ==========

Milan Nehasil · #11 Příspěvek od **Milan Nehasil** » 28 lis 2011 08:30

Zbytek OTL logu :

========== Custom Scans ==========

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"LogitechSoftwareUpdate" = "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot -- [2005-06-08 14:44:14 | 000,196,608 | ---- | M] (Logitech Inc.)
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" -- [2005-10-28 16:25:44 | 000,094,208 | ---- | M] (Nero AG)
"NCLaunch" = C:\WINDOWS\NCLAUNCH.EXe -- [2007-09-05 20:12:13 | 000,065,536 | ---- | M] (Northcode Inc.)
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008-04-14 04:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"Skype" = "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized -- [2010-09-02 14:15:04 | 013,351,304 | R--- | M] (Skype Technologies S.A.)
"AutoStartNPSAgent" = C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe -- [2009-04-02 17:05:22 | 000,102,400 | ---- | M] (Samsung Electronics Co., Ltd.)
"Steam" = "c:\program files\steam\steam.exe" -silent -- [2011-08-11 23:07:54 | 001,242,448 | ---- | M] (Valve Corporation)
"ICQ" = "C:\Program Files\ICQ7.1\ICQ.exe" silent loginmode=4 -- [2011-01-05 09:18:50 | 000,133,432 | ---- | M] (ICQ, LLC.)

< MD5 for: ATAPI.SYS >
[2003-04-16 13:00:00 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:atapi.sys
[2004-08-17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008-08-29 20:48:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004-08-17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008-08-29 20:48:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2003-04-16 13:00:00 | 000,086,912 | ---- | M] (Microsoft Corporation) MD5=95B858761A00E1D4F81F79A0DA019ACA -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\atapi.sys
[2002-08-29 01:27:50 | 000,086,912 | ---- | M] (Microsoft Corporation) MD5=95B858761A00E1D4F81F79A0DA019ACA -- C:\WINDOWS\system32\ReinstallBackups\0014\DriverFiles\i386\atapi.sys
[2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008-04-14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008-04-14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008-04-14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004-08-17 14:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2003-04-16 13:00:00 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:cdrom.sys
[2004-08-17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008-08-29 20:48:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004-08-17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:cdrom.sys
[2008-08-29 20:48:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004-08-03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CSRSS.EXE >
[2004-08-17 14:49:24 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=490E6E57E54FAF5F23F658EA188405A1 -- C:\WINDOWS\$NtServicePackUninstall$\csrss.exe
[2008-04-14 04:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\ServicePackFiles\i386\csrss.exe
[2008-04-14 04:22:17 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=628CE66E3FD35BFC7969DBAC245DC069 -- C:\WINDOWS\system32\csrss.exe

< MD5 for: EXPLORER.EXE >
[2008-04-14 04:22:22 | 000,976,384 | ---- | M] (Microsoft Corporation) MD5=13E794E5591776CBC71055A7B3CC1D5F -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2008-04-14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2004-08-17 14:49:24 | 000,974,848 | ---- | M] (Microsoft Corporation) MD5=4D32D7FFC2F583FE21EF0A4F99EABB12 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007-06-13 14:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007-06-13 14:23:39 | 000,975,872 | ---- | M] (Microsoft Corporation) MD5=C3A2DAB66B962ACCABF51F987B8ADD85 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: LSASS.EXE >
[2004-08-17 14:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008-04-14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008-04-14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NTFS.SYS >
[2007-02-09 12:23:36 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=05AB81909514BFD69CBB1F2C147CF6B9 -- C:\WINDOWS\$hf_mig$\KB930916\SP2QFE\ntfs.sys
[2007-02-09 12:10:35 | 000,574,464 | ---- | M] (Microsoft Corporation) MD5=19A811EF5F1ED5C926A028CE107FF1AF -- C:\WINDOWS\$NtServicePackUninstall$\ntfs.sys
[2008-04-13 20:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\ServicePackFiles\i386\ntfs.sys
[2008-04-13 20:15:53 | 000,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\system32\drivers\ntfs.sys
[2004-08-03 23:15:10 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\cmdcons\NTFS.SYS
[2004-08-03 22:15:10 | 000,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\$NtUninstallKB930916$\ntfs.sys

< MD5 for: SCECLI.DLL >
[2004-08-17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008-04-14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008-04-14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SERVICES.EXE >
[2009-02-09 12:18:56 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=3D107D45CCFDB266E91D84B52CD7F430 -- C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe
[2004-08-17 14:49:28 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=6E401E61F952FBBF708AFBECEFAFAE81 -- C:\WINDOWS\$NtServicePackUninstall$\services.exe
[2009-02-09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\dllcache\services.exe
[2009-02-09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\services.exe
[2008-04-14 04:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\$NtUninstallKB956572$\services.exe
[2008-04-14 04:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\ServicePackFiles\i386\services.exe

< MD5 for: SMSS.EXE >
[2004-08-17 14:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2004-08-17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008-04-14 04:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008-04-14 04:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SPOOLSV.EXE >
[2004-08-17 14:49:28 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=21B6FAA88044A41640E03EBB68BE93E8 -- C:\WINDOWS\$NtUninstallKB896423$\spoolsv.exe
[2010-08-17 14:19:36 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=258DD5D4283FD9F9A7166BE9AE45CE73 -- C:\WINDOWS\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\dllcache\spoolsv.exe
[2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) MD5=60784F891563FB1B767F70117FC2428F -- C:\WINDOWS\system32\spoolsv.exe
[2005-06-11 01:17:13 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=AD3D9D191AEA7B5445FE1D82FFBB4788 -- C:\WINDOWS\$hf_mig$\KB896423\SP2QFE\spoolsv.exe
[2008-04-14 04:22:48 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\$NtUninstallKB2347290$\spoolsv.exe
[2008-04-14 04:22:48 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=CB1090BCA0E7B40D0B5B4E4D66531809 -- C:\WINDOWS\ServicePackFiles\i386\spoolsv.exe
[2005-06-11 00:53:32 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=DA81EC57ACD4CDC3D4C51CF3D409AF9F -- C:\WINDOWS\$hf_mig$\KB896423\SP2GDR\spoolsv.exe
[2005-06-11 00:53:32 | 000,057,856 | ---- | M] (Microsoft Corporation) MD5=DA81EC57ACD4CDC3D4C51CF3D409AF9F -- C:\WINDOWS\$NtServicePackUninstall$\spoolsv.exe
[2003-04-16 13:00:00 | 000,051,200 | ---- | M] (Microsoft Corporation) MD5=FBD651B9CF8F5297F86961843D6F1BAB -- C:\WINDOWS\$NtUninstallKB896423_0$\spoolsv.exe

< MD5 for: SVCHOST.EXE >
[2008-04-14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008-04-14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004-08-17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2006-04-20 12:51:50 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=1DBF125862891817F374F407626967F4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2GDR\tcpip.sys
[2006-04-20 12:51:50 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=1DBF125862891817F374F407626967F4 -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2003-04-16 13:00:00 | 000,332,928 | ---- | M] (Microsoft Corporation) MD5=244A2F9816BC9B593957281EF577D976 -- C:\WINDOWS\$NtUninstallKB917953_0$\tcpip.sys
[2008-06-20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\SoftwareDistribution\Download\35df3b7362f9361af2fa0d1e6d23d778\sp2gdr\tcpip.sys
[2007-10-30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2008-06-20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\SoftwareDistribution\Download\35df3b7362f9361af2fa0d1e6d23d778\sp2qfe\tcpip.sys
[2007-10-30 18:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008-04-13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB2509553$\tcpip.sys
[2008-04-13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008-06-20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\SoftwareDistribution\Download\35df3b7362f9361af2fa0d1e6d23d778\sp3gdr\tcpip.sys
[2008-06-20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008-06-20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004-08-03 22:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
[2008-06-20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008-06-20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\SoftwareDistribution\Download\35df3b7362f9361af2fa0d1e6d23d778\sp3qfe\tcpip.sys
[2006-04-20 13:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008-04-14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008-04-14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004-08-17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004-08-17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008-04-14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008-04-14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2008-07-06 13:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2006-12-29 08:57:18 | 000,273,920 | ---- | M] (Hewlett-Packard Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp4v2.dll
[2007-04-09 12:23:54 | 000,028,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
[2006-10-26 19:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll
[2008-07-06 13:06:10 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\x64\filterpipelineprintproc.dll

< %systemroot%\system32\drivers\*.sys /5 >

< %systemroot%\system32\drivers\*.sys /X >
[2008-04-14 04:21:36 | 000,004,255 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv01nt5.dll
[2008-04-14 04:21:36 | 000,003,967 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv02nt5.dll
[2008-04-14 04:21:36 | 000,003,615 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv05nt5.dll
[2008-04-14 04:21:36 | 000,003,647 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv07nt5.dll
[2008-04-14 04:21:36 | 000,003,135 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv08nt5.dll
[2008-04-14 04:21:36 | 000,003,711 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv09nt5.dll
[2008-04-14 04:21:36 | 000,003,775 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv11nt5.dll
[2004-07-17 10:36:24 | 000,064,352 | ---- | M] () -- C:\WINDOWS\system32\drivers\ativmc20.cod
[2008-04-14 04:21:37 | 000,021,183 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv01nt5.dll
[2008-04-14 04:21:37 | 000,011,359 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv02nt5.dll
[2008-04-14 04:21:37 | 000,025,471 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv04nt5.dll
[2008-04-14 04:21:37 | 000,014,143 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv06nt5.dll
[2008-04-14 04:21:37 | 000,017,279 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv10nt5.dll
[2008-04-14 04:21:38 | 000,015,423 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
[2004-07-17 21:55:24 | 000,129,045 | ---- | M] () -- C:\WINDOWS\system32\drivers\cxthsfs2.cty
[2004-04-02 16:54:16 | 000,001,009 | ---- | M] () -- C:\WINDOWS\system32\drivers\driver jp.txt
[2003-04-16 13:00:00 | 003,440,660 | ---- | M] () -- C:\WINDOWS\system32\drivers\gm.dls
[2003-04-16 13:00:00 | 000,000,646 | ---- | M] () -- C:\WINDOWS\system32\drivers\gmreadme.txt
[2004-07-17 10:35:00 | 000,067,866 | ---- | M] () -- C:\WINDOWS\system32\drivers\netwlan5.img
[2007-01-16 16:37:34 | 000,000,008 | ---- | M] () -- C:\WINDOWS\system32\drivers\RTKHDAUD.DAT
[2008-04-14 04:21:55 | 000,003,901 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\siint5.dll
[2008-04-14 04:22:04 | 000,011,325 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\vchnt5.dll

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\system32\*.* /5 >
[2011-11-25 10:15:49 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\CF16050.exe
[2011-11-25 11:09:24 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\CF26549.exe
[2011-11-25 09:10:58 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\CF3344.exe
[2011-11-24 07:09:08 | 000,000,664 | ---- | M] () -- C:\WINDOWS\system32\d3d9caps.dat
[2011-11-25 11:21:46 | 050,295,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MRT.exe
[2011-11-28 07:48:46 | 000,192,489 | ---- | M] () -- C:\WINDOWS\system32\nvapps.xml
[2011-11-28 07:50:37 | 000,121,184 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2011-11-28 07:50:37 | 000,085,476 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2011-11-28 07:50:37 | 000,530,510 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2011-11-28 07:50:37 | 000,495,458 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2011-11-28 07:50:36 | 001,251,742 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2011-11-28 07:48:54 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\config\*.sav >
[2007-01-13 15:59:26 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2007-01-13 15:59:26 | 000,630,784 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2007-01-13 15:59:26 | 000,413,696 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\Tasks\*.job /s >
[2011-11-28 07:48:33 | 000,000,936 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2011-11-28 07:51:11 | 000,000,940 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2011-11-28 07:48:31 | 000,000,416 | ---- | M] () -- C:\WINDOWS\Tasks\PCConfidential.job
[2011-11-28 08:01:01 | 000,000,236 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

< %systemroot%\*.* /U /s >
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[18 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[18 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[2 C:\WINDOWS\system32\CatRoot\*.tmp files -> C:\WINDOWS\system32\CatRoot\*.tmp -> ]

< %systemroot%\*. /mp /s >

< %ALLUSERSPROFILE%\Data Aplikací\*.* >
[2007-01-13 16:00:37 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\desktop.ini
[2010-05-16 14:43:29 | 000,008,122 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\hpzinstall.log
[2007-06-26 13:15:14 | 000,001,751 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\QTSBandwidthCache

< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
[2010-06-24 18:11:54 | 000,056,969 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\ASPEncoder\Uninstaller.exe
[2010-12-11 13:00:58 | 000,057,591 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\ControlPanel\Uninstaller.exe
[2010-06-24 18:13:22 | 000,054,128 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Converter\Uninstaller.exe
[2010-12-11 13:01:03 | 000,054,153 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DFXPlugin\Uninstaller.exe
[2010-06-24 18:13:37 | 000,056,458 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DivXDecoderShortcut\Uninstaller.exe
[2011-03-31 11:29:00 | 000,064,957 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DivXPlusShortcuts\Uninstaller.exe
[2011-03-31 11:26:47 | 000,062,879 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DSAACDecoder\Uninstaller.exe
[2010-06-24 18:13:39 | 000,057,532 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DSASPDecoder\Uninstaller.exe
[2010-06-24 18:13:40 | 000,054,166 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DSAVCDecoder\Uninstaller.exe
[2011-03-31 11:27:02 | 000,057,037 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\DSDesktopComponents\Uninstaller.exe
[2010-06-24 18:12:56 | 000,054,101 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\MPEG2Plugin\Uninstaller.exe
[2010-06-24 18:12:42 | 000,052,963 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\MSVC80CRTRedist\Uninstaller.exe
[2011-03-31 11:26:22 | 000,062,952 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\OVSHelper\Uninstaller.exe
[2010-12-11 13:02:56 | 000,057,736 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Player\Uninstaller.exe
[2010-06-24 18:12:05 | 000,054,073 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Qt4.5\Uninstaller.exe
[2010-08-27 19:31:17 | 000,144,696 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\DivX\RunAsUser\RUNASUSERPROCESS.exe
[2011-03-31 11:21:29 | 000,913,760 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Setup\DivXSetup.exe
[2011-03-31 11:23:27 | 000,292,792 | ---- | M] (Symantec Corporation) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Symantec\SymInstallStub.exe
[2010-06-24 18:13:17 | 000,054,644 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\TranscodeEngine\Uninstaller.exe
[2010-12-11 13:01:24 | 000,084,038 | ---- | M] (DivX, Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\TransferWizard\Uninstaller.exe
[2011-03-31 11:27:16 | 000,061,792 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\Update\Uninstaller.exe
[2011-03-31 11:28:31 | 000,066,536 | ---- | M] (DivX, LLC) -- C:\Documents and Settings\All Users\Data Aplikací\DivX\WebPlayer\Uninstaller.exe
[2011-08-12 01:24:19 | 000,527,024 | ---- | M] (Google Inc.) -- C:\Documents and Settings\All Users\Data Aplikací\Google\Google Toolbar\Update\GoogleToolbarInstaller_updater_signed.exe
[2008-02-02 13:05:28 | 027,750,576 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{29466F9C-7C6A-419C-B301-F440FAF78760}\Nokia_PC_Suite_rel_6_85_14_1_cze_web.exe
[2008-02-02 13:05:35 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{29466F9C-7C6A-419C-B301-F440FAF78760}\Installer\CommonCustomActions\UninstCCD.exe
[2008-02-02 13:05:35 | 000,010,240 | ---- | M] (Nokia) -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{29466F9C-7C6A-419C-B301-F440FAF78760}\Installer\CommonCustomActions\UninstPCS.exe
[2008-02-02 13:05:35 | 000,061,440 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{29466F9C-7C6A-419C-B301-F440FAF78760}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
[2008-02-02 13:05:38 | 000,733,783 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{29466F9C-7C6A-419C-B301-F440FAF78760}\Packages\Nokia_PC_Suite\CustomActions\NSU_Inst_fix.exe
[2008-02-02 13:19:56 | 010,349,144 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{4CFB3821-1582-4f3b-BF8D-30986923B36B}\Nokia_Multimedia_Factory_2_0.exe
[2007-04-13 11:58:49 | 021,671,816 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Nokia_PC_Suite_683_rel_14_1_cze.exe
[2007-04-13 12:08:10 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstCCD.exe
[2007-04-13 12:08:10 | 000,009,728 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstPCS.exe
[2007-04-13 12:08:10 | 000,015,360 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstPCSFEMsi.exe
[2008-07-10 19:34:16 | 000,528,384 | ---- | M] () -- C:\Documents and Settings\All Users\Data Aplikací\Ralink Driver\RT7x Wireless LAN Card\Driver\RaInst.exe

< %ALLUSERSPROFILE%\Dáta aplikácií\*.* >

< %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s >

< %APPDATA%\*. >
[2007-01-16 18:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ACD Systems
[2010-12-11 14:05:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Adobe
[2007-02-02 19:46:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\AdobeUM
[2007-02-10 17:18:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Ahead
[2009-09-13 17:08:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Apple Computer
[2007-01-14 14:46:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ArcSoft
[2011-11-25 09:38:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\AVG
[2011-01-29 13:55:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\com.w3i.FlipToast
[2007-01-20 13:14:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\CyberLink
[2007-02-24 15:05:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Datalayer
[2011-07-23 09:30:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\DDMSettings
[2010-07-30 00:17:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Desktopicon
[2010-06-28 20:04:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\DivX
[2007-10-05 08:56:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\dvdcss
[2011-01-29 13:53:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\FinalTorrent
[2007-01-13 20:20:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\FotoWire
[2009-02-07 20:37:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Google
[2009-07-11 18:48:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Haihaisoft
[2009-07-11 18:48:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Haihaisoft Universal Player
[2008-04-19 14:47:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Help
[2007-10-28 19:45:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\HP
[2009-12-25 17:56:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\HpUpdate
[2011-11-28 07:50:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ICQ
[2007-01-16 20:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ICQ Toolbar
[2007-01-16 20:22:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ICQLite
[2007-01-13 15:27:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Identities
[2009-12-05 10:47:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Image Zone Express
[2010-05-23 16:22:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Leadertech
[2007-03-04 18:11:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Macromedia
[2007-07-01 19:02:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\MakeUpPilot
[2007-01-16 20:27:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Media Player Classic
[2010-07-05 19:35:43 | 000,000,000 | --SD | M] -- C:\Documents and Settings\martin\Data aplikací\Microsoft
[2007-12-30 15:25:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Mozilla
[2008-02-02 13:40:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Nokia
[2007-01-16 18:40:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Opera
[2008-02-02 13:32:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\PC Suite
[2009-02-26 18:09:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Printer Info Cache
[2007-03-04 13:37:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Real
[2010-07-03 18:14:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Samsung
[2008-07-25 13:17:59 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\martin\Data aplikací\SecuROM
[2007-07-29 14:50:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Sereniti
[2011-11-28 07:49:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Skype
[2011-07-24 23:02:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\skypePM
[2008-11-30 17:50:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Sony
[2007-04-23 19:45:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Stardock
[2007-11-18 19:07:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Sun
[2007-12-30 15:25:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Talkback
[2007-11-08 15:12:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\U3
[2007-01-24 18:52:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ubi.com
[2011-01-29 13:41:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Uniblue
[2011-11-25 12:02:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\uTorrent
[2008-01-27 14:14:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Vista Start Menu
[2008-01-27 14:01:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ViStart
[2008-10-21 18:20:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Windows Desktop Search
[2008-10-29 16:08:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Windows Search
[2008-11-23 23:22:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\WinRAR
[2009-06-03 15:04:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Zoner

< %APPDATA%\*.* >
[2010-07-03 18:15:10 | 000,002,528 | ---- | M] () -- C:\Documents and Settings\martin\Data aplikací\$_hpcst$.hpc
[2007-01-13 16:00:37 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\martin\Data aplikací\desktop.ini
[2007-03-16 18:56:04 | 000,000,836 | ---- | M] () -- C:\Documents and Settings\martin\Data aplikací\ViewerApp.dat

< %APPDATA%\*.exe /s >
[2010-07-30 00:17:10 | 000,031,836 | ---- | M] () -- C:\Documents and Settings\martin\Data aplikací\Desktopicon\uninst.exe
[2011-10-13 20:21:00 | 000,053,632 | ---- | M] (Adobe Systems Inc.) -- C:\Documents and Settings\martin\Data aplikací\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2007-01-16 19:49:35 | 001,410,680 | ---- | M] () -- C:\Documents and Settings\martin\Data aplikací\Opera\Opera\install_flash_player.exe
[2006-04-05 19:38:10 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\martin\Data aplikací\U3\temp\cleanup.exe
[2002-03-27 14:42:36 | 000,114,688 | R--- | M] () -- C:\Documents and Settings\martin\Data aplikací\ubi.com\Core\cabarc.exe
[2002-03-28 08:53:50 | 000,126,976 | R--- | M] () -- C:\Documents and Settings\martin\Data aplikací\ubi.com\Core\GLPatcher2.exe

< %SYSTEMDRIVE%\*.exe >

< *crack* /s >
[2009-02-03 19:30:27 | 000,068,080 | ---- | M] () -- \Documents and Settings\martin\Data aplikací\uTorrent\Prince Of Persia 3 The Two Thrones + Crack.torrent
[2009-02-04 16:09:33 | 000,001,378 | ---- | M] () -- \Documents and Settings\martin\Data aplikací\uTorrent\Prince Of Persia The Two Thrones No-CD Crack.exe.torrent
[2010-08-02 22:46:41 | 000,026,924 | ---- | M] () -- \Program Files\Steam\steamapps\common\alien swarm\swarm\sound\vo\crash\hackcrackhome.wav
[2007-10-14 10:41:32 | 000,000,448 | ---- | M] () -- \RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003\Dc6\Winrar 3.4 CZ\CRACK-LOCATOR[1].COM-WinRAR_v3.xx_All_Language_by_rasTafRee.zip

< *keygen* /s >
[2006-05-25 15:02:32 | 000,081,517 | ---- | M] () -- \RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003\Dc6\A-one Video Convertor 2.23\A-one.Video.Convertor.v2.23_KEYGEN-FFF.zip
[2005-12-01 15:57:06 | 000,098,131 | ---- | M] () -- \RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003\Dc6\Nero 7012\Nero Burning ROM v7[1].0.1.2 Premium Keygen.rar

< *loader* /s >
[2011-11-03 20:39:06 | 000,006,820 | ---- | M] () -- \Documents and Settings\martin\Data aplikací\com.w3i.FlipToast\Local Store\currenttheme\Images\loader.gif
[2011-10-26 12:46:48 | 000,000,673 | ---- | M] () -- \Documents and Settings\martin\Local Settings\Data aplikací\Google\Chrome\User Data\Temp\scoped_dir_2585\CRX_INSTALL\Media\ajax-loader.gif
[2011-09-03 13:48:23 | 894,132,868 | ---- | M] () -- \Documents and Settings\martin\Plocha\Downloads\Never.Back.Down.2.2011.CZtit.by.Colly.of.PowerUploaders.avi
[2011-10-22 20:30:09 | 000,010,144 | ---- | M] () -- \extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\modules\ExternalLibraryLoader.jsm
[2002-09-25 21:05:38 | 000,113,664 | ---- | M] () -- \Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
[2006-10-26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006-10-26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2009-02-23 21:08:04 | 000,007,380 | ---- | M] () -- \Program Files\EA Sports\FIFA 10\osdkdata\external\ion_sports07\fw\commonLoader.big
[2009-02-23 21:08:36 | 000,000,288 | ---- | M] () -- \Program Files\EA Sports\FIFA 10\osdkdata\game\globalClasses\classLoader.big
[2010-05-27 19:12:25 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.1\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2010-05-27 19:12:24 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.1\imApp\theme\IMAGES\XtraPreloader\loader.swf
[2010-05-27 19:12:25 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.1\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2010-05-27 19:12:24 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.1\imApp\theme\MUICoreLib\xtraLoader.swf
[2010-05-27 19:53:41 | 000,003,479 | ---- | M] () -- \Program Files\ICQ7.1\Xtraz\icq\content\coreg\preloader04.swf
[2011-03-14 21:58:39 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.1\Xtraz\icq\content\icq_profile\preloader.html
[2011-01-18 14:54:09 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.1\Xtraz\icq\content\profile_forms\preloader.html
[2011-01-18 20:51:11 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.1\Xtraz\icq\content\profile_lightboxs\preloader.html
[2010-06-17 17:45:32 | 000,552,798 | ---- | M] () -- \Program Files\ICQ7.1\Xtraz\icq\theme\game_center\loaderBkg.png
[2009-03-31 08:23:58 | 000,289,280 | ---- | M] () -- \Program Files\Samsung\Samsung New PC Studio\NPSAndroidDownloader.dll
[2009-03-12 08:31:22 | 000,285,184 | ---- | M] () -- \Program Files\Samsung\Samsung New PC Studio\NPSLinuxMitsDownloader.dll
[2009-03-31 08:39:20 | 000,208,896 | ---- | M] () -- \Program Files\Samsung\Samsung New PC Studio\Symbian_Downloader_DLL.dll
[2009-04-02 17:03:40 | 000,258,048 | ---- | M] () -- \Program Files\Samsung\Samsung New PC Studio\ModelExtension\NPSBinaryLoader.dll
[2008-11-25 15:52:24 | 000,266,240 | ---- | M] () -- \Program Files\Samsung\Samsung New PC Studio\ModelExtension\NPSBinaryLoader2.dll
[2008-02-25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2006-10-10 14:05:20 | 000,053,248 | ---- | M] () -- \Program Files\Ubisoft\Tom Clancy's Splinter Cell Double Agent\SCDA-Online\System\PhysXLoader.dll
[2001-08-04 05:00:04 | 000,061,440 | ---- | M] () -- \Program Files\VDMSound\VDDLoader.dll
[2008-06-20 19:13:32 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2004-08-17 14:49:06 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2004-08-03 21:59:38 | 000,230,400 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.exe
[2004-08-03 21:59:38 | 000,278,016 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.ntd
[2009-02-26 15:27:17 | 000,082,784 | ---- | M] () -- \WINDOWS\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2002-12-12 00:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008-04-14 04:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008-04-13 19:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008-04-13 19:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008-04-14 04:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[3 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2008-06-17 14:17:16 | 000,009,622 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2008-04-14 04:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
[2006-01-12 10:25:06 | 000,009,622 | ---- | M] () -- \WINDOWS\system32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2004-08-17 15:44:16 | 000,030,301 | ---- | M] () -- \cmdcons\SERIAL.SY_
[2011-08-30 16:58:34 | 000,413,696 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60831.0\System.Runtime.Serialization.dll
[2011-10-13 21:50:09 | 001,186,816 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60831.0\System.Runtime.Serialization.ni.dll
[2010-04-07 22:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2002-10-23 11:11:36 | 000,000,067 | ---- | M] () -- \RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003\Dc6\Adobe Photoshop 7.0 CZ\!_Serial.txt
[2005-09-11 14:34:12 | 000,000,018 | ---- | M] () -- \RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003\Dc6\Infomapa 12 Complete.Edition\!Infomapa 12 Complete Edition serial!.txt
[2005-01-21 15:01:22 | 000,000,008 | ---- | M] () -- \RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003\Dc6\PC Translator 2004\!serial.txt
[2005-01-21 15:01:28 | 000,000,138 | ---- | M] () -- \RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003\Dc6\PC Translator 2004\PC Translator 2004 serial numbers.txt
[2005-01-21 15:01:28 | 000,000,097 | ---- | M] () -- \RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003\Dc6\PC Translator 2004\serial.txt
[2006-08-10 16:44:24 | 000,000,765 | ---- | M] () -- \RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003\Dc6\PowerDVD 7\crack\Serials.txt
[2004-08-17 14:43:56 | 000,028,416 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\grserial.sys
[2004-08-17 14:44:16 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2008-10-21 18:15:44 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008-02-01 10:44:02 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2008-10-21 18:16:43 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2011-10-13 21:47:13 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010-06-08 22:08:45 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011-10-14 21:23:15 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\81096bfe85eb0da5f05e8a127ffa43b2\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011-10-14 21:19:38 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll
[2011-04-16 19:00:38 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPB36.tmp\System.Runtime.Serialization.dll
[2004-07-15 14:31:54 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2003-04-07 18:24:52 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008-07-25 10:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2005-12-20 17:13:56 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010-04-07 22:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2008-04-14 03:17:25 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008-04-14 03:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2004-07-19 17:54:20 | 000,131,072 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\system.runtime.serialization.formatters.soap.dll
[2003-04-16 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2003-04-16 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[3 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2003-04-16 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2003-04-16 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008-04-14 03:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys

< *w7lxe* /s >

< *legalizator* /s >

< *registration* /s >
[2002-09-25 21:03:12 | 000,026,076 | ---- | M] () -- \Program Files\Common Files\Adobe\Web\Adoberegistrationcze.html
[2010-11-08 23:57:00 | 000,177,464 | ---- | M] () -- \Program Files\DivX\DivX Control Panel\plugins\DivXControlPanelPlugin_Registration.dll
[2006-10-21 16:15:38 | 000,204,800 | ---- | M] () -- \Program Files\Ubisoft\Tom Clancy's Splinter Cell Double Agent\support\Register\RegistrationReminder.exe
[4 \WINDOWS\*.tmp files -> \WINDOWS\*.tmp -> ]

< *Office 2010* /s >

< *AutoRearm* /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-11-25 10:28:02

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
BOOTEXECUTE REG_MULTI_SZ autocheck autochk *\0\0

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011-11-28 08:00:33 | 000,000,512 | ---- | M] () MD5=BC81249C1955D90EE47D485C82742D41 -- C:\PhysicalMBR.bin

========== Alternate Data Streams ==========

@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0B4227B4
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1

< End of report >

Milan Nehasil · #12 Příspěvek od **Milan Nehasil** » 28 lis 2011 08:32

A tady je Extras Log :

OTL Extras logfile created on: 2011-11-28 07:59:04 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\martin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: yyyy-MM-dd

2.00 Gb Total Physical Memory | 1.50 Gb Available Physical Memory | 75.09% Memory free
2.63 Gb Paging File | 2.30 Gb Available in Paging File | 87.61% Paging File free
Paging file location(s): C:\pagefile.sys 800 2500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149.04 Gb Total Space | 4.14 Gb Free Space | 2.78% Space Free | Partition Type: NTFS
Drive E: | 245.88 Mb Total Space | 56.48 Mb Free Space | 22.97% Space Free | Partition Type: FAT32

Computer Name: HOME-Q95W1Q7965 | User Name: martin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- Reg Error: Key error. File not found
.com [@ = ComFile] -- Reg Error: Key error. File not found
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.1\ICQ.exe" = C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1 -- (ICQ, LLC.)
"C:\Program Files\ICQ7.1\aolload.exe" = C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe" = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe:*:Enabled:Kodak Software Updater
"C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe" = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe:*:Enabled:EasyShare
"C:\Program Files\ICQLite\ICQLite.exe" = C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite
"C:\Program Files\Codemasters\Colin McRae Rally 04\cmr4.exe" = C:\Program Files\Codemasters\Colin McRae Rally 04\cmr4.exe:*:Enabled:Colin McRae Rally 04 Application
"C:\Program Files\Ubisoft\Splinter Cell Pandora Tomorrow\pandora.exe" = C:\Program Files\Ubisoft\Splinter Cell Pandora Tomorrow\pandora.exe:*:Enabled:pandora
"C:\Program Files\TrackMania Sunrise Extreme Demo\TmSunriseExtremeDemo.exe" = C:\Program Files\TrackMania Sunrise Extreme Demo\TmSunriseExtremeDemo.exe:*:Enabled:TmSunriseExtremeDemo
"C:\Program Files\Valve\hl.exe" = C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher
"C:\Program Files\AOL\Active Virus Shield\avp.exe" = C:\Program Files\AOL\Active Virus Shield\avp.exe:*:Enabled:Active Virus Shield
"C:\Program Files\Opera\Opera.exe" = C:\Program Files\Opera\Opera.exe:*:Enabled:Opera Internet Browser
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Valve\hltv.exe" = C:\Program Files\Valve\hltv.exe:*:Enabled:HLTV Launcher
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe" = C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe" = C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater
"C:\Program Files\Ubisoft\Splinter Cell Pandora Tomorrow\online\System\shadowstrike_static_retail.exe" = C:\Program Files\Ubisoft\Splinter Cell Pandora Tomorrow\online\System\shadowstrike_static_retail.exe:*:Enabled:shadowstrike_static_retail
"C:\Program Files\Ubisoft\ATC for Splinter Cell Pandora Tomorrow\atcscpt.exe" = C:\Program Files\Ubisoft\ATC for Splinter Cell Pandora Tomorrow\atcscpt.exe:*:Enabled:Advanced Tactical Center for Splinter Cell Pandora Tomorrow
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race\Race_Steam.exe" = C:\Program Files\Steam\SteamApps\bugs_bunny203\race\Race_Steam.exe:*:Enabled:Race
"C:\Program Files\Microsoft Games\FS2002\fs2002.exe" = C:\Program Files\Microsoft Games\FS2002\fs2002.exe:*:Enabled:Microsoft Flight Simulator Module
"C:\Program Files\EA GAMES\Need for Speed Most Wanted\speed.exe" = C:\Program Files\EA GAMES\Need for Speed Most Wanted\speed.exe:*:Enabled:speed
"C:\Program Files\Boiling Point - Cesta do pekel\XENUS.EXE" = C:\Program Files\Boiling Point - Cesta do pekel\XENUS.EXE:*:Disabled:XENUS
"C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe" = C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC
"C:\Program Files\EA GAMES\NFSC.exe" = C:\Program Files\EA GAMES\NFSC.exe:*:Enabled:NFSC
"C:\Program Files\Codemasters\Colin McRae Rally 2005\CMR5.EXE" = C:\Program Files\Codemasters\Colin McRae Rally 2005\CMR5.EXE:*:Enabled:Colin McRae Rally 2005 Application
"C:\Program Files\Techland\Xpand Rally\xpandrally.exe" = C:\Program Files\Techland\Xpand Rally\xpandrally.exe:*:Enabled:XpandRally
"C:\Program Files\Ubi Soft\IL2 Sturmovik\il2.exe" = C:\Program Files\Ubi Soft\IL2 Sturmovik\il2.exe:*:Enabled:il2
"C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Double Agent\SCDA-Offline\System\SplinterCell4.exe" = C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Double Agent\SCDA-Offline\System\SplinterCell4.exe:*:Enabled:SplinterCell4 -- ()
"C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Double Agent\SCDA-Online\System\SCDA_online.exe" = C:\Program Files\Ubisoft\Tom Clancy's Splinter Cell Double Agent\SCDA-Online\System\SCDA_online.exe:*:Enabled:SCDA_online -- ()
"C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe" = C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe:*:Enabled:speed2
"C:\Program Files\ICQ6\ICQ.exe" = C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6
"C:\Program Files\Codemasters\GRID\GRID.exe" = C:\Program Files\Codemasters\GRID\GRID.exe:*:Enabled:GRID Executable
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race\SteamProxy.exe" = C:\Program Files\Steam\SteamApps\bugs_bunny203\race\SteamProxy.exe:*:Enabled:Race - The WTCC Game
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race\RaceConfig_Steam.exe" = C:\Program Files\Steam\SteamApps\bugs_bunny203\race\RaceConfig_Steam.exe:*:Enabled:Race - The WTCC Game
"C:\Program Files\Steam\SteamApps\bugs_bunny203\raceds\RaceDedicatedServer_Steam.exe" = C:\Program Files\Steam\SteamApps\bugs_bunny203\raceds\RaceDedicatedServer_Steam.exe:*:Enabled:Race Dedicated Server
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent
"C:\Program Files\Steam\SteamApps\bugs_bunny203\stcc demo\STCC_Demo_Steam.exe" = C:\Program Files\Steam\SteamApps\bugs_bunny203\stcc demo\STCC_Demo_Steam.exe:*:Enabled:RACE 07
"C:\Program Files\QuickTime\QuickTimePlayer.exe" = C:\Program Files\QuickTime\QuickTimePlayer.exe:*:Enabled:QuickTime Player
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\Race_Steam.exe" = C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\Race_Steam.exe:*:Enabled:RACE 07
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race07ds\RaceDedicatedServer_Steam.exe" = C:\Program Files\Steam\SteamApps\bugs_bunny203\race07ds\RaceDedicatedServer_Steam.exe:*:Enabled:RACE 07
"C:\Program Files\PHANTAGRAM\Kingdom Under Fire\KingdomUnderFire.exe" = C:\Program Files\PHANTAGRAM\Kingdom Under Fire\KingdomUnderFire.exe:*:Enabled:KUFMain
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\SteamProxy.exe" = C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\SteamProxy.exe:*:Enabled:RACE 07
"C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\Config.exe" = C:\Program Files\Steam\SteamApps\bugs_bunny203\race 07\Config.exe:*:Enabled:RACE 07
"C:\Program Files\ICQ7.1\ICQ.exe" = C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1 -- (ICQ, LLC.)
"C:\Program Files\ICQ7.1\aolload.exe" = C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Steam\steamapps\common\trackmania nations forever\TmForever.exe" = C:\Program Files\Steam\steamapps\common\trackmania nations forever\TmForever.exe:*:Enabled:TrackMania Nations Forever -- ()
"C:\Program Files\Steam\steamapps\common\trackmania nations forever\TmForeverLauncher.exe" = C:\Program Files\Steam\steamapps\common\trackmania nations forever\TmForeverLauncher.exe:*:Enabled:TrackMania Nations Forever -- ()
"C:\Program Files\TrackMania Sunrise\TmSunrise.exe" = C:\Program Files\TrackMania Sunrise\TmSunrise.exe:*:Enabled:TmSunrise
"C:\Program Files\Steam\steamapps\common\alien swarm\srcds.exe" = C:\Program Files\Steam\steamapps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server -- ()
"C:\Program Files\Steam\steamapps\common\alien swarm\swarm.exe" = C:\Program Files\Steam\steamapps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm -- ()
"C:\Program Files\Electronic Arts\EADM\Core.exe" = C:\Program Files\Electronic Arts\EADM\Core.exe:*:Disabled:EA Download Manager

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0D499481-22C6-4B25-8AC2-6D3F6C885FB9}" = OpenOffice.org Installer 1.0
"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10
"{192E2132-E977-4D3E-90BA-9DBCE1B57F8C}" = Heroes of Might and Magic® IV
"{1E2F8AE3-3437-44E6-BB75-E95751D6B83F}" = Picture Package
"{200F584F-848D-4B6B-B1A1-C74D735F18A4}" = InstallRTC
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{26A24AE4-039D-4CA4-87B4-2F83216010FF}" = Java(TM) 6 Update 13
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{53AFF171-481D-64FA-0DA4-1CA0ABF01029}" = Nero 7 Demo
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{657F8B33-CBBB-45F4-9087-274F22C89400}" = DJ_AIO_ProductContext
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71BFC818-0CED-42D6-9C87-5142918957EE}" = ICQ7.1
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7F947BFE-C2DF-4779-9909-5BEE746BD0C4}" = Microsoft .NET Framework 2.0 Language Pack - CSY
"{827B97A9-B347-4110-9F89-37AF2B758F94}" = NHL™ 09
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ECBE643-8230-11D5-9D6B-00A024112F81}" = VDMSound 2.0.4
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.6 - Czech
"{ACE22C48-49D7-4531-BE20-5C3D03393AB6}" = F4100_Help
"{ACEB2BAF-96DF-48FD-ADD5-43842D4C443D}" = Adobe AIR
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C43048A9-742C-4DAD-90D2-E3B53C9DB825}" = Logitech QuickCam Software
"{C950420B-4182-49EA-850A-A6A2ABF06C6B}" = Marvell Miniport Driver
"{CAD1691A-FA24-4B95-9009-3257B8440ECC}" = Tom Clancy's Splinter Cell Double Agent
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1" = FlatOut2
"{DFFE2B1F-07E0-45A9-8801-CD8514CAA876}" = Prince of Persia T2T
"{E91E8912-769D-42F0-8408-0E329443BABC}" = Ralink RT7x Wireless LAN Card
"{EA23971F-2CEE-48FC-B64D-7F74A6EF90F0}" = XMLinst
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F69FD33C-8815-46BF-9134-A643DE68F3C0}" = WinFast(R) Display Driver
"{FAB1F336-1B7C-4057-A7BC-2922CD82A781}" = Ralink Wireless LAN
"0C5EDC3653FED5B121F464339EAC12534D253B25" = Windows Driver Package - Nokia Modem (02/15/2007 3.1)
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Balíček ovladače systému Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Balíček ovladače systému Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Balíček ovladače systému Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop 7.0 CE" = Adobe Photoshop 7.0 CE
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Akimbo" = Akimbo
"CCleaner" = CCleaner
"DivX Setup.divx.com" = DivX Setup
"eBay Icon" = eBay Icon
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Google Chrome" = Google Chrome
"ICQToolbar" = ICQ Toolbar
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{192E2132-E977-4D3E-90BA-9DBCE1B57F8C}" = Heroes of Might and Magic® IV
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 3.7.5
"Logitech Print Service" = Logitech Print Service
"MakeUp Pilot_is1" = MakeUp Pilot 2.00
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - CSY" = Microsoft .NET Framework 2.0 Language Pack - CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"PROSet" = Intel(R) PRO Network Adapters and Drivers
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"Shockwave" = Shockwave
"Steam App 11020" = TrackMania Nations Forever
"Steam App 630" = Alien Swarm
"Steam App 8650" = RACE 07 - Andy Priaulx Crowne Plaza Expansion
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"Uninstall_is1" = Uninstall 1.0.0.1
"uTorrent" = µTorrent
"uTorrentBar Toolbar" = uTorrentBar Toolbar
"Veetle TV" = Veetle TV 0.9.18
"WAVSPLIT210_is1" = Wave Splitter 2.10
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01005" = Microsoft User-Mode Driver Framework Feature Pack 1.5

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >

#13 Příspěvek od **Mc_Murphy** » 28 lis 2011 13:55

Odinstaluj ICQ Toolbar, uTorrentBar Toolbar a Ask Toolbar.

Spybot - Search & Destroy jsi ještě neodinstaloval? Pryč s ním!

Udělej prosím pořádek ještě v těch antivirech a antispy - ať je tam jen od každého jeden!

Koukám, že sis hrál na vlastní pěst s Combofixem, co? To je spolupráce, vážně...

Potom znovu spusť OTL.

Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
Do spodního okénka Vlastní skenování/opravy vlož tento skript:

Kód: Vybrat vše

:Commands
[emptytemp]
[emptyflash]
[resethosts]
[purity]
[clearallrestorepoints]

:Services
gupdate
gupdatem
gusvc

:Files
C:\Program Files\ICQ6Toolbar
C:\Program Files\Ask.com
C:\Program Files\uTorrentBar
C:\Documents and Settings\martin\Data aplikací\ICQ Toolbar
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\PCConfidential.job
C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
C:\Documents and Settings\martin\Data aplikací\uTorrent\Prince Of Persia 3 The Two Thrones + Crack.torrent /d
C:\Documents and Settings\martin\Data aplikací\uTorrent\Prince Of Persia The Two Thrones No-CD Crack.exe.torrent /d
C:\RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003 /d
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s

:OTL
SRV - [2010-03-28 15:47:30 | 000,246,520 | ---- | M] () [Auto | Running] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search13.net/
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.)
[2009-02-05 18:46:26 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Documents and Settings\martin\Data aplikací\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found.
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found.
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - Startup: C:\Documents and Settings\martin\Nabídka Start\Programy\Po spuštění\fliptoast.lnk = File not found
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html File not found
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O20 - Winlogon\Notify\avgrsstarter: DllName - (avgrsstx.dll) - File not found
O37 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\...com [@ = ComFile] -- Reg Error: Key error. File not found
O37 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\...exe [@ = exefile] -- Reg Error: Key error. File not found
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[18 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[18 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[2 C:\WINDOWS\system32\CatRoot\*.tmp files -> C:\WINDOWS\system32\CatRoot\*.tmp -> ]
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0B4227B4
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AlcWzrd"=-
"nwiz"=-
"SoundMan"=-
"Zástupce stránky vlastností sběrnice High Definition Audio"=-
"Alcmtr"=-
"LogitechVideoTray"=-
"ISUSPM Startup"=-
"ISUSScheduler"=-
"NeroFilterCheck"=-
"NvMediaCenter"=-
"NPSStartup"=-
"DivXUpdate"=-
"UserFaultCheck"=-
""=-
"SunJavaUpdateSched"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LogitechSoftwareUpdate"=-
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=-
"NCLaunch"=-
"AutoStartNPSAgent"=-

Klikni na tlačítko [Opravit].
Po dokončení skenu se objeví log, ten mi sem vlož.
Pokud se log nevejde do jednoho příspěvku, rozděl jej na více částí.

Spouštěl jsi na tomto počítači MBAM? Jestli ne, proveď.

Stáhni a nainstaluj Malwarebytes' Anti-Malware (zkráceně MBAM) podle návodu z tohoto topicu.

Proveď aktualizaci virové databáze.
V záložce Kontrolor zvol Úplná kontrola a zaškrtni všechny pevné disky, které máš na počítači.
Předem nic nemaž!!
MBAM mívá občas falešné detekce, proto vlož jeho log do příspěvku a počkej na posouzení!

Milan Nehasil · #14 Příspěvek od **Milan Nehasil** » 28 lis 2011 14:26

posílám OTL.log

OTL logfile created on: 2011-11-28 14:15:17 - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\martin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: yyyy-MM-dd

2.00 Gb Total Physical Memory | 1.51 Gb Available Physical Memory | 75.56% Memory free
2.63 Gb Paging File | 2.28 Gb Available in Paging File | 86.57% Paging File free
Paging file location(s): C:\pagefile.sys 800 2500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149.04 Gb Total Space | 11.38 Gb Free Space | 7.63% Space Free | Partition Type: NTFS
Drive E: | 245.88 Mb Total Space | 77.60 Mb Free Space | 31.56% Space Free | Partition Type: FAT32

Computer Name: HOME-Q95W1Q7965 | User Name: martin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011-11-28 07:08:02 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\martin\Plocha\OTL.exe
PRC - [2011-10-08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011-03-21 22:10:00 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011-03-01 12:12:00 | 000,136,584 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\ramaint.exe
PRC - [2011-03-01 12:11:56 | 000,374,152 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
PRC - [2010-11-08 12:04:20 | 000,390,528 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LogMeIn.exe
PRC - [2010-09-17 15:40:06 | 000,063,048 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
PRC - [2009-04-02 17:05:22 | 000,102,400 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
PRC - [2009-03-31 08:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2008-04-14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe
PRC - [2008-04-14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-10-17 15:02:50 | 001,114,112 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\RALINK\Common\RaUI.exe
PRC - [2007-09-05 20:12:13 | 000,065,536 | ---- | M] (Northcode Inc.) -- C:\WINDOWS\NCLAUNCH.EXe
PRC - [2005-10-28 16:25:44 | 000,094,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2005-06-08 15:14:44 | 000,217,088 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Video\LogiTray.exe
PRC - [2005-06-08 14:44:56 | 000,192,512 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Video\FxSvr2.exe
PRC - [2004-09-25 01:20:10 | 002,557,952 | ---- | M] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
PRC - [2004-09-24 03:27:18 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE

========== Modules (No Company Name) ==========

MOD - [2011-03-21 22:10:36 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011-03-21 22:10:00 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2008-10-11 22:18:46 | 000,319,488 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2008-09-17 22:55:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
MOD - [2008-09-16 20:18:06 | 000,132,608 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2006-07-12 14:36:36 | 001,167,360 | ---- | M] () -- C:\Program Files\RALINK\Common\acAuth.dll

========== Win32 Services (SafeList) ==========

SRV - [2011-10-08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011-03-01 12:12:00 | 000,136,584 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\RaMaint.exe -- (LMIMaint)
SRV - [2011-03-01 12:11:56 | 000,374,152 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2010-11-08 12:04:20 | 000,390,528 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn\x86\LogMeIn.exe -- (LogMeIn)
SRV - [2009-03-31 08:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008-04-14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC)
SRV - [2008-04-14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (SMTPSVC) Simple Mail Transport Protocol (SMTP)
SRV - [2008-04-14 04:22:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2008-04-07 08:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)

========== Driver Services (SafeList) ==========

DRV - [2010-09-17 15:40:06 | 000,047,640 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV - [2010-09-17 15:40:06 | 000,012,856 | ---- | M] (LogMeIn, Inc.) [Kernel | Auto | Running] -- C:\Program Files\LogMeIn\x86\rainfo.sys -- (LMIInfo)
DRV - [2009-03-31 08:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009-03-20 09:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009-03-20 09:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009-03-20 09:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2008-09-11 18:18:38 | 000,002,368 | ---- | M] (AntiCracking) [Kernel | Auto | Running] -- C:\WINDOWS\system32\STEC3.sys -- (STEC3)
DRV - [2007-09-17 14:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007-07-28 16:10:18 | 000,483,968 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt61.sys -- (RT61)
DRV - [2007-06-25 10:43:38 | 000,098,344 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117obex.sys -- (s117obex)
DRV - [2007-06-25 10:43:36 | 000,108,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mdm.sys -- (s117mdm)
DRV - [2007-06-25 10:43:36 | 000,100,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mgmt.sys -- (s117mgmt) Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM)
DRV - [2007-06-25 10:43:36 | 000,098,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117unic.sys -- (s117unic) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM)
DRV - [2007-06-25 10:43:36 | 000,022,952 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117nd5.sys -- (s117nd5) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS)
DRV - [2007-06-25 10:43:26 | 000,014,888 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117mdfl.sys -- (s117mdfl)
DRV - [2007-06-25 10:43:22 | 000,082,984 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s117bus.sys -- (s117bus) Sony Ericsson Device 117 driver (WDM)
DRV - [2007-01-12 19:09:53 | 000,082,296 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2006-07-10 17:19:58 | 000,027,032 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2006-07-05 13:46:06 | 000,063,352 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a) StarForce Protection Environment Driver (version 1.x.a)
DRV - [2006-06-14 15:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2006-05-09 09:27:30 | 000,013,824 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amps2prt.sys -- (Amps2prt)
DRV - [2005-08-10 13:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2004-09-25 01:27:32 | 002,276,672 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2004-09-03 18:23:10 | 000,115,680 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2004-09-03 18:19:07 | 000,054,368 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2004-07-19 15:49:54 | 000,007,040 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\prosync1.sys -- (prosync1)
DRV - [2004-06-07 04:43:52 | 000,036,484 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SMBios.sys -- (SMBios) Intel (R)
DRV - [2004-03-17 15:10:40 | 000,113,664 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004-03-08 12:55:50 | 000,013,567 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
DRV - [2003-12-01 16:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp01.sys -- (sfhlp01)
DRV - [1999-09-10 12:06:00 | 000,025,244 | R--- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\ASPI32.sys -- (Aspi32)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found

IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search13.net/
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost

IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1009\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571: C:\Program Files\Haihaisoft Universal Player\Codec\Plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739: C:\Program Files\Haihaisoft Universal Player\Codec\Plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011-03-31 11:28:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011-03-31 11:28:13 | 000,000,000 | ---D | M]

[2009-02-05 18:46:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\martin\Data aplikací\Mozilla\Firefox\extensions
[2009-02-05 18:46:26 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Documents and Settings\martin\Data aplikací\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}

========== Chrome ==========

CHR - default_search_provider: Google ()
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}

O1 HOSTS File: ([2011-11-24 07:07:07 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found.
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found.
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4 - HKLM..\Run: [AlcWzrd] C:\WINDOWS\ALCWZRD.EXE (RealTek Semicoductor Corp.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogMeIn GUI] C:\Program Files\LogMeIn\x86\LogMeInSystray.exe (LogMeIn, Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u File not found
O4 - HKLM..\Run: [Zástupce stránky vlastností sběrnice High Definition Audio] C:\WINDOWS\System32\Hdaudpropshortcut.exe (Windows (R) Server 2003 DDK provider)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [ICQ] C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [LogitechSoftwareUpdate] C:\Program Files\Logitech\Video\ManifestEngine.exe (Logitech Inc.)
O4 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003..\Run: [NCLaunch] C:\WINDOWS\NCLAUNCH.EXe (Northcode Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-1454471165-1177238915-682003330-1009\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1454471165-1177238915-682003330-1009\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html File not found
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O9 - Extra Button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (DivXBrowserPlugin Object)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 8975562765 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1F6198C9-72F9-4061-B066-386607D0BC73}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - (avgrsstx.dll) - File not found
O20 - Winlogon\Notify\LMIinit: DllName - (LMIinit.dll) - C:\WINDOWS\System32\LMIinit.dll (LogMeIn, Inc.)
O24 - Desktop Components:0 () - http://sphotos.ak.fbcdn.net/hphotos-ak- ... 9354_n.jpg
O24 - Desktop Components:1 (Aktuální domovská stránka) - About:Home
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007-02-10 14:20:49 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{7ef966ae-8e02-11dc-bd77-001320621dbd}\Shell - "" = AutoRun
O33 - MountPoints2\{7ef966ae-8e02-11dc-bd77-001320621dbd}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\...com [@ = ComFile] -- Reg Error: Key error. File not found
O37 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\...exe [@ = exefile] -- Reg Error: Key error. File not found

[CLEARALLRESTOREPOINTS]
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011-11-28 14:13:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\martin\Data aplikací\Malwarebytes
[2011-11-28 14:13:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2011-11-28 14:13:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2011-11-28 14:13:32 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011-11-28 14:13:32 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011-11-28 14:13:14 | 009,852,544 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\martin\Plocha\mbam-setup-1.51.2.1300.exe
[2011-11-28 12:55:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\martin\Local Settings\Data aplikací\LogMeIn
[2011-11-28 12:55:46 | 000,029,568 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\LMIport.dll
[2011-11-28 12:55:45 | 000,083,360 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\LMIRfsClientNP.dll
[2011-11-28 12:55:45 | 000,047,640 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\LMIRfsDriver.sys
[2011-11-28 12:55:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011-11-28 12:55:35 | 000,087,424 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\LMIinit.dll
[2011-11-28 12:55:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\LogMeIn
[2011-11-28 12:55:10 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn
[2011-11-28 12:50:05 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\martin\Recent
[2011-11-28 10:26:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
[2011-11-28 10:26:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\NVIDIA
[2011-11-28 10:25:40 | 000,602,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\easyupdatusapiu.dll
[2011-11-28 10:22:57 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2011-11-28 10:22:53 | 000,919,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2011-11-28 10:22:53 | 000,877,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[2011-11-28 10:22:51 | 017,240,064 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2011-11-28 10:22:51 | 002,398,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2011-11-28 10:22:51 | 002,099,520 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2011-11-28 10:22:12 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011-11-28 10:20:50 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2011-11-28 10:20:13 | 089,643,496 | ---- | C] (NVIDIA Corporation) -- C:\Documents and Settings\martin\Plocha\285.58-desktop-winxp-32bit-english-whql.exe
[2011-11-28 07:56:58 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\martin\Plocha\OTL.exe
[2011-11-25 11:09:30 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF26549.exe
[2011-11-25 10:19:15 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011-11-25 10:16:21 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF16050.exe
[2011-11-25 09:38:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\martin\Data aplikací\AVG
[2011-11-25 09:14:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011-11-25 09:11:22 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011-11-25 09:11:22 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011-11-25 09:11:22 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011-11-25 09:11:22 | 000,089,504 | ---- | C] (Smallfrogs Studio) -- C:\WINDOWS\fdsv.exe
[2011-11-25 09:11:22 | 000,029,696 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011-11-25 09:11:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011-11-25 09:11:14 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF3344.exe
[2011-11-25 09:11:01 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011-11-25 08:57:34 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011-11-25 08:57:34 | 000,000,000 | ---D | C] -- C:\rsit
[2011-11-24 12:53:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
[2011-11-24 12:49:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\CSC
[2011-11-24 11:42:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2011-11-24 07:11:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2011-11-24 07:11:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Spyware Terminator 2012
[2011-11-24 07:11:51 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Terminator
[2011-11-23 11:56:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
[2011-10-30 10:53:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Downloads
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011-11-28 14:13:37 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011-11-28 14:06:40 | 009,852,544 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\martin\Plocha\mbam-setup-1.51.2.1300.exe
[2011-11-28 13:51:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011-11-28 12:55:34 | 000,001,024 | ---- | M] () -- C:\.rnd
[2011-11-28 12:50:16 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-11-28 12:50:16 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011-11-28 12:50:06 | 000,000,416 | ---- | M] () -- C:\WINDOWS\tasks\PCConfidential.job
[2011-11-28 12:48:28 | 015,292,928 | ---- | M] () -- C:\Documents and Settings\martin\Plocha\logmein.msi
[2011-11-28 11:57:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-11-28 10:50:55 | 000,530,510 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011-11-28 10:50:55 | 000,495,458 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-11-28 10:50:55 | 000,121,184 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011-11-28 10:50:55 | 000,085,476 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011-11-28 10:25:35 | 000,285,176 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011-11-28 10:25:35 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011-11-28 10:25:30 | 000,285,176 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011-11-28 10:25:30 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2011-11-28 10:17:30 | 089,643,496 | ---- | M] (NVIDIA Corporation) -- C:\Documents and Settings\martin\Plocha\285.58-desktop-winxp-32bit-english-whql.exe
[2011-11-28 10:13:41 | 000,132,608 | ---- | M] () -- C:\Documents and Settings\martin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-11-28 10:08:18 | 000,192,489 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011-11-28 08:00:33 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011-11-28 07:53:28 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-11-28 07:47:12 | 061,657,056 | ---- | M] () -- C:\Documents and Settings\martin\Plocha\setup_av_free.exe
[2011-11-28 07:08:02 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\martin\Plocha\OTL.exe
[2011-11-25 11:09:24 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF26549.exe
[2011-11-25 10:19:45 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2011-11-25 10:15:49 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF16050.exe
[2011-11-25 09:10:58 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF3344.exe
[2011-11-24 13:47:07 | 000,000,506 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2011-11-24 07:11:57 | 000,000,725 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Spyware Terminator 2012.lnk
[2011-11-24 07:09:08 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-11-24 07:07:07 | 000,000,736 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011-11-23 11:56:27 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011-11-28 14:13:37 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011-11-28 12:55:33 | 000,001,024 | ---- | C] () -- C:\.rnd
[2011-11-28 12:55:23 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\LogMeIn.lnk
[2011-11-28 12:52:43 | 015,292,928 | ---- | C] () -- C:\Documents and Settings\martin\Plocha\logmein.msi
[2011-11-28 10:25:30 | 000,285,176 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011-11-28 10:25:30 | 000,285,176 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011-11-28 10:25:30 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011-11-28 10:25:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2011-11-28 10:22:54 | 000,003,250 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2011-11-28 10:22:52 | 002,130,002 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2011-11-28 08:00:33 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011-11-28 07:56:35 | 061,657,056 | ---- | C] () -- C:\Documents and Settings\martin\Plocha\setup_av_free.exe
[2011-11-25 10:19:45 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2011-11-25 10:19:35 | 000,261,312 | ---- | C] () -- C:\cmldr
[2011-11-25 09:11:22 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011-11-25 09:11:22 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011-11-25 09:11:22 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011-11-25 09:11:22 | 000,049,152 | ---- | C] () -- C:\WINDOWS\VFIND.exe
[2011-11-24 13:47:02 | 000,000,506 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2011-11-24 07:11:57 | 000,000,725 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Spyware Terminator 2012.lnk
[2011-11-24 07:09:04 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-11-23 11:56:27 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2011-02-24 19:15:13 | 000,183,112 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011-02-22 20:05:10 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.INI
[2011-01-29 14:16:37 | 000,054,132 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-07-03 18:16:04 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010-07-03 18:16:03 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010-07-03 18:15:10 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\martin\Data aplikací\$_hpcst$.hpc
[2010-05-16 13:51:34 | 000,000,264 | ---- | C] () -- C:\WINDOWS\_delis32.ini
[2008-09-11 18:19:18 | 000,000,029 | ---- | C] () -- C:\WINDOWS\AlphaPlayer.INI
[2008-05-26 21:22:14 | 000,015,552 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008-05-26 21:22:10 | 000,021,464 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008-05-26 21:22:04 | 000,014,910 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008-05-26 20:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008-05-26 20:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008-05-11 19:15:20 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2008-04-01 16:15:27 | 000,104,668 | ---- | C] () -- C:\WINDOWS\hpqins16.dat
[2008-03-01 15:04:45 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2008-02-02 15:09:39 | 000,023,016 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.ini
[2008-02-02 15:09:39 | 000,001,008 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.ini
[2008-02-02 15:09:14 | 000,058,716 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
[2008-02-02 15:09:13 | 000,014,691 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
[2008-02-02 15:09:11 | 000,018,097 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
[2008-02-02 15:09:04 | 000,003,568 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2008-02-01 16:59:31 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2008-01-10 13:16:20 | 000,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008-01-10 13:15:30 | 000,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2007-12-30 15:25:32 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2007-12-30 15:24:50 | 000,008,138 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2007-10-25 16:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2007-10-03 10:58:58 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\martin\Local Settings\Data aplikací\fusioncache.dat
[2007-09-04 17:56:10 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2007-09-04 11:17:25 | 000,000,221 | ---- | C] () -- C:\WINDOWS\NCLogConfig.ini
[2007-06-26 13:15:14 | 000,001,751 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\QTSBandwidthCache
[2007-06-17 12:07:31 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2007-05-11 14:34:03 | 000,000,380 | ---- | C] () -- C:\WINDOWS\Rollemup.ini
[2007-04-24 15:28:59 | 007,287,808 | ---- | C] () -- C:\WINDOWS\System32\vistaui(2)(2).exe
[2007-02-10 16:54:08 | 000,000,836 | ---- | C] () -- C:\Documents and Settings\martin\Data aplikací\ViewerApp.dat
[2007-01-28 17:46:34 | 000,000,823 | ---- | C] () -- C:\WINDOWS\System32\unins000.dat
[2007-01-18 18:33:21 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2007-01-17 20:31:40 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007-01-16 19:42:28 | 000,132,608 | ---- | C] () -- C:\Documents and Settings\martin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007-01-16 18:44:59 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2007-01-16 18:44:58 | 000,005,120 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2007-01-16 18:34:22 | 000,000,047 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2007-01-16 18:33:45 | 000,000,526 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2007-01-16 18:33:37 | 000,000,666 | ---- | C] () -- C:\WINDOWS\WEBTRAN4.INI
[2007-01-16 18:33:33 | 000,004,413 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2007-01-16 18:33:33 | 000,001,038 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2007-01-16 18:27:46 | 000,000,676 | ---- | C] () -- C:\WINDOWS\im32st.dat
[2007-01-16 18:11:58 | 000,000,514 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007-01-16 17:59:09 | 000,001,076 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2007-01-16 16:37:34 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTKHDAUD.DAT
[2007-01-14 14:42:40 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2007-01-13 20:19:15 | 000,081,920 | R--- | C] () -- C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe
[2007-01-13 16:01:03 | 000,004,265 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007-01-13 16:00:04 | 000,268,600 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2007-01-13 15:58:07 | 001,657,376 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2007-01-13 15:58:06 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2007-01-13 15:58:06 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2007-01-13 15:58:05 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2007-01-13 15:58:05 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2007-01-13 15:58:04 | 001,503,232 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2007-01-13 15:58:04 | 001,346,080 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2007-01-13 15:58:04 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2007-01-13 15:58:04 | 000,449,056 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2007-01-13 15:58:03 | 000,436,768 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2007-01-13 15:50:55 | 000,012,288 | R--- | C] () -- C:\WINDOWS\System32\e100bmsg.dll
[2007-01-13 15:36:57 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2007-01-13 15:36:56 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\RTCOMDLL.dll
[2007-01-13 15:36:56 | 000,156,160 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2007-01-13 15:14:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2007-01-13 15:09:15 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004-08-02 13:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2003-04-16 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2003-04-16 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2003-04-16 13:00:00 | 000,530,510 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2003-04-16 13:00:00 | 000,495,458 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2003-04-16 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2003-04-16 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2003-04-16 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2003-04-16 13:00:00 | 000,121,184 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2003-04-16 13:00:00 | 000,085,476 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2003-04-16 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2003-04-16 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2003-04-16 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2003-04-16 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2003-04-16 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2003-04-16 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[1999-01-27 13:39:06 | 000,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll
[1997-06-13 07:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== LOP Check ==========

[2011-11-24 07:11:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Data aplikací\Spyware Terminator
[2007-01-16 18:14:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ACD Systems
[2011-11-25 10:11:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\avg9
[2008-12-30 17:44:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Codemasters
[2011-03-14 22:25:50 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2007-02-24 15:31:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Downloaded Installations
[2010-05-24 20:33:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2010-05-27 19:13:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2008-08-06 13:06:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2011-11-28 12:55:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LogMeIn
[2007-07-06 13:26:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nokia
[2007-03-26 13:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2010-03-01 18:18:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ralink Driver
[2008-08-26 21:01:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2011-11-25 13:09:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2011-11-25 11:06:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010-07-29 08:37:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TrackMania
[2008-07-27 09:59:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2009-09-13 16:56:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009-04-06 18:48:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2007-01-16 18:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ACD Systems
[2011-11-25 09:38:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\AVG
[2011-01-29 13:55:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\com.w3i.FlipToast
[2007-02-24 15:05:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Datalayer
[2011-07-23 09:30:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\DDMSettings
[2010-07-30 00:17:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Desktopicon
[2011-01-29 13:53:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\FinalTorrent
[2007-01-13 20:20:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\FotoWire
[2009-07-11 18:48:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Haihaisoft
[2009-07-11 18:48:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Haihaisoft Universal Player
[2011-11-28 12:52:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ICQ
[2007-01-16 20:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ICQ Toolbar
[2007-01-16 20:22:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ICQLite
[2009-12-05 10:47:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Image Zone Express
[2010-05-23 16:22:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Leadertech
[2011-11-28 11:52:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\MakeUpPilot
[2008-02-02 13:40:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Nokia
[2007-01-16 18:40:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Opera
[2008-02-02 13:32:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\PC Suite
[2009-02-26 18:09:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Printer Info Cache
[2010-07-03 18:14:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Samsung
[2007-07-29 14:50:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Sereniti
[2008-11-30 17:50:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Sony
[2007-04-23 19:45:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Stardock
[2007-01-24 18:52:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ubi.com
[2011-01-29 13:41:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Uniblue
[2008-01-27 14:14:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Vista Start Menu
[2008-01-27 14:01:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\ViStart
[2008-10-21 18:20:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Windows Desktop Search
[2008-10-29 16:08:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Windows Search
[2009-06-03 15:04:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\martin\Data aplikací\Zoner
[2011-10-30 18:08:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ostatní\Data aplikací\Windows Search
[2011-11-28 12:50:06 | 000,000,416 | ---- | M] () -- C:\WINDOWS\Tasks\PCConfidential.job

========== Purity Check ==========

========== Custom Scans ==========

< :Commands >

< [emptytemp] >

< [emptyflash] >

< [resethosts] >

< [purity] >

< >

< :Services >

< gupdate >

< gupdatem >

< gusvc >

< >

< :Files >

< C:\Program Files\ICQ6Toolbar >

< C:\Program Files\Ask.com >

< C:\Program Files\uTorrentBar >

< C:\Documents and Settings\martin\Data aplikací\ICQ Toolbar >

< C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job >
[2011-11-28 12:50:16 | 000,000,936 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

< C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job >
[2011-11-28 13:51:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

< C:\WINDOWS\Tasks\PCConfidential.job >
[2011-11-28 12:50:06 | 000,000,416 | ---- | M] () -- C:\WINDOWS\Tasks\PCConfidential.job

< C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job >

< C:\Documents and Settings\martin\Data aplikací\uTorrent\Prince Of Persia 3 The Two Thrones + Crack.torrent /d >
Invalid Switch: d

< C:\Documents and Settings\martin\Data aplikací\uTorrent\Prince Of Persia The Two Thrones No-CD Crack.exe.torrent /d >
Invalid Switch: d

< C:\RECYCLER\S-1-5-21-1454471165-1177238915-682003330-1003 /d >
Invalid Switch: d

< %windir%\system32\*.tmp.dll /s >

< %windir%\system32\SET*.tmp /s >

< %windir%\*.tmp /s >
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[18 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[18 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[2 C:\WINDOWS\system32\CatRoot\*.tmp files -> C:\WINDOWS\system32\CatRoot\*.tmp -> ]

< >

< :OTL >

< SRV - [2010-03-28 15:47:30 | 000,246,520 | ---- | M] () [Auto | Running] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service) >

< IE - HKLM\..\URLSearchHook: - No CLSID value found >

< IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found >

< IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found >

< IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search13.net/ >
Invalid Switch:

< IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\URLSearchHook: - No CLSID value found >

< IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) >

< IE - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.) >

< [2009-02-05 18:46:26 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Documents and Settings\martin\Data aplikací\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D} >

< O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.) >

< O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) >

< O3 - HKLM\..\Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - No CLSID value found. >

< O3 - HKLM\..\Toolbar: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found. >

< O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.) >

< O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) >

< O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. >

< O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found. >

< O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\prxtbuTor.dll (Conduit Ltd.) >

< O3 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) >

< O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask) >

< O4 - Startup: C:\Documents and Settings\martin\Nabídka Start\Programy\Po spuštění\fliptoast.lnk = File not found >

< O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found >
Invalid Switch: 3000 File not found

< O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html File not found >
Invalid Switch: cmsidewiki.html File not found

< O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found >

< O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found >

< O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found >

< O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) >

< O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.) >
Invalid Switch: jinsta ... s-i586.cab (Reg Error: Key error.)

< O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.) >
Invalid Switch: jinsta ... s-i586.cab (Reg Error: Key error.)

< O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.) >
Invalid Switch: jinsta ... s-i586.cab (Reg Error: Key error.)

< O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) >
Invalid Switch: gp.cab (Reg Error: Key error.)

< O20 - Winlogon\Notify\avgrsstarter: DllName - (avgrsstx.dll) - File not found >

< O37 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\...com [@ = ComFile] -- Reg Error: Key error. File not found >

< O37 - HKU\S-1-5-21-1454471165-1177238915-682003330-1003\...exe [@ = exefile] -- Reg Error: Key error. File not found >

< [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] >

< [18 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] >

< [18 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ] >

< [3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] >

< [2 C:\WINDOWS\system32\CatRoot\*.tmp files -> C:\WINDOWS\system32\CatRoot\*.tmp -> ] >

< @Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0B4227B4 >

< @Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1 >

< >

< :Reg >

< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] >

< "AlcWzrd"=- >

< "nwiz"=- >

< "SoundMan"=- >

< "Zástupce stránky vlastností sběrnice High Definition Audio"=- >

< "Alcmtr"=- >

< "LogitechVideoTray"=- >

< "ISUSPM Startup"=- >

< "ISUSScheduler"=- >

< "NeroFilterCheck"=- >

< "NvMediaCenter"=- >

< "NPSStartup"=- >

< "DivXUpdate"=- >

< "UserFaultCheck"=- >

< ""=- >

< "SunJavaUpdateSched"=- >

< [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] >

< "LogitechSoftwareUpdate"=- >

< "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=- >

< "NCLaunch"=- >

< "AutoStartNPSAgent"=- >

========== Alternate Data Streams ==========

@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0B4227B4
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1

< End of report >

#15 Příspěvek od **Mc_Murphy** » 28 lis 2011 14:34

To není ono, to je úvodní log, ten nechci. Já potřebuji ten po aplikaci scriptu a taky, jak a jestli jsi vše provedl a pak log z MBAMu.

Navíc jsi to tam nějak podivně na konci vložil či pomíchal nebo co...

VIRY.CZ

Kontrola logu - díky

Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky

Re: Kontrola logu - díky