Olmarik - pro vyosek

Zpráva

#16 Příspěvek od **vyosek** » 18 pro 2011 11:00

Stahnete OTL (viz muj podpis) a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
lsass.exe
ndis.sys
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%SystemDrive%\PhysicalMBR.bin /md5

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

dj.fik · #17 Příspěvek od **dj.fik** » 18 pro 2011 11:28

OTL Extras logfile created on: 18.12.2011 11:10:17 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Filip\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,14 Gb Available Physical Memory | 56,94% Memory free
3,85 Gb Paging File | 3,08 Gb Available in Paging File | 80,02% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 87,89 Gb Total Space | 9,17 Gb Free Space | 10,43% Space Free | Partition Type: NTFS
Drive D: | 144,99 Gb Total Space | 6,39 Gb Free Space | 4,41% Space Free | Partition Type: NTFS
Drive F: | 465,76 Gb Total Space | 184,66 Gb Free Space | 39,65% Space Free | Partition Type: NTFS
Drive O: | 931,51 Gb Total Space | 835,81 Gb Free Space | 89,73% Space Free | Partition Type: NTFS
Drive P: | 5,58 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive Q: | 3,81 Gb Total Space | 0,57 Gb Free Space | 14,91% Space Free | Partition Type: FAT32

Computer Name: FIK | User Name: Filip | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Azureus\Azureus.exe" = C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus -- (Vuze Inc.)
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Disabled:Logitech Desktop Messenger -- (Logitech)
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)
"C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"%Product_Name% 4.1F " = Faktury 4.1F
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{0CB98AC0-D691-4B21-AD3D-95982517021D}" = Acer WLAN 11g USB Dongle
"{110B1ADF-2EAE-4E8F-B501-D2A1E6D8ED9D}" = Studio 11
"{1240A058-8BCE-4A3B-BF82-6E5B801D71BA}" = Garmin City Navigator Europe NT 2009 Update
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1EBD2C18-069A-4582-BF40-2B506AF6CFAD}" = Envisioneer Express 3.0
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20F0F67B-CB0F-4C85-B6F2-133D9CB70614}" = Samsung PC Studio
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 29
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2EE90F26-20B3-4423-81DE-E57E5D2E4FEF}" = Zoner GIF Animator 5
"{2F6DA398-707F-4D52-AE6A-7E812D1662D6}" = MioTransfer
"{2F952048-3220-4AC7-A206-D01EFC774BB2}" = Studio 11
"{307780E3-1720-4310-AF3C-13771E069677}" = Samsung PC Studio II PIMS & File Manager
"{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java(TM) SE Runtime Environment 6
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3A9C37A6-AD4C-443D-0098-6B0A1865DEE2}" = FIFA 07
"{3CB05291-F546-458E-A796-B5BCF5A3CDC4}" = Studio 10
"{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}" = Skype Plugin Manager
"{3D7E3EC9-46CF-4359-9289-39CE01DFB82F}" = Adobe Photoshop CS3
"{3E0F986D-B4FF-49D5-AD64-99EAA9EEA1EF}_is1" = ViDown FLV Downloader V0.8.3
"{3F9CFBD8-8F77-4DCD-8CB5-CDD5F653C872}" = Video ToolBox 2.0 Home Edition
"{41A00174-B4EA-4E79-9CAF-DC118A878B92}" = Garmin City Navigator Europe NT 2012.10 Update
"{421BFF57-4EBB-4821-8453-6F8F3685D540}" = Samsung PC Studio II Sample
"{4669544E-20E4-4E56-8B44-2E6E1200051F}" = Canon MP Toolbox 4.1.1.0.mp10
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"{4DE70188-49EE-4302-8EFD-8DB44A3A2DBB}" = Zoufalé manželky
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56108448-9B38-4FF8-BE61-2ED13C19D0FE}" = EasyGPRS
"{58F8C6D9-5B55-486A-A322-4E8D87670031}" = Canon MP Drivers
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{65F9E1F3-A2C1-4AA9-9F33-A3AEB0255F0E}" = Garmin USB Drivers
"{6869591A-7DD8-46D2-837F-57CBF7358955}" = Nokia Connectivity Cable Driver
"{6882B3A9-AB98-4ABA-A623-2979FBEA5F9F}_is1" = Moyea FLV Player version 1.0.0.0
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{6E0352EE-6F0D-4FBC-B1B8-4FF032C78BE0}" = PC Connectivity Solution
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{760B29F2-8663-419B-A025-5A55066E130B}" = Ulead Photo Express 6

"{77D2A9D3-5800-43E3-B274-87841BC87DB2}" = Adobe ExtendScript Toolkit 2
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{8AE03988-8C8C-40EE-BDC7-76781BEF1B1D}" = Adobe Setup
"{8C20F904-9288-4A7A-A0C4-1458AA2B295E}" = TOPO Czech PRO 2011
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90170405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office FrontPage 2003
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{9044D33B-848E-6F2F-51A4-1B6A3EDC1029}" = Nero 7 Demo
"{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}" = Nokia PC Suite
"{93FFFB60-DE59-4550-955D-5F12B23ADA1F}" = Better Homes and Gardens Home Designer Suite 6.0
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A6359CCF-215D-43D9-8366-479D231F2A72}" = Belkin Wireless USB Utility
"{A654A805-41D9-40C7-AA46-4AF04F044D61}" = Adobe® Photoshop® Album Starter Edition 3.2
"{A777CB31-A5EC-4E32-A462-2E24F45D4D4F}_is1" = Moyea FLV to Video Converter Pro 2 version: 2.0.17.194
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC696733-F8C5-4EAD-B165-AC8AB8C2A755}" = TTS_Technology
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.6 - Czech
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B1102A25-3AA3-446B-AA0F-A699B07A02FD}" = Garmin USB Drivers
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B7777E08-1344-42E8-975B-6F541F9ADBD8}" = ATI Catalyst Control Center
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BEB3AD23-250E-4BD2-BBC9-27D4BB42DE07}" = COMODO System - Cleaner
"{BF3A54ED-F649-43D7-BA36-31CE553FAFCC}" = Garmin City Navigator Europe NT 2011.20 Update
"{C07B86C3-1816-4C59-927E-0287925DFB96}" = Garmin City Navigator Europe NT 2010 Update
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C169D3BB-9A27-43F5-9979-09A0D65FE95C}" = SmartFTP Client
"{C191BE7C-8542-4A61-973A-714EF76C5995}" = Logitech QuickCam Software
"{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio
"{C4D26D60-7B43-4CE9-AE19-A380D9DF126B}" = Garmin MapSource
"{C69405BB-27AF-4940-B3DA-04910B4DFD23}_is1" = aTube Catcher 1.0
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CBF78A5F-7950-4CF1-A063-C4C7B2B82CE6}" = SoundSoap PE
"{CC874CBB-BD87-4126-9465-AE73BB62D6E0}" = Studio 11 Ultimate
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D0A3275D-F67F-4C6B-AE4A-753170C2EAC8}" = Garmin MapInstall
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}" = SAMSUNG SYMBIAN USB Download Driver
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{E0783143-EAE2-4047-A8D6-E155523C594C}" = Garmin WebUpdater
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{EA426461-31AA-4AB3-B15D-EDD748F08394}_is1" = Moyea FLV Downloader version 1.16.0.17
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{EEC8205A-E3DE-4C00-B60C-48E3B9B58B13}" = Garmin City Navigator Europe NT 2008
"{EF4F620F-F295-41D7-92C0-6B635709C850}" = Nokia Software Updater
"{EF781A5C-58F5-4BFD-87F9-E4F14D382F25}" = Pinnacle Instant DVD Recorder
"{EF812FEC-6B0C-4B1C-8C4F-C88FEB415EFE}" = PHP 5.2.1
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F27B8353-1F12-4814-B9F2-82A87C438315}" = Clone My DVD
"{F58E04CD-6E76-43C8-AAF1-482225C2910E}" = Xml Viewer
"{F9AEEC34-CF00-4CBD-9E36-DF9DC4002685}" = Yahoo! Desktop Login
"{FC7BACF0-1FFA-4605-B3B4-A66AB382752D}" = XML Notepad 2007
"{FF11004C-F42A-4A31-9BCF-7F5C8FDBE53C}" = Adobe Setup
"{FF1482CF-D19B-44DD-B887-9698CB51DFD5}" = Studio 10.8 Patch
"05B59228C7E1C21DFBE89260F879BD95880548D8" = Balíček ovladače systému Windows - Nokia Modem (10/05/2009 4.2)
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"49CF605F02C7954F4E139D18828DE298CD59217C" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"763v2" = Level-D Simulations 767-300
"763v21" = Level-D Simulations 767-300 Update
"82A44D22-9452-49FB-00FB-CEC7DCAF7E23" = EA SPORTS online 2007
"8461-7759-5462-8226" = Vuze
"8CDCFB95BB84DD9C0F88F22266A0CA86035E55BA" = Balíček ovladače systému Windows - Nokia Modem (06/01/2009 7.01.0.4)
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"Adobe_719d6f144d0c086a0dfa7ff76bb9ac1" = Adobe Photoshop CS3
"Adobe® Photoshop® Album Starter Edition 3.2" = Adobe® Photoshop® Album Starter Edition 3.2
"AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v1.20
"Alive MP4 Converter_is1" = Alive MP4 Converter (version 2.0.6.3)
"All ATI Software" = ATI - Software Uninstall Utility
"ALUpdate_is1" = ALTools Update
"ALZip_is1" = ALZip
"ATI Display Driver" = ATI Display Driver
"avast" = avast! Free Antivirus
"Azureus" = Azureus
"BearShare" = BearShare
"BearShare Ultra Accelerator" = BearShare Ultra Accelerator
"CBOClean" = BOClean
"CloneDVD2" = CloneDVD2
"COMODO GeekBuddy" = COMODO GeekBuddy
"Daniusoft Media Converter Pro_is1" = Daniusoft Media Converter Pro(Build 2.3.4.0)
"Dexster_is1" = Dexster V3.0
"DVD Shrink_is1" = DVD Shrink 3.2
"EasyPHP_is1" = EasyPHP 1.8
"ezt" = EZTMM
"FileZilla" = FileZilla (remove only)
"Flash Movie Player" = Flash Movie Player 1.5
"Flash Slideshow Maker Pro" = Flash Slideshow Maker Pro 4.01
"Fly The Tristar" = Fly The Tristar
"FS5_is1" = FORM studio 2008
"Furnish Pro" = Furnish Pro
"gbWebCam-Lite_is1" = gbWebCam-Lite 5.5.288
"Generic USB Sound" = Trust HS-6200 Surround USB Headset
"GoldWave v5.25" = GoldWave v5.25
"Hollywood FX for Studio" = Pinnacle Hollywood FX for Studio
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"ImTOO DVD Ripper" = ImTOO DVD Ripper 4
"ImTOO YouTube Video Converter" = ImTOO YouTube Video Converter
"InstallShield_{0CB98AC0-D691-4B21-AD3D-95982517021D}" = Acer WLAN 11g USB Dongle
"InstallShield_{1EBD2C18-069A-4582-BF40-2B506AF6CFAD}" = Envisioneer Express 3.0
"InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"InstallShield_{A6359CCF-215D-43D9-8366-479D231F2A72}" = Belkin Wireless USB Utility
"InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"IrfanView" = IrfanView (remove only)
"MAGIX Photo Clinic 4.5 US" = MAGIX Photo Clinic 4.5 (US)
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MSR606v1.10" = MSR606
"NetSoftware" = NetSoftware
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia PC Suite" = Nokia PC Suite
"NVIDIA Drivers" = NVIDIA Drivers
"PCNavigator6_is1" = PC Navigator 6.4.21-1
"Photo Jumble_is1" = Photo Jumble 1.0
"PhotoRescue Pro" = PhotoRescue Pro 4.1
"PHP DESIGNER 2006" = PHP DESIGNER 2006 4.06
"Pixie_is1" = Pixie 1.4.1
"PowerISO" = PowerISO
"proDAD-Vitascene-1.0" = proDAD Vitascene 1.0
"ProFact 3.0_is1" = ProFact 3.0
"QcDrv" = ##CAMERADRIVERNAME##
"Realtime Picture Convertor 4" = Realtime Picture Convertor 4
"Recover My Files_is1" = Recover My Files
"Room Arranger" = Room Arranger
"SAMSUNG CDMA Modem" = SAMSUNG CDMA Modem Driver Set
"Saver Forge_is1" = Saver Forge 1.1.2
"SC Audio CD creator_is1" = SC Audio CD creator 3.3.0.0
"ShapeCollage" = Shape Collage
"Skype_is1" = Skype 3.0
"ST6UNST #1" = Samsung Easy Sync
"Sweet Home 3D_is1" = Sweet Home 3D version 1.8
"Switch" = Switch
"Test" = Test Screensaver
"TNod" = TNod User & Password Finder
"Trellian LiveUpgrade_is1" = Trellian LiveUpgrade v2.0
"UK2000 Heathrow Pro" = Remove UK2000 Heathrow Pro files
"UltimateTraffic10" = Ultimate Traffic
"UN070618" = BUFFALO TurboUSB for FLASH/HDD
"UN080616" = BUFFALO eco Manager for HD
"Visual Business Cards 4_is1" = Visual Business Cards 4
"Vodei Multimedia Processor" = Vodei Multimedia Processor 2.10
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01005" = Microsoft User-Mode Driver Framework Feature Pack 1.5
"ZonerPhotoStudio11_CZ_is1" = Zoner Photo Studio 11

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1757981266-308236825-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"sc11-AT_ORF_MAIN" = Ski Challenge 11 (AT)

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 24.10.2011 14:31:27 | Computer Name = FIK | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace explorer.exe, verze 6.0.2900.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 25.10.2011 15:02:35 | Computer Name = FIK | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace Zps8.exe, verze 8.0.1.2, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 16.11.2011 4:48:46 | Computer Name = FIK | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 16.11.2011 4:48:46 | Computer Name = FIK | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 16.11.2011 4:49:05 | Computer Name = FIK | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 16.11.2011 4:49:05 | Computer Name = FIK | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 16.11.2011 5:13:14 | Computer Name = FIK | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 16.11.2011 5:13:14 | Computer Name = FIK | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 16.11.2011 5:16:01 | Computer Name = FIK | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{7B849a69-220F-451E-B3FE-2CB811AF94AE} a nebude načtena. Příčinou je zřejmě chybná
registrace.

Error - 16.11.2011 5:16:01 | Computer Name = FIK | Source = Userenv | ID = 1041
Description = Systém Windows se nemůže dotazovat na položku registru DllName pro
{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} a nebude načtena. Příčinou je zřejmě chybná
registrace.

[ System Events ]
Error - 2.12.2011 7:23:24 | Computer Name = FIK | Source = PlugPlayManager | ID = 12
Description = Zařízení LITE-ON DVDRW SHW-160P6S (IDE\CdRomLITE-ON_DVDRW_SHW-160P6S________________PRS2____\5&1c855ddd&0&0.0.0)
se již v systému nenachází, aniž by bylo nejdříve připraveno k odstranění.

Error - 3.12.2011 16:12:33 | Computer Name = FIK | Source = Dhcp | ID = 1000
Description = Zapůjčení adresy IP počítače 192.168.1.101 pro síťovou kartu se síťovou
adresou 001150B0B6A0 byla ukončena.

Error - 4.12.2011 16:55:01 | Computer Name = FIK | Source = Dhcp | ID = 1000
Description = Zapůjčení adresy IP počítače 192.168.1.101 pro síťovou kartu se síťovou
adresou 001150B0B6A0 byla ukončena.

Error - 4.12.2011 16:55:15 | Computer Name = FIK | Source = PlugPlayManager | ID = 12
Description = Zařízení LITE-ON DVDRW SHW-160P6S (IDE\CdRomLITE-ON_DVDRW_SHW-160P6S________________PRS2____\5&1c855ddd&0&0.0.0)
se již v systému nenachází, aniž by bylo nejdříve připraveno k odstranění.

Error - 5.12.2011 17:38:45 | Computer Name = FIK | Source = Dhcp | ID = 1000
Description = Zapůjčení adresy IP počítače 192.168.1.101 pro síťovou kartu se síťovou
adresou 001150B0B6A0 byla ukončena.

Error - 6.12.2011 3:07:41 | Computer Name = FIK | Source = PlugPlayManager | ID = 12
Description = Zařízení LITE-ON DVDRW SHW-160P6S (IDE\CdRomLITE-ON_DVDRW_SHW-160P6S________________PRS2____\5&1c855ddd&0&0.0.0)
se již v systému nenachází, aniž by bylo nejdříve připraveno k odstranění.

Error - 7.12.2011 6:39:22 | Computer Name = FIK | Source = Dhcp | ID = 1000
Description = Zapůjčení adresy IP počítače 192.168.1.100 pro síťovou kartu se síťovou
adresou 001150B0B6A0 byla ukončena.

Error - 7.12.2011 11:37:10 | Computer Name = FIK | Source = PlugPlayManager | ID = 12
Description = Zařízení LITE-ON DVDRW SHW-160P6S (IDE\CdRomLITE-ON_DVDRW_SHW-160P6S________________PRS2____\5&1c855ddd&0&0.0.0)
se již v systému nenachází, aniž by bylo nejdříve připraveno k odstranění.

Error - 9.12.2011 4:36:40 | Computer Name = FIK | Source = Dhcp | ID = 1000
Description = Zapůjčení adresy IP počítače 192.168.1.100 pro síťovou kartu se síťovou
adresou 001150B0B6A0 byla ukončena.

Error - 9.12.2011 4:36:57 | Computer Name = FIK | Source = PlugPlayManager | ID = 12
Description = Zařízení LITE-ON DVDRW SHW-160P6S (IDE\CdRomLITE-ON_DVDRW_SHW-160P6S________________PRS2____\5&1c855ddd&0&0.0.0)
se již v systému nenachází, aniž by bylo nejdříve připraveno k odstranění.

< End of report >

dj.fik · #18 Příspěvek od **dj.fik** » 18 pro 2011 11:29

ten OTL.txt se mi nekam schoval a musim ted bezet, az ho najdu, vlozim

#19 Příspěvek od **vyosek** » 18 pro 2011 11:31

OTL.txt bude v miste spusteni OTL, takze by mel byt na plose...Pockam si tedy na nej

dj.fik · #20 Příspěvek od **dj.fik** » 18 pro 2011 17:27

1. polovina OTL.txt

OTL logfile created on: 18.12.2011 11:10:17 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Filip\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,14 Gb Available Physical Memory | 56,94% Memory free
3,85 Gb Paging File | 3,08 Gb Available in Paging File | 80,02% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 87,89 Gb Total Space | 9,17 Gb Free Space | 10,43% Space Free | Partition Type: NTFS
Drive D: | 144,99 Gb Total Space | 6,39 Gb Free Space | 4,41% Space Free | Partition Type: NTFS
Drive F: | 465,76 Gb Total Space | 184,66 Gb Free Space | 39,65% Space Free | Partition Type: NTFS
Drive O: | 931,51 Gb Total Space | 835,81 Gb Free Space | 89,73% Space Free | Partition Type: NTFS
Drive P: | 5,58 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive Q: | 3,81 Gb Total Space | 0,57 Gb Free Space | 14,91% Space Free | Partition Type: FAT32

Computer Name: FIK | User Name: Filip | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.12.18 11:04:52 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Filip\Plocha\OTL.exe
PRC - [2011.12.18 09:38:31 | 001,593,856 | ---- | M] (Gemius) -- C:\Program Files\NetSoftware\NetSoftware.exe
PRC - [2011.12.07 12:16:29 | 001,047,096 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2011.11.29 20:58:56 | 000,021,392 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
PRC - [2011.11.29 20:58:46 | 003,508,624 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
PRC - [2011.11.28 19:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011.11.28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011.11.23 11:27:04 | 001,052,472 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe
PRC - [2011.11.23 11:27:04 | 000,992,056 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPS.exe
PRC - [2009.10.27 09:26:36 | 000,657,408 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2009.10.27 09:15:44 | 000,132,608 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2009.10.27 09:15:02 | 000,120,832 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2009.07.15 09:08:24 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2008.09.05 23:30:04 | 000,951,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WgaTray.exe
PRC - [2008.07.14 05:09:28 | 000,073,464 | ---- | M] (COMODO) -- C:\Program Files\COMODO\CBOClean\BOCore.exe
PRC - [2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.07.12 11:43:50 | 000,226,904 | ---- | M] (Macrovision Corporation) -- C:\Documents and Settings\All Users\Data aplikací\Macrovision\FLEXnet Connect\6\ISUSPM.exe
PRC - [2007.03.09 10:09:58 | 000,063,712 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
PRC - [2007.02.25 11:46:40 | 000,032,768 | ---- | M] (Logitech) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
PRC - [2006.11.02 23:00:54 | 001,585,152 | ---- | M] (Belkin Corporation) -- C:\Program Files\Belkin\USB F5D7050\Wireless Utility\Belkinwcui.exe
PRC - [2006.09.25 09:12:20 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
PRC - [2005.12.09 15:37:42 | 000,081,920 | ---- | M] (Logitech Inc.) -- c:\Program Files\Common Files\Logitech\LVMVFM\LVPrcSrv.exe
PRC - [2005.12.09 15:32:18 | 000,225,280 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\LVCOMSX.EXE
PRC - [2005.12.07 10:26:30 | 000,489,472 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Video\CameraAssistant.exe
PRC - [2004.11.01 17:22:22 | 000,262,144 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\ElkCtrl.exe

========== Modules (No Company Name) ==========

MOD - [2011.12.17 19:11:00 | 001,647,616 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11121702\algo.dll
MOD - [2011.12.15 02:31:12 | 000,241,528 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11121702\aswRep.dll
MOD - [2011.12.09 13:12:23 | 000,115,137 | ---- | M] () -- C:\Documents and Settings\Filip\Local Settings\Temp\8aefdf3f-82dc-462e-be91-2ca1c43911cf\CliSecureRT.dll
MOD - [2011.12.07 12:16:28 | 000,411,192 | ---- | M] () -- C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\Application\16.0.912.63\ppgooglenaclpluginchrome.dll
MOD - [2011.12.07 12:16:27 | 003,767,864 | ---- | M] () -- C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\Application\16.0.912.63\pdf.dll
MOD - [2011.12.07 12:14:56 | 000,122,952 | ---- | M] () -- C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\Application\16.0.912.63\avutil-51.dll
MOD - [2011.12.07 12:14:55 | 000,222,280 | ---- | M] () -- C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\Application\16.0.912.63\avformat-53.dll
MOD - [2011.12.07 12:14:53 | 001,746,504 | ---- | M] () -- C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\Application\16.0.912.63\avcodec-53.dll
MOD - [2011.12.07 08:22:33 | 008,593,056 | ---- | M] () -- C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\Application\16.0.912.63\gcswf32.dll
MOD - [2011.11.29 20:58:56 | 000,021,392 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
MOD - [2011.11.29 16:39:44 | 000,624,040 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\CommonModule.dll
MOD - [2011.11.29 16:39:44 | 000,494,504 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\FirmwareUpdateAgent.Common.dll
MOD - [2011.11.29 16:39:44 | 000,007,168 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\IPCServer.dll
MOD - [2011.11.29 16:39:44 | 000,003,584 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\ISharedIPCInterface.dll
MOD - [2011.11.23 11:27:10 | 004,284,728 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\Socket\Adaptor.dll
MOD - [2011.11.23 11:27:10 | 002,085,688 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\GuiListener\export.dll
MOD - [2011.11.23 11:27:10 | 001,764,664 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\Socket\Export.dll
MOD - [2011.11.23 11:27:10 | 000,339,768 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\RemoteDesktop\Export.dll
MOD - [2011.11.23 11:27:10 | 000,049,976 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\RemoteDesktop\ShHook.dll
MOD - [2011.11.23 11:27:08 | 000,464,184 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\CRF\export.dll
MOD - [2011.11.23 11:27:08 | 000,328,504 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\EventMonitor\export.dll
MOD - [2011.11.23 11:27:08 | 000,126,776 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\EventMonitor\EventMonitor.dll
MOD - [2011.11.23 11:27:06 | 001,131,320 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPS_RES.dll
MOD - [2011.11.23 11:27:06 | 000,020,280 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLANG.dll
MOD - [2011.10.13 07:57:16 | 000,998,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\90b90e700e59d73d6d692cf74e1ba16e\System.Management.ni.dll
MOD - [2011.10.13 07:48:14 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll
MOD - [2011.10.13 07:48:10 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll
MOD - [2011.10.13 07:47:59 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll
MOD - [2011.10.13 07:47:41 | 002,295,296 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\d507b9e0e50e453793ee5e01c07a5485\System.Core.ni.dll
MOD - [2011.10.13 07:47:32 | 000,224,768 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\478d57d96f3d8d5fc15c7ac635a4a6a1\PresentationFramework.Classic.ni.dll
MOD - [2011.10.13 07:47:31 | 014,328,320 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\054488924fcc579cce9fa0209dafe28b\PresentationFramework.ni.dll
MOD - [2011.10.13 07:47:12 | 012,215,808 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationCore\b2f0318713eca304eaa9d86fc17edb96\PresentationCore.ni.dll
MOD - [2011.10.13 07:46:57 | 003,325,440 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\WindowsBase\1adc4ae51a5ac63e896a1402749ca495\WindowsBase.ni.dll
MOD - [2011.10.13 07:46:51 | 007,950,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll
MOD - [2011.10.13 07:46:40 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MOD - [2011.10.13 07:45:28 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2011.10.13 07:42:37 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_e326a193\mscorlib.dll
MOD - [2011.10.13 07:42:34 | 000,835,584 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_624c0b8f\system.drawing.dll
MOD - [2011.10.13 07:42:27 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_7af29030\system.xml.dll
MOD - [2011.10.13 07:42:23 | 003,018,752 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_a7506778\system.windows.forms.dll
MOD - [2011.10.13 07:42:18 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_da17e5dd\system.dll
MOD - [2011.10.13 07:42:09 | 001,265,664 | ---- | M] () -- c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll
MOD - [2011.10.13 07:42:09 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll
MOD - [2008.04.14 07:51:48 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008.01.30 14:06:36 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll
MOD - [2008.01.30 14:06:36 | 000,372,736 | ---- | M] () -- c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll
MOD - [2008.01.30 14:06:35 | 002,052,096 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll
MOD - [2008.01.30 14:06:35 | 000,466,944 | ---- | M] () -- c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll
MOD - [2008.01.30 14:06:35 | 000,323,584 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll
MOD - [2007.02.25 11:46:40 | 000,536,617 | ---- | M] () -- C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.137-8876480SL\Program\BWDocMapExt.dll
MOD - [2007.02.25 11:46:40 | 000,147,493 | ---- | M] () -- C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.137-8876480SL\Program\bwfiles.dll
MOD - [2007.02.25 11:46:40 | 000,114,688 | ---- | M] () -- C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.137-8876480SL\Program\BWScriptExt.dll
MOD - [2007.02.25 11:46:40 | 000,061,496 | ---- | M] () -- C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.137-8876480SL\Program\clntutil.dll
MOD - [2006.11.02 22:57:38 | 000,167,936 | ---- | M] () -- C:\Program Files\Belkin\USB F5D7050\Wireless Utility\BelkinwcuiDLL.dll
MOD - [2006.11.02 22:57:32 | 000,061,440 | ---- | M] () -- C:\Program Files\Belkin\USB F5D7050\Wireless Utility\BelkinHWStatus.dll
MOD - [2006.07.27 18:51:18 | 000,057,451 | ---- | M] () -- C:\Program Files\ICQLite\ICQLiteShell.dll

========== Win32 Services (SafeList) ==========

SRV - [2011.11.28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.11.23 11:27:04 | 001,052,472 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe -- (CLPSLS)
SRV - [2009.10.27 09:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009.07.15 09:08:24 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008.07.14 05:09:28 | 000,073,464 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\CBOClean\BOCore.exe -- (BOCore)
SRV - [2007.07.06 09:02:59 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2005.12.09 15:37:42 | 000,081,920 | ---- | M] (Logitech Inc.) [Auto | Running] -- c:\Program Files\Common Files\Logitech\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)

========== Driver Services (SafeList) ==========

DRV - [2011.11.28 18:53:53 | 000,435,032 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.11.28 18:53:35 | 000,314,456 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.11.28 18:52:19 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.11.28 18:52:16 | 000,052,952 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.11.28 18:52:02 | 000,111,320 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.11.28 18:51:50 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.11.28 18:48:49 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.11.01 22:00:45 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2011.10.27 02:25:40 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2011.10.27 02:25:40 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM)
DRV - [2011.10.27 02:25:40 | 000,114,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadserd.sys -- (ssadserd) SAMSUNG Android USB Diagnostic Serial Port (WDM)
DRV - [2011.10.27 02:25:40 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadadb.sys -- (androidusb)
DRV - [2011.10.27 02:25:40 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter)
DRV - [2009.07.15 09:08:24 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.01.14 15:03:26 | 000,050,176 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2009.01.08 18:00:54 | 000,016,640 | ---- | M] (Wondershare) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DsAudioDevice_310.sys -- (DsAudioDevice_310)
DRV - [2008.09.15 07:56:34 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2008.09.15 07:56:24 | 000,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.07.29 12:39:22 | 000,008,960 | ---- | M] (BUFFALO INC.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\bautopw.sys -- (bautopw)
DRV - [2008.02.12 02:48:06 | 000,017,152 | ---- | M] (BUFFALO INC.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\bfturboh.sys -- (bfturboh)
DRV - [2007.04.17 15:14:10 | 000,015,376 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\COMODO\CBOClean\BOCDRIVE.SYS -- (BOCDRIVE)
DRV - [2007.04.09 13:27:07 | 000,031,548 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2007.02.16 01:56:49 | 000,011,984 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyDelay.sys -- (ElbyDelay)
DRV - [2007.01.04 09:07:00 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2006.12.17 03:50:29 | 001,918,464 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006.08.14 14:51:28 | 000,105,344 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2006.06.29 06:53:00 | 000,244,864 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2006.06.18 23:59:28 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.06.06 04:09:26 | 004,284,928 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.02.10 12:51:14 | 001,391,040 | R--- | M] (C-Media Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\cmudaxu.sys -- (cmudau32)
DRV - [2005.12.09 15:37:42 | 002,400,256 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (lvmvdrv)
DRV - [2005.12.09 15:37:42 | 000,016,768 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPrcMon.sys -- (LVPrcMon)
DRV - [2005.12.09 15:35:54 | 002,174,464 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (Lvckap)
DRV - [2005.12.06 04:27:29 | 000,287,360 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LV561AV.SYS -- (PID_0928) Logitech QuickCam Express(PID_0928)
DRV - [2005.12.06 04:26:16 | 000,039,424 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2005.11.21 06:48:20 | 000,016,512 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (Aspi32)
DRV - [2005.11.09 17:54:56 | 000,402,944 | ---- | M] (Belkin Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BLKWGU.sys -- (BLKWGU(Belkin)) Belkin Wireless G USB Network Adapter(Belkin)
DRV - [2005.10.28 11:38:18 | 000,402,432 | ---- | M] (ZyDAS Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZD1211BU.sys -- (ZD1211BU(ZyDAS)) ZyDAS ZD1211B IEEE 802.11 b+g Wireless LAN Driver (USB)(ZyDAS)
DRV - [2005.10.04 15:38:24 | 000,280,064 | ---- | M] (ZyDAS Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZD1211U.sys -- (ZD1211U(ZyDAS)) ZyDAS ZD1211 IEEE 802.11b+g Wireless LAN Driver (USB)(ZyDAS)
DRV - [2005.08.15 11:08:26 | 000,127,488 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\imagesrv.sys -- (imagesrv)
DRV - [2005.08.15 11:08:26 | 000,005,888 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\imagedrv.sys -- (imagedrv)
DRV - [2005.02.09 12:59:00 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)
DRV - [2004.12.01 16:55:32 | 000,022,488 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb)
DRV - [2004.11.05 10:39:08 | 000,082,148 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr)
DRV - [2004.10.25 13:40:58 | 000,017,664 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZDPSp50.sys -- (ZDPSp50)
DRV - [2004.10.19 12:40:56 | 000,028,207 | ---- | M] (IVT Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\BTHidMgr.sys -- (BTHidMgr)
DRV - [2004.10.19 12:37:38 | 000,061,312 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VComm.sys -- (VComm)
DRV - [2004.10.19 10:39:26 | 000,020,096 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio)
DRV - [2004.09.21 17:18:02 | 000,011,604 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vbtenum.sys -- (BTHidEnum)
DRV - [2004.09.21 17:15:34 | 000,010,804 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BtNetDrv.sys -- (BT)
DRV - [2004.04.14 11:08:00 | 000,044,064 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2004.04.14 11:08:00 | 000,021,280 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2004.04.14 11:08:00 | 000,010,144 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2004.04.14 11:08:00 | 000,005,600 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1757981266-308236825-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKU\S-1-5-21-1757981266-308236825-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKU\S-1-5-21-1757981266-308236825-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.rwy24.net/
IE - HKU\S-1-5-21-1757981266-308236825-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1757981266-308236825-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..network.proxy.type: 4

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\bkmrksync@nokia.com: L:\Nokia\Nokia PC Suite 7\bkmrksync\
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\gemgecko@gemius.com: C:\Program Files\NetSoftware\gemgecko_ext\ [2011.09.16 19:16:11 | 000,000,000 | ---D | M]

[2009.01.30 15:37:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Filip\Data aplikací\Mozilla\Extensions
[2011.09.16 08:39:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Filip\Data aplikací\Mozilla\Firefox\Profiles\kp7rdup7.default\extensions
[2011.09.16 08:39:53 | 000,000,000 | ---D | M] ("NetVideoHunter") -- C:\Documents and Settings\Filip\Data aplikací\Mozilla\Firefox\Profiles\kp7rdup7.default\extensions\netvideohunter@netvideohunter.com
[2011.11.03 10:33:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010.06.30 22:38:36 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.08.04 19:23:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.11.08 10:07:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011.01.04 13:22:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011.04.04 19:20:19 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011.06.09 18:57:43 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011.10.18 20:19:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2011.09.22 19:36:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011.10.03 04:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Filip\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\16.0.912.63\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Filip\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\16.0.912.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Filip\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\16.0.912.63\pdf.dll
CHR - plugin: Internet Research (Enabled) = C:\Documents and Settings\Filip\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\Default\Extensions\jmlmanpnnbnpabnonijjmnmplnbfcgbf\1.0.2.1_0\npgemiusplugin.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.14_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1374_0\
CHR - Extension: V\u00FDzkum NetMonitor = C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jmlmanpnnbnpabnonijjmnmplnbfcgbf\1.1.0.1_0\
CHR - Extension: Gmail = C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.3_0\

O1 HOSTS File: ([2007.11.11 10:43:21 | 000,211,076 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 babe.the-killer.bz
O1 - Hosts: 127.0.0.1 www.babe.the-killer.bz
O1 - Hosts: 127.0.0.1 babe.k-lined.com
O1 - Hosts: 127.0.0.1 www.babe.k-lined.com
O1 - Hosts: 127.0.0.1 did.i-used.cc
O1 - Hosts: 127.0.0.1 www.did.i-used.cc
O1 - Hosts: 127.0.0.1 coolwwwsearch.com
O1 - Hosts: 127.0.0.1 www.coolwwwsearch.com
O1 - Hosts: 127.0.0.1 coolwebsearch.com
O1 - Hosts: 127.0.0.1 www.coolwebsearch.com
O1 - Hosts: 127.0.0.1 hi.studioaperto.net
O1 - Hosts: 127.0.0.1 www.hi.studioaperto.net
O1 - Hosts: 127.0.0.1 wazzupnet.com
O1 - Hosts: 127.0.0.1 www.wazzupnet.com
O1 - Hosts: 127.0.0.1 gueb.com
O1 - Hosts: 127.0.0.1 www.gueb.com
O1 - Hosts: 127.0.0.1 kabex.com
O1 - Hosts: 127.0.0.1 www.kabex.com
O1 - Hosts: 127.0.0.1 hityou.com
O1 - Hosts: 127.0.0.1 www.hityou.com
O1 - Hosts: 127.0.0.1 miosearch.com
O1 - Hosts: 127.0.0.1 www.miosearch.com
O1 - Hosts: 127.0.0.1 blue-elefant.com
O1 - Hosts: 127.0.0.1 www.blue-elefant.com
O1 - Hosts: 7425 more lines...
O2 - BHO: (no name) - {500BCA15-57A7-4eaf-8143-8C619470B13D} - No CLSID value found.
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Catcher Class) - {ADECBED6-0366-4377-A739-E69DFBA04663} - C:\Program Files\Moyea\FLV Downloader\MoyeaCth.dll (Moyea Software Co., Ltd.)
O2 - BHO: (Internet Panel) - {CE7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files\NetSoftware\IEHelper.dll (Gemius)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1757981266-308236825-725345543-1003\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4 - HKLM..\Run: [Adobe Photo Downloader] C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe ()
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [CmUsbSound] RunDll32 cmcnfgu.cpl,CMICtrlWnd File not found
O4 - HKLM..\Run: [COMODO] C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe (COMODO)
O4 - HKLM..\Run: [CPA] C:\Program Files\COMODO\COMODO GeekBuddy\VALA.exe (COMODO)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe (Logitech Inc.)
O4 - HKLM..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NetSoftware] C:\Program Files\NetSoftware\Starter.exe (Gemius)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKU\S-1-5-21-1757981266-308236825-725345543-1003..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKU\S-1-5-21-1757981266-308236825-725345543-1003..\Run: [ISUSPM] C:\Documents and Settings\All Users\Data aplikací\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
O4 - HKU\S-1-5-21-1757981266-308236825-725345543-1003..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe (Samsung)
O4 - HKU\S-1-5-21-1757981266-308236825-725345543-1003..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
O4 - HKU\S-1-5-21-1757981266-308236825-725345543-1003..\Run: [LaunchList] C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe (Pinnacle Systems)
O4 - HKU\S-1-5-21-1757981266-308236825-725345543-1003..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech)
O4 - HKU\S-1-5-21-1757981266-308236825-725345543-1003..\Run: [PopRock] C:\DOCUME~1\Filip\LOCALS~1\Temp\b.exe File not found
O4 - HKU\S-1-5-21-1757981266-308236825-725345543-1003..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Belkin Wireless USB Utility.lnk = C:\Program Files\Belkin\USB F5D7050\Wireless Utility\Belkinwcui.exe (Belkin Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1757981266-308236825-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-21-1757981266-308236825-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1757981266-308236825-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/fhg.CAB (Reg Error: Key error.)
O16 - DPF: {264F9710-2B58-4BBE-A0A6-661BAA96A5E4} file://E:\GxArchivePlayer.cab (Genetec GxUIProxy Class)
O16 - DPF: {459E93B6-150E-45D5-8D4B-45C66FC035FE} http://apps.corel.com/nos_dl_manager_de ... Plugin.ocx (get_atlcom Class)
O16 - DPF: {65D72393-E210-4A2A-B8E0-10AC45986770} http://pl.recruit.netmonitor.cz/WebInstaller.dll (GWebInstallControl Object)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {FFBB3F3B-0A5A-4106-BE53-DFE1E2340CB1} http://dlm.tools.akamai.com/dlmanager/v ... .2.2.1.cab (DownloadManager Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.1.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.112.39,85.255.112.40
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{11109AB4-1F5C-4EDF-A0A4-67F5F8AE5A4C}: NameServer = 85.255.116.117,85.255.112.190
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{14C26C83-0C53-42A9-800B-2407C69D7080}: NameServer = 85.255.116.117,85.255.112.190
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{46C4927C-D2FA-439C-8107-F452FB265467}: DhcpNameServer = 85.255.112.39,85.255.112.40
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{46C4927C-D2FA-439C-8107-F452FB265467}: NameServer = 85.255.116.117,85.255.112.190
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4F560232-8E66-434A-AC31-3BBA47B00ED4}: NameServer = 85.255.116.117,85.255.112.190
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6BC2B760-1E95-4A68-A107-0D6DDC898183}: NameServer = 85.255.116.117,85.255.112.190
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{901064FA-087C-4A90-8A6D-95992B8A982A}: NameServer = 85.255.116.117,85.255.112.190
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AD9DC6D8-5440-460C-A10C-24EEDD2A8C74}: DhcpNameServer = 10.1.1.1
O18 - Protocol\Handler\bw+0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw+0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw-0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw00 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw00s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw-0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw10 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw10s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw20 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw20s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw30 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw30s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw40 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw40s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw50 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw50s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw60 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw60s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw70 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw70s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw80 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw80s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw90 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw90s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwa0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwa0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwb0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwb0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwc0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwc0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwd0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwd0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwe0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwe0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwf0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwf0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwg0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwg0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwh0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwh0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwi0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwi0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwj0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwj0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwk0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwk0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwl0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwl0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwm0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwm0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwn0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwn0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwo0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwo0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwp0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwp0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwq0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwq0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwr0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwr0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bws0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bws0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwt0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwt0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwu0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwu0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwv0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwv0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bww0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bww0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwx0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwx0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwy0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwy0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwz0 {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwz0s {ced67f82-e8b5-483e-aaae-f906b7cecb03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\offline-8876480 {CED67F82-E8B5-483E-AAAE-F906B7CECB03} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Filip\Data aplikací\Microsoft\Internet Explorer\Tapeta aplikace Internet Explorer.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Filip\Data aplikací\Microsoft\Internet Explorer\Tapeta aplikace Internet Explorer.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.05.08 07:22:01 | 000,000,095 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006.10.04 22:02:54 | 000,000,279 | R--- | M] () - P:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (smrgdf C:\Documents and Settings\Filip\Data aplikací\iolo\)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

dj.fik · #21 Příspěvek od **dj.fik** » 18 pro 2011 17:28

2. polovina OTL.txt

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.dvacm - C:\Program Files\Common Files\Ulead Systems\VIO\DVACM.acm (Ulead Systems, Inc.)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.mpegacm - C:\Program Files\Common Files\Ulead Systems\MPEG\MPEGACM.acm (Ulead Systems, Inc.)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.ulmp3acm - C:\Program Files\Common Files\Ulead Systems\MPEG\ulmp3acm.acm (Ulead systems)
Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: VIDC.I420 - vdrcodec.dll File not found
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: VIDC.MJPG - C:\WINDOWS\System32\pvmjpg30.dll (Pegasus Imaging Corporation)
Drivers32: VIDC.PIM1 - pclepim1.dll File not found
Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP62 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2011.12.18 11:04:48 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Filip\Plocha\OTL.exe
[2011.12.18 09:18:23 | 000,000,000 | --SD | C] -- C:\ComboFix
[2011.12.18 08:44:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\CSC
[2011.12.17 23:21:21 | 000,000,000 | ---D | C] -- C:\cmdcons
[2011.12.17 23:15:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2011.12.17 23:11:29 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011.12.17 23:11:29 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011.12.17 23:11:28 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011.12.17 23:11:28 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011.12.17 23:11:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.12.17 23:11:10 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.12.17 23:05:55 | 000,314,456 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011.12.17 23:05:55 | 000,034,392 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011.12.17 23:05:55 | 000,020,568 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011.12.17 23:05:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\avast! Free Antivirus
[2011.12.17 23:05:54 | 000,435,032 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011.12.17 23:05:54 | 000,111,320 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011.12.17 23:05:54 | 000,105,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011.12.17 23:05:54 | 000,052,952 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011.12.17 23:05:54 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011.12.17 23:05:44 | 000,199,816 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011.12.17 23:05:44 | 000,041,184 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011.12.17 23:05:36 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011.12.17 23:05:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2011.12.17 23:01:03 | 004,342,882 | R--- | C] (Swearware) -- C:\Documents and Settings\Filip\Plocha\ComboFix.exe
[2011.12.17 22:33:49 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.12.17 22:33:49 | 000,000,000 | ---D | C] -- C:\rsit
[2007.06.03 20:45:44 | 058,032,562 | ---- | C] (Macrovision Corporation) -- C:\Program Files\Samsung_PC_Studio_311_FKB.exe
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2011.12.18 11:13:58 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.12.18 11:12:00 | 000,001,026 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-308236825-725345543-1003UA.job
[2011.12.18 11:07:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.12.18 11:04:52 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Filip\Plocha\OTL.exe
[2011.12.18 11:00:00 | 000,000,278 | -H-- | M] () -- C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
[2011.12.18 11:00:00 | 000,000,240 | -H-- | M] () -- C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
[2011.12.18 10:37:46 | 000,011,408 | ---- | M] () -- C:\Qoobox.zip
[2011.12.18 09:41:09 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011.12.18 09:38:07 | 000,002,278 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.12.18 09:38:07 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.12.18 09:35:47 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.12.18 08:49:20 | 004,342,882 | R--- | M] (Swearware) -- C:\Documents and Settings\Filip\Plocha\ComboFix.exe
[2011.12.18 08:48:37 | 000,444,014 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.12.18 08:48:37 | 000,440,742 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.12.18 08:48:37 | 000,084,078 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.12.18 08:48:37 | 000,072,272 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.12.17 23:21:45 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2011.12.17 23:05:56 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2011.12.17 23:05:54 | 000,002,552 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011.12.17 21:12:00 | 000,000,974 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-308236825-725345543-1003Core.job
[2011.12.17 20:09:50 | 000,511,303 | ---- | M] () -- C:\Documents and Settings\Filip\Plocha\bol.jpg
[2011.12.15 19:11:17 | 000,000,444 | ---- | M] () -- C:\WINDOWS\tasks\COMODO System Cleaner Update.job
[2011.12.15 14:13:52 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\Filip\Plocha\Google Chrome.lnk
[2011.12.14 17:13:54 | 000,000,004 | ---- | M] () -- C:\WINDOWS\System32\gaopdxcounter
[2011.12.14 16:27:57 | 001,620,408 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.12.14 08:59:54 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.12.18 11:13:58 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.12.18 10:37:46 | 000,011,408 | ---- | C] () -- C:\Qoobox.zip
[2011.12.17 23:21:41 | 000,000,223 | ---- | C] () -- C:\Boot.bak
[2011.12.17 23:21:32 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2011.12.17 23:11:29 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011.12.17 23:11:29 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011.12.17 23:11:29 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011.12.17 23:11:29 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011.12.17 23:11:28 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011.12.17 23:05:56 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2011.12.17 20:10:08 | 000,511,303 | ---- | C] () -- C:\Documents and Settings\Filip\Plocha\bol.jpg
[2011.12.14 09:25:23 | 000,234,024 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2011.11.29 16:38:18 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe
[2011.11.29 16:38:12 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
[2011.11.29 16:38:12 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
[2011.11.29 16:38:12 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
[2011.11.29 16:38:12 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
[2011.11.01 21:00:38 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2011.11.01 21:00:38 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2011.11.01 21:00:31 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Filip\Data aplikací\$_hpcst$.hpc
[2011.08.15 16:03:27 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Filip\Local Settings\Data aplikací\{9A04287D-66D3-46E9-962D-229712CE030E}
[2011.07.24 13:19:32 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ReminderNextRun
[2011.03.20 21:22:18 | 000,001,515 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2011.02.01 19:50:54 | 000,000,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2011.01.30 20:48:34 | 000,012,162 | ---- | C] () -- C:\WINDOWS\BOC427.INI
[2009.08.01 21:00:50 | 000,008,192 | -HS- | C] () -- C:\WINDOWS\7185F.exe
[2009.05.08 15:53:23 | 000,000,017 | ---- | C] () -- C:\WINDOWS\MovingPicture.ini
[2009.02.22 11:35:55 | 000,000,365 | ---- | C] () -- C:\WINDOWS\Ff.INI
[2009.01.30 15:37:28 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008.12.14 21:31:28 | 000,089,600 | ---- | C] () -- C:\WINDOWS\System32\SFUninst.exe
[2008.12.06 20:39:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ViDown.INI
[2008.12.04 21:00:38 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\cmdrvrmu.dll
[2008.12.04 21:00:19 | 000,005,574 | R--- | C] () -- C:\WINDOWS\Cmudau.ini
[2008.09.05 12:00:25 | 000,006,979 | ---- | C] () -- C:\WINDOWS\UN080616.INI
[2008.09.05 12:00:08 | 000,012,348 | ---- | C] () -- C:\WINDOWS\UN050225.INI
[2008.09.05 11:59:57 | 000,006,353 | ---- | C] () -- C:\WINDOWS\UN070618.INI
[2008.06.26 19:15:08 | 000,000,082 | ---- | C] () -- C:\WINDOWS\netdet.ini
[2008.06.22 09:29:55 | 000,061,980 | ---- | C] () -- C:\WINDOWS\uninstall_Wonderful Madeira.ini
[2008.02.18 22:29:11 | 000,000,085 | -HS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\.zreglib
[2008.01.01 18:56:15 | 000,000,040 | ---- | C] () -- C:\WINDOWS\WeatherSet2.ini
[2008.01.01 18:43:10 | 000,000,040 | ---- | C] () -- C:\WINDOWS\WeatherSet.ini
[2007.12.16 16:03:23 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2007.12.16 16:03:23 | 000,383,238 | ---- | C] () -- C:\WINDOWS\System32\libmp3lame-0.dll
[2007.11.19 21:22:03 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2007.11.11 10:56:12 | 000,074,703 | ---- | C] () -- C:\WINDOWS\System32\mfc45.dll
[2007.10.20 12:04:54 | 000,993,216 | ---- | C] () -- C:\WINDOWS\System32\DVC.EXE
[2007.10.20 12:04:53 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\DVResampleru.dll
[2007.10.14 20:14:11 | 000,000,100 | ---- | C] () -- C:\WINDOWS\posta2.ini
[2007.10.09 20:51:25 | 000,013,304 | ---- | C] () -- C:\WINDOWS\System32\drivers\BTNetFilter.sys
[2007.10.09 20:51:24 | 000,011,604 | ---- | C] () -- C:\WINDOWS\System32\drivers\vbtenum.sys
[2007.09.24 16:17:33 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\au3305adc.dll
[2007.09.24 16:17:32 | 000,000,066 | ---- | C] () -- C:\WINDOWS\Apollo DVD Copy.INI
[2007.09.02 15:57:00 | 000,011,154 | ---- | C] () -- C:\Documents and Settings\Filip\Data aplikací\phpdesigner.xml
[2007.08.30 20:34:42 | 000,153,088 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE
[2007.06.19 18:22:17 | 000,000,061 | -HS- | C] () -- C:\WINDOWS\cnerolf.dat
[2007.06.03 20:50:30 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\LauncherAccess.dt
[2007.06.03 20:47:23 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2007.05.15 19:09:39 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\Filip\Local Settings\Data aplikací\fusioncache.dat
[2007.05.12 20:25:21 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2007.04.01 20:57:38 | 000,005,729 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2007.03.26 16:05:04 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2007.03.19 07:15:09 | 000,001,072 | ---- | C] () -- C:\WINDOWS\System32\imon1.dat
[2007.03.16 20:49:38 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007.03.06 17:10:46 | 000,058,044 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2007.03.05 19:43:55 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\CNMVSye.DLL
[2007.03.05 19:42:55 | 000,000,599 | ---- | C] () -- C:\WINDOWS\System32\CNCMP51.INI
[2007.03.05 19:42:45 | 000,013,126 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2007.02.25 11:47:31 | 000,000,719 | R--- | C] () -- C:\WINDOWS\System32\InstExec.ini
[2007.02.25 11:46:40 | 000,118,784 | R--- | C] () -- C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe
[2007.02.21 18:11:29 | 000,001,012 | ---- | C] () -- C:\WINDOWS\disney.ini
[2007.02.21 18:11:22 | 000,000,181 | ---- | C] () -- C:\WINDOWS\disneysy.ini
[2007.02.18 22:22:33 | 000,002,260 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2007.02.18 22:22:31 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2007.02.18 21:20:12 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2007.02.18 21:20:12 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2007.02.18 20:18:12 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\MWLPS.dll
[2007.02.18 19:57:55 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2007.02.18 12:02:53 | 000,249,344 | ---- | C] () -- C:\Documents and Settings\Filip\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007.02.18 11:52:05 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2007.02.18 11:44:18 | 000,194,248 | ---- | C] () -- C:\WINDOWS\System32\LTRFD13n.DLL
[2007.02.18 11:39:22 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\macd32.dll
[2007.02.18 11:39:22 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\mase32.dll
[2007.02.18 11:39:22 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\mamc32.dll
[2007.02.18 11:39:22 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\masd32.dll
[2007.02.18 11:39:22 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\ma32.dll
[2007.02.18 11:28:14 | 000,000,632 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007.02.10 15:27:55 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007.02.10 15:26:59 | 001,620,408 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2007.02.10 14:40:25 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2007.02.10 14:36:04 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2006.12.17 03:30:22 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.dat
[2006.11.28 20:55:40 | 000,142,347 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2006.10.30 11:58:33 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar_mpfc.dll
[2006.03.29 08:43:38 | 000,042,496 | ---- | C] () -- C:\WINDOWS\System32\ALZZip.BIN
[2006.03.29 08:43:36 | 000,062,464 | ---- | C] () -- C:\WINDOWS\System32\ALZALZ.BIN
[2005.12.09 15:37:42 | 002,400,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVMVdrv.sys
[2005.12.09 15:37:42 | 000,016,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPrcMon.sys
[2005.12.09 15:35:54 | 002,174,464 | ---- | C] () -- C:\WINDOWS\System32\drivers\Lvckap.sys
[2005.11.16 22:11:52 | 000,024,576 | RH-- | C] () -- C:\WINDOWS\System32\Kill1211.exe
[2005.07.12 14:44:42 | 000,015,872 | ---- | C] () -- C:\WINDOWS\System32\InsDrvZD64.DLL
[2005.02.25 00:59:49 | 000,318,014 | ---- | C] () -- C:\WINDOWS\System32\flt1chk4.dll
[2004.12.20 18:24:03 | 001,663,068 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
[2004.08.17 14:58:58 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004.08.02 13:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004.03.23 16:38:00 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\InsDrvZD.dll
[2003.08.07 09:51:32 | 000,024,576 | -H-- | C] () -- C:\WINDOWS\System32\reboot.exe
[2003.08.06 19:32:24 | 000,024,576 | -H-- | C] () -- C:\WINDOWS\System32\KCMDNIns.exe
[2003.04.16 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2003.04.16 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2003.04.16 13:00:00 | 000,444,014 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2003.04.16 13:00:00 | 000,440,742 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2003.04.16 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2003.04.16 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2003.04.16 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2003.04.16 13:00:00 | 000,084,078 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2003.04.16 13:00:00 | 000,072,272 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2003.04.16 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2003.04.16 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2003.04.16 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2003.04.16 13:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2003.04.16 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003.04.09 15:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2003.03.14 12:24:00 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\ZyDelReg.exe
[2002.12.19 20:04:56 | 003,050,298 | ---- | C] () -- C:\WINDOWS\System32\PDFREPORT_XP.dll
[2002.03.17 01:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000011.DLL
[2002.03.13 23:46:46 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\zlib.dll
[1999.01.27 13:39:06 | 000,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll
[1997.06.13 07:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll

========== LOP Check ==========

[2009.01.27 13:21:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\18222
[2011.12.17 23:05:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2009.09.24 06:53:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Azureus
[2011.01.30 21:05:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BOC427
[2007.04.08 18:12:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Cadsoft
[2008.09.18 16:20:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CaptainSim
[2011.12.03 21:23:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CPA_VA
[2008.02.18 22:29:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Elaborate Bytes
[2009.06.22 19:23:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GARMIN
[2009.11.15 18:38:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2007.11.12 05:09:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\iolo
[2009.03.01 18:10:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nokia
[2009.03.01 17:27:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2007.03.04 13:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
[2007.02.18 11:35:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio
[2011.12.09 13:08:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Samsung
[2007.02.18 11:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SmartSound Software Inc
[2011.03.04 11:18:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.08.16 06:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2007.12.22 16:04:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ulead Systems
[2011.08.16 06:44:34 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
[2007.02.21 18:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Data aplikací\Zoufale manzelky
[2007.02.25 12:28:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deniska\Data aplikací\Desperate Housewives
[2009.02.06 16:53:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deniska\Data aplikací\ICQ
[2007.04.20 15:55:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deniska\Data aplikací\ICQLite
[2009.03.13 16:13:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deniska\Data aplikací\PC Suite
[2007.11.14 21:08:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deniska\Data aplikací\Ulead Systems
[2008.07.26 13:27:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deniska\Data aplikací\Zoner
[2007.02.21 18:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Deniska\Data aplikací\Zoufale manzelky
[2011.12.17 22:11:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Azureus
[2009.09.25 13:40:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\BearShare
[2007.03.06 20:30:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Canon
[2007.06.03 20:52:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ConvertTemp
[2007.07.10 17:03:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\flightgear.org
[2007.07.10 17:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\fltk.org
[2009.06.22 19:29:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\GARMIN
[2008.12.19 09:57:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ICQ
[2007.02.25 11:58:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ICQLite
[2007.12.16 16:28:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ImTOO Software Studio
[2007.02.25 12:08:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\InterTrust
[2007.11.11 11:30:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\iolo
[2007.11.15 21:55:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\KASTNER software
[2007.12.18 21:29:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Mazaika
[2009.12.26 16:04:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Moyea
[2007.12.16 17:03:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\MoyeaFLV2Video
[2007.10.07 12:05:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Navigator
[2009.11.15 18:43:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Nokia
[2008.02.18 22:37:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\One-click CD DVD Copy
[2009.03.01 17:28:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\PC Suite
[2007.09.03 16:52:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\PHP Designer 2006
[2009.05.08 07:29:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\proDAD
[2011.12.09 13:12:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Samsung
[2011.12.09 13:24:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Temp
[2007.06.03 20:52:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Temporary
[2007.06.03 20:52:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\TransRender
[2011.08.16 06:45:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\TuneUp Software
[2007.12.22 16:04:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Ulead Systems
[2008.12.06 10:05:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Uniblue
[2007.02.18 12:17:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Zoner
[2007.02.21 18:18:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Zoufale manzelky
[2007.11.11 10:58:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\iolo
[2011.12.18 11:00:00 | 000,000,240 | -H-- | M] () -- C:\WINDOWS\Tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
[2011.12.18 11:00:00 | 000,000,278 | -H-- | M] () -- C:\WINDOWS\Tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job

========== Purity Check ==========

========== Custom Scans ==========

< >

< >

< MD5 for: ATAPI.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.17 14:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007.06.13 14:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 14:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 23:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 23:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.03 21:59:14 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: LSASS.EXE >
[2004.08.17 14:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: SCECLI.DLL >
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SVCHOST.EXE >
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2006.04.20 12:51:50 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=1DBF125862891817F374F407626967F4 -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2007.10.30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2007.10.30 18:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB2509553$\tcpip.sys
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.03 22:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2006.04.20 13:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< >

< %systemroot%*.* /U /s >
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[14 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[23 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[2 C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp -> ]
[1 C:\WINDOWS\system32\drivers\*.tmp files -> C:\WINDOWS\system32\drivers\*.tmp -> ]
[2 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >
[2007.06.27 19:24:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2007.10.20 12:05:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pinnacle Studio

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2008.02.02 10:02:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Adobe
[2007.04.01 13:12:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Ahead
[2009.04.12 15:34:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Apple Computer
[2007.03.05 21:00:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ATI
[2011.12.17 22:11:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Azureus
[2009.09.25 13:40:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\BearShare
[2007.03.06 20:30:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Canon
[2010.10.16 18:16:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ComodoGroup
[2007.06.03 20:52:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ConvertTemp
[2007.05.21 19:25:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\DivX
[2007.10.20 11:42:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Download Manager
[2011.09.14 12:43:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ESTsoft
[2007.07.10 17:03:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\flightgear.org
[2007.07.10 17:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\fltk.org
[2009.06.22 19:29:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\GARMIN
[2007.02.25 11:57:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Google
[2007.10.20 18:14:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Help
[2008.12.19 09:57:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ICQ
[2007.02.25 11:58:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ICQLite
[2007.02.10 14:42:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Identities
[2007.12.16 16:28:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\ImTOO Software Studio
[2007.02.21 18:11:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\InstallShield
[2007.02.25 12:08:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\InterTrust
[2007.11.11 11:30:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\iolo
[2007.11.15 21:55:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\KASTNER software
[2007.12.11 20:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Macromedia
[2008.08.27 04:39:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Macrovision
[2007.12.18 21:29:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Mazaika
[2009.01.18 21:23:17 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Filip\Data aplikací\Microsoft
[2009.12.26 16:04:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Moyea
[2007.12.16 17:03:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\MoyeaFLV2Video
[2009.01.30 15:37:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Mozilla
[2007.10.07 12:05:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Navigator
[2009.11.15 18:43:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Nokia
[2008.02.18 22:37:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\One-click CD DVD Copy
[2009.03.01 17:28:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\PC Suite
[2007.09.03 16:52:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\PHP Designer 2006
[2009.05.08 07:29:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\proDAD
[2011.12.09 13:12:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Samsung
[2010.01.04 15:26:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Skype
[2007.08.30 20:47:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\SmartFTP
[2007.03.06 15:15:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Sun
[2011.12.09 13:24:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Temp
[2007.06.03 20:52:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Temporary
[2007.06.03 20:52:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\TransRender
[2011.08.16 06:45:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\TuneUp Software
[2011.12.13 21:16:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\U3
[2007.12.22 16:04:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Ulead Systems
[2008.12.06 10:05:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Uniblue
[2010.08.17 19:24:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\WinRAR
[2007.02.18 12:17:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Zoner
[2007.02.21 18:18:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Filip\Data aplikací\Zoufale manzelky

< %APPDATA%\*.exe /s >
[2011.01.02 14:19:42 | 010,030,360 | ---- | M] (ESTsoft Corp.) -- C:\Documents and Settings\Filip\Data aplikací\ESTsoft\ALUpdate\ALZIP\newfile\TEMP\ALZip812.exe
[2009.04.06 18:50:38 | 005,178,656 | ---- | M] () -- C:\Documents and Settings\Filip\Data aplikací\GARMIN\RMU\RmuSetup.exe
[2009.06.04 10:39:08 | 001,878,984 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\Filip\Data aplikací\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe
[2009.05.08 07:29:55 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Filip\Data aplikací\Microsoft\Installer\{CBF78A5F-7950-4CF1-A063-C4C7B2B82CE6}\ARPPRODUCTICON.exe
[2011.11.01 22:00:13 | 089,280,248 | ---- | M] (Samsung Electronics Co., Ltd. ) -- C:\Documents and Settings\Filip\Data aplikací\Samsung\New PC Studio\LiveUpdate\Setup_For_Full_Update_IH2_7.exe
[2011.11.01 22:03:54 | 000,315,392 | ---- | M] () -- C:\Documents and Settings\Filip\Data aplikací\Samsung\New PC Studio\LiveUpdate\Setup_Full_Update_NPS2_10064_2.exe
[2006.09.01 15:53:32 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\Filip\Data aplikací\U3\00001873CB60DD78\cleanup.exe
[2006.10.04 14:21:22 | 003,072,000 | ---- | M] (SanDisk Corporation) -- C:\Documents and Settings\Filip\Data aplikací\U3\00001873CB60DD78\Launchpad Removal.exe
[2006.10.04 14:20:22 | 004,595,712 | ---- | M] () -- C:\Documents and Settings\Filip\Data aplikací\U3\00001873CB60DD78\LaunchPad.exe
[2006.09.19 09:26:06 | 000,040,960 | ---- | M] () -- C:\Documents and Settings\Filip\Data aplikací\U3\00001873CB60DD78\79EB5C19-AB0E-4dd7-BE89-BF96301D35Z8\Exec\appstop.exe
[2006.09.19 09:26:06 | 001,824,884 | ---- | M] (Multidmedia Limited) -- C:\Documents and Settings\Filip\Data aplikací\U3\00001873CB60DD78\79EB5C19-AB0E-4dd7-BE89-BF96301D35Z8\Exec\master.exe
[2006.09.19 09:26:06 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Filip\Data aplikací\U3\00001873CB60DD78\79EB5C19-AB0E-4dd7-BE89-BF96301D35Z8\Exec\TASKKILL.EXE
[2006.09.19 09:26:06 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Filip\Data aplikací\U3\00001873CB60DD78\79EB5C19-AB0E-4dd7-BE89-BF96301D35Z8\Exec\TASKLIST.EXE
[2006.09.19 09:26:06 | 000,180,224 | ---- | M] (TODO: <Company name>) -- C:\Documents and Settings\Filip\Data aplikací\U3\00001873CB60DD78\79EB5C19-AB0E-4dd7-BE89-BF96301D35Z8\Exec\U3AppWrapper.exe
[2006.09.01 15:53:32 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\Filip\Data aplikací\U3\temp\cleanup.exe
[2006.10.04 14:21:22 | 003,072,000 | -H-- | M] (SanDisk Corporation) -- C:\Documents and Settings\Filip\Data aplikací\U3\temp\Launchpad Removal.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job >
[2011.11.15 16:01:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
[2011.12.15 19:11:17 | 000,000,444 | ---- | M] () -- C:\WINDOWS\Tasks\COMODO System Cleaner Update.job
[2011.12.18 09:38:07 | 000,000,936 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2011.12.18 11:07:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2011.12.17 21:12:00 | 000,000,974 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-308236825-725345543-1003Core.job
[2011.12.18 11:12:00 | 000,001,026 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-308236825-725345543-1003UA.job
[2011.12.18 11:00:00 | 000,000,240 | -H-- | M] () -- C:\WINDOWS\Tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
[2011.12.18 11:00:00 | 000,000,278 | -H-- | M] () -- C:\WINDOWS\Tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[1 C:\WINDOWS\system32\drivers\*.tmp files -> C:\WINDOWS\system32\drivers\*.tmp -> ]

< %systemroot%\System32\config\*.sav >
[2007.02.10 15:26:11 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2007.02.10 15:26:11 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2007.02.10 15:26:11 | 000,499,712 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >
[1 C:\WINDOWS\system32\drivers\*.tmp files -> C:\WINDOWS\system32\drivers\*.tmp -> ]

< %systemroot%\system32\*.* /3 >
[2011.12.17 23:05:54 | 000,002,552 | ---- | M] () -- C:\WINDOWS\system32\CONFIG.NT
[2011.12.18 08:48:37 | 000,084,078 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2011.12.18 08:48:37 | 000,072,272 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2011.12.18 08:48:37 | 000,440,742 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2011.12.18 08:48:37 | 000,444,014 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2011.12.18 08:48:37 | 001,056,214 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2011.12.18 09:38:07 | 000,002,278 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 07:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"ISUSPM" = "C:\Documents and Settings\All Users\Data aplikací\Macrovision\FLEXnet Connect\6\ISUSPM.exe" -scheduler -- [2007.07.12 11:43:50 | 000,226,904 | ---- | M] (Macrovision Corporation)
"LDM" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe -- [2007.02.25 11:46:40 | 000,032,768 | ---- | M] (Logitech)
"Uniblue RegistryBooster 2009" = C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
"LaunchList" = C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe -- [2007.03.21 14:41:38 | 000,145,496 | ---- | M] (Pinnacle Systems)
"Google Update" = "C:\Documents and Settings\Filip\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2011.06.09 19:47:22 | 000,136,176 | ---- | M] (Google Inc.)
"PopRock" = C:\DOCUME~1\Filip\LOCALS~1\Temp\b.exe
"AutoStartNPSAgent" = C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe -- [2011.11.01 22:00:51 | 000,102,400 | ---- | M] (Samsung Electronics Co., Ltd.)
"KiesHelper" = C:\Program Files\Samsung\Kies\KiesHelper.exe /s -- [2011.11.29 20:58:44 | 000,935,312 | ---- | M] (Samsung)
"KiesPDLR" = C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe -- [2011.11.29 20:58:56 | 000,021,392 | ---- | M] ()
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.12.18 11:13:58 | 000,000,512 | ---- | M] () MD5=B7755A140CC5BF39CCD77940BB95E68C -- C:\PhysicalMBR.bin

========== Alternate Data Streams ==========

@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:63238B95
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0A8E2C33

< End of report >

#22 Příspěvek od **vyosek** » 18 pro 2011 19:47

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
O2 - BHO: (no name) - {500BCA15-57A7-4eaf-8143-8C619470B13D} - No CLSID value found.
O4 - HKLM..\Run: [NPSStartup] File not found
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/fhg.CAB (Reg Error: Key error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
[2009.01.27 13:21:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\18222
[2011.08.16 06:44:34 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[14 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[23 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[2 C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp -> ]
[1 C:\WINDOWS\system32\drivers\*.tmp files -> C:\WINDOWS\system32\drivers\*.tmp -> ]
[2 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
[2011.11.15 16:01:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
[2011.12.15 19:11:17 | 000,000,444 | ---- | M] () -- C:\WINDOWS\Tasks\COMODO System Cleaner Update.job
[2011.12.18 09:38:07 | 000,000,936 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2011.12.18 11:07:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2011.12.17 21:12:00 | 000,000,974 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-308236825-725345543-1003Core.job
[2011.12.18 11:12:00 | 000,001,026 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-308236825-725345543-1003UA.job
[2011.12.18 11:00:00 | 000,000,240 | -H-- | M] () -- C:\WINDOWS\Tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
[2011.12.18 11:00:00 | 000,000,278 | -H-- | M] () -- C:\WINDOWS\Tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:63238B95
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0A8E2C33

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Photo Downloader"=-
"NeroFilterCheck"=-
"QuickTime Task"=-
"Adobe Reader Speed Launcher"=-
"SunJavaUpdateSched"=-
"NPSStartup"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Filip^Nabídka Start^Programy^Po spuštění^Windows Login.lnk]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Filip^Nabídka Start^Programy^Po spuštění^Windows Updater.lnk]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""
 
:files
C:\Program Files\AskBarDis
C:\DOCUME~1\Filip\LOCALS~1\Temp\*.*
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

dj.fik · #23 Příspěvek od **dj.fik** » 18 pro 2011 19:55

A zaskrtat vse jako puvodne?

#24 Příspěvek od **vyosek** » 18 pro 2011 19:57

Neni treba, jen tam placnete skript a klikne na opravit - Fix It

dj.fik · #25 Příspěvek od **dj.fik** » 18 pro 2011 20:12

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500BCA15-57A7-4eaf-8143-8C619470B13D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{500BCA15-57A7-4eaf-8143-8C619470B13D}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NPSStartup deleted successfully.
Starting removal of ActiveX control {00000055-9980-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\fhg.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{00000055-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000055-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{00000055-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000055-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
C:\Documents and Settings\All Users\Data aplikací\18222 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} folder moved successfully.
C:\WINDOWS\002942_.tmp deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
File delete failed. C:\WINDOWS\SBA041C02.tmp scheduled to be deleted on reboot.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1B2.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2041.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP295.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2B1.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP319.tmp\System.Web.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP319.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP38E.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3DF.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP481.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4C6.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5B0.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5D7.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6D6.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP712.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP89C.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI12F.tmp deleted successfully.
C:\WINDOWS\Installer\MSI12F1.tmp deleted successfully.
C:\WINDOWS\Installer\MSI12FD.tmp deleted successfully.
C:\WINDOWS\Installer\MSI130.tmp deleted successfully.
C:\WINDOWS\Installer\MSI131.tmp deleted successfully.
C:\WINDOWS\Installer\MSI132.tmp deleted successfully.
C:\WINDOWS\Installer\MSI133.tmp deleted successfully.
C:\WINDOWS\Installer\MSI17C.tmp deleted successfully.
C:\WINDOWS\Installer\MSI185.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1AE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1C3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4C0.tmp deleted successfully.
C:\WINDOWS\Installer\MSI4C9.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5128.tmp deleted successfully.
C:\WINDOWS\Installer\MSI512B.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5130.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5131.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5132.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5133.tmp deleted successfully.
C:\WINDOWS\Installer\MSI5134.tmp deleted successfully.
C:\WINDOWS\Installer\MSIDD.tmp deleted successfully.
C:\WINDOWS\Installer\MSIE8.tmp deleted successfully.
C:\WINDOWS\Installer\MSIFEF.tmp deleted successfully.
C:\WINDOWS\system32\CONFIG.TMP deleted successfully.
C:\WINDOWS\system32\_r_a_p_.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\nsa2D.tmp\cService.dll deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\nsa2D.tmp\NSIS_SkinCrafter_Plugin.dll deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\nsa2D.tmp\SkinCrafter.dll deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\nsa2D.tmp folder deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\nsy30.tmp\cService.dll deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\nsy30.tmp\NSIS_SkinCrafter_Plugin.dll deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\nsy30.tmp\SkinCrafter.dll deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\nsy30.tmp folder deleted successfully.
C:\WINDOWS\system32\drivers\OLD289.tmp deleted successfully.
C:\WINDOWS\Temp\IXP057B0.tmp folder deleted successfully.
C:\WINDOWS\Temp\sig12.tmp deleted successfully.
C:\WINDOWS\Tasks\AppleSoftwareUpdate.job moved successfully.
C:\WINDOWS\Tasks\COMODO System Cleaner Update.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-308236825-725345543-1003Core.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-308236825-725345543-1003UA.job moved successfully.
C:\WINDOWS\Tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job moved successfully.
C:\WINDOWS\Tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job moved successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:63238B95 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:0A8E2C33 deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Photo Downloader deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NPSStartup not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Filip^Nabídka Start^Programy^Po spuštění^Windows Login.lnk\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Filip^Nabídka Start^Programy^Po spuštění^Windows Updater.lnk\ deleted successfully.
Unable to set value : HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLs"|"" /E!
========== FILES ==========
File\Folder C:\Program Files\AskBarDis not found.
C:\DOCUME~1\Filip\LOCALS~1\Temp\AdobeARM.log moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Arabic.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\ArmUI.ini moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Czech.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Danish.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Dutch.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\English.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Finnish.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\French.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\German.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Greek.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Hebrew.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Hungarian.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\IadHide5.dll moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Italian.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Japanese.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\jusched.log moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Korean.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\LVCOMSX.LOG moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Norwegian.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Perflib_Perfdata_11ec.dat moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Perflib_Perfdata_11fc.dat moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Perflib_Perfdata_2ac.dat moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Polish.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Portuguese(Brazil).bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Portuguese.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Russian.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\scrrun.dll moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\SimChin.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Spanish.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\SWEDISH.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Thai.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\TradChin.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\Turkish.bin moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\~DF972C.tmp moved successfully.
C:\DOCUME~1\Filip\LOCALS~1\Temp\~DFC28.tmp moved successfully.
C:\WINDOWS\system32\_000011_.tmp.dll moved successfully.
C:\WINDOWS\system32\_000012_.tmp.dll moved successfully.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File move failed. C:\WINDOWS\SBA041C02.tmp scheduled to be moved on reboot.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41 bytes

User: Deniska
->Temp folder emptied: 144274732 bytes
->Temporary Internet Files folder emptied: 288009855 bytes
->Java cache emptied: 1290526 bytes
->FireFox cache emptied: 36637221 bytes
->Flash cache emptied: 9575 bytes

User: Filip
->Temp folder emptied: 115137 bytes
->Temporary Internet Files folder emptied: 147670200 bytes
->Java cache emptied: 15965563 bytes
->FireFox cache emptied: 294691136 bytes
->Google Chrome cache emptied: 44358021 bytes
->Flash cache emptied: 1890806 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 2490976 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 2847510 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 48 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 16823 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 199169060 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 11518527 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 136,00 mb

[EMPTYFLASH]

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: Deniska
->Flash cache emptied: 0 bytes

User: Filip
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.31.0 log created on 12182011_195820

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\SBA041C02.tmp scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

#26 Příspěvek od **vyosek** » 19 pro 2011 10:06

Jak se chova nas pacient

dj.fik · #27 Příspěvek od **dj.fik** » 19 pro 2011 12:31

Jak by měl? Vypsalo to něco hrůzného?

Noda, který toho Olmarika viděl nemám a Avast nic neříká...

#28 Příspěvek od **vyosek** » 19 pro 2011 12:33

Prave ze logy jsou ciste, pokud nejsou problemy, tak muzem zacit uklizet

dj.fik · #29 Příspěvek od **dj.fik** » 19 pro 2011 12:53

OK, a máte tedy nějaké další rady pro mě, prosím?

#30 Příspěvek od **vyosek** » 19 pro 2011 12:55

Odinstalujte Combofix

Prejmenujte ComboFix na Uninstall
Spustte jej
Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis)
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Doporucuji provest defragmentaci disku

Nejjednodussi (ale nejmene ucinny) zpusob je pomoci utility ve windowsech
- Kliknete na Tento pocitac, dale na disk kliknete pravym tlacitkem, vyberte Vlastnosti
- prepnete se do zalozky Nastroje
- Nyni vidite pomucky Defragmentace - spustte ji kliknutim na Defragmentovat
- Toto provedte se vsemi disky
Dalsi moznosti (a mnou doporucenou) je pres programek Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
- Program stahnete, nainstalujte (dejte fajfku pryc u yahoo toolbaru) a spustte
- Kliknete na Analyzovat
- Pokud je ve sloupci Fragmentováno vice jak 5%, doporucuji provest defragmentaci (klik na Defragmentovat)
- Postup provedte se vsemi disky
Posledni moznost je pres jednoduchy programek JKDefrag http://www.stahuj.centrum.cz/utility_a_ ... /jkdefrag/
- Vyhodou programku je, ze se neinstaluje
- Staci tedy jen stahnout dle verze vaseho OS a rozbalit
- Nasledne spustit pomoci souboru JKDefrag pripadne JKDefrag64
- Probehne analyza disku a nasledne i defragmentace

Dejte novy log z RSIT a napiste co PC

VIRY.CZ

Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek

Re: Olmarik - pro vyosek