Prosim o kontrolu logu sekani mozilly

Zpráva

swatm · #1 Příspěvek od **swatm** » 01 led 2012 18:27

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:26:18, on 1.1.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16876)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Ask.com\Updater\Updater.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\ROCCAT\Isku Keyboard\IskuMonitor.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Logitech\SetPoint II\SetpointII.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\Marek.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: 188.165.202.62 L2authd.lineage2.com
O1 - Hosts: 94.125.180.96 nprotect.lineage2.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [GBB36X Configure] C:\WINDOWS\system32\JMRaidTool.exe boot
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1029
O4 - HKLM\..\Run: [Ad-aware] "C:\Program Files\Lavasoft\Ad-aware 6\Ad-aware.exe" +c
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Documents and Settings\Marek\Dokumenty\Marek\ostatni\GamePark\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ASUSGamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [RoccatIsku] "C:\Program Files\ROCCAT\Isku Keyboard\IskuMonitor.EXE"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [ASUS SmartDoctor] C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe /start
O4 - HKCU\..\Run: [System] C:\Documents and Settings\Marek\Music\lst.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Startup: Registration Prince of Persia Warrior Within.LNK = C:\Program Files\Ubisoft\Prince of Persia Warrior Within\Support\Register\RegistrationReminder.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: SetPointII.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: WinFast(R) Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Sukoku Service - Unknown owner - C:\Documents and Settings\All Users\Data aplikací\Sukoku\sukoku119.exe

--
End of file - 12889 bytes

#2 Příspěvek od **Mc_Murphy** » 01 led 2012 18:42

Zdravím.

Přečti si pečlivě pravidla našeho fóra. Dozvíš se, mimo jiné, že pro vstupní log používáme už dlouhou dobu utilitu RSIT a ne HJT.

V nabídce Přidat nebo odebrat programy odinstaluj všechny nepotřebné toolbary! Jsou to veliká "zdržovadla" systému a v případě například Ask.com Toolbar, Conduit Engine a dalších se dá hovořit už i o havěti.
Máš tam: Google Toolbar a Ask Toolbar.

Aktualizuj MS Internet Explorer na poslední verzi. I když používáš prohlížeč Mozilla Firefox, aktualizace řeší spoustu problémů i v systému samotném.

Doporučuji odinstalovat Lavasoft Ad-Aware 6. Program má svá nejlepší léta již dávno za sebou a není schopen čelit aktuálním hrozbám.

Potom stáhni a nainstaluj Malwarebytes' Anti-Malware (zkráceně MBAM) podle návodu z tohoto topicu.

Proveď aktualizaci virové databáze.
V záložce Kontrolor zvol Úplná kontrola a zaškrtni všechny pevné disky, které máš na počítači.
Předem nic nemaž!!
MBAM mívá občas falešné detekce, proto vlož jeho log do příspěvku a počkej na posouzení!

swatm · #3 Příspěvek od **swatm** » 03 led 2012 21:23

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.60.0.1800
www.malwarebytes.org

Verze databáze: v2012.01.03.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Marek :: PC [administrátor]

Ochrana: Povolena

3.1.2012 7:44:13
mbam-log-2012-01-03 (21-20-13).txt

Typ: Úplná kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 342677
Uplynulý čas: 1 hodin, 33 minut, 6 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sukoku (Adware.Agent) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sukoku (PUP.Zwangi) -> Žádná instrukce nebyla provedena.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Žádná instrukce nebyla provedena.

Nalezené složky: 2
C:\Documents and Settings\All Users\Data aplikací\Sukoku (PUP.Zwangi) -> Žádná instrukce nebyla provedena.
C:\Program Files\Sukoku (PUP.Zwangi) -> Žádná instrukce nebyla provedena.

Nalezené soubory: 17
C:\Documents and Settings\Marek\Dokumenty\Marek\instalacky\ventrilo-2.1.4.exe (Trojan.Dropper) -> Žádná instrukce nebyla provedena.
C:\Games\medal of honor\MOHCRCK\loader.dll (Riskware.Tool.CK) -> Žádná instrukce nebyla provedena.
C:\Program Files\InstallShield Installation Information\{1998BD34-1AAB-4169-ACFF-67342E2AF9B4}\_Backup\Gothic3.exe (RiskWare.Tool.CK) -> Žádná instrukce nebyla provedena.
C:\Program Files\Sukoku\sukoku.exe (Adware.Ziniky) -> Žádná instrukce nebyla provedena.
C:\Program Files\Sukoku\uninstall.exe (Adware.Agent) -> Žádná instrukce nebyla provedena.
C:\Program Files\Electronic Arts\Battlefield Bad Company 2\rld-bbc2.exe (RiskWare.Tool.HCK) -> Žádná instrukce nebyla provedena.
C:\Program Files\Electronic Arts\Medal of Honor\Binaries\loader.dll (Riskware.Tool.CK) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{94657010-87BD-4F3C-B2FB-12EB8873F5D0}\RP830\A0194226.exe (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{94657010-87BD-4F3C-B2FB-12EB8873F5D0}\RP830\A0194228.exe (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{94657010-87BD-4F3C-B2FB-12EB8873F5D0}\RP830\A0194237.exe (Backdoor.Bot) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{94657010-87BD-4F3C-B2FB-12EB8873F5D0}\RP843\A0202073.exe (Adware.Ziniky) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{94657010-87BD-4F3C-B2FB-12EB8873F5D0}\RP785\A0155045.exe (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{94657010-87BD-4F3C-B2FB-12EB8873F5D0}\RP785\A0155047.exe (Trojan.Agent) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{94657010-87BD-4F3C-B2FB-12EB8873F5D0}\RP785\A0155059.exe (Backdoor.Bot) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{94657010-87BD-4F3C-B2FB-12EB8873F5D0}\RP785\A0155060.exe (Backdoor.Bot) -> Žádná instrukce nebyla provedena.
C:\Program Files\Sukoku\sukoku.exe (PUP.Zwangi) -> Žádná instrukce nebyla provedena.
C:\Program Files\Sukoku\uninstall.exe (PUP.Zwangi) -> Žádná instrukce nebyla provedena.

(konec)

#4 Příspěvek od **Mc_Murphy** » 04 led 2012 07:02

To je ale bordela. No jo, cracky se nevyplácí, kamaráde.

Všechny nálezy MBAMu dej smazat/opravit a pak MBAM zase odinstaluj.

Podle tohoto návodu smaž body obnovy pro svůj počítač, v těch starých máš havěť. Nový zatím nevytvářej (čili nech vytváření bodů obnovy prozatím vypnuto)!!

Udělej scan pomocí TDSS Killer.

Stáhni si TDSSKiller a ulož ho na Plochu.

Dvojklik na TDSSKiller.exe, potom kliknout na Spustit kontrolu - Start Scan.
Pokud je detekován infikovaný soubor(y), bude předvolená akce Cure, klikni na tlačítko Continue.
Pokud je detekovaný podezřelý (suspicious) soubor, bude předvolená akce Skip, klikni na Continue.
Program Tě může požádat, abys restartoval počítač pro dokončení procesu. Klikni na Reboot Now.
Jestli se restart nevyžaduje, klikni na tlačítko Report. Soubor s logem by se měl objevit. Zkopíruj ho a vlož jej sem.
Je-li vyžadován restart počítače, zpráva je k dispozici ve Tvém kořenovém adresáři (například C:\ složka) ve formě "TDSSKiller. _log.txt".

swatm · #5 Příspěvek od **swatm** » 04 led 2012 20:07

20:05:44.0984 2844 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
20:05:45.0093 2844 ============================================================
20:05:45.0093 2844 Current date / time: 2012/01/04 20:05:45.0093
20:05:45.0093 2844 SystemInfo:
20:05:45.0093 2844
20:05:45.0093 2844 OS Version: 5.1.2600 ServicePack: 3.0
20:05:45.0093 2844 Product type: Workstation
20:05:45.0093 2844 ComputerName: PC
20:05:45.0093 2844 UserName: Marek
20:05:45.0093 2844 Windows directory: C:\WINDOWS
20:05:45.0093 2844 System windows directory: C:\WINDOWS
20:05:45.0093 2844 Processor architecture: Intel x86
20:05:45.0093 2844 Number of processors: 2
20:05:45.0093 2844 Page size: 0x1000
20:05:45.0093 2844 Boot type: Normal boot
20:05:45.0093 2844 ============================================================
20:05:45.0921 2844 Initialize success
20:06:13.0968 1828 ============================================================
20:06:13.0968 1828 Scan started
20:06:13.0968 1828 Mode: Manual;
20:06:13.0968 1828 ============================================================
20:06:14.0125 1828 Aavmker4 (b6de0336f9f4b687b4ff57939f7b657a) C:\WINDOWS\system32\drivers\Aavmker4.sys
20:06:14.0125 1828 Aavmker4 - ok
20:06:14.0140 1828 Abiosdsk - ok
20:06:14.0156 1828 abp480n5 - ok
20:06:14.0171 1828 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:06:14.0171 1828 ACPI - ok
20:06:14.0218 1828 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
20:06:14.0218 1828 ACPIEC - ok
20:06:14.0234 1828 adpu160m - ok
20:06:14.0250 1828 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
20:06:14.0250 1828 aec - ok
20:06:14.0281 1828 AFD (322d0e36693d6e24a2398bee62a268cd) C:\WINDOWS\System32\drivers\afd.sys
20:06:14.0281 1828 AFD - ok
20:06:14.0281 1828 Aha154x - ok
20:06:14.0296 1828 aic78u2 - ok
20:06:14.0312 1828 aic78xx - ok
20:06:14.0343 1828 AliIde - ok
20:06:14.0437 1828 AMDPCI - ok
20:06:14.0468 1828 amsint - ok
20:06:14.0515 1828 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
20:06:14.0515 1828 Arp1394 - ok
20:06:14.0531 1828 asc - ok
20:06:14.0546 1828 asc3350p - ok
20:06:14.0562 1828 asc3550 - ok
20:06:14.0625 1828 asusgsb (d320732bcf5ff856120bd06855c66867) C:\WINDOWS\system32\drivers\asusgsb.sys
20:06:14.0625 1828 asusgsb - ok
20:06:14.0687 1828 asuskbnt (b3b881eb81013aac11594a5400ada47a) C:\WINDOWS\system32\drivers\atkkbnt.sys
20:06:14.0687 1828 asuskbnt - ok
20:06:14.0718 1828 ASUSVRC (94442e3029ff6c9f08140fe6718af4fb) C:\WINDOWS\system32\DRIVERS\AsusVRC.sys
20:06:14.0718 1828 ASUSVRC - ok
20:06:14.0781 1828 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\WINDOWS\system32\drivers\aswFsBlk.sys
20:06:14.0781 1828 aswFsBlk - ok
20:06:14.0812 1828 aswMon2 (ef0e9ad83380724bd6fbbb51d2d0f5b8) C:\WINDOWS\system32\drivers\aswMon2.sys
20:06:14.0812 1828 aswMon2 - ok
20:06:14.0828 1828 aswRdr (352d5a48ebab35a7693b048679304831) C:\WINDOWS\system32\drivers\aswRdr.sys
20:06:14.0843 1828 aswRdr - ok
20:06:14.0890 1828 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\WINDOWS\system32\drivers\aswSnx.sys
20:06:14.0890 1828 aswSnx - ok
20:06:14.0937 1828 aswSP (010012597333da1f46c3243f33f8409e) C:\WINDOWS\system32\drivers\aswSP.sys
20:06:14.0953 1828 aswSP - ok
20:06:14.0968 1828 aswTdi (f9f84364416658e9786235904d448d37) C:\WINDOWS\system32\drivers\aswTdi.sys
20:06:14.0968 1828 aswTdi - ok
20:06:15.0015 1828 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:06:15.0015 1828 AsyncMac - ok
20:06:15.0046 1828 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
20:06:15.0046 1828 atapi - ok
20:06:15.0046 1828 Atdisk - ok
20:06:15.0218 1828 ati2mtag (756a1320c96d2b4e74d22423959af431) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
20:06:15.0265 1828 ati2mtag - ok
20:06:15.0312 1828 AtiHdmiService (fac04a8e09c8d70594382656d99772a3) C:\WINDOWS\system32\drivers\AtiHdmi.sys
20:06:15.0312 1828 AtiHdmiService - ok
20:06:15.0343 1828 atksgt (f9c24d25d9ff29f894995a64812b4d85) C:\WINDOWS\system32\DRIVERS\atksgt.sys
20:06:15.0359 1828 atksgt - ok
20:06:15.0390 1828 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:06:15.0390 1828 Atmarpc - ok
20:06:15.0437 1828 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
20:06:15.0437 1828 audstub - ok
20:06:15.0484 1828 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
20:06:15.0484 1828 Beep - ok
20:06:15.0515 1828 Bridge (f934d1b230f84e1d19dd00ac5a7a83ed) C:\WINDOWS\system32\DRIVERS\bridge.sys
20:06:15.0515 1828 Bridge - ok
20:06:15.0515 1828 BridgeMP (f934d1b230f84e1d19dd00ac5a7a83ed) C:\WINDOWS\system32\DRIVERS\bridge.sys
20:06:15.0515 1828 BridgeMP - ok
20:06:15.0562 1828 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
20:06:15.0562 1828 cbidf2k - ok
20:06:15.0578 1828 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
20:06:15.0578 1828 CCDECODE - ok
20:06:15.0578 1828 cd20xrnt - ok
20:06:15.0593 1828 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
20:06:15.0593 1828 Cdaudio - ok
20:06:15.0609 1828 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
20:06:15.0609 1828 Cdfs - ok
20:06:15.0656 1828 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:06:15.0656 1828 Cdrom - ok
20:06:15.0671 1828 Changer - ok
20:06:15.0687 1828 CmdIde - ok
20:06:15.0703 1828 Cpqarray - ok
20:06:15.0703 1828 dac2w2k - ok
20:06:15.0734 1828 dac960nt - ok
20:06:15.0750 1828 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
20:06:15.0750 1828 Disk - ok
20:06:15.0812 1828 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
20:06:15.0812 1828 dmboot - ok
20:06:15.0828 1828 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
20:06:15.0828 1828 dmio - ok
20:06:15.0843 1828 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
20:06:15.0843 1828 dmload - ok
20:06:15.0890 1828 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
20:06:15.0890 1828 DMusic - ok
20:06:15.0906 1828 dpti2o - ok
20:06:15.0921 1828 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
20:06:15.0921 1828 drmkaud - ok
20:06:15.0968 1828 dtscsi (6461e57bb51a848aae26f52427b7cf9e) C:\WINDOWS\System32\Drivers\dtscsi.sys
20:06:15.0968 1828 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\dtscsi.sys. md5: 6461e57bb51a848aae26f52427b7cf9e
20:06:15.0968 1828 dtscsi ( LockedFile.Multi.Generic ) - warning
20:06:15.0968 1828 dtscsi - detected LockedFile.Multi.Generic (1)
20:06:16.0000 1828 EIO_XP (88b5b982d702cd81874731cecf6ba4db) C:\WINDOWS\system32\drivers\EIO_XP.sys
20:06:16.0000 1828 EIO_XP - ok
20:06:16.0046 1828 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
20:06:16.0062 1828 Fastfat - ok
20:06:16.0109 1828 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
20:06:16.0109 1828 Fdc - ok
20:06:16.0109 1828 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
20:06:16.0109 1828 Fips - ok
20:06:16.0140 1828 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
20:06:16.0140 1828 Flpydisk - ok
20:06:16.0171 1828 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
20:06:16.0171 1828 FltMgr - ok
20:06:16.0218 1828 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\WINDOWS\system32\FsUsbExDisk.SYS
20:06:16.0218 1828 FsUsbExDisk - ok
20:06:16.0250 1828 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:06:16.0250 1828 Fs_Rec - ok
20:06:16.0265 1828 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:06:16.0265 1828 Ftdisk - ok
20:06:16.0343 1828 GarenaPEngine - ok
20:06:16.0390 1828 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:06:16.0390 1828 Gpc - ok
20:06:16.0421 1828 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
20:06:16.0421 1828 hamachi - ok
20:06:16.0468 1828 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:06:16.0468 1828 HDAudBus - ok
20:06:16.0484 1828 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:06:16.0484 1828 hidusb - ok
20:06:16.0500 1828 hpn - ok
20:06:16.0531 1828 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
20:06:16.0531 1828 HTTP - ok
20:06:16.0546 1828 i2omgmt - ok
20:06:16.0562 1828 i2omp - ok
20:06:16.0578 1828 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:06:16.0578 1828 i8042prt - ok
20:06:16.0593 1828 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
20:06:16.0593 1828 Imapi - ok
20:06:16.0593 1828 ini910u - ok
20:06:16.0750 1828 IntcAzAudAddService (6197403d9e9027d55052bb16ccf33cca) C:\WINDOWS\system32\drivers\RtkHDAud.sys
20:06:16.0781 1828 IntcAzAudAddService - ok
20:06:16.0781 1828 IntelIde - ok
20:06:16.0812 1828 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
20:06:16.0812 1828 intelppm - ok
20:06:16.0843 1828 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
20:06:16.0843 1828 Ip6Fw - ok
20:06:16.0859 1828 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:06:16.0875 1828 IpFilterDriver - ok
20:06:16.0875 1828 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:06:16.0875 1828 IpInIp - ok
20:06:16.0890 1828 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:06:16.0890 1828 IpNat - ok
20:06:16.0921 1828 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:06:16.0921 1828 IPSec - ok
20:06:16.0937 1828 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
20:06:16.0937 1828 IRENUM - ok
20:06:16.0953 1828 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:06:16.0953 1828 isapnp - ok
20:06:16.0984 1828 JGOGO (c995c0e8b4503fac38793bb0236ad246) C:\WINDOWS\system32\DRIVERS\JGOGO.sys
20:06:16.0984 1828 JGOGO - ok
20:06:17.0000 1828 JRAID (06b9c22897ebdc6aba993c77f173d882) C:\WINDOWS\system32\DRIVERS\jraid.sys
20:06:17.0000 1828 JRAID - ok
20:06:17.0046 1828 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:06:17.0046 1828 Kbdclass - ok
20:06:17.0093 1828 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:06:17.0093 1828 kbdhid - ok
20:06:17.0125 1828 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
20:06:17.0125 1828 kmixer - ok
20:06:17.0140 1828 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
20:06:17.0156 1828 KSecDD - ok
20:06:17.0171 1828 L8042Kbd (0c6e346cde730cf1356dd69ad6e9bc42) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
20:06:17.0171 1828 L8042Kbd - ok
20:06:17.0203 1828 L8042mou (8a5993705add14352c9a279fa8338334) C:\WINDOWS\system32\DRIVERS\L8042mou.Sys
20:06:17.0218 1828 L8042mou - ok
20:06:17.0250 1828 LBeepKE (9ffd1cf2a782f2560e78eec4b8b8689e) C:\WINDOWS\system32\Drivers\LBeepKE.sys
20:06:17.0250 1828 LBeepKE - ok
20:06:17.0265 1828 lbrtfdc - ok
20:06:17.0328 1828 LHidFilt (7f9c7b28cf1c859e1c42619eea946dc8) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
20:06:17.0328 1828 LHidFilt - ok
20:06:17.0375 1828 lirsgt (8ccf9ed46d52af1375875f74a91ffacf) C:\WINDOWS\system32\DRIVERS\lirsgt.sys
20:06:17.0375 1828 lirsgt - ok
20:06:17.0390 1828 LMouFilt (ab33792a87285344f43b5ce23421bab0) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
20:06:17.0390 1828 LMouFilt - ok
20:06:17.0421 1828 LMouKE (9837e55673818ecd8febb47f7f77521a) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
20:06:17.0437 1828 LMouKE - ok
20:06:17.0484 1828 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys
20:06:17.0484 1828 MBAMProtector - ok
20:06:17.0531 1828 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
20:06:17.0531 1828 mnmdd - ok
20:06:17.0578 1828 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
20:06:17.0578 1828 Modem - ok
20:06:17.0578 1828 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:06:17.0593 1828 Mouclass - ok
20:06:17.0609 1828 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
20:06:17.0609 1828 mouhid - ok
20:06:17.0656 1828 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
20:06:17.0656 1828 MountMgr - ok
20:06:17.0656 1828 mraid35x - ok
20:06:17.0687 1828 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:06:17.0687 1828 MRxDAV - ok
20:06:17.0703 1828 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:06:17.0703 1828 MRxSmb - ok
20:06:17.0718 1828 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
20:06:17.0718 1828 Msfs - ok
20:06:17.0765 1828 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:06:17.0765 1828 MSKSSRV - ok
20:06:17.0781 1828 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:06:17.0796 1828 MSPCLOCK - ok
20:06:17.0796 1828 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
20:06:17.0796 1828 MSPQM - ok
20:06:17.0828 1828 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:06:17.0828 1828 mssmbios - ok
20:06:17.0843 1828 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
20:06:17.0843 1828 MSTEE - ok
20:06:17.0843 1828 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
20:06:17.0859 1828 Mup - ok
20:06:17.0890 1828 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
20:06:17.0890 1828 NABTSFEC - ok
20:06:17.0937 1828 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
20:06:17.0937 1828 NDIS - ok
20:06:17.0953 1828 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
20:06:17.0953 1828 NdisIP - ok
20:06:17.0968 1828 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:06:17.0984 1828 NdisTapi - ok
20:06:17.0984 1828 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:06:18.0000 1828 Ndisuio - ok
20:06:18.0031 1828 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:06:18.0031 1828 NdisWan - ok
20:06:18.0062 1828 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
20:06:18.0062 1828 NDProxy - ok
20:06:18.0078 1828 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
20:06:18.0078 1828 NetBIOS - ok
20:06:18.0125 1828 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
20:06:18.0125 1828 NetBT - ok
20:06:18.0140 1828 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
20:06:18.0140 1828 NIC1394 - ok
20:06:18.0171 1828 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
20:06:18.0171 1828 Npfs - ok
20:06:18.0296 1828 npkcrypt (fd9666a8eb88e713c18e2e90f6e746d0) C:\Program Files\Lineage II\100KaAmbrosiaSystem\npkcrypt.sys
20:06:18.0312 1828 npkcrypt - ok
20:06:18.0328 1828 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
20:06:18.0343 1828 Ntfs - ok
20:06:18.0375 1828 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
20:06:18.0375 1828 Null - ok
20:06:18.0468 1828 nv (34da533ef41bafa187a38a78146fbe49) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
20:06:18.0500 1828 nv - ok
20:06:18.0531 1828 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:06:18.0531 1828 NwlnkFlt - ok
20:06:18.0531 1828 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:06:18.0531 1828 NwlnkFwd - ok
20:06:18.0562 1828 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:06:18.0562 1828 ohci1394 - ok
20:06:18.0609 1828 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
20:06:18.0609 1828 Parport - ok
20:06:18.0625 1828 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
20:06:18.0625 1828 PartMgr - ok
20:06:18.0656 1828 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
20:06:18.0656 1828 ParVdm - ok
20:06:18.0703 1828 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
20:06:18.0703 1828 pccsmcfd - ok
20:06:18.0734 1828 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
20:06:18.0734 1828 PCI - ok
20:06:18.0765 1828 PCIDump - ok
20:06:18.0781 1828 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
20:06:18.0781 1828 PCIIde - ok
20:06:18.0828 1828 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
20:06:18.0828 1828 Pcmcia - ok
20:06:18.0828 1828 PDCOMP - ok
20:06:18.0843 1828 PDFRAME - ok
20:06:18.0843 1828 PDRELI - ok
20:06:18.0859 1828 PDRFRAME - ok
20:06:18.0890 1828 perc2 - ok
20:06:18.0906 1828 perc2hib - ok
20:06:18.0953 1828 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:06:18.0953 1828 PptpMiniport - ok
20:06:18.0968 1828 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
20:06:18.0968 1828 PSched - ok
20:06:19.0015 1828 PsSdk40 (dc6a43cdecc16cbd1ab8f26dccf49703) C:\WINDOWS\system32\Drivers\pssdk40.sys
20:06:19.0015 1828 PsSdk40 - ok
20:06:19.0046 1828 PsSdkLBF (69b25e6601c59115490def40fce53555) C:\WINDOWS\system32\Drivers\pssdklbf.sys
20:06:19.0046 1828 PsSdkLBF - ok
20:06:19.0062 1828 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:06:19.0078 1828 Ptilink - ok
20:06:19.0109 1828 ql1080 - ok
20:06:19.0140 1828 Ql10wnt - ok
20:06:19.0156 1828 ql12160 - ok
20:06:19.0171 1828 ql1240 - ok
20:06:19.0187 1828 ql1280 - ok
20:06:19.0203 1828 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:06:19.0203 1828 RasAcd - ok
20:06:19.0218 1828 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:06:19.0218 1828 Rasl2tp - ok
20:06:19.0234 1828 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:06:19.0234 1828 RasPppoe - ok
20:06:19.0234 1828 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
20:06:19.0250 1828 Raspti - ok
20:06:19.0265 1828 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:06:19.0281 1828 Rdbss - ok
20:06:19.0296 1828 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:06:19.0296 1828 RDPCDD - ok
20:06:19.0312 1828 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:06:19.0312 1828 rdpdr - ok
20:06:19.0343 1828 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
20:06:19.0343 1828 RDPWD - ok
20:06:19.0390 1828 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
20:06:19.0390 1828 redbook - ok
20:06:19.0421 1828 RTL8023xp (7f0413bdd7d53eb4c7a371e7f6f84df1) C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys
20:06:19.0437 1828 RTL8023xp - ok
20:06:19.0453 1828 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
20:06:19.0453 1828 rtl8139 - ok
20:06:19.0484 1828 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:06:19.0484 1828 Secdrv - ok
20:06:19.0500 1828 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
20:06:19.0500 1828 serenum - ok
20:06:19.0515 1828 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
20:06:19.0515 1828 Serial - ok
20:06:19.0531 1828 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
20:06:19.0546 1828 Sfloppy - ok
20:06:19.0562 1828 Simbad - ok
20:06:19.0593 1828 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
20:06:19.0593 1828 SLIP - ok
20:06:19.0593 1828 Sparrow - ok
20:06:19.0625 1828 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
20:06:19.0625 1828 splitter - ok
20:06:19.0671 1828 sptd (82b4720fdc56c2095fe138c0133eba71) C:\WINDOWS\system32\Drivers\sptd.sys
20:06:19.0671 1828 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 82b4720fdc56c2095fe138c0133eba71
20:06:19.0671 1828 sptd ( LockedFile.Multi.Generic ) - warning
20:06:19.0671 1828 sptd - detected LockedFile.Multi.Generic (1)
20:06:19.0687 1828 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
20:06:19.0687 1828 sr - ok
20:06:19.0718 1828 Srv (5252605079810904e31c332e241cd59b) C:\WINDOWS\system32\DRIVERS\srv.sys
20:06:19.0718 1828 Srv - ok
20:06:19.0750 1828 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
20:06:19.0750 1828 ss_bbus - ok
20:06:19.0781 1828 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
20:06:19.0796 1828 ss_bmdfl - ok
20:06:19.0812 1828 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
20:06:19.0812 1828 ss_bmdm - ok
20:06:19.0859 1828 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
20:06:19.0859 1828 streamip - ok
20:06:19.0890 1828 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
20:06:19.0890 1828 swenum - ok
20:06:19.0921 1828 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
20:06:19.0921 1828 swmidi - ok
20:06:19.0953 1828 symc810 - ok
20:06:19.0968 1828 symc8xx - ok
20:06:19.0984 1828 sym_hi - ok
20:06:20.0000 1828 sym_u3 - ok
20:06:20.0031 1828 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
20:06:20.0031 1828 sysaudio - ok
20:06:20.0062 1828 Tcpip (93ea8d04ec73a85db02eb8805988f733) C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:06:20.0062 1828 Tcpip - ok
20:06:20.0078 1828 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
20:06:20.0078 1828 TDPIPE - ok
20:06:20.0109 1828 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
20:06:20.0125 1828 TDTCP - ok
20:06:20.0140 1828 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
20:06:20.0140 1828 TermDD - ok
20:06:20.0156 1828 TosIde - ok
20:06:20.0187 1828 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
20:06:20.0187 1828 Udfs - ok
20:06:20.0187 1828 ultra - ok
20:06:20.0234 1828 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
20:06:20.0234 1828 Update - ok
20:06:20.0250 1828 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:06:20.0250 1828 usbccgp - ok
20:06:20.0265 1828 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:06:20.0265 1828 usbehci - ok
20:06:20.0281 1828 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:06:20.0281 1828 usbhub - ok
20:06:20.0296 1828 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
20:06:20.0296 1828 usbprint - ok
20:06:20.0312 1828 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:06:20.0312 1828 USBSTOR - ok
20:06:20.0328 1828 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:06:20.0328 1828 usbuhci - ok
20:06:20.0359 1828 vaxscsi (92cebc2bc7be2c8d49391b365569f306) C:\WINDOWS\System32\Drivers\vaxscsi.sys
20:06:20.0359 1828 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\vaxscsi.sys. md5: 92cebc2bc7be2c8d49391b365569f306
20:06:20.0359 1828 vaxscsi ( LockedFile.Multi.Generic ) - warning
20:06:20.0359 1828 vaxscsi - detected LockedFile.Multi.Generic (1)
20:06:20.0375 1828 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
20:06:20.0375 1828 VgaSave - ok
20:06:20.0390 1828 ViaIde - ok
20:06:20.0421 1828 Video3D (8643da4a6c83da6c10fcab1e5ab6632d) C:\WINDOWS\system32\Drivers\Video3D32.sys
20:06:20.0421 1828 Video3D - ok
20:06:20.0437 1828 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
20:06:20.0437 1828 VolSnap - ok
20:06:20.0453 1828 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:06:20.0453 1828 Wanarp - ok
20:06:20.0500 1828 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
20:06:20.0500 1828 Wdf01000 - ok
20:06:20.0515 1828 WDICA - ok
20:06:20.0531 1828 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
20:06:20.0546 1828 wdmaud - ok
20:06:20.0593 1828 WpdUsb (1385e5aa9c9821790d33a9563b8d2dd0) C:\WINDOWS\system32\Drivers\wpdusb.sys
20:06:20.0593 1828 WpdUsb - ok
20:06:20.0625 1828 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
20:06:20.0625 1828 WSTCODEC - ok
20:06:20.0671 1828 yukonwxp (936a0e2d44adf93ce0df8e92aab29c6e) C:\WINDOWS\system32\DRIVERS\yk51x86.sys
20:06:20.0687 1828 yukonwxp - ok
20:06:20.0703 1828 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
20:06:20.0828 1828 \Device\Harddisk0\DR0 - ok
20:06:20.0828 1828 Boot (0x1200) (7e775d52e3480e55a882728f31e43854) \Device\Harddisk0\DR0\Partition0
20:06:20.0843 1828 \Device\Harddisk0\DR0\Partition0 - ok
20:06:20.0843 1828 ============================================================
20:06:20.0843 1828 Scan finished
20:06:20.0843 1828 ============================================================
20:06:20.0859 4008 Detected object count: 3
20:06:20.0859 4008 Actual detected object count: 3
20:06:36.0609 4008 dtscsi ( LockedFile.Multi.Generic ) - skipped by user
20:06:36.0609 4008 dtscsi ( LockedFile.Multi.Generic ) - User select action: Skip
20:06:36.0609 4008 sptd ( LockedFile.Multi.Generic ) - skipped by user
20:06:36.0609 4008 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
20:06:36.0609 4008 vaxscsi ( LockedFile.Multi.Generic ) - skipped by user
20:06:36.0609 4008 vaxscsi ( LockedFile.Multi.Generic ) - User select action: Skip

#6 Příspěvek od **Mc_Murphy** » 05 led 2012 07:37

Log TDSS je naštěstí čistý.

Provedl jsi vše, jak jsem Ti psal?

Jestli ano, tak fixni v HJT níže uvedené položky.
"Fixnout" znamená, že spustíš HJT, zvolíš možnost [Do a system scan only] a zaškrtneš čtvereček vlevo od mnou vypsaných položek. Poté klikneš na [Fix checked] a odsouhlasíš [ANO].
HJT najdeš zde: C:\Program Files\trend micro\Marek.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1029
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Documents and Settings\Marek\Dokumenty\Marek\ostatni\GamePark\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [System] C:\Documents and Settings\Marek\Music\lst.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Registration Prince of Persia Warrior Within.LNK = C:\Program Files\Ubisoft\Prince of Persia Warrior Within\Support\Register\RegistrationReminder.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe

Potom stáhni OTL z tohoto odkazu a ulož jej na Plochu.

Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
Zaškrtni okénko Pro všechny uživatele.
Zaškrtni okénko Kontrola na havěť "LOP".
Zaškrtni okénko Kontrola na havěť "Purity".
Stáři souborů změň z 30 dnů na 7 dnů!!
Do spodního okénka Vlastní skenování/opravy vlož tento script (pouze zelená písmenka v bílém poli!):

Kód: Vybrat vše

CREATERESTOREPOINT
netsvc
drivers32
savembr:0
/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
%userprofile%\Plocha\*.*
%userprofile%\Desktop\*.*
%ALLUSERSPROFILE%\Plocha\*.*
%ALLUSERSPROFILE%\Desktop\*.*
*crack* /s
*keygen* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*TemDono* /s
*AutoKMS* /s
*KMSEmulator* /s
*activator* /s
*serial* /s
*w7lxe* /s
*AutoRearm* /s
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

Klikni na tlačítko [Prohledat].
Po dokončení skenu se objeví logy OTL.txt a Extras.txt, oba mi sem vlož.
Logy se nevejdou do jednoho, rozděl je tedy prosím do více příspěvků.

swatm · #7 Příspěvek od **swatm** » 05 led 2012 11:18

OTL Extras logfile created on: 5.1.2012 10:47:41 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Marek\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,50 Gb Total Physical Memory | 2,64 Gb Available Physical Memory | 75,36% Memory free
5,34 Gb Paging File | 4,60 Gb Available in Paging File | 86,13% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298,08 Gb Total Space | 32,71 Gb Free Space | 10,97% Space Free | Partition Type: NTFS
Drive E: | 1,90 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 2,66 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 7,12 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 8,10 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive I: | 6,35 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: PC | User Name: Marek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-57989841-2049760794-839522115-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.2\ICQ.exe" = C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2 -- (ICQ, LLC.)
"C:\Program Files\ICQ7.2\aolload.exe" = C:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Valve\hl.exe" = C:\Program Files\Valve\hl.exe:*:Disabled:Half-Life Launcher -- (Valve)
"C:\Program Files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe:*:Enabled:Pro Evolution Soccer 2009
"C:\Program Files\Hamachi\hamachi.exe" = C:\Program Files\Hamachi\hamachi.exe:*:Disabled:Hamachi Client
"C:\Program Files\Sports Interactive\Football Manager 2009\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2009\fm.exe:*:Enabled:Football Manager 2009 -- (Sports Interactive)
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Disabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\Garena\Garena.exe" = C:\Program Files\Garena\Garena.exe:*:Disabled:Garena
"C:\Games\hry\empires2.exe" = C:\Games\hry\empires2.exe:*:Enabled:Age of Empires II
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Disabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Program Files\SopCast\SopCast.exe" = C:\Program Files\SopCast\SopCast.exe:*:Disabled:SopCast Main Application -- (www.sopcast.com)
"C:\Program Files\SopCast\adv\SopAdver.exe" = C:\Program Files\SopCast\adv\SopAdver.exe:*:Disabled:SopCast Adver -- (www.sopcast.com)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Games\empire t war\SW EaW and Foc\Star Wars Empire at War\GameData\sweaw.exe" = C:\Games\empire t war\SW EaW and Foc\Star Wars Empire at War\GameData\sweaw.exe:*:Enabled:Petroglyph
"C:\Games\gears of war\Pro Evolution Soccer 2010 Pc Patch + Crack\Pro Evolution Soccer 2010 Pc Patch + Crack.exe" = C:\Games\gears of war\Pro Evolution Soccer 2010 Pc Patch + Crack\Pro Evolution Soccer 2010 Pc Patch + Crack.exe:*:Enabled:winlog
"C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010
"C:\Program Files\TeamViewer\Version5\TeamViewer.exe" = C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)
"C:\Games\Avatar\James Cameron's Avatar The Game (Lentiny)\AVATAR-THE GAME\bin\Avatar.exe" = C:\Games\Avatar\James Cameron's Avatar The Game (Lentiny)\AVATAR-THE GAME\bin\Avatar.exe:*:Enabled:James Cameron's Avatar: The Game
"C:\Program Files\Sports Interactive\Football Manager 2008\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2008\fm.exe:*:Disabled:Football Manager 2008
"C:\Program Files\Ubisoft\Assassin's Creed II\AssasinsCreedII-Razor1911-crackGame.exe" = C:\Program Files\Ubisoft\Assassin's Creed II\AssasinsCreedII-Razor1911-crackGame.exe:*:Enabled:AssasinsCreedII-Razor1911-crackGame
"C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe" = C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2
"C:\Program Files\Electronic Arts\Command & Conquer 4 Tiberian Twilight\Data\CNC4SERVER.exe" = C:\Program Files\Electronic Arts\Command & Conquer 4 Tiberian Twilight\Data\CNC4SERVER.exe:*:Enabled:CNC4SERVER
"C:\Program Files\Electronic Arts\Command & Conquer 4 Tiberian Twilight\Data\CNC4.exe" = C:\Program Files\Electronic Arts\Command & Conquer 4 Tiberian Twilight\Data\CNC4.exe:*:Enabled:Command & Conquer™ 4
"C:\Games\assassin\Assassins Creed 2 crack\Emulator AC2\server.exe" = C:\Games\assassin\Assassins Creed 2 crack\Emulator AC2\server.exe:*:Enabled:server
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\left\Left.4.Dead.2-THEPiRATEGAY\left4dead2.exe" = C:\Program Files\left\Left.4.Dead.2-THEPiRATEGAY\left4dead2.exe:*:Enabled:left4dead2
"C:\Program Files\Electronic Arts\Command & Conquer 4 Tiberian Twilight\Data\CNC4.game" = C:\Program Files\Electronic Arts\Command & Conquer 4 Tiberian Twilight\Data\CNC4.game:*:Enabled:Command & Conquer™ 4
"C:\Program Files\Electronic Arts\Command & Conquer 4 Tiberian Twilight\CNC4SERVER.exe" = C:\Program Files\Electronic Arts\Command & Conquer 4 Tiberian Twilight\CNC4SERVER.exe:*:Disabled:CNC4SERVER
"C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011-100.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011-100.exe:*:Enabled:Pro Evolution Soccer 2011 -- (Konami Digital Entertainment Co., Ltd.)
"C:\Program Files\ICQ7.2\ICQ.exe" = C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2 -- (ICQ, LLC.)
"C:\Program Files\ICQ7.2\aolload.exe" = C:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
"J:\l2c_6.2_pro\36k.exe" = J:\l2c_6.2_pro\36k.exe:*:Enabled:36k
"J:\l2c_6.2_pro\38k.exe" = J:\l2c_6.2_pro\38k.exe:*:Enabled:38k
"J:\l2c_6.2_pro\39k.exe" = J:\l2c_6.2_pro\39k.exe:*:Enabled:39k
"C:\Program Files\Lineage II\l2c_6.2_pro\6Dk.exe" = C:\Program Files\Lineage II\l2c_6.2_pro\6Dk.exe:*:Enabled:6Dk
"C:\Program Files\Lineage II\l2c_6.2_pro\5Ek.exe" = C:\Program Files\Lineage II\l2c_6.2_pro\5Ek.exe:*:Enabled:5Ek
"C:\Program Files\Lineage II\l2c_6.2_pro\Bk.exe" = C:\Program Files\Lineage II\l2c_6.2_pro\Bk.exe:*:Enabled:Bk
"C:\Program Files\Lineage II\l2c_6.2_pro\3k.exe" = C:\Program Files\Lineage II\l2c_6.2_pro\3k.exe:*:Enabled:3k
"C:\Program Files\Lineage II\l2c_6.2_pro\11k.exe" = C:\Program Files\Lineage II\l2c_6.2_pro\11k.exe:*:Enabled:11k
"C:\Program Files\Lineage II\l2c_6.2_pro\37k.exe" = C:\Program Files\Lineage II\l2c_6.2_pro\37k.exe:*:Enabled:37k
"C:\Program Files\Lineage II\l2c_6.2_pro\29k.exe" = C:\Program Files\Lineage II\l2c_6.2_pro\29k.exe:*:Enabled:29k
"C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe:*:Enabled:Football Manager 2011 -- (Sports Interactive)
"C:\Program Files\Lineage II\l2c_6.2_pro\19k.exe" = C:\Program Files\Lineage II\l2c_6.2_pro\19k.exe:*:Enabled:19k -- ()
"C:\Program Files\Activision\Call of Duty - Black Ops\BlackOps.exe" = C:\Program Files\Activision\Call of Duty - Black Ops\BlackOps.exe:*:Enabled:BlackOps
"C:\Games\DoWar2R\DOW2.exe" = C:\Games\DoWar2R\DOW2.exe:*:Enabled:Dawn of War II
"C:\Program Files\2K Sports\Major League Baseball 2K11\mlb2k11.exe" = C:\Program Files\2K Sports\Major League Baseball 2K11\mlb2k11.exe:*:Enabled:Major League Baseball 2K11
"C:\Program Files\Electronic Arts\Crytek\Crysis 2\bin32\Crysis2.exe" = C:\Program Files\Electronic Arts\Crytek\Crysis 2\bin32\Crysis2.exe:*:Enabled:Crysis2
"C:\Program Files\The Witcher 2\bin\witcher2.exe" = C:\Program Files\The Witcher 2\bin\witcher2.exe:*:Enabled:The Witcher 2: Assasins of Kings
"C:\Program Files\Codemasters\DiRT 3\dirt3_game.exe" = C:\Program Files\Codemasters\DiRT 3\dirt3_game.exe:*:Enabled:DiRT 3
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam
"C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012 -- (Konami Digital Entertainment Co., Ltd.)
"C:\Program Files\Sports Interactive\Football Manager 2010\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2010\fm.exe:*:Disabled:Football Manager 2010
"C:\Program Files\Firefly Studios\Stronghold 3\bin\win32_release\Stronghold3.exe" = C:\Program Files\Firefly Studios\Stronghold 3\bin\win32_release\Stronghold3.exe:*:Disabled:Stronghold3
"C:\Program Files\SEGA\Football Manager 2012\fm.exe" = C:\Program Files\SEGA\Football Manager 2012\fm.exe:*:Enabled:Football Manager 2012 12.0.2f230123 -- (Sports Interactive)
"C:\Program Files\Ubisoft\Assassin's Creed Brotherhood\ACBSP.exe" = C:\Program Files\Ubisoft\Assassin's Creed Brotherhood\ACBSP.exe:*:Enabled:Assassin's Creed Brotherhood -- ()
"C:\Program Files\Ubisoft\Assassin's Creed Brotherhood\ACBMP.exe" = C:\Program Files\Ubisoft\Assassin's Creed Brotherhood\ACBMP.exe:*:Enabled:Assassin's Creed Brotherhood Multiplayer -- ()
"C:\Program Files\Ubisoft\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe" = C:\Program Files\Ubisoft\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe:*:Enabled:Assassin's Creed Brotherhood Update -- ()
"C:\Program Files\Ubisoft\Assassin's Creed Brotherhood\UPlayBrowser.exe" = C:\Program Files\Ubisoft\Assassin's Creed Brotherhood\UPlayBrowser.exe:*:Enabled:Assassin's Creed Brotherhood Uplay -- (Ubisoft Entertainment)
"C:\Program Files\Ubisoft\Assassin's Creed Revelations\ACRMP.exe" = C:\Program Files\Ubisoft\Assassin's Creed Revelations\ACRMP.exe:*:Enabled:Assassin's Creed Revelations Multiplayer
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- ()
"C:\ACRV\ACRSP.exe" = C:\ACRV\ACRSP.exe:*:Enabled:Assassin's Creed Revelations -- ()
"C:\ACRV\ACRMP.exe" = C:\ACRV\ACRMP.exe:*:Enabled:Assassin's Creed Revelations Multiplayer -- ()
"C:\ACRV\AssassinsCreedRevelations.exe" = C:\ACRV\AssassinsCreedRevelations.exe:*:Enabled:Assassin's Creed Revelations Update -- (Ubisoft)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{1148E85C-E1AF-48E0-A29C-68DACE07E054}" = Pro Evolution Soccer 2011
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4300" = Canon iP4300
"{12453E04-9738-4D16-8408-D726532C2C69}" = ASUS VGA Driver
"{19A492A0-888F-44A0-9B21-D91700763F62}" = Catalyst Control Center - Branding
"{1BA7B068-4719-42A3-B553-D4ED97434F92}" = ASUS Utilities
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{23CA9123-B1AA-C4B6-6997-7756BBAEC461}" = AMD Catalyst Install Manager
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 30
"{2792F12C-3515-4D69-8083-B557AF35F06F}" = LightScribe 1.4.89.1
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2D0E6446-7F74-99B8-0D9E-C7FC263A4D8C}" = Catalyst Control Center Graphics Full New
"{2DD388FF-6422-43C9-86A1-C7A99C83E946}" = ASUS nVidia Driver
"{2E9EED4C-F64A-574E-88EF-00C50F341C1D}" = Catalyst Control Center Graphics Full Existing
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{315ACD04-BCEB-478B-9B1D-5431D0E6CB11}" = ASUS Gamer OSD
"{33A22B2D-55BA-4508-B767-BF2E9C21A73F}" = Assassin's Creed Revelations
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{365851B3-687E-9811-F9E7-CC5811325CA2}" = CCC Help Dutch
"{37ACF122-466F-6019-5F1F-7A483CA0A7BD}" = CCC Help Korean
"{37F38C3D-D76A-C49C-57E5-58FF2BE0BAF8}" = Catalyst Control Center Graphics Light
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = Gigabyte Raid Configurer
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = Logitech Registration
"{3F0B983A-D405-9463-1116-11A251DBA4E5}" = Catalyst Control Center
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{40549789-1DE0-5C28-1BCE-5067B00A525B}" = Catalyst Control Center Core Implementation
"{415030B8-3E8B-462A-8C03-41D95AA3AB3B}" = Medal of Honor (TM)
"{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"{45BC50CF-83D9-FFA4-0D12-3387DCDB0966}" = CCC Help Norwegian
"{4781A252-7605-1E5C-BF89-D49110D71095}" = Skins
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}" = ROCCAT Isku Keyboard Driver
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{54699D7E-6710-4318-A488-7F8BF82BAB59}" = Testy Autoškola
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{5868FE42-6F75-8D10-0609-F9CAB1237BA2}" = CCC Help Japanese
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{6098A98F-ECEA-97D6-1DFF-3F14750F2B8D}" = CCC Help Hungarian
"{65C2F9DC-2982-A3A0-101F-1724B562B523}" = CCC Help Swedish
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{765443B7-555F-4E8C-9C96-A52409AE4E4A}" = Utility
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{783F0E51-D7A8-1919-95D5-18858C65FDFD}" = CCC Help Russian
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo
"{7A529246-912F-4C40-A82A-E608DB702FD7}" = ASUS VideoSecurity Online
"{7E215703-68F4-9D2F-53F2-E15E1F80B5BD}" = CCC Help Danish
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{809D7E6D-915D-4EAD-821F-E13D93F37161}" = ASUS Smart Doctor
"{824BADF8-9A1B-4D07-8817-8DDDC8543F23}" = OpenOffice.org 3.1
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{866AF839-D5D8-401C-A039-064CD4CB681C}" = ATI AVIVO Codecs
"{86BC7FBA-1813-95F4-9873-F5BF967B379D}" = CCC Help Finnish
"{88655AFC-B4B0-9DB5-FF64-3848600EF8DB}" = CCC Help English
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8BBB5E4C-3F5E-4C07-BFBE-33B34600783A}" = LogMeIn Hamachi
"{8E536C2F-EAAA-EEE9-B3CF-BFEF76603187}" = CCC Help Czech
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{94F00131-D6ED-FFA5-5F43-256A2C7B8649}" = Catalyst Control Center Graphics Previews Common
"{94FB906A-CF42-4128-A509-D353026A607E}" = REALTEK Gigabit and Fast Ethernet NIC Driver
"{96A628B7-93D6-46CC-9E74-02F7D2E21E96}" = Major League Baseball 2K11
"{9862B19F-4CAD-4EED-920F-2F378D84393F}" = ATI Parental Control & Encoder
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}" = Counter-Strike 1.6
"{9EF7D56A-9615-ED5E-1DF5-014124FB008B}" = CCC Help Polish
"{9F67B065-3102-CA82-20AF-384697A2F190}" = Catalyst Control Center Localization All
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A2C3A640-2B29-4772-BC76-AA5989FFB532}" = SPMT
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A4842D98-24BE-67EF-8D2E-DC824B4A2A81}" = CCC Help Thai
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A75E2DA1-21C2-19FC-80E3-BD40A461A7D6}" = Catalyst Control Center InstallProxy
"{A961C6FD-C583-45F6-A0A4-5E4376C29E41}" = Catalyst Control Center - Branding
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1029-7B44-A70500000002}" = Adobe Reader 7.0.5 - Czech
"{AE0E8110-BA55-FC58-D1F2-945901C19A09}" = ccc-core-static
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B93EEE50-9C8F-45DF-95E4-3D85A6E242F3}" = DarksidersInstaller
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BE4BA698-8533-4F77-9559-C7F3F78C0B05}" = Assassin's Creed Brotherhood
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C56A206F-11CD-68EA-5109-28303CDA7F4E}" = CCC Help Chinese Traditional
"{C64A684A-9533-3FA3-B3A6-E72825DB56D6}" = ccc-utility
"{CB200E2A-8DA1-6FE1-383B-FA8C1965BF33}" = ccc-core-preinstall
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D066C0E0-A915-11D5-B078-00C0F6A04C3E}" =
"{D070C3A3-BF5D-6DC5-FC32-6A1170C34564}" = CCC Help Spanish
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D237F97C-61DE-B298-1B1E-1FC4EBE82DB3}" = CCC Help French
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.8 Game
"{D3120436-1358-4253-9EB2-257FFE8CE1D9}" = Logitech SetPoint 5.20
"{D58A075E-BB60-00B6-3582-6A8473DB280C}" = CCC Help German
"{D962A063-CFE2-9C78-621F-8BC35A56BE1A}" = CCC Help Chinese Standard
"{D97E19F3-C433-3323-0C84-1774BFE9B93E}" = ccc-utility
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E3960AA4-E7E6-3539-EDDB-D93578D3C9FC}" = CCC Help Portuguese
"{E737A098-F161-4B6F-AF22-86AAE34F6FBD}" = Pro Evolution Soccer 2012
"{ECF9A51A-6B90-5F92-83AC-D88E05824F0A}" = CCC Help Turkish
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F69FD33C-8815-46BF-9134-A643DE68F3C0}" = WinFast(R) Display Driver
"{F8D97C6A-A992-73B7-E866-1CA035DD6B09}" = CCC Help Greek
"{FBE2D000-8DCE-CC6D-17B5-9F55C43D3BCE}" = CCC Help English
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FF79343E-069F-D975-69DE-40F6B12ED58D}" = CCC Help Italian
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Balíček ovladače systému Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Balíček ovladače systému Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Balíček ovladače systému Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"7-Zip" = 7-Zip 4.65
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"AMD AGP Driver" = AMD AGP Driver
"avast" = avast! Free Antivirus
"BattlEye" = BattlEye Uninstall
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Dostihy 3000 deluxe" = Dostihy 3000 deluxe 1.1
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Football Manager 2011" = Football Manager 2011
"Football Manager 2012_is1" = Football Manager 2012
"GameParkClient_is1" = GamePark
"GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}" = DiRT 3
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{7A529246-912F-4C40-A82A-E608DB702FD7}" = ASUS VideoSecurity Online
"InstallShield_{809D7E6D-915D-4EAD-821F-E13D93F37161}" = ASUS Smart Doctor
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.60.0.1800
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 8.0.1 (x86 cs)" = Mozilla Firefox 8.0.1 (x86 cs)
"NeroMultiInstaller!UninstallKey" = Nero Suite
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"OpenAL" = OpenAL
"PokerStars" = PokerStars
"PSPad editor_is1" = PSPad editor
"PunkBusterSvc" = PunkBuster Services
"RealPlayer 12.0" = RealPlayer
"Registrace uživatele zařízení Canon iP4300" = Registrace uživatele zařízení Canon iP4300
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"SopCast" = SopCast 3.0.3
"SystemRequirementsLab" = System Requirements Lab
"szn-software-listicka" = Seznam Lištička (Všichni uživatelé tohoto počítače.)
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 5" = TeamViewer 5
"The KMPlayer" = The KMPlayer (remove only)
"War In The North_is1" = war in the north 1.0
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WinZip" = WinZip
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"xvid" = XviD MPEG-4 Video Codec

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-57989841-2049760794-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 8.11.2009 15:00:14 | Computer Name = PC | Source = avast! | ID = 33554522
Description =

Error - 8.11.2009 16:57:14 | Computer Name = PC | Source = avast! | ID = 33554522
Description =

Error - 9.11.2009 14:46:26 | Computer Name = PC | Source = avast! | ID = 33554522
Description =

Error - 19.12.2009 6:21:15 | Computer Name = PC | Source = avast! | ID = 33554522
Description =

Error - 19.12.2009 6:41:44 | Computer Name = PC | Source = avast! | ID = 33554522
Description =

Error - 19.12.2009 7:20:30 | Computer Name = PC | Source = avast! | ID = 33554522
Description =

Error - 19.12.2009 7:20:33 | Computer Name = PC | Source = avast! | ID = 33554522
Description =

Error - 19.12.2009 7:20:43 | Computer Name = PC | Source = avast! | ID = 33554522
Description =

Error - 19.12.2009 7:20:45 | Computer Name = PC | Source = avast! | ID = 33554522
Description =

Error - 10.7.2010 8:15:33 | Computer Name = PC | Source = avast! | ID = 33554522
Description =

[ Application Events ]
Error - 4.1.2012 8:06:00 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace acrsp.exe, verze 0.0.0.0, chybující modul ubiorbitapi_r2.dll,
verze 0.0.0.0, adresa chyby 0x0000e0c3.

Error - 4.1.2012 8:06:14 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace acrsp.exe, verze 0.0.0.0, chybující modul ubiorbitapi_r2.dll,
verze 0.0.0.0, adresa chyby 0x0000e0c3.

Error - 4.1.2012 8:06:19 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace acrsp.exe, verze 0.0.0.0, chybující modul ubiorbitapi_r2.dll,
verze 0.0.0.0, adresa chyby 0x0000e0c3.

Error - 4.1.2012 8:07:04 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace acrsp.exe, verze 0.0.0.0, chybující modul ubiorbitapi_r2.dll,
verze 0.0.0.0, adresa chyby 0x0000e0c3.

Error - 4.1.2012 8:18:19 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace acrsp.exe, verze 0.0.0.0, chybující modul ubiorbitapi_r2.dll,
verze 0.0.0.0, adresa chyby 0x0000e0c3.

Error - 4.1.2012 14:56:52 | Computer Name = PC | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 4.1.2012 15:02:14 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace rundll32.exe, verze 5.1.2600.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 4.1.2012 15:12:51 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace acrsp.exe, verze 0.0.0.0, chybující modul ubiorbitapi_r2.dll,
verze 0.0.0.0, adresa chyby 0x0000e0c3.

Error - 4.1.2012 17:38:20 | Computer Name = PC | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 5.1.2012 2:13:06 | Computer Name = PC | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

[ System Events ]
Error - 3.1.2012 1:01:43 | Computer Name = PC | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Sukoku Service.

Error - 3.1.2012 2:44:36 | Computer Name = PC | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 4.1.2012 1:29:09 | Computer Name = PC | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 4.1.2012 5:13:30 | Computer Name = PC | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 4.1.2012 8:19:34 | Computer Name = PC | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 4.1.2012 14:56:46 | Computer Name = PC | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 4.1.2012 14:56:46 | Computer Name = PC | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error - 4.1.2012 14:58:35 | Computer Name = PC | Source = System Error | ID = 1003
Description = Kód chyby 1000008e, parametr1 c0000005, parametr2 bf01e98f, parametr3
aa3b1288, parametr4 00000000.

Error - 4.1.2012 14:58:51 | Computer Name = PC | Source = System Error | ID = 1003
Description = Kód chyby 1000008e, parametr1 c0000005, parametr2 bf01e98f, parametr3
a5bc1288, parametr4 00000000.

Error - 5.1.2012 5:40:27 | Computer Name = PC | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .

< End of report >

swatm · #8 Příspěvek od **swatm** » 05 led 2012 11:19

OTL logfile created on: 5.1.2012 10:47:41 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Marek\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,50 Gb Total Physical Memory | 2,64 Gb Available Physical Memory | 75,36% Memory free
5,34 Gb Paging File | 4,60 Gb Available in Paging File | 86,13% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298,08 Gb Total Space | 32,71 Gb Free Space | 10,97% Space Free | Partition Type: NTFS
Drive E: | 1,90 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 2,66 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 7,12 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 8,10 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive I: | 6,35 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: PC | User Name: Marek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.01.05 10:44:53 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Marek\Plocha\OTL.exe
PRC - [2011.12.24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011.12.24 17:50:18 | 000,460,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011.11.28 19:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011.11.28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011.11.24 07:35:18 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011.08.15 16:18:14 | 001,955,208 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2011.08.15 16:18:10 | 001,361,288 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2011.05.12 07:39:00 | 000,539,688 | ---- | M] (ROCCAT GmbH) -- C:\Program Files\ROCCAT\Isku Keyboard\IskuMonitor.exe
PRC - [2009.10.15 05:21:24 | 001,200,128 | ---- | M] (ASUSTeK Inc.) -- C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe
PRC - [2009.09.29 10:20:10 | 000,253,952 | ---- | M] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\ATKKBService.exe
PRC - [2009.09.17 19:11:40 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2009.09.17 19:11:38 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2009.07.30 18:10:04 | 000,380,928 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
PRC - [2009.07.21 09:17:46 | 000,323,584 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\SetPoint II\SetPointII.exe
PRC - [2009.07.20 11:30:50 | 000,813,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2009.07.10 11:42:32 | 000,055,824 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005.04.01 18:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

========== Modules (No Company Name) ==========

MOD - [2012.01.04 18:47:22 | 001,662,976 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12010401\algo.dll
MOD - [2012.01.03 19:16:27 | 000,268,808 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12010401\aswRep.dll
MOD - [2011.11.24 07:35:17 | 001,989,592 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.11.16 07:34:49 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2010.11.04 11:48:36 | 000,061,440 | ---- | M] () -- C:\Program Files\ROCCAT\Isku Keyboard\hiddriver.dll
MOD - [2010.07.19 21:36:07 | 000,204,800 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.resources\2.0.0.0_cs_b77a5c561934e089\System.resources.dll
MOD - [2010.07.19 21:36:04 | 000,425,984 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2010.07.19 21:36:02 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_cs_b77a5c561934e089\System.Runtime.Remoting.resources.dll
MOD - [2010.07.19 21:36:00 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010.01.27 10:15:42 | 000,364,544 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3548.36811__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:42 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3548.36825__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2010.01.27 10:15:41 | 001,736,704 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3548.36830__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2010.01.27 10:15:41 | 000,204,800 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3548.36831__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2010.01.27 10:15:41 | 000,077,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3548.36882__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:41 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3548.36854__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:41 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3548.36820__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:40 | 000,491,520 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3548.36901__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2010.01.27 10:15:40 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3548.36820__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:40 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3548.36863__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:40 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3548.36902__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:39 | 000,356,352 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3548.36868__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:39 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3548.36869__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2010.01.27 10:15:39 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3548.36868__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:39 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.3548.36830__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:39 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.3548.36830__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:37 | 000,643,072 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Dashboard\2.0.3548.36912__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:37 | 000,077,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Runtime\2.0.3548.36912__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:36 | 000,823,296 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3548.36856__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:36 | 000,409,600 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3548.36877__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2010.01.27 10:15:36 | 000,196,608 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3548.36831__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:36 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3548.36855__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:36 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3548.36861__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:36 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3548.36861__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:35 | 000,573,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3548.36832__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:35 | 000,409,600 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3548.36821__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:35 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3548.36836__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:35 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3548.36862__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:34 | 000,393,216 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3548.36855__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:34 | 000,360,448 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3548.36850__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:34 | 000,270,336 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2010.01.27 10:15:34 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3548.36854__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:34 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3548.36855__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2010.01.27 10:15:33 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3531.24440__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2010.01.27 10:15:33 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3531.24439__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2010.01.27 10:15:33 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3531.24478__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
MOD - [2010.01.27 10:15:33 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3531.24559__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll
MOD - [2010.01.27 10:15:33 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3531.24552__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2010.01.27 10:15:33 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3531.24471__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2010.01.27 10:15:33 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3531.24549__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2010.01.27 10:15:33 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2010.01.27 10:15:32 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3531.24410__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2010.01.27 10:15:32 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3531.24412__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2010.01.27 10:15:32 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3531.24466__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2010.01.27 10:15:31 | 000,098,304 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3531.24414__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2010.01.27 10:15:31 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2010.01.27 10:15:31 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3531.24636__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2010.01.27 10:15:31 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3531.24442__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2010.01.27 10:15:31 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0703\2.0.2651.18802__90ba9c70f846762e\DEM.Graphics.I0703.dll
MOD - [2010.01.27 10:15:31 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3531.24449__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2010.01.27 10:15:31 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
MOD - [2010.01.27 10:15:31 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3531.24494__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2010.01.27 10:15:31 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2010.01.27 10:15:30 | 000,139,264 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3531.24451__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2010.01.27 10:15:30 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3531.24510__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2010.01.27 10:15:30 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3531.24538__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2010.01.27 10:15:30 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3531.24426__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2010.01.27 10:15:30 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.3531.24498__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll
MOD - [2010.01.27 10:15:30 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3531.24455__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2010.01.27 10:15:30 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3531.24498__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2010.01.27 10:15:30 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3531.24460__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2010.01.27 10:15:29 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3531.24511__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2010.01.27 10:15:29 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Shared\2.0.3531.24556__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Shared.dll
MOD - [2010.01.27 10:15:29 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3531.24504__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2010.01.27 10:15:29 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3531.24499__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2010.01.27 10:15:29 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3531.24506__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2010.01.27 10:15:29 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3531.24472__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2010.01.27 10:15:28 | 000,651,264 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3548.36926__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll
MOD - [2010.01.27 10:15:28 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3531.24503__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2010.01.27 10:15:28 | 000,049,152 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3531.24502__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2010.01.27 10:15:28 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3531.24509__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2010.01.27 10:15:28 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3531.24476__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2010.01.27 10:15:28 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3531.24495__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2010.01.27 10:15:28 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3531.24467__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2010.01.27 10:15:28 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.3531.24469__90ba9c70f846762e\APM.Foundation.dll
MOD - [2010.01.27 10:15:28 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3531.24441__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2010.01.27 10:15:27 | 000,106,496 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3548.36896__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2010.01.27 10:15:27 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3548.36907__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2010.01.27 10:15:27 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3531.24435__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll
MOD - [2010.01.27 10:15:27 | 000,014,848 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
MOD - [2010.01.27 10:15:27 | 000,013,312 | ---- | M] () -- C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll
MOD - [2010.01.27 10:15:27 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3548.36809__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2010.01.27 10:15:26 | 000,561,152 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3548.36890__90ba9c70f846762e\CLI.Component.Systemtray.dll
MOD - [2010.01.27 10:15:26 | 000,405,504 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3548.36825__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2010.01.27 10:15:26 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3548.36894__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2010.01.27 10:15:26 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3531.24420__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2010.01.27 10:15:26 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3531.24429__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2010.01.27 10:15:26 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3531.24462__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2010.01.27 10:15:26 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3531.24459__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2010.01.27 10:15:25 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3548.36809__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2010.01.27 10:15:25 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3548.36810__90ba9c70f846762e\CLI.Component.SkinFactory.dll
MOD - [2010.01.27 10:15:25 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3531.24457__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2010.01.27 10:15:25 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3531.24463__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2010.01.27 10:15:24 | 001,220,608 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3548.36816__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2010.01.27 10:15:23 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.3548.36807__90ba9c70f846762e\APM.Server.dll
MOD - [2010.01.27 10:15:23 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3548.36808__90ba9c70f846762e\AEM.Server.dll
MOD - [2010.01.27 10:15:23 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3531.24445__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2010.01.27 10:15:23 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2010.01.27 10:15:23 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3531.24513__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2010.01.27 10:15:23 | 000,019,456 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3548.36896__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2009.12.06 00:36:38 | 011,791,360 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\50ea744ffc3cb7f09b027fd6c5c93b2b\System.Web.ni.dll
MOD - [2009.12.06 00:36:25 | 000,771,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\3736ba3ecac186f9c5d85f01bda2be98\System.Runtime.Remoting.ni.dll
MOD - [2009.12.06 00:35:38 | 000,970,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb4cb21d14767292e079366a5d3d76cd\System.Configuration.ni.dll
MOD - [2009.12.06 00:34:26 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\c2af7cfbb47c077029a2645930b4eeac\Accessibility.ni.dll
MOD - [2009.12.06 00:20:01 | 005,449,728 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\36f3953f24d4f0b767bf172331ad6f3e\System.Xml.ni.dll
MOD - [2009.12.06 00:19:50 | 012,428,800 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\9a254c455892c02355ab0ab0f0727c5b\System.Windows.Forms.ni.dll
MOD - [2009.12.06 00:19:34 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\6978f2e90f13bc720d57fa6895c911e2\System.Drawing.ni.dll
MOD - [2009.12.06 00:18:55 | 007,867,392 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aa7926460a336408c8041330ad90929d\System.ni.dll
MOD - [2009.12.06 00:18:41 | 011,485,184 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\9adb89fa22fd5b4ce433b5aca7fb1b07\mscorlib.ni.dll
MOD - [2009.09.11 15:03:14 | 000,970,752 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2009.07.20 11:27:14 | 000,017,936 | ---- | M] () -- C:\Program Files\Logitech\SetPoint\khalwrapper.dll
MOD - [2009.04.29 20:46:20 | 001,077,248 | ---- | M] () -- C:\Program Files\ASUS\GamerOSD\ImageTransform.dll
MOD - [2008.04.14 08:51:48 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007.02.28 18:34:04 | 000,643,142 | ---- | M] () -- C:\Program Files\ASUS\SmartDoctor\aticlocklib.dll
MOD - [2006.02.13 21:05:00 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\nvapi.dll
MOD - [2001.10.25 13:00:00 | 000,015,360 | ---- | M] () -- C:\WINDOWS\system32\tsd32.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (Sukoku Service)
SRV - [2011.12.24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011.11.28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.08.15 16:18:10 | 001,361,288 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2011.03.16 09:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010.08.02 23:11:31 | 003,732,680 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2009.09.29 10:20:10 | 000,253,952 | ---- | M] (ASUSTeK COMPUTER INC.) [Auto | Running] -- C:\WINDOWS\ATKKBService.exe -- (ATKKeyboardService)
SRV - [2009.07.20 11:28:10 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008.04.07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2005.04.01 18:51:48 | 000,217,600 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe -- (StarWindService)

========== Driver Services (SafeList) ==========

DRV - [2011.12.10 15:24:06 | 000,020,464 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011.11.28 18:53:53 | 000,435,032 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.11.28 18:53:35 | 000,314,456 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.11.28 18:52:19 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.11.28 18:52:16 | 000,052,952 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.11.28 18:52:02 | 000,111,320 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.11.28 18:51:50 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.11.28 18:48:49 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.10.12 21:53:08 | 007,206,400 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2011.03.29 23:59:52 | 000,023,217 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Lineage II\100KaAmbrosiaSystem\npkcrypt.sys -- (npkcrypt)
DRV - [2010.11.24 20:03:23 | 000,053,312 | ---- | M] (microOLAP Technologies LTD) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pssdklbf.sys -- (PsSdkLBF)
DRV - [2010.11.24 20:03:23 | 000,036,928 | ---- | M] (microOLAP Technologies LTD) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pssdk40.sys -- (PsSdk40)
DRV - [2010.02.06 00:04:51 | 000,279,712 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010.02.06 00:04:51 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010.02.03 14:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.08.19 01:05:56 | 000,100,368 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009.07.30 11:15:54 | 000,014,336 | R--- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EIO_XP.sys -- (EIO_XP)
DRV - [2009.06.17 17:56:24 | 000,079,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2009.06.17 17:55:26 | 000,063,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2009.06.17 09:56:18 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2009.06.17 09:56:06 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2009.06.17 09:55:34 | 000,010,384 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2009.06.17 09:55:18 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2009.03.31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.03.20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009.03.20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009.03.20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2009.02.17 18:22:56 | 000,012,416 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\asusgsb.sys -- (asusgsb)
DRV - [2009.02.17 18:22:54 | 000,010,752 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Video3D32.sys -- (Video3D)
DRV - [2009.02.17 18:22:52 | 000,011,136 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\atkkbnt.sys -- (asuskbnt)
DRV - [2009.01.16 21:44:44 | 000,223,128 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\dtscsi.sys -- (dtscsi)
DRV - [2009.01.16 21:35:24 | 000,223,128 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\vaxscsi.sys -- (vaxscsi)
DRV - [2009.01.16 21:33:54 | 000,642,560 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2007.09.17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007.01.29 17:12:52 | 000,018,432 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AsusVRC.sys -- (ASUSVRC)
DRV - [2006.06.02 12:49:56 | 000,043,264 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\jraid.sys -- (JRAID)
DRV - [2006.05.26 06:20:58 | 004,279,296 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.03.15 08:51:00 | 000,244,608 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2006.02.07 12:52:58 | 000,006,912 | R--- | M] (JMicron ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\JGOGO.sys -- (JGOGO)
DRV - [2005.03.04 04:10:26 | 000,074,496 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004.08.03 23:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found

IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-57989841-2049760794-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-57989841-2049760794-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.cz/"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.1
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... r=1.1.7&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@protectdisc.com/NPMPDRM: C:\Program Files\Common Files\mpDRM\NPMPDRM.dll ( )
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652: C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652: C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011.06.12 07:44:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.11.24 07:35:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.12.20 07:32:35 | 000,000,000 | ---D | M]

[2009.01.21 17:55:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Extensions
[2011.12.30 17:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\extensions
[2011.12.29 13:17:21 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-1.xml
[2010.04.03 16:27:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-10.xml
[2010.06.23 20:10:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-11.xml
[2010.06.30 00:33:29 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-12.xml
[2010.07.20 23:47:41 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-13.xml
[2010.12.10 21:10:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-14.xml
[2009.08.06 09:47:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-2.xml
[2009.09.04 14:18:30 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-3.xml
[2009.09.04 15:16:27 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-4.xml
[2009.09.04 17:08:30 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-5.xml
[2009.12.26 01:41:13 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-6.xml
[2010.03.12 13:35:24 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-7.xml
[2010.03.13 13:43:57 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-8.xml
[2010.03.23 22:51:21 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-9.xml
[2010.06.21 16:35:24 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin.xml
[2011.12.20 07:32:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009.09.29 05:34:24 | 000,000,000 | ---D | M] (Sukoku) -- C:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}
[2011.12.20 07:32:37 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
[2011.11.24 07:35:18 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.11.10 05:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.09.07 05:41:32 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2011.09.07 05:41:32 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2011.03.07 07:43:04 | 000,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2011.09.07 05:41:32 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2011.09.07 05:41:32 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2009.09.29 05:34:25 | 000,002,381 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\sukoku119.xml
[2011.09.07 05:41:32 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\google\chrome\application\16.0.912.63\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Program Files\google\chrome\application\16.0.912.63\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\google\chrome\application\16.0.912.63\gcswf32.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Documents and Settings\Marek\Dokumenty\Marek\ostatni\GamePark\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Documents and Settings\Marek\Dokumenty\Marek\ostatni\GamePark\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Documents and Settings\Marek\Dokumenty\Marek\ostatni\GamePark\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Documents and Settings\Marek\Dokumenty\Marek\ostatni\GamePark\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Documents and Settings\Marek\Dokumenty\Marek\ostatni\GamePark\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Documents and Settings\Marek\Dokumenty\Marek\ostatni\GamePark\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Documents and Settings\Marek\Dokumenty\Marek\ostatni\GamePark\plugins\npqtplugin7.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.160.1 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll
CHR - plugin: Java(TM) Platform SE 6 U16 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Data aplikac\u00ED\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\3.0.50106.0\npctrl.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Marek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Marek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.14_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Documents and Settings\Marek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.4_0\
CHR - Extension: Gmail = C:\Documents and Settings\Marek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.3_0\

O1 HOSTS File: ([2010.08.26 10:15:13 | 000,001,911 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 188.165.202.62 L2authd.lineage2.com
O1 - Hosts: 94.125.180.96 nprotect.lineage2.com
O1 - Hosts: 127.0.0.1 gosredirector.ea.com
O1 - Hosts: 127.0.0.1 blazeserver.blazeemu.org
O1 - Hosts: 127.0.0.1 gosgvaprod-qos01.ea.com
O1 - Hosts: 127.0.0.1 gosiadprod-qos01.ea.com
O1 - Hosts: 127.0.0.1 gossjcprod-qos01.ea.com
O1 - Hosts: 127.0.0.1 demangler.ea.com
O1 - Hosts: 127.0.0.1 vmp.tools.gos.ea.com
O1 - Hosts: 127.0.0.1 gosredirector.ea.com
O1 - Hosts: 127.0.0.1 blazeserver.blazeemu.org
O1 - Hosts: 127.0.0.1 gosgvaprod-qos01.ea.com
O1 - Hosts: 127.0.0.1 gosiadprod-qos01.ea.com
O1 - Hosts: 127.0.0.1 gossjcprod-qos01.ea.com
O1 - Hosts: 127.0.0.1 demangler.ea.com
O1 - Hosts: 127.0.0.1 vmp.tools.gos.ea.com
O1 - Hosts: 127.0.0.1 gosredirector.ea.com
O1 - Hosts: 127.0.0.1 blazeserver.blazeemu.org
O1 - Hosts: 127.0.0.1 gosgvaprod-qos01.ea.com
O1 - Hosts: 127.0.0.1 gosiadprod-qos01.ea.com
O1 - Hosts: 127.0.0.1 gossjcprod-qos01.ea.com
O1 - Hosts: 127.0.0.1 demangler.ea.com
O1 - Hosts: 127.0.0.1 vmp.tools.gos.ea.com
O1 - Hosts: 127.0.0.1 gosredirector.ea.com
O1 - Hosts: 27 more lines...
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Lištička) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\listicka.dll ()
O3 - HKLM\..\Toolbar: (Nástroje Lištičky) - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files\Seznam.cz\toolbar\toolbar.dll ()
O3 - HKU\S-1-5-21-57989841-2049760794-839522115-1003\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-57989841-2049760794-839522115-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [ASUSGamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [GBB36X Configure] C:\WINDOWS\System32\JMRaidTool.exe (Gigabyte Technology Corp.)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [RoccatIsku] C:\Program Files\ROCCAT\Isku Keyboard\IskuMonitor.EXE (ROCCAT GmbH)
O4 - HKU\S-1-5-21-57989841-2049760794-839522115-1003..\Run: [ASUS SmartDoctor] C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe (ASUSTeK Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\SetPointII.lnk = C:\Program Files\Logitech\SetPoint II\SetPointII.exe (Logitech Inc.)
O4 - Startup: C:\Documents and Settings\Marek\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-57989841-2049760794-839522115-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-57989841-2049760794-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-57989841-2049760794-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-57989841-2049760794-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra 'Tools' menuitem : Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll ()
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9C370A5F-BD93-49DD-9EAB-F29BB5234CB1}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logitech\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logitech\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Marek\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Marek\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.10.31 15:16:33 | 000,000,069 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2010.04.09 09:58:31 | 000,000,070 | R--- | M] () - F:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2010.09.04 08:14:10 | 000,415,504 | R--- | M] (Electronic Arts) - G:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2010.09.25 22:11:15 | 000,000,000 | R--D | M] - G:\Autorun -- [ CDFS ]
O32 - AutoRun File - [2010.09.25 22:04:56 | 036,319,232 | R--- | M] () - G:\autorun.dat -- [ CDFS ]
O32 - AutoRun File - [2010.09.25 22:04:56 | 000,000,149 | R--- | M] () - G:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2011.11.23 17:38:29 | 000,000,000 | R--D | M] - H:\AutoPlay -- [ CDFS ]
O32 - AutoRun File - [2011.11.23 17:38:29 | 006,567,544 | R--- | M] (UBISOFT) - H:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2011.11.23 17:38:29 | 000,147,034 | R--- | M] () - H:\autorun.ico -- [ CDFS ]
O32 - AutoRun File - [2011.11.23 17:38:29 | 000,000,047 | R--- | M] () - H:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2011.08.11 03:04:53 | 000,000,047 | R--- | M] () - I:\Autorun.inf -- [ UDF ]
O32 - AutoRun File - [2011.08.11 03:04:53 | 000,247,696 | R--- | M] (Konami Digital Entertainment Co., Ltd.) - I:\autorun.exe -- [ UDF ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

Drivers32: msacm.divxa32 - C:\WINDOWS\System32\DivXa32.acm (Hacked With Joy !)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\WINDOWS\System32\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.asv2 - C:\WINDOWS\System32\ASUSASV2.DLL ()
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIV3 - C:\WINDOWS\System32\DivXc32.dll (Hacked with Joy !)
Drivers32: vidc.DIV4 - C:\WINDOWS\System32\DivXc32f.dll (Hacked with Joy !)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2030.08.29 14:22:32 | 000,143,872 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\iacenc.dll
[2012.01.05 10:44:51 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Marek\Plocha\OTL.exe
[2012.01.04 20:03:49 | 001,578,288 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Marek\Plocha\tdsskiller.exe
[2012.01.04 13:05:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marek\Dokumenty\Assassin's Creed Revelations
[2012.01.04 12:36:47 | 000,000,000 | ---D | C] -- C:\ACRV
[2012.01.04 11:45:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Marek\Local Settings\Data aplikací\Ubisoft Game Launcher
[2012.01.01 20:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2012.01.01 20:49:28 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.01.01 20:37:55 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Marek\PrivacIE
[2012.01.01 20:28:24 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Marek\IETldCache
[2012.01.01 19:39:13 | 000,000,000 | ---D | C] -- C:\Program Files\Seznam.cz
[2012.01.01 19:37:25 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2009.09.17 19:13:00 | 001,822,848 | ---- | C] (Microsoft Corporation) -- C:\Program Files\instmsiw.exe
[2009.09.17 19:13:00 | 001,709,160 | ---- | C] (Microsoft Corporation) -- C:\Program Files\instmsia.exe
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2030.08.29 14:22:32 | 000,143,872 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\iacenc.dll
[2030.08.29 14:22:32 | 000,056,832 | ---- | M] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2012.01.05 10:52:04 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.01.05 10:44:53 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Marek\Plocha\OTL.exe
[2012.01.05 07:12:50 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-57989841-2049760794-839522115-1003.job
[2012.01.05 07:12:32 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.01.04 20:18:05 | 000,000,014 | ---- | M] () -- C:\localization.lang
[2012.01.04 20:13:06 | 000,000,477 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Zástupce - ACRSP.lnk
[2012.01.04 20:03:54 | 001,578,288 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Marek\Plocha\tdsskiller.exe
[2012.01.04 11:52:39 | 000,002,566 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012.01.01 20:49:30 | 000,000,814 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.01.01 20:38:27 | 000,000,286 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-57989841-2049760794-839522115-1003.job
[2012.01.01 10:09:47 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2030.08.29 14:22:32 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2012.01.05 10:52:04 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.01.04 20:18:03 | 000,000,014 | ---- | C] () -- C:\localization.lang
[2012.01.04 20:13:06 | 000,000,477 | ---- | C] () -- C:\Documents and Settings\Marek\Plocha\Zástupce - ACRSP.lnk
[2012.01.01 20:49:30 | 000,000,814 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2011.10.12 16:16:30 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\OpenVideo.dll
[2010.11.04 21:46:58 | 000,005,058 | ---- | C] () -- C:\WINDOWS\l2control.ini
[2010.01.27 10:33:26 | 000,196,653 | ---- | C] () -- C:\WINDOWS\System32\drivers\aVivid.bin
[2010.01.27 10:33:26 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nVivid.bin
[2010.01.27 10:33:26 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nStandard.bin
[2010.01.27 10:33:26 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nAsmedia.bin
[2010.01.27 10:33:26 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nAdvanced.bin
[2010.01.27 10:33:26 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\aAdvanced.bin
[2010.01.27 10:33:26 | 000,196,582 | ---- | C] () -- C:\WINDOWS\System32\drivers\aStandard.bin
[2010.01.27 10:33:26 | 000,196,582 | ---- | C] () -- C:\WINDOWS\System32\drivers\aAsmedia.bin
[2010.01.27 10:33:26 | 000,000,018 | ---- | C] () -- C:\WINDOWS\System32\atkid.ini
[2010.01.27 10:33:25 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.01.27 10:33:25 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.01.27 10:33:25 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\asrussian.dll
[2010.01.27 10:33:25 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\askorean.dll
[2010.01.27 10:33:25 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\asjapan.dll
[2010.01.27 10:33:25 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\ASCHT.dll
[2010.01.27 10:33:25 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\aschs.dll
[2010.01.27 10:33:25 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\asgerman.dll
[2010.01.27 10:33:25 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\asfrench.dll
[2010.01.27 10:33:25 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\aseng.dll
[2010.01.27 10:12:20 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010.01.27 10:05:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2010.01.27 10:04:54 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2010.01.27 10:04:54 | 000,239,869 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010.01.27 10:04:54 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2009.12.24 21:40:00 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2009.12.24 21:40:00 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2009.12.24 21:39:53 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Marek\Data aplikací\$_hpcst$.hpc
[2009.12.19 14:09:27 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2009.12.19 14:09:26 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009.12.19 14:09:26 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009.12.19 14:09:25 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009.12.19 14:09:24 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009.12.19 14:09:24 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2009.12.19 14:09:24 | 000,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2009.12.19 14:09:24 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2009.12.19 14:09:24 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2009.12.19 14:09:24 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2009.12.19 14:09:23 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2009.12.19 11:28:18 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009.11.06 09:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2009.09.22 16:21:43 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009.09.17 19:17:36 | 124,448,152 | ---- | C] () -- C:\Program Files\openofficeorg1.cab
[2009.09.17 19:13:00 | 000,450,048 | ---- | C] () -- C:\Program Files\setup.exe
[2009.09.17 19:12:58 | 009,795,072 | ---- | C] () -- C:\Program Files\openofficeorg31.msi
[2009.09.17 19:12:58 | 000,000,336 | ---- | C] () -- C:\Program Files\setup.ini
[2009.08.23 18:31:09 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.07.27 11:13:28 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\ASDR.exe
[2009.05.22 07:34:27 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\Marek\Data aplikací\setup_ldm.iss
[2009.04.27 20:57:16 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2009.04.17 21:37:26 | 000,011,215 | ---- | C] () -- C:\Program Files\config_mp.cfg
[2009.04.10 11:19:03 | 000,139,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.04.10 11:18:46 | 000,189,248 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2009.04.10 11:18:44 | 002,250,024 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2009.04.10 11:18:44 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2009.03.19 16:55:02 | 000,002,352 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2009.03.14 00:24:39 | 000,279,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009.03.14 00:24:38 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009.01.24 01:37:02 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Marek\Data aplikací\PnkBstrK.sys
[2009.01.24 01:04:16 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2009.01.21 17:55:36 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009.01.20 19:08:26 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe
[2009.01.16 21:44:44 | 000,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\dtscsi.sys
[2009.01.16 21:35:24 | 000,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\vaxscsi.sys
[2009.01.16 21:33:54 | 000,096,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd8141.sys
[2009.01.16 21:26:18 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.01.16 18:26:56 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2009.01.15 23:23:55 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009.01.15 23:21:16 | 000,296,456 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009.01.15 22:41:50 | 000,135,168 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2009.01.15 22:41:50 | 000,040,960 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2009.01.15 22:34:48 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009.01.15 22:30:10 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2004.10.11 11:19:00 | 000,092,672 | ---- | C] () -- C:\WINDOWS\System32\ASUSASV2.DLL
[2004.08.17 14:58:58 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004.08.02 13:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2001.11.05 19:35:20 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001.11.05 19:35:20 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001.10.25 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001.10.25 13:00:00 | 000,435,700 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001.10.25 13:00:00 | 000,432,500 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2001.10.25 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001.10.25 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2001.10.25 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001.10.25 13:00:00 | 000,078,972 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2001.10.25 13:00:00 | 000,068,214 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001.10.25 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001.10.25 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2001.10.25 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001.10.25 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2000.02.28 15:26:02 | 000,092,660 | ---- | C] () -- C:\WINDOWS\System32\bass.dll
[1998.05.20 14:17:12 | 000,280,064 | ---- | C] () -- C:\WINDOWS\System32\CNCS232.DLL

========== LOP Check ==========

[2010.07.24 06:46:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2011.11.09 10:21:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BioWare
[2009.01.15 22:38:43 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2011.06.11 21:16:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Codemasters
[2011.06.11 21:16:38 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\DSS
[2011.03.29 19:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EA Core
[2011.03.29 19:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2010.11.02 21:26:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2011.10.27 14:28:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\KONAMI
[2011.08.15 20:44:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\mpDRM
[2009.12.24 21:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2011.10.30 23:57:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\RELOADED
[2011.12.24 20:32:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ROCCAT
[2011.07.08 20:48:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Solidshield
[2009.11.01 17:20:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sports Interactive
[2012.01.04 13:05:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2011.03.21 00:38:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\2K Sports
[2010.03.27 17:23:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Command and Conquer 4
[2011.09.07 22:30:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\ICQ
[2011.05.16 22:33:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Leadertech
[2009.04.28 14:05:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\My Battle for Middle-earth(tm) II Files
[2010.06.06 17:27:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\OpenOffice.org
[2009.12.24 21:42:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\PC Suite
[2009.10.04 12:43:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Petroglyph
[2011.08.15 20:44:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\ProtectDISC
[2011.12.18 21:17:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\PunkBuster
[2009.12.24 21:39:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Samsung
[2011.11.01 12:31:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Sports Interactive
[2009.12.05 14:14:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\TeamViewer
[2010.06.20 22:52:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\TS3Client
[2011.12.18 22:07:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Ubisoft
[2010.10.12 17:13:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\uTorrent

swatm · #9 Příspěvek od **swatm** » 05 led 2012 11:19

========== Purity Check ==========

========== Custom Scans ==========

< netsvc >

< MD5 for: ATAPI.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0010\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.17 14:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\system32\dllcache\cache\explorer.exe
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 00:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.14 00:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.03 21:59:14 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: SCECLI.DLL >
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\cache\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SVCHOST.EXE >
[2011.12.24 17:50:20 | 000,182,856 | ---- | M] () MD5=B382935AB01B27D0E14F267DBF288896 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\dllcache\cache\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\system32\dllcache\cache\tcpip.sys
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.03 22:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\dllcache\cache\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2011.12.24 17:50:20 | 000,182,856 | ---- | M] () MD5=B382935AB01B27D0E14F267DBF288896 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\dllcache\cache\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< %systemroot%*.* /U /s >
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[8 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1 C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\*.tmp -> ]
[13 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
[1 C:\WINDOWS\Temp\_avast_\*.tmp files -> C:\WINDOWS\Temp\_avast_\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2008.04.11 07:03:48 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011.03.21 00:38:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\2K Sports
[2009.01.16 20:36:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Adobe
[2009.01.16 20:36:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\AdobeUM
[2009.08.23 18:32:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Apple Computer
[2010.01.27 10:27:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\ATI
[2010.03.27 17:23:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Command and Conquer 4
[2009.08.04 10:55:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\CyberLink
[2009.08.23 19:02:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\DivX
[2010.07.18 07:13:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Google
[2010.06.24 12:43:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Hamachi
[2009.01.16 21:30:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Help
[2011.09.07 22:30:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\ICQ
[2009.01.15 22:37:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Identities
[2009.01.16 21:05:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\InstallShield
[2011.05.16 22:33:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Leadertech
[2009.01.16 21:07:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Logitech
[2009.01.15 23:03:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Macromedia
[2009.09.03 19:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Malwarebytes
[2011.07.03 14:01:46 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Marek\Data aplikací\Microsoft
[2009.11.13 16:35:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Microsoft Games
[2009.01.21 17:55:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Mozilla
[2009.04.28 14:05:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\My Battle for Middle-earth(tm) II Files
[2010.06.06 17:27:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\OpenOffice.org
[2009.12.24 21:42:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\PC Suite
[2009.10.04 12:43:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Petroglyph
[2011.08.15 20:44:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\ProtectDISC
[2011.12.18 21:17:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\PunkBuster
[2011.01.21 06:41:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Real
[2009.12.24 21:39:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Samsung
[2009.02.06 18:21:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\SecuROM
[2011.09.09 18:35:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Skype
[2011.09.09 17:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\skypePM
[2011.11.01 12:31:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Sports Interactive
[2009.10.12 19:37:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Sun
[2009.07.26 22:09:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\teamspeak2
[2009.12.05 14:14:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\TeamViewer
[2010.06.20 22:52:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\TS3Client
[2011.12.18 22:07:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Ubisoft
[2010.10.12 17:13:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\uTorrent
[2010.09.27 12:08:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Marek\Data aplikací\Ventrilo

< %APPDATA%\*.exe /s >
[2009.06.12 20:47:15 | 001,878,984 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\Marek\Data aplikací\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe
[2009.09.25 13:56:16 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Microsoft\Installer\{3101CB58-3482-4D21-AF1A-7057FC935355}\ARPPRODUCTICON.exe
[2009.01.16 21:08:42 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2009.04.15 16:04:43 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Microsoft\Installer\{A2C3A640-2B29-4772-BC76-AA5989FFB532}\_6E2F7D377706695E4376AD.exe
[2009.04.15 16:04:43 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Microsoft\Installer\{A2C3A640-2B29-4772-BC76-AA5989FFB532}\_6FEFF9B68218417F98F549.exe
[2009.04.15 16:04:43 | 000,015,086 | R--- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Microsoft\Installer\{A2C3A640-2B29-4772-BC76-AA5989FFB532}\_A8A42FCD86E161119BEFE3.exe
[2011.02.24 16:07:45 | 000,835,440 | R--- | M] () -- C:\Documents and Settings\Marek\Data aplikací\PunkBuster\pbsetup\pbsvc.exe
[2010.06.30 08:27:25 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Marek\Data aplikací\Real\Update\setup3.10\setup.exe
[2010.12.14 18:26:04 | 000,506,024 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Marek\Data aplikací\Real\Update\setup3.13\setup.exe
[2012.01.04 14:01:08 | 000,315,512 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Marek\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.01\rnupgagent.exe
[2009.12.24 21:40:59 | 000,069,632 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Samsung\New PC Studio\DriverChecker.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job >
[2012.01.05 07:12:50 | 000,000,278 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-57989841-2049760794-839522115-1003.job
[2012.01.01 20:38:27 | 000,000,286 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-57989841-2049760794-839522115-1003.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2009.01.16 21:44:44 | 000,223,128 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\dtscsi.sys
[2009.01.16 21:33:54 | 000,642,560 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
[2009.01.26 14:04:16 | 000,096,384 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd8141.sys
[2009.01.16 21:35:24 | 000,223,128 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\vaxscsi.sys

< %systemroot%\System32\config\*.sav >
[2009.01.15 23:20:10 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2009.01.15 23:20:10 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2009.01.15 23:20:10 | 000,491,520 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.01.04 11:52:39 | 000,002,566 | ---- | M] () -- C:\WINDOWS\system32\CONFIG.NT
[2030.08.29 14:22:32 | 000,143,872 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\iacenc.dll
[2030.08.29 14:22:32 | 000,056,832 | ---- | M] () -- C:\WINDOWS\system32\iyvu9_32.dll
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2008.04.11 07:03:48 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< %userprofile%\Plocha\*.* >
[2010.01.27 14:59:14 | 000,001,557 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Counter-Strike 1.6 NS.lnk
[2010.03.05 20:37:22 | 000,000,620 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Hurdler.lnk
[2009.09.07 18:08:17 | 000,072,192 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\J3D.doc
[2011.01.16 13:02:03 | 000,000,740 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\KMPlayer.lnk
[2012.01.03 21:20:43 | 000,007,442 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\mbam-log-2012-01-03 (21-20-13).txt
[2012.01.05 10:44:53 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Marek\Plocha\OTL.exe
[2009.01.21 20:02:27 | 000,000,661 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\PSPad.lnk
[2009.08.22 20:23:35 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\SopCast.lnk
[2012.01.04 20:03:54 | 001,578,288 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Marek\Plocha\tdsskiller.exe
[2009.07.26 22:08:48 | 000,000,695 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Teamspeak 2 RC2.lnk
[2011.11.14 23:46:47 | 000,000,786 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\War In The North.lnk
[2010.11.05 22:51:22 | 000,000,763 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Zástupce (2) - l2cserv.lnk
[2012.01.04 20:13:06 | 000,000,477 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Zástupce - ACRSP.lnk
[2011.03.22 11:54:41 | 000,000,773 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Zástupce - DragonAge2.lnk
[2011.11.10 21:03:12 | 000,000,638 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Zástupce - iw5sp.lnk
[2011.12.13 18:51:30 | 000,000,874 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Zástupce - moh.lnk
[2010.10.07 21:55:10 | 000,000,831 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Zástupce - pes2011-100.lnk
[2011.11.15 00:53:36 | 000,000,796 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Zástupce - SkyrimLauncher.lnk
[2010.11.07 12:29:56 | 000,000,652 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\Zástupce - Ventrilo.lnk
[2009.08.24 16:16:48 | 000,000,660 | ---- | M] () -- C:\Documents and Settings\Marek\Plocha\µTorrent.lnk

< %userprofile%\Desktop\*.* >

< %ALLUSERSPROFILE%\Plocha\*.* >
[2009.01.16 21:36:21 | 000,000,833 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Alcohol 120%.lnk
[2011.12.18 21:13:54 | 000,002,031 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Assassin's Creed Brotherhood.lnk
[2010.07.24 06:46:58 | 000,001,730 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2010.01.27 14:56:45 | 000,001,369 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Counter-Strike 1.6.lnk
[2009.01.15 23:01:56 | 000,001,684 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CyberLink PowerDVD.lnk
[2009.01.16 21:45:45 | 000,000,698 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DAEMON Tools.lnk
[2011.02.25 23:31:50 | 000,001,742 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Dostihy 3000 Deluxe.lnk
[2011.10.12 23:52:56 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Fire Patch 2012.lnk
[2010.11.21 15:32:24 | 000,000,948 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Football Manager 2011.lnk
[2011.11.01 11:56:46 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Football Manager 2012.lnk
[2011.06.12 07:44:25 | 000,001,631 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Free Offers.lnk
[2010.11.02 21:27:39 | 000,001,517 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\ICQ7.2.lnk
[2009.09.25 13:56:49 | 000,001,711 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Logitech Mouse and Keyboard Settings.lnk
[2011.12.22 11:33:31 | 000,000,725 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\LogMeIn Hamachi.lnk
[2012.01.01 20:49:30 | 000,000,814 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2011.12.13 13:00:10 | 000,001,003 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Medal of Honor (TM) - Multiplayer.lnk
[2009.09.04 15:14:30 | 000,001,632 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2010.06.06 17:26:20 | 000,000,871 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\OpenOffice.org 3.1.lnk
[2011.09.05 19:07:38 | 000,000,766 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\PokerStars.lnk
[2011.06.12 07:44:25 | 000,000,747 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\RealPlayer.lnk
[2009.12.24 21:39:38 | 000,001,913 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Samsung New PC Studio.lnk
[2011.09.09 17:01:20 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2010.03.25 19:57:15 | 000,000,867 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\TeamSpeak 3 Client.lnk
[2009.12.05 14:22:36 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\TeamViewer CZ.lnk

< %ALLUSERSPROFILE%\Desktop\*.* >

< *crack* /s >
[2009.10.24 17:41:32 | 000,006,741 | ---- | M] () -- \Documents and Settings\Marek\Data aplikací\uTorrent\Pro Evolution Soccer 2010 Crack Only-RELOADED.torrent
[2009.10.24 17:49:46 | 000,000,823 | ---- | M] () -- \Documents and Settings\Marek\Data aplikací\uTorrent\Pro Evolution Soccer 2010 Pc Patch + Crack.1.torrent
[2009.10.24 17:49:46 | 000,000,823 | ---- | M] () -- \Documents and Settings\Marek\Data aplikací\uTorrent\Pro Evolution Soccer 2010 Pc Patch + Crack.torrent
[2011.10.29 21:25:24 | 000,000,773 | ---- | M] () -- \Documents and Settings\Marek\Recent\B3attle43field3CrackM10-elamigos.lnk
[2011.11.10 00:55:37 | 000,000,704 | ---- | M] () -- \Documents and Settings\Marek\Recent\codmw3.crack.buckynho.lnk
[2011.07.08 20:23:02 | 000,000,238 | ---- | M] () -- \Documents and Settings\Marek\Recent\Crack (2).lnk
[2011.11.01 12:15:43 | 000,000,872 | ---- | M] () -- \Documents and Settings\Marek\Recent\Fo54otballMan46ager2012Crack-elamigos.lnk
[2009.11.13 15:37:09 | 000,000,860 | ---- | M] () -- \Documents and Settings\Marek\Recent\Gears of War noDVD crack.lnk
[2011.11.14 23:54:12 | 000,000,813 | ---- | M] () -- \Documents and Settings\Marek\Recent\LO33TRW2arITNor4thCrackRelo-elamigos.lnk
[2011.11.06 18:41:44 | 000,001,059 | ---- | M] () -- \Documents and Settings\Marek\Recent\Lord.of.the.Rings.War.in.the.North.2011.CRACKED.by.Colly.of.PowerUploaders.part1.lnk
[2011.11.06 23:18:53 | 000,001,059 | ---- | M] () -- \Documents and Settings\Marek\Recent\Lord.of.the.Rings.War.in.the.North.2011.CRACKED.by.Colly.of.PowerUploaders.part2.lnk
[2011.10.29 22:48:14 | 000,000,813 | ---- | M] () -- \Documents and Settings\Marek\Recent\Stronghold.3-CRACKONLY_CRACKFiX-P2P.lnk
[2011.03.29 19:20:17 | 032,314,311 | ---- | M] () -- \Games\crysis 2\CR2.CRACK-FLT_EPIDEMZ.NET.rar
[2011.03.21 21:38:04 | 012,328,224 | ---- | M] () -- \Games\DR2\CRACK.rar
[2011.11.01 12:15:43 | 119,492,270 | ---- | M] () -- \Games\football manager 2012\Fo54otballMan46ager2012Crack-elamigos.rar
[2011.11.14 23:54:12 | 005,377,922 | ---- | M] () -- \Games\lord of the rings\LO33TRW2arITNor4thCrackRelo-elamigos.zip

< *keygen* /s >

< *loader* /s >
[2011.11.23 17:38:29 | 000,228,864 | ---- | M] () -- \ACRV\ubiorbitapi_r2_loader.dll
[2011.10.30 07:10:24 | 000,169,080 | ---- | M] () -- \ACRV\uplay_r1_loader.dll
[2011.06.12 07:44:12 | 000,002,793 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2011.06.12 07:44:12 | 000,000,319 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2010.01.29 19:01:03 | 000,000,054 | ---- | M] () -- \Documents and Settings\Marek\Data aplikací\Macromedia\Flash Player\#SharedObjects\2WSHXNDA\media.mtvnservices.com\player\loader\loaderLogging.sol
[2012.01.01 20:37:58 | 000,000,905 | ---- | M] () -- \Documents and Settings\Marek\Local Settings\Temporary Internet Files\Content.IE5\3WFRP3YH\TooltipLoader[1].css
[2010.06.26 07:19:51 | 000,003,808 | ---- | M] () -- \Documents and Settings\Marek\Local Settings\Temporary Internet Files\Content.IE5\HY2FP1EO\loader[1]
[2010.06.26 08:19:41 | 000,003,808 | ---- | M] () -- \Documents and Settings\Marek\Local Settings\Temporary Internet Files\Content.IE5\HY2FP1EO\loader[2]
[2010.06.26 20:23:10 | 000,003,808 | ---- | M] () -- \Documents and Settings\Marek\Local Settings\Temporary Internet Files\Content.IE5\HY2FP1EO\loader[3]
[2012.01.01 20:37:58 | 000,014,290 | ---- | M] () -- \Documents and Settings\Marek\Local Settings\Temporary Internet Files\Content.IE5\MCGQAA70\TooltipLoader[1].js
[2010.04.30 14:42:05 | 000,001,849 | ---- | M] () -- \Documents and Settings\Marek\Local Settings\Temporary Internet Files\Content.IE5\VHOQ3YL6\loader-white-bg[1].gif
[2010.06.30 08:12:14 | 000,003,808 | ---- | M] () -- \Documents and Settings\Marek\Local Settings\Temporary Internet Files\Content.IE5\VHOQ3YL6\loader[1]
[2010.06.25 14:23:13 | 000,003,808 | ---- | M] () -- \Documents and Settings\Marek\Local Settings\Temporary Internet Files\Content.IE5\VHOQ3YL6\loader[4]
[2010.06.26 15:13:57 | 000,003,808 | ---- | M] () -- \Documents and Settings\Marek\Local Settings\Temporary Internet Files\Content.IE5\VHOQ3YL6\loader[5]
[2010.06.30 07:01:17 | 000,002,576 | ---- | M] () -- \Documents and Settings\Marek\Local Settings\Temporary Internet Files\Content.IE5\VHOQ3YL6\preloader2[1].gif
[2011.11.06 18:41:44 | 000,001,059 | ---- | M] () -- \Documents and Settings\Marek\Recent\Lord.of.the.Rings.War.in.the.North.2011.CRACKED.by.Colly.of.PowerUploaders.part1.lnk
[2011.11.06 23:18:53 | 000,001,059 | ---- | M] () -- \Documents and Settings\Marek\Recent\Lord.of.the.Rings.War.in.the.North.2011.CRACKED.by.Colly.of.PowerUploaders.part2.lnk
[2011.11.14 20:24:49 | 000,000,872 | ---- | M] () -- \Documents and Settings\Marek\Recent\witn-by-davis-of-poweruploaders-part3.lnk
[2011.11.12 22:59:50 | 000,792,704 | ---- | M] () -- \Games\amddriverdownloader.exe
[2011.03.05 01:30:13 | 000,057,856 | ---- | M] () -- \Games\DR2\Dragon Age 2\bin_ship\physxloader.dll
[2011.10.31 14:57:08 | 000,000,483 | ---- | M] () -- \Games\football manager 2012\Football Manager 2012\Editor\Editor.app\Contents\lib\Chromium Framework.framework\Resources\nacl_loader.sb
[2011.10.31 14:57:08 | 000,000,483 | ---- | M] () -- \Games\football manager 2012\Football Manager 2012\Resource Archiver\Resource Archiver.app\Contents\lib\Chromium Framework.framework\Resources\nacl_loader.sb
[1980.05.03 12:44:24 | 000,022,800 | ---- | M] () -- \Games\hry\DIRECTX\DMLOADER.DLL
[2011.11.13 23:18:39 | 1047,527,424 | ---- | M] () -- \Games\lord of the rings\witn-by-davis-of-poweruploaders-part1.rar
[2011.11.14 00:48:03 | 1047,527,424 | ---- | M] () -- \Games\lord of the rings\witn-by-davis-of-poweruploaders-part2.rar
[2011.11.14 20:24:48 | 1047,527,424 | ---- | M] () -- \Games\lord of the rings\witn-by-davis-of-poweruploaders-part3.rar
[2011.11.14 22:17:56 | 505,633,997 | ---- | M] () -- \Games\lord of the rings\witn-by-davis-of-poweruploaders-part4.rar
[2005.08.04 16:10:04 | 000,086,115 | ---- | M] () -- \Program Files\Common Files\Ahead\AudioPlugins\Downloaders.dll
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2010.09.02 04:45:20 | 000,065,536 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\Binaries\PhysXLocal\PhysXLoader.dll
[2010.09.25 12:33:10 | 001,933,161 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp\loader-00.fbrb
[2010.09.25 12:33:11 | 005,968,346 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp_01\loader-00.fbrb
[2010.09.25 12:33:12 | 005,755,952 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp_02\loader-00.fbrb
[2010.09.25 12:33:19 | 055,099,465 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp_03\loader-00.fbrb
[2010.09.25 12:33:19 | 002,954,487 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp_04\loader-00.fbrb
[2010.09.25 12:33:25 | 047,101,846 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp_05\loader-00.fbrb
[2010.09.25 12:33:32 | 050,561,194 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp_06\loader-00.fbrb
[2010.09.25 12:33:39 | 055,282,402 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp_07\loader-00.fbrb
[2010.09.25 12:33:46 | 049,203,256 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp_08\loader-00.fbrb
[2010.09.25 12:33:52 | 047,279,340 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp_09\loader-00.fbrb
[2010.09.25 12:33:59 | 049,418,362 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\common_mp_10\loader-00.fbrb
[2010.09.25 12:28:14 | 017,474,214 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_01\loader-00.fbrb
[2010.09.25 12:28:19 | 016,173,085 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_02\loader-00.fbrb
[2010.09.25 12:28:28 | 017,335,818 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_04\loader-00.fbrb
[2010.09.25 12:28:31 | 008,013,580 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_05_domination\loader-00.fbrb
[2010.09.25 12:28:32 | 008,013,580 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_05_overrun\loader-00.fbrb
[2010.09.25 12:28:33 | 008,007,355 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_05_tdm\loader-00.fbrb
[2010.09.25 12:28:35 | 008,004,561 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_06_domination\loader-00.fbrb
[2010.09.25 12:28:36 | 008,004,561 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_06_overrun\loader-00.fbrb
[2010.09.25 12:28:37 | 007,984,585 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_06_tdm\loader-00.fbrb
[2010.09.25 12:28:38 | 008,008,365 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_08_domination\loader-00.fbrb
[2010.09.25 12:28:38 | 008,008,365 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_08_overrun\loader-00.fbrb
[2010.09.25 12:28:41 | 008,022,594 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_08_tdm\loader-00.fbrb
[2010.09.25 12:28:42 | 007,967,707 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_09_domination\loader-00.fbrb
[2010.09.25 12:28:45 | 007,967,707 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_09_overrun\loader-00.fbrb
[2010.09.25 12:28:46 | 007,988,318 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_09_tdm\loader-00.fbrb
[2010.09.25 12:28:46 | 008,033,103 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_10_domination\loader-00.fbrb
[2010.09.25 12:28:48 | 008,033,103 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_10_overrun\loader-00.fbrb
[2010.09.25 12:28:49 | 008,018,170 | ---- | M] () -- \Program Files\Electronic Arts\Medal of Honor\MP\dist\win32\levels\mp_10_tdm\loader-00.fbrb
[2010.11.02 21:25:21 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2010.11.02 21:25:21 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\loader.swf
[2010.11.02 21:25:22 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2010.11.02 21:25:21 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.03.16 19:05:11 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.2\Xtraz\icq\content\icq_profile\preloader.html
[2011.02.16 19:41:18 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.2\Xtraz\icq\content\profile_forms\preloader.html
[2011.02.16 19:41:18 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.2\Xtraz\icq\content\profile_lightboxs\preloader.html
[2009.05.31 02:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.09.16 21:33:50 | 000,006,308 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.py
[2009.09.16 14:22:08 | 000,022,528 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2009.09.17 19:12:18 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2009.09.11 15:36:38 | 000,029,696 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2009.09.16 14:00:48 | 000,003,872 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\java\unoloader.jar
[2009.03.31 09:23:58 | 000,289,280 | ---- | M] () -- \Program Files\Samsung\Samsung New PC Studio\NPSAndroidDownloader.dll
[2009.03.12 09:31:22 | 000,285,184 | ---- | M] () -- \Program Files\Samsung\Samsung New PC Studio\NPSLinuxMitsDownloader.dll
[2009.03.31 09:39:20 | 000,208,896 | ---- | M] () -- \Program Files\Samsung\Samsung New PC Studio\Symbian_Downloader_DLL.dll
[2009.04.02 18:03:40 | 000,258,048 | ---- | M] () -- \Program Files\Samsung\Samsung New PC Studio\ModelExtension\NPSBinaryLoader.dll
[2008.11.25 16:52:24 | 000,266,240 | ---- | M] () -- \Program Files\Samsung\Samsung New PC Studio\ModelExtension\NPSBinaryLoader2.dll
[2011.10.31 14:57:08 | 000,000,483 | ---- | M] () -- \Program Files\SEGA\Football Manager 2012\Editor\Editor.app\Contents\lib\Chromium Framework.framework\Resources\nacl_loader.sb
[2011.10.31 14:57:08 | 000,000,483 | ---- | M] () -- \Program Files\SEGA\Football Manager 2012\Resource Archiver\Resource Archiver.app\Contents\lib\Chromium Framework.framework\Resources\nacl_loader.sb
[2008.02.25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2011.02.24 10:11:20 | 000,234,104 | ---- | M] () -- \Program Files\Ubisoft\Assassin's Creed Brotherhood\ubiorbitapi_r2_loader.dll
[2003.09.15 14:02:00 | 000,169,384 | ---- | M] () -- \Program Files\Valve\cstrike\models\qloader.mdl
[2003.09.15 13:55:50 | 000,352,548 | ---- | M] () -- \Program Files\Valve\valve\models\loader.mdl
[2003.09.15 13:56:04 | 000,012,764 | ---- | M] () -- \Program Files\Valve\valve\sound\ambience\loader_hydra1.wav
[2003.09.15 13:56:04 | 000,012,164 | ---- | M] () -- \Program Files\Valve\valve\sound\ambience\loader_step1.wav
[2004.08.17 14:49:06 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2010.12.15 19:11:42 | 000,082,784 | ---- | M] () -- \WINDOWS\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2002.12.12 00:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 00:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 00:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[5 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2002.12.12 00:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll

< *minodlogin* /s >

< *tnod* /s >

< *TemDono* /s >

< *AutoKMS* /s >

< *KMSEmulator* /s >

< *activator* /s >
[2008.10.22 10:16:18 | 002,000,128 | ---- | M] () -- \Program Files\Sports Interactive\Football Manager 2009\activator.exe

< *serial* /s >
[2004.08.17 14:44:16 | 000,030,301 | ---- | M] () -- \cmdcons\SERIAL.SY_
[2009.11.16 12:11:34 | 000,000,387 | ---- | M] () -- \Documents and Settings\Marek\Cookies\marek@serialzone[2].txt
[2009.11.16 12:11:34 | 000,000,383 | ---- | M] () -- \Documents and Settings\Marek\Cookies\marek@www.serialzone[2].txt
[2009.11.16 12:11:34 | 000,001,395 | ---- | M] () -- \Documents and Settings\Marek\Oblíbené položky\Podfukáři - díl Gold Mine SerialZone.cz.url
[2009.11.14 10:50:15 | 000,000,248 | ---- | M] () -- \Documents and Settings\Marek\Oblíbené položky\Serialy - Podfukáři - Podfukáři ON LINE VIDEO.url
[2009.11.03 05:36:05 | 000,000,206 | ---- | M] () -- \Games\dao\Dragon Age Origins CZ\Serial.txt
[2011.03.05 01:37:20 | 001,015,366 | ---- | M] () -- \Games\DR2\Dragon Age 2\packages\core\env\lt_undercityserialkiller\lt_undercityserialkiller.gpu.rim
[2011.03.05 01:37:21 | 003,296,402 | ---- | M] () -- \Games\DR2\Dragon Age 2\packages\core\env\lt_undercityserialkiller\lt_undercityserialkiller.rim
[2011.03.05 01:39:21 | 009,216,284 | ---- | M] () -- \Games\DR2\Dragon Age 2\packages\core\env\lt_undercityserialkiller\lt_undercityserialkiller_3567.gpu.rim
[1980.05.03 12:44:24 | 000,041,472 | ---- | M] () -- \Games\hry\DIRECTX\DPSERIAL.DLL
[2011.01.29 02:06:50 | 000,413,696 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60129.0\System.Runtime.Serialization.dll
[2011.03.07 17:59:41 | 001,186,816 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60129.0\System.Runtime.Serialization.ni.dll
[2011.09.05 19:07:28 | 000,005,687 | ---- | M] () -- \Program Files\PokerStars\gx\tokenserial.jpg
[2008.07.29 18:16:38 | 000,966,656 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2004.08.17 14:44:16 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2010.07.19 21:36:03 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.12.06 00:17:25 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.07.19 21:36:16 | 000,090,112 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2010.07.19 21:33:34 | 000,966,656 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009.12.06 00:35:46 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\01dc643b54310ebc5ab7e4696df426bc\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2010.07.19 23:32:31 | 002,338,304 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\bb748f8ef8c98eb5c7f79b8faee95397\System.Runtime.Serialization.ni.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2008.09.10 16:46:28 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008.07.29 18:16:38 | 000,966,656 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2008.04.14 07:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 07:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2007.06.27 18:29:04 | 000,131,072 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\system.runtime.serialization.formatters.soap.dll
[2001.10.25 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2001.10.25 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[5 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2001.10.25 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2001.10.25 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 07:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys

< *w7lxe* /s >

< *AutoRearm* /s >

< HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s >
"RTHDCPL" = RTHDCPL.EXE -- [2006.05.27 03:47:26 | 016,208,384 | R--- | M] (Realtek Semiconductor Corp.)
"SkyTel" = SkyTel.EXE -- [2006.05.16 11:04:26 | 002,879,488 | R--- | M] (Realtek Semiconductor Corp.)
"GBB36X Configure" = C:\WINDOWS\system32\JMRaidTool.exe boot -- [2006.06.02 09:46:40 | 000,385,024 | R--- | M] (Gigabyte Technology Corp.)
"RemoteControl" = "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" -- [2005.01.12 03:01:32 | 000,032,768 | ---- | M] (Cyberlink Corp.)
"NvCplDaemon" = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup -- [2008.04.14 08:52:44 | 000,033,280 | ---- | M] (Microsoft Corporation)
"NPSStartup" =
"ASUSGamerOSD" = C:\Program Files\ASUS\GamerOSD\GamerOSD.exe -- [2009.07.30 18:10:04 | 000,380,928 | ---- | M] (ASUSTeK Computer Inc.)
"Kernel and Hardware Abstraction Layer" = KHALMNPR.EXE -- [2009.06.17 09:55:10 | 000,055,824 | ---- | M] (Logitech, Inc.)
"avast5" = C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui -- [2011.11.28 19:01:24 | 003,744,552 | ---- | M] (AVAST Software)
"GrooveMonitor" = "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" -- [2006.10.27 00:47:42 | 000,031,016 | ---- | M] (Microsoft Corporation)
"LogMeIn Hamachi Ui" = "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start -- [2011.08.15 16:18:14 | 001,955,208 | ---- | M] (LogMeIn Inc.)
"RoccatIsku" = "C:\Program Files\ROCCAT\Isku Keyboard\IskuMonitor.EXE" -- [2011.05.12 07:39:00 | 000,539,688 | ---- | M] (ROCCAT GmbH)
"Malwarebytes' Anti-Malware" = "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray -- [2011.12.24 17:50:18 | 000,460,872 | ---- | M] (Malwarebytes Corporation)
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL]
"Installed" = 1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI]
"Installed" = 1
"NoChange" = 1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS]
"Installed" = 1

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 08:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"ASUS SmartDoctor" = C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe /start -- [2009.10.15 05:21:24 | 001,200,128 | ---- | M] (ASUSTeK Inc.)

< HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s >

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.01.05 10:52:04 | 000,000,512 | ---- | M] () MD5=E13C4132B8E7A8A47588A74C3472CD8F -- C:\PhysicalMBR.bin

< End of report >

#10 Příspěvek od **Mc_Murphy** » 05 led 2012 12:35

Odinstaluj ten Malwarebytes' Anti-Malware, jak jsem Ti psal! Nepíšu ty návody, že se tu u toho nudím.

Taky by neškodilo mi odpovědět, když se Tě na něco ptám.

Znovu spusť OTL.

Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
Do spodního okénka Vlastní skenování/opravy vlož tento script (pouze zelená písmenka v bílém poli!):

Kód: Vybrat vše

:Commands
[emptytemp]
[emptyflash]
[resethosts]
[purity]
[clearallrestorepoints]

:Services
gupdate
gupdatem
gusvc
JavaQuickStarterService

:OTL
SRV - File not found [Auto | Stopped] -- -- (Sukoku Service)
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q="
[2011.12.29 13:17:21 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-1.xml
[2010.04.03 16:27:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-10.xml
[2010.06.23 20:10:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-11.xml
[2010.06.30 00:33:29 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-12.xml
[2010.07.20 23:47:41 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-13.xml
[2010.12.10 21:10:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-14.xml
[2009.08.06 09:47:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-2.xml
[2009.09.04 14:18:30 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-3.xml
[2009.09.04 15:16:27 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-4.xml
[2009.09.04 17:08:30 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-5.xml
[2009.12.26 01:41:13 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-6.xml
[2010.03.12 13:35:24 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-7.xml
[2010.03.13 13:43:57 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-8.xml
[2010.03.23 22:51:21 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin-9.xml
[2010.06.21 16:35:24 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\v3680nev.default\searchplugins\icqplugin.xml
[2009.09.29 05:34:24 | 000,000,000 | ---D | M] (Sukoku) -- C:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}
O3 - HKU\S-1-5-21-57989841-2049760794-839522115-1003\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-57989841-2049760794-839522115-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [NPSStartup] File not found
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[8 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[1 C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Local Settings\temp\*.tmp -> ]
[13 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
[1 C:\WINDOWS\Temp\_avast_\*.tmp files -> C:\WINDOWS\Temp\_avast_\*.tmp -> ]

:Files
C:\Documents and Settings\All Users\Data aplikací\Sukoku
C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-57989841-2049760794-839522115-1003.job
C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-57989841-2049760794-839522115-1003.job
C:\Documents and Settings\Marek\Data aplikací\uTorrent\Pro Evolution Soccer 2010 Crack Only-RELOADED.torrent /d
C:\Documents and Settings\Marek\Data aplikací\uTorrent\Pro Evolution Soccer 2010 Pc Patch + Crack.1.torrent /d
C:\Documents and Settings\Marek\Data aplikací\uTorrent\Pro Evolution Soccer 2010 Pc Patch + Crack.torrent /d
C:\Documents and Settings\Marek\Recent\B3attle43field3CrackM10-elamigos.lnk /d
C:\Documents and Settings\Marek\Recent\codmw3.crack.buckynho.lnk /d
C:\Documents and Settings\Marek\Recent\Crack (2).lnk /d
C:\Documents and Settings\Marek\Recent\Fo54otballMan46ager2012Crack-elamigos.lnk /d
C:\Documents and Settings\Marek\Recent\Gears of War noDVD crack.lnk /d
C:\Documents and Settings\Marek\Recent\LO33TRW2arITNor4thCrackRelo-elamigos.lnk /d
C:\Documents and Settings\Marek\Recent\Lord.of.the.Rings.War.in.the.North.2011.CRACKED.by.Colly.of.PowerUploaders.part1.lnk /d
C:\Documents and Settings\Marek\Recent\Lord.of.the.Rings.War.in.the.North.2011.CRACKED.by.Colly.of.PowerUploaders.part2.lnk /d
C:\Documents and Settings\Marek\Recent\Stronghold.3-CRACKONLY_CRACKFiX-P2P.lnk /d
C:\Games\crysis 2\CR2.CRACK-FLT_EPIDEMZ.NET.rar /d
C:\Games\DR2\CRACK.rar /d
C:\Games\football manager 2012\Fo54otballMan46ager2012Crack-elamigos.rar /d
C:\Games\lord of the rings\LO33TRW2arITNor4thCrackRelo-elamigos.zip /d
C:\Games\lord of the rings\witn-by-davis-of-poweruploaders-part1.rar /d
C:\Games\lord of the rings\witn-by-davis-of-poweruploaders-part2.rar /d
C:\Games\lord of the rings\witn-by-davis-of-poweruploaders-part3.rar /d
C:\Games\lord of the rings\witn-by-davis-of-poweruploaders-part4.rar /d
C:\Games\dao\Dragon Age Origins CZ\Serial.txt /d
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NPSStartup"=-

Klikni na tlačítko [Opravit].
Po dokončení skenu se objeví log, ten mi sem vlož.
Pokud se log nevejde do jednoho příspěvku, rozděl jej na více částí.

VIRY.CZ

Prosim o kontrolu logu sekani mozilly

Prosim o kontrolu logu sekani mozilly

Re: Prosim o kontrolu logu sekani mozilly

Re: Prosim o kontrolu logu sekani mozilly

Re: Prosim o kontrolu logu sekani mozilly

Re: Prosim o kontrolu logu sekani mozilly

Re: Prosim o kontrolu logu sekani mozilly

Re: Prosim o kontrolu logu sekani mozilly

Re: Prosim o kontrolu logu sekani mozilly

Re: Prosim o kontrolu logu sekani mozilly

Re: Prosim o kontrolu logu sekani mozilly