Počítač pomaly otvára stránky

Zpráva

ErikaB · #1 Příspěvek od **ErikaB** » 27 led 2012 08:55

Dobrý deň. Prosím o kontrolu, počítač pomaly otvára stránky na internete.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Doma at 2012-01-27 08:52:13
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 68 GB (68%) free of 100 GB
Total RAM: 2046 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:52:32, on 27. 1. 2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
C:\Program Files\Mio\MMD2\RunMMD.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE
C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
D:\Stiahnuté súbory\RSIT.exe
C:\Program Files\trend micro\Doma.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = About:Blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Ad-Aware Security Toolbar - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files\adawaretb\adawareDx.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O3 - Toolbar: BS.Player ControlBar - {2C688203-7EB3-4327-9995-1CB417BA23F9} - C:\Program Files\BS.Player ControlBar\BSToolbar.dll
O3 - Toolbar: Ad-Aware Security Toolbar - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files\adawaretb\adawareDx.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [RunMMD] "C:\Program Files\Mio\MMD2\RunMMD.exe"
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKCU\..\Run: [OEXPRESS] C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [adaware] reg.exe delete "HKCU\Software\AppDataLow\Software\adaware" /f (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [adaware] reg.exe delete "HKCU\Software\AppDataLow\Software\adaware" /f (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Doma\Data aplikací\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe

--
End of file - 10830 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\RMSchedule.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default

prefs.js - "browser.startup.homepage" - "http://www.google.sk/"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11, jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {28D35620-51D9-11DE-9D13-2DB156D89593}:3.1, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1, {7FF99715-3016-4381-84CE-E4E4C9673020}:1.0, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
prefs.js - "keyword.URL" - "http://search.bearshare.com/web?src=ffb&systemid=2&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@zylom.com/ZylomGamesPlayer]
"Description"=Zylom Games Player 1.00
"Path"=C:\Documents and Settings\All Users\Data aplikací\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsILegitCheckPlugin.xpt
nsIZylomPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
npLegitCheckPlugin.dll
NPOFFICE.DLL
npzylomgamesplayer.dll

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
BearShareWebSearch.xml
dunaj-sk.xml
eBay.xml
google.xml
iMeshWebSearch.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}
{7FF99715-3016-4381-84CE-E4E4C9673020}
{87934c42-161d-45bc-8cef-ef18abe2a30c}
{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\
BearShareWebSearch.xml
bsplayer-search.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-12.xml
icqplugin-13.xml
icqplugin-14.xml
icqplugin-15.xml
icqplugin-16.xml
icqplugin-17.xml
icqplugin-18.xml
icqplugin-19.xml
icqplugin-2.xml
icqplugin-20.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.xml
iMeshWebSearch.xml
SearchquWebSearch.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-24 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2008-06-19 503808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6c97a91e-4524-4019-86af-2aa2d567bf5c}]
Ad-Aware Security Toolbar - C:\Program Files\adawaretb\adawareDx.dll [2011-12-08 86696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-10-18 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2008-06-19 503808]
{2C688203-7EB3-4327-9995-1CB417BA23F9} - BS.Player ControlBar - C:\Program Files\BS.Player ControlBar\BSToolbar.dll [2008-08-13 757192]
{6c97a91e-4524-4019-86af-2aa2d567bf5c} - Ad-Aware Security Toolbar - C:\Program Files\adawaretb\adawareDx.dll [2011-12-08 86696]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-03-28 593920]
"Adobe Photo Downloader"=C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe [2007-03-09 63712]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-11-29 421888]
"RunMMD"=C:\Program Files\Mio\MMD2\RunMMD.exe [2011-07-07 49152]
"Samsung PanelMgr"=C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe [2008-08-08 524288]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"Ad-Aware Browsing Protection"=C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe [2011-11-15 197288]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OEXPRESS"=C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE [2008-06-19 26624]
"OM2_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe [2008-02-22 95536]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
InterVideo WinCinema Manager.lnk - C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-12-18 122880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WINDOW~4\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\InterVideo\DVD6\WinDVD.exe"="C:\Program Files\InterVideo\DVD6\WinDVD.exe:*:Disabled:WinDVD"
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe"="C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home"
"C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"="C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe:*:Disabled:resident module"
"C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe"="C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe:*:Enabled:Sony Ericsson Media Manager 1.2"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\adawaretb\dtUser.exe"="C:\Program Files\adawaretb\dtUser.exe:*:Enabled:Ad-Aware Security Toolbar DTX Broker"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\iMesh Applications\iMesh\iMesh.exe"="C:\Program Files\iMesh Applications\iMesh\iMesh.exe:*:Enabled:iMesh"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.ffds"=C:\PROGRA~1\ffdshow\ffdshow.ax
"vidc.XVID"=xvidvfw.dll
"vidc.tscc"=tsccvid.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll

======List of files/folders created in the last 1 month======

2012-01-25 09:41:08 ----D---- C:\Program Files\MP4 Converter
2012-01-25 09:31:11 ----D---- C:\videooutput
2012-01-25 09:31:08 ----D---- C:\Program Files\Smallvideosoft
2012-01-25 09:31:08 ----A---- C:\WINDOWS\system32\NCMedia2.dll
2012-01-25 09:24:27 ----A---- C:\WINDOWS\system32\WMAFile.dll
2012-01-25 09:24:27 ----A---- C:\WINDOWS\system32\AudPlayer.dll
2012-01-25 09:24:27 ----A---- C:\WINDOWS\system32\AudioVisu.dll
2012-01-25 09:24:27 ----A---- C:\WINDOWS\system32\AudioRecord.dll
2012-01-25 09:24:27 ----A---- C:\WINDOWS\system32\AudioInfos.dll
2012-01-25 09:24:27 ----A---- C:\WINDOWS\system32\AudFile.dll
2012-01-25 09:24:27 ----A---- C:\WINDOWS\system32\AudDisplay.dll
2012-01-25 09:24:27 ----A---- C:\WINDOWS\system32\AudDesign.dll
2012-01-25 09:24:26 ----A---- C:\WINDOWS\system32\VB6FR.DLL
2012-01-25 09:24:26 ----A---- C:\WINDOWS\system32\TABCTFR.DLL
2012-01-25 09:24:26 ----A---- C:\WINDOWS\system32\MSCMCFR.DLL
2012-01-25 09:24:26 ----A---- C:\WINDOWS\system32\Mscc2fr.dll
2012-01-25 09:24:26 ----A---- C:\WINDOWS\system32\inetfr.DLL
2012-01-25 09:24:26 ----A---- C:\WINDOWS\system32\CMDLGFR.DLL
2012-01-25 09:24:25 ----D---- C:\Documents and Settings\Doma\Data aplikací\FreeAudioPack
2012-01-16 21:35:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2012-01-11 22:25:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2646524$
2012-01-11 22:25:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2012-01-11 22:22:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2012-01-11 22:22:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2012-01-11 22:22:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2011-12-29 21:39:13 ----D---- C:\Documents and Settings\All Users\Data aplikací\Funny Bear Studio
2011-12-29 21:19:24 ----D---- C:\Documents and Settings\Doma\Data aplikací\Western Software Technologies

======List of files/folders modified in the last 1 month======

2012-01-27 08:52:20 ----D---- C:\Program Files\Trend Micro
2012-01-27 08:52:16 ----D---- C:\WINDOWS\Prefetch
2012-01-27 08:52:09 ----D---- C:\WINDOWS\Temp
2012-01-27 08:51:51 ----A---- C:\WINDOWS\wincmd.ini
2012-01-27 08:50:19 ----D---- C:\Documents and Settings\Doma\Data aplikací\adawaretb
2012-01-27 08:46:18 ----AD---- C:\WINDOWS
2012-01-27 06:09:41 ----SD---- C:\WINDOWS\Tasks
2012-01-27 06:07:51 ----D---- C:\WINDOWS\system32\CatRoot2
2012-01-27 06:07:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection
2012-01-27 06:07:05 ----N---- C:\WINDOWS\SchedLgU.Txt
2012-01-26 19:08:18 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2012-01-26 14:15:06 ----D---- C:\Documents and Settings\Doma\Data aplikací\Skype
2012-01-25 09:43:15 ----A---- C:\WINDOWS\NeroDigital.ini
2012-01-25 09:41:08 ----D---- C:\Program Files
2012-01-25 09:40:44 ----D---- C:\WINDOWS\system32
2012-01-21 09:58:25 ----D---- C:\WINDOWS\Debug
2012-01-20 10:20:12 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-01-18 10:30:57 ----A---- C:\WINDOWS\PhotoSnapViewer.INI
2012-01-17 13:09:44 ----HD---- C:\WINDOWS\inf
2012-01-16 21:35:27 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-01-16 12:11:25 ----HD---- C:\WINDOWS\$hf_mig$
2012-01-11 22:25:51 ----SHD---- C:\WINDOWS\Installer
2012-01-11 22:25:51 ----D---- C:\Config.Msi
2012-01-11 22:23:05 ----A---- C:\WINDOWS\system32\MRT.exe
2012-01-11 13:59:16 ----D---- C:\WINDOWS\Microsoft.NET
2012-01-11 13:59:13 ----RSD---- C:\WINDOWS\assembly
2012-01-11 09:15:17 ----D---- C:\WINDOWS\WinSxS
2012-01-05 14:20:46 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem #3.txt
2012-01-04 11:01:50 ----D---- C:\Program Files\Mozilla Firefox
2011-12-29 11:44:47 ----D---- C:\WINDOWS\system32\config
2011-12-29 11:44:25 ----D---- C:\WINDOWS\system32\wbem
2011-12-29 11:44:24 ----D---- C:\WINDOWS\Registration
2011-12-28 10:58:03 ----D---- C:\Program Files\Microsoft Office

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Lbd;Lbd; C:\WINDOWS\system32\DRIVERS\Lbd.sys [2011-12-12 64512]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-04-25 100736]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\system32\DRIVERS\PxHelp20.sys [2011-11-29 45648]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-11-28 30808]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-11-28 34392]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-11-28 435032]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-11-28 314456]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-11-28 52952]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-11-28 20568]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-11-28 111320]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-08-27 165376]
R2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-08-27 18048]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-12-18 2849280]
R3 c65013264;C-Media CM6501 Like Sound UDAX Interface; C:\WINDOWS\system32\drivers\c6501.sys [2007-07-10 1310720]
R3 HdAudAddService;ATI Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\AtiHdAud.sys [2006-12-28 84992]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-04-15 34176]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-04-15 13056]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2008-03-17 101376]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:\WINDOWS\system32\DRIVERS\se59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:\WINDOWS\system32\DRIVERS\se59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:\WINDOWS\system32\DRIVERS\se59unic.sys [2006-09-05 90800]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-12-18 512000]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-11-28 44768]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-10-03 153376]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2011-12-13 2152152]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2010-08-05 583640]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-10 135664]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-10 135664]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-08-08 208896]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Ďakujem

#2 Příspěvek od **Mc_Murphy** » 27 led 2012 11:02

Zdravím.

Dej mi minutku, hnedle se na to mrknu.

#3 Příspěvek od **Mc_Murphy** » 27 led 2012 11:14

Tak, princezno

, máš to trošku zaliskané, jdeme na to.

Jako první odinstaluj program Lavasoft Ad-Aware. Program má svá nejlepší léta už dávno za sebou a v současné době není schopen čelit aktuálním hrozbám.

Dále, pokud je tam najdeš, tak v nabídce Přidat nebo odebrat programy odinstaluj tyto toolbary: Toolbar: WebTranslator, Toolbar: BS.Player ControlBar a Ad-Aware Security Toolbar.

Jsou to veliká "zdržovadla" systému a v případě například Ask.com Toolbar, Conduit Engine a dalších se dá hovořit už i o havěti.

Až to provedeš, dáme si preventivní scan s MBAM.

Stáhni a nainstaluj Malwarebytes' Anti-Malware (zkráceně MBAM) podle návodu z tohoto topicu.

Proveď aktualizaci virové databáze.
V záložce Kontrolor zvol Úplná kontrola a zaškrtni všechny pevné disky, které máš na počítači.
Předem nic nemaž!!
MBAM mívá občas falešné detekce, proto vlož jeho log do příspěvku a počkej na posouzení!

ErikaB · #4 Příspěvek od **ErikaB** » 27 led 2012 14:54

Okrem web translatoru, ktorý som nenašla je zvyšok odinštalovaný. Log prikladám.

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.60.0.1800
www.malwarebytes.org

Verze databáze: v2012.01.27.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Doma :: DOMA-2919382631 [administrátor]

Ochrana: Povolena

27. 1. 2012 12:43:26
mbam-log-2012-01-27 (14-16-46).txt

Typ: Úplná kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 276391
Uplynulý čas: 1 hodin, 1 minut, 28 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 1
HKCR\Typelib\{56ACB669-4139-5611-CBBA-F5ACB0F4DB09} (Trojan.FakeAlert) -> Žádná instrukce nebyla provedena.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

#5 Příspěvek od **Mc_Murphy** » 27 led 2012 16:14

OK, nález MBAMu dej smazat a potom MBAM zase odinstaluj.

Potom fixni v HJT níže uvedené položky.

Fixnout znamená, že spustíš HJT, zvolíš možnost [Do a system scan only] a zaškrtneš čtvereček vlevo od mnou vypsaných položek. Poté klikneš na [Fix checked] a odsouhlasíš [ANO].
Položky, které v seznamu nenajdeš, prostě přeskoč.
HJT najdeš zde: C:\Program Files\trend micro\Doma.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = About:Blank
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Ad-Aware Security Toolbar - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files\adawaretb\adawareDx.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O3 - Toolbar: BS.Player ControlBar - {2C688203-7EB3-4327-9995-1CB417BA23F9} - C:\Program Files\BS.Player ControlBar\BSToolbar.dll
O3 - Toolbar: Ad-Aware Security Toolbar - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files\adawaretb\adawareDx.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [adaware] reg.exe delete "HKCU\Software\AppDataLow\Software\adaware" /f (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [adaware] reg.exe delete "HKCU\Software\AppDataLow\Software\adaware" /f (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

A dále stáhni OTL z tohoto odkazu a ulož jej na Plochu.

Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
Zaškrtni okénko Pro všechny uživatele.
Zaškrtni okénko Kontrola na havěť "LOP".
Zaškrtni okénko Kontrola na havěť "Purity".
Stáři souborů změň z 30 dnů na 7 dnů!!
Do spodního okénka Vlastní skenování/opravy vlož tento script (pouze zelená písmenka v bílém poli!):

Kód: Vybrat vše

CREATERESTOREPOINT
netsvc
drivers32
savembr:0
/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
%userprofile%\Plocha\*.*
%userprofile%\Desktop\*.*
%ALLUSERSPROFILE%\Plocha\*.*
%ALLUSERSPROFILE%\Desktop\*.*
*crack* /s
*keygen* /s
*loader* /s
*RemoveWAT* /s
*minodlogin* /s
*tnod* /s
*TemDono* /s
*AutoKMS* /s
*KMSEmulator* /s
*activator* /s
*serial* /s
*w7lxe* /s
*AutoRearm* /s
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

Klikni na tlačítko [Prohledat].
Po dokončení skenu se objeví logy OTL.txt a Extras.txt, oba mi sem vlož.
Logy se nevejdou do jednoho, rozděl je tedy prosím do více příspěvků.

ErikaB · #6 Příspěvek od **ErikaB** » 27 led 2012 17:04

Všetko som urobila, vkladám logy.

OTL logfile created on: 27. 1. 2012 16:45:09 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Doma\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

2,00 Gb Total Physical Memory | 1,44 Gb Available Physical Memory | 72,04% Memory free
3,85 Gb Paging File | 3,40 Gb Available in Paging File | 88,36% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 67,43 Gb Free Space | 69,05% Space Free | Partition Type: NTFS
Drive D: | 200,43 Gb Total Space | 175,98 Gb Free Space | 87,80% Space Free | Partition Type: NTFS

Computer Name: DOMA-2919382631 | User Name: Doma | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.01.27 16:40:01 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Doma\Plocha\OTL.exe
PRC - [2011.11.28 19:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011.11.28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011.07.07 17:23:12 | 000,049,152 | ---- | M] (Mireo) -- C:\Program Files\Mio\MMD2\RunMMD.exe
PRC - [2011.05.06 20:21:41 | 001,010,232 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2010.08.05 07:46:02 | 000,583,640 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2008.08.08 06:03:41 | 000,524,288 | ---- | M] () -- C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
PRC - [2008.06.19 09:57:36 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE
PRC - [2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.02.22 13:29:10 | 000,095,536 | ---- | M] (OLYMPUS IMAGING CORP.) -- C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
PRC - [2007.03.28 01:07:42 | 000,593,920 | R--- | M] () -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
PRC - [2007.02.28 10:55:18 | 000,880,640 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
PRC - [2007.02.09 17:03:38 | 000,983,040 | R--- | M] (Teleca AB) -- C:\Program Files\Common Files\Teleca Shared\Generic.exe
PRC - [2006.11.03 18:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe

========== Modules (No Company Name) ==========

MOD - [2012.01.27 10:09:36 | 001,687,552 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12012700\algo.dll
MOD - [2012.01.11 13:58:20 | 011,817,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\62e34cfb5a8b233667c7c5a47a32ad93\System.Web.ni.dll
MOD - [2012.01.11 13:58:12 | 000,771,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\3c272cad7afb127e2a2bdb8a5a808512\System.Runtime.Remoting.ni.dll
MOD - [2011.10.14 05:28:38 | 000,998,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\90b90e700e59d73d6d692cf74e1ba16e\System.Management.ni.dll
MOD - [2011.10.14 04:50:41 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll
MOD - [2011.10.14 04:50:36 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll
MOD - [2011.10.14 04:50:22 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll
MOD - [2011.10.13 20:36:53 | 007,950,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll
MOD - [2011.10.13 20:36:42 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MOD - [2011.05.06 20:21:40 | 000,327,224 | ---- | M] () -- C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\11.0.696.65\ppgooglenaclpluginchrome.dll
MOD - [2011.05.06 20:21:38 | 004,125,752 | ---- | M] () -- C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\11.0.696.65\pdf.dll
MOD - [2011.05.06 20:21:15 | 000,333,368 | ---- | M] () -- C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\11.0.696.65\Locales\sk.dll
MOD - [2011.05.06 20:20:06 | 000,102,472 | ---- | M] () -- C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\11.0.696.65\avutil-50.dll
MOD - [2011.05.06 20:20:04 | 000,194,632 | ---- | M] () -- C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\11.0.696.65\avformat-52.dll
MOD - [2011.05.06 20:20:03 | 001,823,304 | ---- | M] () -- C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\11.0.696.65\avcodec-52.dll
MOD - [2011.05.06 17:45:30 | 006,111,904 | ---- | M] () -- C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\Application\11.0.696.65\gcswf32.dll
MOD - [2008.08.08 06:03:41 | 000,524,288 | ---- | M] () -- C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
MOD - [2008.06.19 09:57:36 | 000,200,704 | ---- | M] () -- C:\Documents and Settings\All Users\Data aplikací\LangSoft\TRNOET.DLL
MOD - [2008.06.19 09:57:36 | 000,045,056 | ---- | M] () -- C:\Documents and Settings\All Users\Data aplikací\LangSoft\TRNOEH.DLL
MOD - [2008.06.19 09:57:36 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE
MOD - [2008.06.19 01:20:24 | 001,675,264 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.2862.19736__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2008.06.19 01:20:24 | 000,245,760 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.2862.19696__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:24 | 000,196,608 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.2862.19748__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2008.06.19 01:20:24 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.2862.19728__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2008.06.19 01:20:24 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.2862.19715__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:23 | 000,688,128 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Wizard\2.0.2862.19904__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Wizard.dll
MOD - [2008.06.19 01:20:23 | 000,483,328 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.2862.19947__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2008.06.19 01:20:23 | 000,364,544 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Wizard\2.0.2862.19926__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Wizard.dll
MOD - [2008.06.19 01:20:23 | 000,077,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.2862.19919__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:23 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.2862.19885__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:23 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.2862.19836__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:10 | 000,135,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.2862.19954__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:10 | 000,106,496 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Grid.HydraVision.Dashboard\2.0.2862.19973__90ba9c70f846762e\CLI.Aspect.Grid.HydraVision.Dashboard.dll
MOD - [2008.06.19 01:20:10 | 000,102,400 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.2862.19742__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:10 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.2862.19709__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:10 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.2862.19741__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:10 | 000,011,776 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Runtime\2.0.2862.19972__90ba9c70f846762e\CLI.Caste.HydraVision.Runtime.dll
MOD - [2008.06.19 01:20:10 | 000,008,704 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Shared\2.0.2862.19972__90ba9c70f846762e\CLI.Caste.HydraVision.Shared.dll
MOD - [2008.06.19 01:20:10 | 000,007,680 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Dashboard\2.0.2862.19972__90ba9c70f846762e\CLI.Caste.HydraVision.Dashboard.dll
MOD - [2008.06.19 01:20:09 | 000,794,624 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.2862.19844__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:09 | 000,425,984 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Dashboard\2.0.2862.19971__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:09 | 000,401,408 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.2862.19910__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2008.06.19 01:20:09 | 000,352,256 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.2862.19892__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:09 | 000,090,112 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.2862.19897__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2008.06.19 01:20:09 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Runtime\2.0.2862.19970__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:09 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.2862.19891__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:08 | 000,901,120 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Dashboard\2.0.2862.19920__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:08 | 000,663,552 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Dashboard\2.0.2862.19886__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:08 | 000,589,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.2862.19759__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:08 | 000,434,176 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.2862.19716__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:08 | 000,331,776 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.2862.19830__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:08 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.2862.19754__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:08 | 000,118,784 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.2862.19858__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:08 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.2862.19843__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:08 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.2862.19836__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:08 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.2862.19764__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:08 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.2862.19858__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:08 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.2862.19877__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:07 | 000,479,232 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.2862.19837__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2008.06.19 01:20:07 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.2820.26372__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.2820.26370__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2008.06.19 01:20:07 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2008.06.19 01:20:07 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.2862.19843__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2008.06.19 01:20:07 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.2820.26369__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2008.06.19 01:20:07 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.2820.26409__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2008.06.19 01:20:07 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2820.26370__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2008.06.19 01:20:07 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2820.26382__90ba9c70f846762e\DEM.OS.I0602.dll
MOD - [2008.06.19 01:20:07 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0703\2.0.2651.18802__90ba9c70f846762e\DEM.Graphics.I0703.dll
MOD - [2008.06.19 01:20:07 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.2820.26375__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.2820.26374__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.2820.26371__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.2820.26371__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.2820.26371__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.2820.26375__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.2820.26381__90ba9c70f846762e\DEM.OS.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.2820.26382__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.2820.26374__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.2820.26383__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.2820.26382__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.2820.26385__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.2820.26376__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.2820.26386__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2008.06.19 01:20:07 | 000,006,656 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2008.06.19 01:20:06 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.2820.26388__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Shared\2.0.2820.26382__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.2820.26387__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.2820.26385__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.2820.26385__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.2820.26396__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.2820.26385__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.2820.26387__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.2820.26375__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.2820.26383__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.2820.26382__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.2820.26386__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.2820.26377__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Foundation\2.0.2820.26370__90ba9c70f846762e\AEM.Foundation.dll
MOD - [2008.06.19 01:20:06 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.2820.26383__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.2820.26383__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2008.06.19 01:20:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.2820.26375__90ba9c70f846762e\APM.Foundation.dll
MOD - [2008.06.19 01:20:06 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2820.26372__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2008.06.19 01:20:02 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.2862.19963__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2008.06.19 01:20:02 | 000,011,264 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.2862.19974__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll
MOD - [2008.06.19 01:20:02 | 000,005,120 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray.resources\2.0.2862.19931_cs_90ba9c70f846762e\CLI.Component.Systemtray.resources.dll
MOD - [2008.06.19 01:20:01 | 000,471,040 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.2862.19723__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2008.06.19 01:20:01 | 000,458,752 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.2862.19931__90ba9c70f846762e\CLI.Component.Systemtray.dll
MOD - [2008.06.19 01:20:01 | 000,102,400 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.2862.19938__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2008.06.19 01:20:01 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.2862.19688__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2008.06.19 01:20:01 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2862.19937__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2008.06.19 01:20:01 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.2820.26371__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2008.06.19 01:20:01 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.2820.26374__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2008.06.19 01:20:01 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2820.26371__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2008.06.19 01:20:01 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.2820.26394__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2008.06.19 01:20:01 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2820.26376__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2008.06.19 01:20:01 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.2820.26376__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2008.06.19 01:20:01 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.2820.26371__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll
MOD - [2008.06.19 01:20:01 | 000,006,656 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.2862.19688__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2008.06.19 01:20:00 | 001,503,232 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.2862.19704__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2008.06.19 01:20:00 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.2862.19689__90ba9c70f846762e\ATIDEMOS.dll
MOD - [2008.06.19 01:20:00 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.2862.19687__90ba9c70f846762e\APM.Server.dll
MOD - [2008.06.19 01:20:00 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.2862.19688__90ba9c70f846762e\AEM.Server.dll
MOD - [2008.06.19 01:20:00 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.2820.26374__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2008.06.19 01:20:00 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.2862.19938__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2008.06.19 01:20:00 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2008.06.19 01:20:00 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.2820.26388__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2007.09.20 17:34:58 | 000,129,024 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2007.08.13 10:39:15 | 000,022,723 | ---- | M] () -- C:\WINDOWS\system32\cl31cl3.dll
MOD - [2007.05.24 11:47:46 | 000,430,080 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2007.03.28 01:07:42 | 000,593,920 | R--- | M] () -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
MOD - [2006.11.15 13:57:54 | 004,534,272 | R--- | M] () -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application LauncherBmp.dll
MOD - [2006.11.15 11:58:46 | 000,023,040 | R--- | M] () -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application LauncherLg.dll
MOD - [2006.03.09 17:45:36 | 000,081,920 | R--- | M] () -- C:\Program Files\Common Files\Teleca Shared\boost_log-vc71-mt-1_33.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011.11.28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010.08.05 07:46:02 | 000,583,640 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2006.11.03 18:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - [2011.11.28 18:53:53 | 000,435,032 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.11.28 18:53:35 | 000,314,456 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.11.28 18:52:19 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.11.28 18:52:16 | 000,052,952 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.11.28 18:52:02 | 000,111,320 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.11.28 18:51:50 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.11.28 18:48:49 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2008.08.27 09:03:38 | 000,165,376 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2008.08.27 09:03:38 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2008.03.17 10:03:46 | 000,101,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2007.12.18 03:46:24 | 002,849,280 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007.08.13 03:48:57 | 000,041,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2007.07.10 02:42:32 | 001,310,720 | R--- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\c6501.sys -- (c65013264)
DRV - [2006.12.28 04:44:44 | 000,084,992 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdAud.sys -- (HdAudAddService)
DRV - [2006.09.05 19:09:26 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59obex.sys -- (se59obex)
DRV - [2006.09.05 19:08:40 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59mgmt.sys -- (se59mgmt) Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM)
DRV - [2006.09.05 19:07:52 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59mdm.sys -- (se59mdm)
DRV - [2006.09.05 19:07:48 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59mdfl.sys -- (se59mdfl)
DRV - [2006.09.05 19:07:00 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59bus.sys -- (se59bus) Sony Ericsson Device 089 driver (WDM)
DRV - [2006.09.05 19:06:28 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59nd5.sys -- (se59nd5) Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS)
DRV - [2006.09.05 19:06:22 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se59unic.sys -- (se59unic) Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM)
DRV - [2006.07.01 21:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.04.25 01:52:28 | 000,100,736 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2006.04.15 04:09:06 | 000,013,056 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.04.15 04:09:04 | 000,034,176 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2004.08.13 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1177238915-963894560-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-1177238915-963894560-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "BearShare Web Search"
FF - prefs.js..browser.search.order.1: "BearShare Web Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.sk/"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {28D35620-51D9-11DE-9D13-2DB156D89593}:3.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
FF - prefs.js..extensions.enabledItems: {7FF99715-3016-4381-84CE-E4E4C9673020}:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "http://search.bearshare.com/web?src=ffb&systemid=2&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: C:\Documents and Settings\All Users\Data aplikací\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Update\1.3.21.53\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Update\1.3.21.53\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Doma\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.12.26 13:51:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.01.04 11:01:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.05.01 08:59:34 | 000,000,000 | ---D | M]

[2008.06.21 16:38:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Extensions
[2008.06.21 16:38:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Extensions\songbird@songbirdnest.com
[2012.01.27 12:34:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions
[2010.08.02 18:14:35 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.02.23 14:54:17 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}
[2011.02.12 20:03:52 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010.09.14 13:48:25 | 000,002,506 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\BearShareWebSearch.xml
[2008.10.06 16:01:53 | 000,002,447 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\bsplayer-search.xml
[2012.01.25 17:44:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-1.xml
[2009.04.28 16:16:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-10.xml
[2009.06.13 18:51:29 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-11.xml
[2009.07.23 07:06:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-12.xml
[2009.08.06 07:50:09 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-13.xml
[2009.09.10 12:47:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-14.xml
[2010.06.25 12:19:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-15.xml
[2010.06.27 15:21:32 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-16.xml
[2010.07.30 17:16:47 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-17.xml
[2010.09.09 14:31:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-18.xml
[2010.09.16 19:32:19 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-19.xml
[2008.09.27 18:20:59 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-2.xml
[2010.10.20 19:07:45 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-20.xml
[2008.10.02 18:19:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-3.xml
[2008.11.14 08:17:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-4.xml
[2008.12.18 16:41:32 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-5.xml
[2009.02.07 15:41:17 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-6.xml
[2009.03.06 13:36:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-7.xml
[2009.03.28 14:46:59 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-8.xml
[2009.04.23 13:45:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-9.xml
[2008.08.15 19:02:21 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin.xml
[2010.04.12 13:01:34 | 000,002,456 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\iMeshWebSearch.xml
[2010.08.12 12:12:24 | 000,005,529 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\SearchquWebSearch.xml
[2012.01.04 11:01:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.10.14 09:32:22 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2008.12.14 13:31:16 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2012.01.04 11:01:39 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.10.03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2006.09.26 11:03:14 | 000,098,304 | ---- | M] (Zylom) -- C:\Program Files\mozilla firefox\plugins\npzylomgamesplayer.dll
[2010.01.01 09:00:00 | 000,001,583 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\atlas-sk.xml
[2010.01.01 09:00:00 | 000,001,380 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\azet-sk.xml
[2010.09.14 13:48:25 | 000,002,506 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\BearShareWebSearch.xml
[2010.01.01 09:00:00 | 000,001,479 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\dunaj-sk.xml
[2010.04.12 13:01:34 | 000,002,456 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\iMeshWebSearch.xml
[2010.01.01 09:00:00 | 000,001,473 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slovnik-sk.xml
[2010.01.01 09:00:00 | 000,001,104 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-sk.xml
[2010.01.01 09:00:00 | 000,000,830 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\zoznam-sk.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Doma\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\11.0.696.65\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Documents and Settings\Doma\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\11.0.696.65\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Doma\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\11.0.696.65\gcswf32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Documents and Settings\Doma\Data aplikac\u00ED\Mozilla\plugins\np-mswmp.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U22 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.4.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Zylom Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npzylomgamesplayer.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Doma\Local Settings\Data aplikac\u00ED\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Unity Player (Enabled) = C:\Documents and Settings\Doma\Local Settings\Data aplikac\u00ED\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: AT_Bayonetta = C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\iodndeanggehkmjpcojknjghdninnhfm\3\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\Doma\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\

O1 HOSTS File: ([2011.12.13 21:47:49 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O3 - HKU\S-1-5-21-1177238915-963894560-839522115-1004\..\Toolbar\WebBrowser: (no name) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - No CLSID value found.
O3 - HKU\S-1-5-21-1177238915-963894560-839522115-1004\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O4 - HKLM..\Run: [RunMMD] C:\Program Files\Mio\MMD2\RunMMD.exe (Mireo)
O4 - HKLM..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe ()
O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe ()
O4 - HKU\S-1-5-21-1177238915-963894560-839522115-1004..\Run: [OEXPRESS] C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE ()
O4 - HKU\S-1-5-21-1177238915-963894560-839522115-1004..\Run: [OM2_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe (OLYMPUS IMAGING CORP.)
O4 - HKU\.DEFAULT..\RunOnce: [adaware_XP] reg.exe delete "HKCU\Software\adaware" /f File not found
O4 - HKU\S-1-5-18..\RunOnce: [adaware_XP] reg.exe delete "HKCU\Software\adaware" /f File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1177238915-963894560-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1177238915-963894560-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1177238915-963894560-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1177238915-963894560-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Doma\Data aplikací\DVDVideoSoftIEHelpers\freeyoutubedownload.htm ()
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.119.113.244
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{754E2BA1-109A-4E65-B618-11131F32612A}: DhcpNameServer = 217.119.113.244
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Doma\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Doma\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.06.19 07:04:18 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.ffds - C:\Program Files\ffdshow\ffdshow.ax ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2012.01.27 16:40:23 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Doma\Plocha\OTL.exe
[2012.01.27 12:41:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doma\Data aplikací\Malwarebytes
[2012.01.27 12:40:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2012.01.27 08:46:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Doma\Recent
[2012.01.26 16:45:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Krištofove dobrodružstvá s angličtinou
[2012.01.25 09:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\MP4 Converter
[2012.01.25 09:41:08 | 000,000,000 | ---D | C] -- C:\Program Files\MP4 Converter
[2012.01.25 09:31:11 | 000,000,000 | ---D | C] -- C:\videooutput
[2012.01.25 09:31:08 | 000,000,000 | ---D | C] -- C:\Program Files\Smallvideosoft
[2012.01.25 09:31:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Freez software
[2012.01.25 09:24:37 | 000,164,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\COMCT232.OCX
[2012.01.25 09:24:27 | 002,084,864 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\AudDesign.dll
[2012.01.25 09:24:27 | 001,986,560 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\AudFile.dll
[2012.01.25 09:24:27 | 001,212,416 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\AudioInfos.dll
[2012.01.25 09:24:27 | 000,479,232 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\AudioVisu.dll
[2012.01.25 09:24:27 | 000,458,752 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\AudPlayer.dll
[2012.01.25 09:24:27 | 000,454,656 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\AudioRecord.dll
[2012.01.25 09:24:27 | 000,417,792 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\AudDisplay.dll
[2012.01.25 09:24:27 | 000,348,160 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\WMAFile.dll
[2012.01.25 09:24:26 | 000,224,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TABCTL32.OCX
[2012.01.25 09:24:26 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCMCFR.DLL
[2012.01.25 09:24:26 | 000,119,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VB6FR.DLL
[2012.01.25 09:24:26 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Mscc2fr.dll
[2012.01.25 09:24:26 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CMDLGFR.DLL
[2012.01.25 09:24:26 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TABCTFR.DLL
[2012.01.25 09:24:26 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetfr.DLL
[2012.01.25 09:24:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Doma\Data aplikací\FreeAudioPack
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2012.01.27 16:47:15 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.01.27 16:40:01 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Doma\Plocha\OTL.exe
[2012.01.27 16:34:16 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012.01.27 16:31:43 | 000,000,916 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012.01.27 16:31:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.01.27 15:30:00 | 000,000,920 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012.01.27 12:41:07 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012.01.27 10:17:30 | 000,000,000 | ---- | M] () -- C:\WINDOWS\XXLGSC
[2012.01.27 09:23:21 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2012.01.27 08:58:34 | 000,001,938 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2012.01.26 19:08:18 | 000,000,252 | ---- | M] () -- C:\WINDOWS\tasks\RMSchedule.job
[2012.01.26 06:23:18 | 000,000,064 | ---- | M] () -- C:\WINDOWS\System32\rp_stats.dat
[2012.01.26 06:23:18 | 000,000,044 | ---- | M] () -- C:\WINDOWS\System32\rp_rules.dat
[2012.01.25 09:43:15 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.01.25 09:41:09 | 000,000,648 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\MP4 Converter.lnk
[2012.01.25 09:31:08 | 000,000,879 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\Freez FLV to AVI MPEG WMV Converter.lnk
[2012.01.25 08:23:42 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.01.27 16:47:15 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.01.25 09:41:09 | 000,000,648 | ---- | C] () -- C:\Documents and Settings\Doma\Plocha\MP4 Converter.lnk
[2012.01.25 09:31:08 | 008,676,883 | ---- | C] () -- C:\WINDOWS\System32\NCMedia2.dll
[2012.01.25 09:31:08 | 000,000,879 | ---- | C] () -- C:\Documents and Settings\Doma\Plocha\Freez FLV to AVI MPEG WMV Converter.lnk
[2012.01.25 09:24:27 | 000,116,296 | ---- | C] () -- C:\WINDOWS\System32\NCTWMAProfiles.prx
[2011.12.26 17:30:13 | 000,000,093 | ---- | C] () -- C:\WINDOWS\dinksmallwood.ini
[2011.12.16 22:50:00 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2011.12.16 22:50:00 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2011.12.13 21:27:04 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011.12.13 21:27:03 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011.12.13 21:27:03 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011.12.13 21:27:03 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011.12.13 21:27:03 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011.04.02 23:15:20 | 000,000,098 | ---- | C] () -- C:\WINDOWS\OrdPus.ini
[2011.04.02 22:17:55 | 000,000,104 | ---- | C] () -- C:\WINDOWS\hexpus.ini
[2011.04.02 20:01:13 | 000,000,026 | ---- | C] () -- C:\WINDOWS\kpussel.ini
[2011.04.02 19:33:54 | 000,000,025 | ---- | C] () -- C:\WINDOWS\mosaik.ini
[2011.04.02 19:15:02 | 000,000,055 | ---- | C] () -- C:\WINDOWS\memory.ini
[2011.04.02 19:14:19 | 000,000,736 | ---- | C] () -- C:\WINDOWS\kk.ini
[2011.03.23 10:18:16 | 000,000,014 | ---- | C] () -- C:\WINDOWS\popcinfo.dat
[2011.02.12 20:43:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2011.02.12 20:21:00 | 000,005,120 | ---- | C] () -- C:\Documents and Settings\Doma\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.02 16:17:08 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010.12.28 10:09:10 | 000,000,369 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2010.11.13 21:42:45 | 000,241,368 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2010.10.21 05:32:08 | 000,037,336 | ---- | C] () -- C:\WINDOWS\System32\CleanMFT32.exe
[2010.09.29 17:32:52 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009.09.24 07:06:56 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009.07.01 15:38:02 | 000,479,232 | ---- | C] () -- C:\WINDOWS\ssndii.exe
[2009.07.01 15:36:28 | 000,022,723 | ---- | C] () -- C:\WINDOWS\System32\cl31cl3.dll
[2009.01.21 18:40:18 | 000,000,294 | ---- | C] () -- C:\WINDOWS\SILCOM_P.INI
[2008.10.10 15:42:42 | 000,000,042 | ---- | C] () -- C:\WINDOWS\PCSPATS.DAT
[2008.10.10 15:42:31 | 000,343,040 | ---- | C] () -- C:\WINDOWS\System32\lffpx7.dll
[2008.10.10 15:42:31 | 000,116,736 | ---- | C] () -- C:\WINDOWS\System32\lfkodak.dll
[2008.09.14 14:44:32 | 000,000,040 | -HS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\.zreglib
[2008.08.27 09:03:38 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2008.08.27 09:03:38 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2008.08.27 08:08:13 | 000,000,032 | ---- | C] () -- C:\WINDOWS\CD-Start.INI
[2008.08.06 20:03:07 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\Doma\Local Settings\Data aplikací\fusioncache.dat
[2008.07.07 10:49:00 | 000,010,151 | ---- | C] () -- C:\WINDOWS\hpdj5700.ini
[2008.07.04 17:02:15 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2008.07.04 15:07:32 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.06.19 19:37:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008.06.19 09:49:43 | 000,002,455 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2008.06.19 09:45:02 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.06.19 09:34:09 | 000,000,192 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2008.06.19 09:33:04 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2008.06.19 09:33:04 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2008.06.19 09:33:04 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2008.06.19 09:33:04 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2008.06.19 09:33:04 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2008.06.19 09:33:04 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2008.06.19 09:32:55 | 000,831,600 | ---- | C] () -- C:\WINDOWS\System32\Ctaa1.dat
[2008.06.19 09:32:55 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\cddvdint.dll
[2008.06.19 09:25:33 | 000,005,018 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2008.06.19 09:25:33 | 000,000,056 | RHS- | C] () -- C:\WINDOWS\System32\EE5DFB6911.sys
[2008.06.19 09:23:44 | 000,001,938 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008.06.19 07:05:43 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008.06.19 07:02:23 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008.06.19 06:09:07 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.06.19 06:06:32 | 000,223,224 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008.06.19 01:21:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2008.06.19 01:15:38 | 000,887,724 | R--- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2008.06.19 01:15:37 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2008.06.19 01:15:36 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativvaxx.dat
[2008.06.19 01:15:35 | 000,160,289 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2008.06.19 01:13:32 | 000,053,248 | R--- | C] () -- C:\WINDOWS\System32\C6501rm.dll
[2008.06.19 01:13:32 | 000,000,162 | ---- | C] () -- C:\WINDOWS\C6501.ini.cfl
[2008.06.19 01:13:09 | 000,004,571 | R--- | C] () -- C:\WINDOWS\C6501.ini.cfg
[2008.06.19 01:12:59 | 000,000,326 | R--- | C] () -- C:\WINDOWS\c6501.ini
[2008.06.19 01:10:44 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008.06.19 01:10:43 | 000,012,358 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008.06.19 01:10:29 | 000,012,536 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2007.08.21 10:51:16 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2007.08.21 08:36:12 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2006.03.02 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006.03.02 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006.03.02 13:00:00 | 000,459,706 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006.03.02 13:00:00 | 000,455,830 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2006.03.02 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006.03.02 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2006.03.02 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006.03.02 13:00:00 | 000,092,012 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2006.03.02 13:00:00 | 000,078,710 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006.03.02 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006.03.02 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2006.03.02 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006.03.02 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006.03.02 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006.03.02 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006.03.02 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004.09.05 07:59:50 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2004.09.05 07:58:04 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2004.07.12 22:07:21 | 003,375,104 | ---- | C] () -- C:\WINDOWS\System32\qt-mt331.dll
[2003.04.09 14:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2012.01.27 16:31:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection
[2009.05.23 20:09:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alawar Stargaze
[2010.10.08 16:48:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2009.06.12 20:07:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Awem
[2011.04.05 15:17:16 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2009.04.03 13:51:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DVDXStudio
[2009.09.23 07:49:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Fugazo
[2011.12.29 21:39:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Funny Bear Studio
[2008.06.19 09:57:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LangSoft
[2009.09.19 18:31:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MumboJumbo
[2008.10.01 12:24:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\n7-89-o9-3r-4t-r9
[2009.09.24 11:41:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PlayFirst
[2011.03.24 13:46:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Playrix Entertainment
[2009.09.24 08:04:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Reflexivev1005
[2009.12.19 19:34:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sandlot Games
[2008.06.21 16:39:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SongbirdVLC
[2009.02.22 13:21:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Teleca
[2012.01.26 19:08:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2009.09.26 14:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Zylom
[2011.03.02 12:34:04 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{888803CF-24CB-4360-955A-9B6EE8BEEDC1}
[2010.05.30 16:51:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Arkadium
[2009.10.25 16:11:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Awem
[2011.03.23 09:52:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Babylonia
[2009.09.22 07:21:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Big Fish Games
[2009.04.13 13:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\BSplayer
[2008.10.06 16:01:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\BSplayer Pro
[2011.12.26 13:54:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\DDMSettings
[2011.02.12 20:03:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\DVDVideoSoftIEHelpers
[2009.10.27 19:32:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\EleFun Games
[2012.01.25 09:24:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\FreeAudioPack
[2011.04.11 19:22:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\GameHouse
[2009.02.01 19:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Gamelab
[2011.07.12 11:15:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\GetRightToGo
[2009.05.19 09:01:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\gtk-2.0
[2009.10.12 12:18:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\HdO Adventure
[2010.06.01 19:26:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\HiT-MM
[2008.06.25 21:10:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\ICQ
[2008.06.25 20:59:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\ICQ Toolbar
[2009.12.19 17:33:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\iMaxGen
[2008.06.19 09:33:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\InterVideo
[2008.06.19 09:57:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\LangSoft
[2010.06.19 19:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Leadertech
[2009.09.21 07:15:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Pharaohs Secret
[2010.06.24 18:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\PhotoScape
[2009.09.24 11:41:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\PlayFirst
[2009.09.24 11:54:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Reflexivev1002
[2010.10.23 18:02:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Registry Mechanic
[2011.04.02 22:33:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\searchqutb
[2010.06.02 18:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\SerpentOfIsis
[2008.06.21 16:38:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Songbird2
[2008.10.03 11:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Teleca
[2011.12.21 20:37:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Thunderbird
[2011.03.20 18:52:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\TuxPaint
[2009.12.06 16:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Unity
[2011.12.29 21:19:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Western Software Technologies
[2009.09.26 14:42:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Zylom
[2012.01.27 09:23:21 | 000,000,486 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2012.01.27 16:34:16 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2012.01.26 19:08:18 | 000,000,252 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job

========== Purity Check ==========

========== Custom Scans ==========

< netsvc >

ErikaB · #7 Příspěvek od **ErikaB** » 27 led 2012 17:06

========== Purity Check ==========

========== Custom Scans ==========

< netsvc >

< MD5 for: ATAPI.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006.03.02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006.03.02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys
[2006.03.02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 13:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 23:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 23:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 13:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: SCECLI.DLL >
[2006.03.02 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SVCHOST.EXE >
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2006.03.02 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< %systemroot%*.* /U /s >
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[14 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2010.11.24 12:59:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Adobe
[2008.06.26 20:05:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\AdobeUM
[2008.12.27 12:07:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Ahead
[2008.07.13 17:59:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Apple Computer
[2010.05.30 16:51:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Arkadium
[2008.06.19 01:22:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\ATI
[2009.10.25 16:11:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Awem
[2011.03.23 09:52:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Babylonia
[2009.09.22 07:21:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Big Fish Games
[2009.04.13 13:24:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\BSplayer
[2008.10.06 16:01:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\BSplayer Pro
[2011.12.26 13:54:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\DDMSettings
[2011.12.26 13:51:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\DivX
[2011.02.12 20:03:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\DVDVideoSoftIEHelpers
[2009.10.27 19:32:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\EleFun Games
[2012.01.25 09:24:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\FreeAudioPack
[2011.04.11 19:22:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\GameHouse
[2009.02.01 19:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Gamelab
[2011.07.12 11:15:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\GetRightToGo
[2009.11.10 17:46:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Google
[2009.05.19 09:01:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\gtk-2.0
[2009.10.12 12:18:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\HdO Adventure
[2009.04.28 17:34:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Help
[2010.06.01 19:26:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\HiT-MM
[2008.06.25 21:10:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\ICQ
[2008.06.25 20:59:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\ICQ Toolbar
[2009.09.26 14:42:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Identities
[2009.12.19 17:33:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\iMaxGen
[2008.06.19 01:11:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\InstallShield
[2008.06.19 09:33:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\InterVideo
[2008.06.19 09:57:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\LangSoft
[2010.06.19 19:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Leadertech
[2009.06.22 18:28:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Macromedia
[2012.01.27 12:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Malwarebytes
[2011.03.19 18:16:26 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Doma\Data aplikací\Microsoft
[2010.06.26 20:40:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Mozilla
[2009.09.21 07:15:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Pharaohs Secret
[2010.06.24 18:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\PhotoScape
[2009.09.24 11:41:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\PlayFirst
[2009.09.24 11:54:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Reflexivev1002
[2010.10.23 18:02:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Registry Mechanic
[2011.04.02 22:33:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\searchqutb
[2010.06.02 18:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\SerpentOfIsis
[2012.01.27 12:11:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Skype
[2011.10.06 09:23:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\skypePM
[2008.06.21 16:38:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Songbird2
[2008.08.06 19:44:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Sony Ericsson
[2008.10.15 19:22:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Sun
[2008.10.03 11:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Teleca
[2011.12.21 20:37:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Thunderbird
[2011.03.20 18:52:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\TuxPaint
[2011.01.29 12:15:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\U3
[2009.12.06 16:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Unity
[2011.12.29 21:19:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Western Software Technologies
[2008.06.27 16:53:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\WinRAR
[2009.09.26 14:42:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Doma\Data aplikací\Zylom

< %APPDATA%\*.exe /s >
[2008.03.29 17:42:00 | 000,103,424 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\BSplayer\Haali media splitter\dsmux.exe
[2008.03.29 17:42:02 | 000,335,872 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\BSplayer\Haali media splitter\gdsmux.exe
[2008.03.29 17:41:54 | 000,135,168 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\BSplayer\Haali media splitter\mkv2vfr.exe
[2008.06.10 09:11:02 | 000,041,412 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\BSplayer\Haali media splitter\uninstall.exe
[2010.11.24 12:59:25 | 000,038,208 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2008.06.19 01:18:42 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Microsoft\Installer\{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}\ARPPRODUCTICON.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2012.01.27 09:23:21 | 000,000,486 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2012.01.03 21:55:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
[2012.01.27 16:31:43 | 000,000,916 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2012.01.27 15:30:00 | 000,000,920 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2012.01.27 16:34:16 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2012.01.26 19:08:18 | 000,000,252 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2008.06.19 06:05:43 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2008.06.19 06:05:43 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2008.06.19 06:05:43 | 000,471,040 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.01.27 12:41:07 | 000,002,553 | ---- | M] () -- C:\WINDOWS\system32\CONFIG.NT
[2012.01.26 06:23:18 | 000,000,044 | ---- | M] () -- C:\WINDOWS\system32\rp_rules.dat
[2012.01.26 06:23:18 | 000,000,064 | ---- | M] () -- C:\WINDOWS\system32\rp_stats.dat
[2012.01.25 08:23:42 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl

< %SYSTEMDRIVE%\*.exe >

< %userprofile%\Plocha\*.* >
[2012.01.01 18:08:37 | 000,000,525 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\Air Assault.lnk
[2010.10.08 16:48:35 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\avast! Free Antivirus.lnk
[2011.12.29 20:56:00 | 000,000,548 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\Bomber Mario.lnk
[2012.01.25 09:31:08 | 000,000,879 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\Freez FLV to AVI MPEG WMV Converter.lnk
[2011.12.21 20:49:55 | 000,000,110 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\gmail.url
[2012.01.25 09:41:09 | 000,000,648 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\MP4 Converter.lnk
[2008.06.19 09:29:53 | 000,002,401 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\Nero StartSmart.lnk
[2012.01.27 16:40:01 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Doma\Plocha\OTL.exe
[2010.06.30 19:24:08 | 000,011,264 | -H-- | M] () -- C:\Documents and Settings\Doma\Plocha\photothumb.db
[2009.08.31 16:54:53 | 000,013,312 | -HS- | M] () -- C:\Documents and Settings\Doma\Plocha\Thumbs.db
[2008.06.19 09:23:45 | 000,000,708 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\Total Commander.lnk
[2011.12.29 21:38:58 | 000,000,594 | ---- | M] () -- C:\Documents and Settings\Doma\Plocha\World Riddles 2.lnk

< %userprofile%\Desktop\*.* >

< %ALLUSERSPROFILE%\Plocha\*.* >
[2010.10.30 14:02:44 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
[2009.05.26 09:59:52 | 000,000,754 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mobile Partner.lnk
[2011.03.20 18:41:39 | 000,000,544 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Tux Paint.lnk

< %ALLUSERSPROFILE%\Desktop\*.* >

< *crack* /s >
[2007.07.14 20:55:28 | 000,062,238 | ---- | M] () -- \Program Files\GIMP-2.0\share\gimp\2.0\patterns\cracked.pat

< *keygen* /s >

< *loader* /s >
[2008.06.10 03:28:02 | 000,061,440 | ---- | M] () -- \Documents and Settings\Doma\Data aplikací\Songbird2\Profiles\yxhgmvya.default\extensions\ipod@songbirdnest.com\components\ComponentLoader.dll
[2007.03.08 19:25:04 | 000,348,160 | ---- | M] () -- \Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\PhotoDownloader.dll
[2007.03.08 19:25:28 | 000,163,840 | ---- | M] () -- \Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\uploader.dll
[2007.03.08 19:08:38 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Photoshop Album Starter Edition\3.2\Shared_Assets\combined_bitmaps\main_window\C_LoadError.png
[2006.05.23 12:33:40 | 000,106,496 | ---- | M] () -- \Program Files\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2011.02.08 18:16:30 | 001,852,416 | ---- | M] () -- \Program Files\Common Files\DVDVideoSoft\Dll\HttpVideoDownloader.dll
[2009.07.08 09:37:32 | 000,053,248 | ---- | M] () -- \Program Files\Mio\MMD2\MyDownloader.Core.Dll
[2009.07.10 13:28:20 | 000,040,960 | ---- | M] () -- \Program Files\Mio\MMD2\MyDownloader.Extension.Dll
[2009.07.10 13:28:22 | 000,040,960 | ---- | M] () -- \Program Files\Mio\MMD2\MyDownloader.Extension.XmlSerializers.Dll
[2011.07.07 17:23:14 | 000,053,248 | ---- | M] () -- \Program Files\Mio\MMD2\updates\MyDownloader.Core.dll
[2011.07.07 17:23:14 | 000,040,960 | ---- | M] () -- \Program Files\Mio\MMD2\updates\MyDownloader.Extension.dll
[2011.07.07 17:23:12 | 000,040,960 | ---- | M] () -- \Program Files\Mio\MMD2\updates\MyDownloader.Extension.XmlSerializers.dll
[2007.01.24 19:05:14 | 000,516,096 | R--- | M] () -- \Program Files\Sony Ericsson\Mobile2\Sync Manager\NotesPimAdaptorLoader.dll
[2006.12.23 16:37:56 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2006.03.02 13:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 23:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 23:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2010.09.20 13:51:46 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2010.09.20 13:56:28 | 000,009,622 | ---- | M] () -- \WINDOWS\system32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr

< *RemoveWAT* /s >

< *minodlogin* /s >

< *tnod* /s >

< *TemDono* /s >

< *AutoKMS* /s >

< *KMSEmulator* /s >

< *activator* /s >

< *serial* /s >
[2005.07.04 13:45:22 | 000,064,048 | R--- | M] () -- \Program Files\Common Files\Teleca Shared\DSS-20\ftserial.sys
[2005.07.04 13:45:24 | 000,004,665 | R--- | M] () -- \Program Files\Common Files\Teleca Shared\DSS-20\USBSerialPort.INF
[2009.02.22 13:24:49 | 000,011,548 | ---- | M] () -- \Program Files\Common Files\Teleca Shared\DSS-20\USBSerialPort.PNF
[2005.07.04 13:44:44 | 000,064,048 | R--- | M] () -- \Program Files\Common Files\Teleca Shared\DSS-25\ftserial.sys
[2005.07.04 13:44:48 | 000,004,656 | R--- | M] () -- \Program Files\Common Files\Teleca Shared\DSS-25\USBSerialPort.INF
[2009.02.22 13:24:49 | 000,011,532 | ---- | M] () -- \Program Files\Common Files\Teleca Shared\DSS-25\USBSerialPort.PNF
[2011.08.30 16:58:34 | 000,413,696 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60831.0\System.Runtime.Serialization.dll
[2011.10.13 20:37:09 | 001,186,816 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60831.0\System.Runtime.Serialization.ni.dll
[2010.02.22 13:15:32 | 000,032,768 | ---- | M] () -- \Program Files\Mio\MMD2\AppMusic.XmlSerializers.dll
[2009.07.10 13:14:02 | 000,647,168 | ---- | M] () -- \Program Files\Mio\MMD2\KMLUtils.XmlSerializers.dll
[2009.07.10 13:28:22 | 000,040,960 | ---- | M] () -- \Program Files\Mio\MMD2\MyDownloader.Extension.XmlSerializers.Dll
[2009.07.10 13:28:36 | 000,122,880 | ---- | M] () -- \Program Files\Mio\MMD2\SpiritTypes.XmlSerializers.dll
[2009.07.08 09:38:06 | 000,032,768 | ---- | M] () -- \Program Files\Mio\MMD2\SpiritUpdater.XmlSerializers.dll
[2011.07.07 17:23:13 | 000,032,768 | ---- | M] () -- \Program Files\Mio\MMD2\updates\AppMusic.XmlSerializers.dll
[2011.07.07 17:23:21 | 000,720,896 | ---- | M] () -- \Program Files\Mio\MMD2\updates\KMLUtils.XmlSerializers.dll
[2011.07.07 17:23:12 | 000,040,960 | ---- | M] () -- \Program Files\Mio\MMD2\updates\MyDownloader.Extension.XmlSerializers.dll
[2011.07.07 17:23:16 | 000,139,264 | ---- | M] () -- \Program Files\Mio\MMD2\updates\SpiritTypes.XmlSerializers.dll
[2011.07.07 17:23:14 | 000,053,248 | ---- | M] () -- \Program Files\Mio\MMD2\updates\Utils.XmlSerializers.dll
[2010.04.07 22:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2006.03.02 13:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2008.08.06 20:03:00 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.01.11 09:15:17 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.06.10 20:00:37 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2011.10.14 05:26:50 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\81096bfe85eb0da5f05e8a127ffa43b2\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.10.14 05:26:11 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll
[2004.07.15 13:31:54 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2008.07.25 10:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.04.07 22:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2008.04.14 06:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 06:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2006.03.02 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2006.03.02 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2006.03.02 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2006.03.02 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 06:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys

< *w7lxe* /s >

< *AutoRearm* /s >

< HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sony Ericsson PC Suite" = "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions -- [2007.03.28 01:07:42 | 000,593,920 | R--- | M] ()
"RunMMD" = "C:\Program Files\Mio\MMD2\RunMMD.exe" -- [2011.07.07 17:23:12 | 000,049,152 | ---- | M] (Mireo)
"Samsung PanelMgr" = C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe /autorun -- [2008.08.08 06:03:41 | 000,524,288 | ---- | M] ()
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL]
"Installed" = 1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI]
"Installed" = 1
"NoChange" = 1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS]
"Installed" = 1

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"OEXPRESS" = C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE -- [2008.06.19 09:57:36 | 000,026,624 | ---- | M] ()
"OM2_Monitor" = "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -- [2008.02.22 13:29:10 | 000,095,536 | ---- | M] (OLYMPUS IMAGING CORP.)
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 07:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)

< HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run /s >

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect /usepmtimer

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.01.27 16:47:15 | 000,000,512 | ---- | M] () MD5=F0890A33B85BACF75FEA535C62694807 -- C:\PhysicalMBR.bin

========== Alternate Data Streams ==========

@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D37966A8
@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:ECC1B903
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:70E897B5
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:108D3361
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:341C1FBD
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:13EF4AF6
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:37A75597
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:22786385
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:3BE7E50E
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:C5BCA2A0
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:AC83EA04
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0C5AF2AA
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:FA7CDE12

< End of report >

ErikaB · #8 Příspěvek od **ErikaB** » 27 led 2012 17:08

OTL Extras logfile created on: 27. 1. 2012 16:45:09 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Doma\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

2,00 Gb Total Physical Memory | 1,44 Gb Available Physical Memory | 72,04% Memory free
3,85 Gb Paging File | 3,40 Gb Available in Paging File | 88,36% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 67,43 Gb Free Space | 69,05% Space Free | Partition Type: NTFS
Drive D: | 200,43 Gb Total Space | 175,98 Gb Free Space | 87,80% Space Free | Partition Type: NTFS

Computer Name: DOMA-2919382631 | User Name: Doma | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1177238915-963894560-839522115-1004\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\Winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\Winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\iMesh Applications\iMesh\iMesh.exe" = C:\Program Files\iMesh Applications\iMesh\iMesh.exe:*:Enabled:iMesh
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe" = C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\InterVideo\DVD6\WinDVD.exe" = C:\Program Files\InterVideo\DVD6\WinDVD.exe:*:Disabled:WinDVD -- (InterVideo Inc.)
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe" = C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home -- (Nero AG)
"C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" = C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe:*:Disabled:resident module -- (OLYMPUS IMAGING CORP.)
"C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe" = C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe:*:Enabled:Sony Ericsson Media Manager 1.2 -- (Sony Creative Software Inc.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{04FC6E53-33A5-B457-8EBD-370884B81E83}" = Catalyst Control Center Localization Norwegian
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0D0913E6-8809-DC22-4771-6E4A0C69C1D9}" = Catalyst Control Center Localization French
"{0FC28F52-5BE9-B6A6-0E47-040F04A9AE3F}" = CCC Help Danish
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series" = Canon MP250 series MP Drivers
"{12453E04-9738-4D16-8408-D726532C2C69}" = ASUS VGA Driver
"{1402D7D3-548E-C8D9-1B56-94DF70CA52DB}" = CCC Help French
"{1605416F-1546-EB43-4000-F64170D3DE25}" = Catalyst Control Center Graphics Full New
"{1705D880-A64E-96B8-1623-446CB4243BCC}" = CCC Help Portuguese
"{197B13CD-0597-C06D-9E06-3732E7A5459B}" = Catalyst Control Center Localization Spanish
"{1D892DE7-FA53-6CCB-A755-FFC8CDD58CCB}" = CCC Help Czech
"{1DC37DFF-8BA1-4725-8D8B-758583AF6C62}" = kaleiball
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{248C0F3C-D1E8-3169-6711-00F34C307F7A}" = CCC Help Swedish
"{25FB0FCE-0B93-976A-C0A5-3ADE26A5DC95}" = Catalyst Control Center Localization Greek
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 29
"{27AB4200-EAAF-CB24-D5B4-40B761E573D3}" = CCC Help Polish
"{2B07D8A3-0BE7-B8BC-E295-040333F74CB4}" = Catalyst Control Center Localization Polish
"{346BA3F6-660A-81A1-D8FA-659465AF5F16}" = ccc-core-preinstall
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{38E0C491-5230-4373-B62E-F1A6E94B1051}" = Nero 7 Ultra Edition
"{3E2D47BE-3896-CD6A-5333-634E8F4E1D09}" = CCC Help Chinese Traditional
"{3EDF7996-B5DD-7217-329E-E51EA50B8B08}" = Catalyst Control Center Localization Korean
"{3F533CDF-4EB7-942C-83C7-DA703DBF0D3A}" = Catalyst Control Center Graphics Light
"{40CD278E-33C2-6916-EFA6-DCBF7709060A}" = CCC Help English
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C8E654C-8B9C-1A3E-651D-214E9019A8C6}" = Catalyst Control Center Localization Portuguese
"{4FC31A14-3D58-4F8F-85DA-EB3EBC771252}" = Catalyst Control Center - Branding
"{529125EF-E3AC-4B74-97E6-F688A7C0F1BF}" = Paint.NET v3.5.10
"{53F042B0-48F9-D28E-41BA-8AEB7144A664}" = Catalyst Control Center Localization Japanese
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Zem
"{5E541DAB-6F2C-62F1-3212-F421792E9409}" = CCC Help Korean
"{626D1263-11EB-8469-BDCD-F44464AFAB42}" = Catalyst Control Center Core Implementation
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6A322AF6-94C0-C303-548F-EFBC0EE3FAC6}" = Catalyst Control Center Localization Dutch
"{6ACA2FD2-4C4A-42F3-AFB5-7B433BBDF6DB}" = InterVideo WinDVD 6
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{71CD0D37-EF43-438F-7AE6-D49DE09C7B55}" = Catalyst Control Center Localization Danish
"{731CC4F1-DD69-46E9-B372-65F1081666B8}" = Staň sa svetobežníkom
"{7353B605-741D-C35E-7334-468FE2A4E9CB}" = Skins
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{79AA6806-69E1-7A15-9B8A-C3E36065B1FE}" = CCC Help Greek
"{7BCCA0F5-4A74-2352-CFE6-04DABA6D5D28}" = Catalyst Control Center Graphics Full Existing
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87A0FED6-9A2A-3BDE-FBB9-B44DBB9EC9F1}" = Catalyst Control Center Localization Turkish
"{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{98125266-1C84-5858-07AD-07983DFFAA60}" = Catalyst Control Center Localization Russian
"{9862B19F-4CAD-4EED-920F-2F378D84393F}" = ATI Parental Control & Encoder
"{98C2D59E-7B49-30F8-3A15-6A8428AFA3B9}" = Catalyst Control Center Localization Chinese Traditional
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9EB1504E-FD95-4BCD-8E93-B4039F59C469}" = Sony Ericsson Media Manager 1.2
"{9F011792-C1AD-6D49-7418-703D17F710CC}" = CCC Help Turkish
"{A06275F4-324B-4E85-95E6-87B2CD729401}" = Windows Defender
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A654A805-41D9-40C7-AA46-4AF04F044D61}" = Adobe® Photoshop® Album Starter Edition 3.2
"{A9106BA5-3F1E-3528-93A7-2761CA0BFAD8}" = ccc-utility
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A99968BE-C155-474C-0089-33239DEE1CE2}" = NFS Underground
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AB8CAAA2-39EC-A896-8388-21F7C92BF91D}" = CCC Help Finnish
"{AC76BA86-7AD7-1029-7B44-A70500000002}" = Adobe Reader 7.0.5 - Czech
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B9A46A4E-374E-5329-B26C-24A745AA7762}" = Catalyst Control Center Localization Finnish
"{BC2B6E0B-6932-FCFD-4DA2-2AB184B87320}" = CCC Help Italian
"{BFBEFD74-7E1C-48C9-BA50-2B47E432F12D}_is1" = Krištofove dobrodružstvá s angličtinou verzia 1.0
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C123A6B5-8243-75C7-5CAD-A7E06C051D38}" = CCC Help German
"{C205EF8A-AC71-1A3C-DFCC-C2AC36D8A7B4}" = Catalyst Control Center Localization Swedish
"{CABB5874-1452-637A-110B-883189586282}" = Catalyst Control Center Localization Hungarian
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CB49B376-1136-44B4-83FA-036334B59937}" = OLYMPUS Master 2
"{CDD165A8-6D7F-3FE3-09BD-03052685294D}" = CCC Help Hungarian
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1A3418D-0275-1516-6622-AF377B272CA0}" = CCC Help Dutch
"{D1AD3651-EE2F-5221-D595-36A2ED3D5E75}" = Catalyst Control Center Localization Italian
"{D380A631-0EFD-8325-D2DD-774A7ADDB628}" = ccc-core-static
"{D5679765-FADA-54E8-774E-748294020B96}" = CCC Help Russian
"{DDDE47E5-C711-4D17-9FA6-E3D7C340192A}" = OLYMPUS muvee theaterPack
"{E10761C7-F0F0-BC29-51E5-6F4886D5E72A}" = Catalyst Control Center Localization Chinese Standard
"{E306DBFD-E7A1-F65F-D652-99FEDE639AF9}" = Catalyst Control Center Localization German
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0BC7117-A5C8-D34E-72DE-D17E2B7BA2E5}" = CCC Help Norwegian
"{F2320CBF-B5A5-78A9-1E8E-D48DAF1E022D}" = CCC Help Thai
"{F2A69CA0-8BBF-4404-BA68-DB79A3548E34}" = PCStitch 7
"{F31A1CA0-6F8B-F897-C8CA-7C64616582A0}" = CCC Help Spanish
"{F45B51DC-F6EA-0335-44B3-92395CEB782B}" = Catalyst Control Center Localization Thai
"{F5489F73-F631-6CEE-72ED-3B9E0C312F96}" = CCC Help Japanese
"{F55671E5-16AB-4A09-14C0-F53921535C25}" = Catalyst Control Center Localization Czech
"{FB7EBC2F-D27E-A906-28BF-58FE48F4F1D8}" = CCC Help Chinese Standard
"{FE6397C1-CECA-4EC3-B064-42AED7676898}" = Sony Ericsson PC Suite
"{FFAB5ABB-8AAB-42E2-847F-1743E51E01E9}" = Disc2Phone
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"AC3 Decoder" = AC3 Decoder Uninstall
"AC3Filter" = AC3Filter (remove only)
"Ad-Aware Browsing Protection" = Ad-Aware Browsing Protection
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Adobe® Photoshop® Album Starter Edition 3.2" = Adobe® Photoshop® Album Starter Edition 3.2
"Adventure Inlay" = Adventure Inlay
"Adventure Inlay Safari Edition" = Adventure Inlay Safari Edition
"AirAssault_is1" = Air Assault
"All ATI Software" = ATI - Software Uninstall Utility
"Amazing Pyramids_is1" = Amazing Pyramids
"am-bobthebuildertmcandozoo" = Bob the Builder(TM) - Can-do Zoo
"Ancient Mosaic_is1" = Ancient Mosaic
"AOE Trial" = Microsoft Age of Empires Trial
"Around the World in 80 Days_is1" = Around the World in 80 Days
"ATI Display Driver" = ATI Display Driver
"avast" = avast! Free Antivirus
"BFGC" = Big Fish Games Client
"Bomber Mario_is1" = Bomber Mario
"BSPlayerf" = BS.Player FREE
"bwin Poker_is1" = bwin Poker
"Caesar 3 Demo" = Caesar 3 Demo
"Carl's Classics_is1" = Carl's Classics
"CCleaner" = CCleaner
"Cradle of Persia" = Cradle of Persia
"Cradle of Rome" = Cradle of Rome
"Crystal Path" = Crystal Path
"CTDVDAudio Plugin" = Creative DVD Audio Plugin for Audigy Series
"Da Vinci's Secret" = Da Vinci's Secret
"Dink Smallwood" = Dink Smallwood
"DivX Setup" = DivX Setup
"DVD Shrink_is1" = DVD Shrink 3.2
"Emilka Holubová - Montezumův poklad" = Emilka Holubová - Montezumův poklad
"Fiber Twig" = Fiber Twig
"Fiber Twig 2_is1" = Fiber Twig 2
"Free YouTube Download_is1" = Free YouTube Download version 2.10.31
"Freez FLV to AVI/MPEG/WMV Converter v1.6_is1" = Freez FLV to AVI/MPEG/WMV Converter
"Fresco Wizard" = Fresco Wizard
"GameHouse" = GameHouse
"Generic 6501 Sound" = C-Media 6501 Sound
"HijackThis" = HijackThis 2.0.2
"Charm Tale" = Charm Tale
"Charm Tale_is1" = Charm Tale
"Chock-A-Block" = Chock-A-Block (remove only)
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"Inca Ball_is1" = Inca Ball
"InterActual Player" = InterActual Player
"Jetix Screensaver" = Jetix Screensaver
"Jewel Craft_is1" = Jewel Craft
"KajkoiKokosz1SK_is1" = Kajko a Kokoš - Škola lietania v. 1.027
"Magic Inlay_is1" = Magic Inlay
"Matematika na Divokom západe (demo)_is1" = Matematika na Divokom západe (demo)
"Matematika na Divokom západe_is1" = Matematika na Divokom západe
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mio More Desktop_is1" = Mio More Desktop 2
"Mobile Partner" = Mobile Partner
"Money S3" = Ekonomický systém Money S3
"Mosaic Tomb of Mystery" = Mosaic Tomb of Mystery
"Mozilla Firefox 9.0.1 (x86 sk)" = Mozilla Firefox 9.0.1 (x86 sk)
"MP4 Converter_is1" = MP4 Converter 1.0
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Mysteryville" = Mysteryville
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"PhotoScape" = PhotoScape
"Professor Fizzwizzle" = Professor Fizzwizzle
"Puzzle Inlay" = Puzzle Inlay
"Puzzle Myth_is1" = Puzzle Myth
"Quatro - Kalkulačka_is1" = Quatro - Kalkulačka 5.1.4.44
"Registry Mechanic_is1" = Registry Mechanic 10.0
"Romance of Rome_is1" = Romance of Rome
"Samantha Swift and the Golden Touch" = Samantha Swift and the Golden Touch (remove only)
"Samantha Swift and the Hidden Roses of Athena" = Samantha Swift and the Hidden Roses of Athena (remove only)
"Samsung CLP-310 Series" = Samsung CLP-310 Series
"Sandlot Games Client Services 1.2.2_is1" = Sandlot Games Client Services 1.2.2
"ShadowFlare" = ShadowFlare
"Shape Shifter" = Shape Shifter
"Sierra Utilities" = Sierra Utilities
"Ski Alpin Racing 2007 (Demo)_0001" = Ski Alpin Racing 2007 (Demo)
"The Da Vinci Code" = The Da Vinci Code
"Tiny Cars 2_is1" = Tiny Cars 2
"Totalcmd" = Total Commander (Remove or Repair)
"Tux Paint_is1" = Tux Paint 0.9.21c
"Uninstall_is1" = Uninstall 1.0.0.1
"Winamp" = Winamp (remove only)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGimp-2.0_is1" = The GIMP 2.2.17
"WinRAR archiver" = WinRAR archivátor
"Wizard101(UK)_is1" = Wizard101(UK)
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wonderlines" = Wonderlines
"World Riddles 2_is1" = World Riddles 2
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XviD_is1" = XviD MPEG-4 Video Codec
"Zenerchi_is1" = Zenerchi
"Zodiac Tower" = Zodiac Tower
"Zuma Deluxe" = Zuma Deluxe

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1177238915-963894560-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"iGridd" = iGridd
"UnityWebPlayer" = Unity Web Player

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 6. 6. 2009 5:48:07 | Computer Name = DOMA-2919382631 | Source = avast! | ID = 33554522
Description =

Error - 5. 11. 2009 12:17:37 | Computer Name = DOMA-2919382631 | Source = avast! | ID = 33554522
Description =

Error - 5. 11. 2009 13:46:49 | Computer Name = DOMA-2919382631 | Source = avast! | ID = 33554522
Description =

Error - 6. 11. 2009 15:40:11 | Computer Name = DOMA-2919382631 | Source = avast! | ID = 33554522
Description =

Error - 9. 11. 2009 15:36:09 | Computer Name = DOMA-2919382631 | Source = avast! | ID = 33554522
Description =

Error - 11. 11. 2009 15:12:05 | Computer Name = DOMA-2919382631 | Source = avast! | ID = 33554522
Description =

Error - 29. 1. 2010 3:01:34 | Computer Name = DOMA-2919382631 | Source = avast! | ID = 33554522
Description =

Error - 29. 1. 2010 3:01:56 | Computer Name = DOMA-2919382631 | Source = avast! | ID = 33554522
Description =

[ Application Events ]
Error - 25. 1. 2012 4:05:56 | Computer Name = DOMA-2919382631 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace TOTALCMD.EXE, verze 6.0.2.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 25. 1. 2012 4:36:49 | Computer Name = DOMA-2919382631 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace DivX Plus Player.exe, verze 10.3.1.350, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 26. 1. 2012 4:54:22 | Computer Name = DOMA-2919382631 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 26. 1. 2012 11:42:00 | Computer Name = DOMA-2919382631 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace TOTALCMD.EXE, verze 6.0.2.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 26. 1. 2012 11:42:50 | Computer Name = DOMA-2919382631 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace TOTALCMD.EXE, verze 6.0.2.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 26. 1. 2012 11:42:53 | Computer Name = DOMA-2919382631 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace TOTALCMD.EXE, verze 6.0.2.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 26. 1. 2012 11:42:57 | Computer Name = DOMA-2919382631 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace TOTALCMD.EXE, verze 6.0.2.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 26. 1. 2012 11:43:20 | Computer Name = DOMA-2919382631 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace TOTALCMD.EXE, verze 6.0.2.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 26. 1. 2012 11:43:26 | Computer Name = DOMA-2919382631 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace TOTALCMD.EXE, verze 6.0.2.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 27. 1. 2012 1:07:16 | Computer Name = DOMA-2919382631 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

[ System Events ]
Error - 27. 1. 2012 7:37:31 | Computer Name = DOMA-2919382631 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 27. 1. 2012 7:37:32 | Computer Name = DOMA-2919382631 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 27. 1. 2012 7:37:32 | Computer Name = DOMA-2919382631 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 27. 1. 2012 7:37:32 | Computer Name = DOMA-2919382631 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 27. 1. 2012 7:37:32 | Computer Name = DOMA-2919382631 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 27. 1. 2012 7:37:32 | Computer Name = DOMA-2919382631 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 27. 1. 2012 7:37:32 | Computer Name = DOMA-2919382631 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 27. 1. 2012 7:37:32 | Computer Name = DOMA-2919382631 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 27. 1. 2012 7:37:32 | Computer Name = DOMA-2919382631 | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126

Error - 27. 1. 2012 11:31:37 | Computer Name = DOMA-2919382631 | Source = Service Control Manager | ID = 7000
Description = Služba SSPORT neuspěla při spuštění v důsledku následující chyby:
%%2

< End of report >

#9 Příspěvek od **Mc_Murphy** » 28 led 2012 06:57

Následující soubory otestuj na stránkách VirusTotal.

C:\WINDOWS\System32\EE5DFB6911.sys
Klikni na Choose File.
Soubor nehledej, jen vlož cestu souboru, který chci otestovat.
Klikni na Scan it!.
Pokud na Tebe vyskočí obrazovka podobná té, co je níže, klikni na Reanalyse.
Výsledek analýzy mi sem vlož (jako odkaz).

Znovu spusť OTL.

Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
Do spodního okénka Vlastní skenování/opravy vlož tento script (pouze zelená písmenka v bílém poli!):

Kód: Vybrat vše

:Commands
[emptytemp]
[emptyflash]
[resethosts]
[purity]
[clearallrestorepoints]

:Services
gupdate
gupdatem
JavaQuickStarterService
NBService
Lavasoft Ad-Aware Service

:OTL
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
IE - HKU\S-1-5-21-1177238915-963894560-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
FF - prefs.js..browser.search.defaultenginename: "BearShare Web Search"
FF - prefs.js..browser.search.order.1: "BearShare Web Search"
FF - prefs.js..extensions.enabledItems: {28D35620-51D9-11DE-9D13-2DB156D89593}:3.1
FF - prefs.js..extensions.enabledItems: {7FF99715-3016-4381-84CE-E4E4C9673020}:1.0
FF - prefs.js..keyword.URL: "http://search.bearshare.com/web?src=ffb&systemid=2&q="
[2011.02.23 14:54:17 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}
[2010.09.14 13:48:25 | 000,002,506 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\BearShareWebSearch.xml
[2008.10.06 16:01:53 | 000,002,447 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\bsplayer-search.xml
[2012.01.25 17:44:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-1.xml
[2009.04.28 16:16:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-10.xml
[2009.06.13 18:51:29 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-11.xml
[2009.07.23 07:06:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-12.xml
[2009.08.06 07:50:09 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-13.xml
[2009.09.10 12:47:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-14.xml
[2010.06.25 12:19:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-15.xml
[2010.06.27 15:21:32 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-16.xml
[2010.07.30 17:16:47 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-17.xml
[2010.09.09 14:31:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-18.xml
[2010.09.16 19:32:19 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-19.xml
[2008.09.27 18:20:59 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-2.xml
[2010.10.20 19:07:45 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-20.xml
[2008.10.02 18:19:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-3.xml
[2008.11.14 08:17:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-4.xml
[2008.12.18 16:41:32 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-5.xml
[2009.02.07 15:41:17 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-6.xml
[2009.03.06 13:36:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-7.xml
[2009.03.28 14:46:59 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-8.xml
[2009.04.23 13:45:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-9.xml
[2008.08.15 19:02:21 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin.xml
[2010.04.12 13:01:34 | 000,002,456 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\iMeshWebSearch.xml
[2010.08.12 12:12:24 | 000,005,529 | ---- | M] () -- C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\SearchquWebSearch.xml
[2011.10.14 09:32:22 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010.09.14 13:48:25 | 000,002,506 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\BearShareWebSearch.xml
[2010.04.12 13:01:34 | 000,002,456 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\iMeshWebSearch.xml
O3 - HKU\S-1-5-21-1177238915-963894560-839522115-1004\..\Toolbar\WebBrowser: (no name) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - No CLSID value found.
O3 - HKU\S-1-5-21-1177238915-963894560-839522115-1004\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O4 - HKU\.DEFAULT..\RunOnce: [adaware_XP] reg.exe delete "HKCU\Software\adaware" /f File not found
O4 - HKU\S-1-5-18..\RunOnce: [adaware_XP] reg.exe delete "HKCU\Software\adaware" /f File not found
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[14 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D37966A8
@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:ECC1B903
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:70E897B5
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:108D3361
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:341C1FBD
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:13EF4AF6
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:37A75597
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:22786385
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:3BE7E50E
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:C5BCA2A0
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:AC83EA04
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0C5AF2AA
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:FA7CDE12

:Files
C:\Program Files\adawaretb
C:\Documents and Settings\Doma\Data aplikací\ICQ Toolbar
C:\Documents and Settings\Doma\Data aplikací\searchqutb
C:\Documents and Settings\Doma\Data aplikací\Malwarebytes
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\MP Scheduled Scan.job
C:\WINDOWS\Tasks\RMSchedule.job
C:\Program Files\BS.Player ControlBar\BSToolbar.dll
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s

Klikni na tlačítko [Opravit].
Po dokončení skenu se objeví log, ten mi sem vlož.
Pokud se log nevejde do jednoho příspěvku, rozděl jej na více částí.

ErikaB · #10 Příspěvek od **ErikaB** » 28 led 2012 18:17

https://www.virustotal.com/file/a86a3e9 ... 327770927/

ErikaB · #11 Příspěvek od **ErikaB** » 28 led 2012 18:26

Log po oprave:

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Doma
->Temp folder emptied: 478329 bytes
->Temporary Internet Files folder emptied: 6913612 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 68436062 bytes
->Google Chrome cache emptied: 356158053 bytes
->Flash cache emptied: 44795 bytes

User: LocalService
->Temp folder emptied: 65748 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 107968 bytes
->Temporary Internet Files folder emptied: 634274 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 101888 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 108596 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 15233976 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 324231 bytes

Total Files Cleaned = 428,00 mb

[EMPTYFLASH]

User: All Users

User: Default User

User: Doma
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore points cleared and new OTL Restore Point set!
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
Service NBService stopped successfully!
Service NBService deleted successfully!
Error: No service named Lavasoft Ad-Aware Service was found to stop!
Service\Driver key Lavasoft Ad-Aware Service not found.
========== OTL ==========
Service HidServ stopped successfully!
Service HidServ deleted successfully!
Service AppMgmt stopped successfully!
Service AppMgmt deleted successfully!
HKU\S-1-5-21-1177238915-963894560-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Prefs.js: "BearShare Web Search" removed from browser.search.defaultenginename
Prefs.js: "BearShare Web Search" removed from browser.search.order.1
Prefs.js: {28D35620-51D9-11DE-9D13-2DB156D89593}:3.1 removed from extensions.enabledItems
Prefs.js: {7FF99715-3016-4381-84CE-E4E4C9673020}:1.0 removed from extensions.enabledItems
Prefs.js: "http://search.bearshare.com/web?src=ffb&systemid=2&q=" removed from keyword.URL
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\components folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\searchbar folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\options folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\weatherbutton\panels\images folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\weatherbutton\panels folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\weatherbutton\icons folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\weatherbutton folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\uwa folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\radio\images folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\radio\css folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\radio folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\panels\images folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\panels\css folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib\panels folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin\lib folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\skin folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\content\widgets\net.vmn.www.3.YouTube.1217 folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\content\widgets\net.vmn.www.3.Twitter.1257 folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\content\widgets\net.vmn.www.3.Twitter.1255 folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\content\widgets\net.vmn.www.3.Twitter.1227 folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\content\widgets folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\content\modules folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\content\lib folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\content\data\search folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\content\data folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome\content folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020}\chrome folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\extensions\{7FF99715-3016-4381-84CE-E4E4C9673020} folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\BearShareWebSearch.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\bsplayer-search.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-11.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-12.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-13.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-14.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-15.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-16.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-17.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-18.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-19.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-20.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\icqplugin.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\iMeshWebSearch.xml moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Mozilla\Firefox\Profiles\bo9ind4h.default\searchplugins\SearchquWebSearch.xml moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\BearShareWebSearch.xml moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\iMeshWebSearch.xml moved successfully.
Registry value HKEY_USERS\S-1-5-21-1177238915-963894560-839522115-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2C688203-7EB3-4327-9995-1CB417BA23F9} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2C688203-7EB3-4327-9995-1CB417BA23F9}\ not found.
Registry value HKEY_USERS\S-1-5-21-1177238915-963894560-839522115-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce\\adaware_XP deleted successfully.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce\\adaware_XP not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP13B.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP192.tmp\System.Data.Services.Client.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP192.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP286.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP30.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP36C.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP37.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3E8.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP55.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP645.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6A.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6C1.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP720.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP74E.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPB9.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI71.tmp deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D37966A8 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:ECC1B903 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:70E897B5 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:108D3361 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:341C1FBD deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:13EF4AF6 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:37A75597 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:22786385 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:3BE7E50E deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:C5BCA2A0 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:AC83EA04 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:0C5AF2AA deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:FA7CDE12 deleted successfully.
========== FILES ==========
File\Folder C:\Program Files\adawaretb not found.
C:\Documents and Settings\Doma\Data aplikací\ICQ Toolbar folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\searchqutb\widgets_cache folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\searchqutb\weather folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\searchqutb\games folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\searchqutb folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Documents and Settings\Doma\Data aplikací\Malwarebytes folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware\Configuration folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Malwarebytes folder moved successfully.
C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job moved successfully.
C:\WINDOWS\Tasks\AppleSoftwareUpdate.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\Tasks\MP Scheduled Scan.job moved successfully.
C:\WINDOWS\Tasks\RMSchedule.job moved successfully.
File\Folder C:\Program Files\BS.Player ControlBar\BSToolbar.dll not found.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.

OTL by OldTimer - Version 3.2.31.0 log created on 01282012_182101

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

#12 Příspěvek od **Mc_Murphy** » 29 led 2012 07:06

Výborně, OTL provedlo, co mělo.

Jak je na tom počítač? Můžeme dočistit?

ErikaB · #13 Příspěvek od **ErikaB** » 29 led 2012 13:01

Počítač pracuje dobre, podľa môjho laického odhadu.

#14 Příspěvek od **Mc_Murphy** » 29 led 2012 14:22

OK, tak tedy dočistíme.

Spusť znovu OTL a klikni na tlačítko [CleanUp!], čímž po sobě program uklidí.

TFC http://oldtimer.geekstogo.com/TFC.exe

Stáhni a spusť.
Klikni na Start a potvrď OK.
Program uklidí a může (nemusí) restartovat PC.
Po použití utilitu smaž.

Pokud nemáš, stáhni CCleaner z tohoto odkazu.

Panel čistič
Vše nech jak je, jen dej Analyzovat a poté Spustit CCleaner.

Panel registry
Klikni na Hledej problémy.
Následně na Opravit problémy - zálohu registrů doporučuji udělat, oprav všechny problémy.
Postup opakuj, dokud nebude bez problémů - většinou cca 3x.

Panel nástroje
Zde můžeš odinstalovat nepotřebné programy.

CCleaner doporučuji používat cca jednou za týden.

... a pokud nejsou žádné dotazy, bylo by to z mé strany vše.

ErikaB · #15 Příspěvek od **ErikaB** » 29 led 2012 17:05

CCLeaner som používala aj doteraz, zvyšok som urobila podľa návodu.
Ďakujem za pomoc, veľmi si ju cením. Erika

VIRY.CZ

Počítač pomaly otvára stránky

Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky

Re: Počítač pomaly otvára stránky