Poslední dobou se PC chová nějak divně. Může mi nějaká dobrá duše toto projít?
Logfile of random's system information tool 1.09 (written by random/random)
Run by PC at 2012-01-30 16:05:51
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 68 GB (42%) free of 160 GB
Total RAM: 3326 MB (63% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:06:01, on 30.1.2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
D:\Program Files\Freecorder\FLVSrvc.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Opera\opera.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\PC\Desktop\RSIT.exe
C:\Program Files\trend micro\PC.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: Freecorder Toolbar - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files\Freecorder\prxtbFre0.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Freecorder - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files\Freecorder\prxtbFre0.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Freecorder Toolbar - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - C:\Program Files\Freecorder\prxtbFre0.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Freecorder FLV Service] "D:\Program Files\Freecorder\FLVSrvc.exe" /run
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [mapdisk] "D:\Users\PC\Documents\ArmAWork\mapdisk.bat"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files\ICQ7.4\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: LTVGZLNIOD - Sysinternals - http://www.sysinternals.com - C:\Users\PC\AppData\Local\Temp\LTVGZLNIOD.exe
O23 - Service: MKJLYM - Unknown owner - C:\Users\PC\AppData\Local\Temp\MKJLYM.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NIXBWMDVDAE - Unknown owner - C:\Users\PC\AppData\Local\Temp\NIXBWMDVDAE.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: OUCBN - Unknown owner - C:\Users\PC\AppData\Local\Temp\OUCBN.exe (file missing)
O23 - Service: PWFZ - Sysinternals - http://www.sysinternals.com - C:\Users\PC\AppData\Local\Temp\PWFZ.exe
O23 - Service: RelevantKnowledge - Unknown owner - C:\Program Files\RelevantKnowledge\rlservice.exe (file missing)
O23 - Service: RHQQEONC - Unknown owner - C:\Users\PC\AppData\Local\Temp\RHQQEONC.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Windows\System32\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
--
End of file - 7003 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Ad-Aware Update (Weekly).job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
=========Mozilla firefox=========
ProfilePath - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "About:Blank"
prefs.js - "extensions.enabledItems" - "DTToolbar@toolbarnet.com:1.0.8.0552, {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {20a82645-c095-46ed-80e3-08825760534b}:1.1, firebug@software.joehewitt.com:1.5.4, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.24"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2897]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2955]
"Description"=RealJukebox Netscape Plugin
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1675]
"Description"=6.0.12.1675
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0]
"Description"=
"Path"=c:\Program Files\Sony\Media Go\npmediago.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
C:\Program Files\Mozilla Firefox\extensions\
{800b5000-a755-47e1-992b-48a1c1357f07}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
AskSearch.js
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nppl3260.xpt
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npnul32.dll
NPOFFICE.DLL
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpjplug.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
iMeshWebSearch.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\
DTToolbar@toolbarnet.com
firebug@software.joehewitt.com
staged-xpis
ytvdw@pgport.com
{20a82645-c095-46ed-80e3-08825760534b}
{28387537-e3f9-4ed7-860c-11e69af4a8a0}
{800b5000-a755-47e1-992b-48a1c1357f07}
C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\searchplugins\
ask.xml
daemon-search.xml
icq-search.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.gif
icqplugin.src
icqplugin.xml
iMeshWebSearch.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
Freecorder Toolbar - C:\Program Files\Freecorder\prxtbFre0.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-04 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-04-23 937416]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-09-06 1048888]
{1392b8d2-5c05-419f-a8f6-b9f15a596612} - Freecorder Toolbar - C:\Program Files\Freecorder\prxtbFre0.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"Ad-Watch"=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [2012-01-08 1191216]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-06-10 13785632]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-09-13 185896]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-11-28 3744552]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"Freecorder FLV Service"=D:\Program Files\Freecorder\FLVSrvc.exe [2011-03-24 167936]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"mapdisk"=D:\Users\PC\Documents\ArmAWork\mapdisk.bat [2010-11-10 45]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background []
"AdobeBridge"= []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=0
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"VIDC.FPS1"=frapsvid.dll
"msacm.lhacm"=lhacm.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"vidc.dvsd"=mcdvd_32.dll
"vidc.mpg4"=mpg4c32.dll
"vidc.mp42"=mpg4c32.dll
"vidc.mp43"=mpg4c32.dll
"vidc.xvid"=xvidvfw.dll
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open - "D:\Program Files\PSPad editor\PSPad.exe" "%1"
======List of files/folders created in the last 1 month======
2012-01-30 16:05:51 ----D---- C:\rsit
2012-01-30 16:05:51 ----D---- C:\Program Files\trend micro
2012-01-23 15:44:50 ----D---- C:\Program Files\Canon
2012-01-22 12:39:08 ----D---- C:\Program Files\Common Files\Axara
2012-01-22 12:39:08 ----A---- C:\Windows\system32\xvidvfw.dll
2012-01-22 12:39:08 ----A---- C:\Windows\system32\vp6vfw.dll
2012-01-22 12:39:08 ----A---- C:\Windows\system32\mpg4c32.dll
2012-01-22 12:39:08 ----A---- C:\Windows\system32\mcdvd_32.dll
2012-01-21 17:24:23 ----A---- C:\Windows\system32\unicows.dll
2012-01-21 17:24:23 ----A---- C:\Windows\system32\pthreadGC2.dll
2012-01-21 17:24:23 ----A---- C:\Windows\system32\ff_vfw.dll
2012-01-21 17:11:30 ----D---- C:\Users\PC\AppData\Roaming\DVDVideoSoft
2012-01-21 17:11:23 ----D---- C:\Users\PC\AppData\Roaming\DVDVideoSoftIEHelpers
2012-01-21 14:38:38 ----D---- C:\ProgramData\Applian
2012-01-21 14:36:02 ----D---- C:\Program Files\Conduit
2012-01-21 14:36:00 ----D---- C:\Program Files\Freecorder
2012-01-17 23:28:39 ----A---- C:\Windows\system32\winhttp.dll
2012-01-17 23:28:39 ----A---- C:\Windows\system32\schannel.dll
2012-01-17 23:28:39 ----A---- C:\Windows\system32\lsasrv.dll
2012-01-17 23:28:39 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-01-17 23:28:38 ----A---- C:\Windows\system32\secur32.dll
2012-01-17 23:28:38 ----A---- C:\Windows\system32\lsass.exe
2012-01-11 15:15:22 ----A---- C:\Windows\system32\winmm.dll
2012-01-11 15:15:22 ----A---- C:\Windows\system32\mciseq.dll
2012-01-11 15:15:20 ----A---- C:\Windows\system32\ntdll.dll
2012-01-11 15:15:19 ----A---- C:\Windows\system32\packager.dll
2012-01-11 15:15:18 ----A---- C:\Windows\system32\winsrv.dll
2012-01-11 15:15:16 ----A---- C:\Windows\system32\quartz.dll
2012-01-11 15:15:15 ----A---- C:\Windows\system32\qdvd.dll
======List of files/folders modified in the last 1 month======
2012-01-30 16:05:55 ----D---- C:\Windows\Temp
2012-01-30 16:05:51 ----RD---- C:\Program Files
2012-01-30 16:05:14 ----D---- C:\Windows\Prefetch
2012-01-30 15:02:17 ----D---- C:\Windows\System32
2012-01-30 15:02:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-01-30 15:02:16 ----D---- C:\Windows\inf
2012-01-30 14:58:05 ----D---- C:\Windows\Tasks
2012-01-30 14:58:01 ----D---- C:\ProgramData\NVIDIA
2012-01-29 19:02:23 ----D---- C:\Windows\system32\drivers
2012-01-29 11:11:34 ----SHD---- C:\System Volume Information
2012-01-27 17:58:24 ----D---- C:\Windows\system32\Tasks
2012-01-27 16:13:04 ----D---- C:\Program Files\Common Files
2012-01-27 16:13:03 ----RSD---- C:\Windows\assembly
2012-01-25 23:16:55 ----D---- C:\Program Files\Mozilla Firefox
2012-01-24 23:50:01 ----SHD---- C:\Windows\Installer
2012-01-23 15:45:45 ----D---- C:\Users\PC\AppData\Roaming\Canon
2012-01-22 12:39:08 ----D---- C:\Windows
2012-01-21 16:23:14 ----HD---- C:\ProgramData
2012-01-21 14:44:17 ----D---- C:\Windows\system32\catroot
2012-01-21 14:41:04 ----SD---- C:\Users\PC\AppData\Roaming\Microsoft
2012-01-21 14:39:33 ----D---- C:\Windows\system32\catroot2
2012-01-18 10:43:16 ----D---- C:\Windows\winsxs
2012-01-13 15:31:51 ----D---- C:\Users\PC\AppData\Roaming\Skype
2012-01-11 23:59:18 ----A---- C:\Windows\system32\mrt.exe
2012-01-11 23:59:03 ----D---- C:\Program Files\Windows Mail
2012-01-11 23:58:56 ----D---- C:\Windows\ehome
2012-01-11 13:41:46 ----D---- C:\Windows\Microsoft.NET
2012-01-08 10:52:13 ----A---- C:\Windows\system32\lsdelete.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys [2010-09-23 64288]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-10-29 721904]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-11-28 34392]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-11-28 435032]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-11-28 314456]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-11-28 52952]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-11-28 20568]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-11-28 55128]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-06-10 9899296]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-02-14 118784]
S3 a0ggzyff;a0ggzyff; C:\Windows\system32\drivers\a0ggzyff.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\D:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt [2005-08-18 7168]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2009-12-09 16608]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-06-27 2149912]
S3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys [2012-01-08 15232]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\Windows\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-11-28 44768]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-09-06 247096]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2012-01-08 2152152]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-06-10 211488]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Windows\System32\nvSCPAPISvr.exe [2009-06-10 232960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-26 135664]
S2 RelevantKnowledge;RelevantKnowledge; C:\Program Files\RelevantKnowledge\rlservice.exe /service []
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-26 135664]
S3 LTVGZLNIOD;LTVGZLNIOD; C:\Users\PC\AppData\Local\Temp\LTVGZLNIOD.exe [2011-04-27 465792]
S3 MKJLYM;MKJLYM; C:\Users\PC\AppData\Local\Temp\MKJLYM.exe []
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-09-17 800040]
S3 NIXBWMDVDAE;NIXBWMDVDAE; C:\Users\PC\AppData\Local\Temp\NIXBWMDVDAE.exe []
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 OUCBN;OUCBN; C:\Users\PC\AppData\Local\Temp\OUCBN.exe []
S3 PWFZ;PWFZ; C:\Users\PC\AppData\Local\Temp\PWFZ.exe [2011-09-30 383872]
S3 RHQQEONC;RHQQEONC; C:\Users\PC\AppData\Local\Temp\RHQQEONC.exe []
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolugu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolugu logu
Zdravim a pekny den preji 
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy
PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programyPROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe
- Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
- Pokud mate Win XP spustte pod uctem Spravce\Administratora
- Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
- Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
- Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
- Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
- Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
- Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
- Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolugu logu
Přikládam log z Combofix
ComboFix 12-01-30.02 - PC 30.01.2012 16:49:39.1.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3326.2059 [GMT 1:00]
Spuštěný z: c:\users\PC\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\About RelevantKnowledge.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Privacy Policy and User License Agreement.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Support.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Uninstall Instructions.lnk
c:\windows\iun6002.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\tmpA0F0.tmp
c:\windows\system32\tmpA100.tmp
c:\windows\system32\win.ini
c:\windows\Tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_RelevantKnowledge
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-28 do 2012-01-30 )))))))))))))))))))))))))))))))
.
.
2012-01-30 15:55 . 2012-01-30 15:55 -------- d-----w- c:\users\PC\AppData\Local\temp
2012-01-30 15:55 . 2012-01-30 15:55 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- C:\rsit
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- c:\program files\trend micro
2012-01-27 13:21 . 2012-01-06 04:19 6557240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{750B10F9-8187-48EC-9454-C9C0A363CC39}\mpengine.dll
2012-01-23 14:44 . 2012-01-23 14:45 -------- d-----w- c:\program files\Canon
2012-01-22 11:39 . 2011-08-10 15:49 61440 ----a-w- c:\windows\system32\mslvddsfilter.ax
2012-01-22 11:39 . 2012-01-22 11:45 -------- d-----w- c:\program files\Common Files\Axara
2012-01-22 11:39 . 2004-12-10 09:03 438272 ----a-w- c:\windows\system32\vp6vfw.dll
2012-01-22 11:39 . 2004-07-03 20:08 139264 ----a-w- c:\windows\system32\xvidvfw.dll
2012-01-22 11:39 . 2004-02-04 20:11 81920 ----a-w- c:\windows\system32\AC3ACM.acm
2012-01-22 11:39 . 2003-05-22 11:26 221215 ----a-w- c:\windows\system32\divxdec.ax
2012-01-22 11:39 . 2003-05-21 22:50 82944 ----a-w- c:\windows\system32\vct3216.acm
2012-01-22 11:39 . 2003-05-21 22:50 38912 ----a-w- c:\windows\system32\alf2cd.acm
2012-01-22 11:39 . 2003-05-21 22:50 261632 ----a-w- c:\windows\system32\mcdvd_32.dll
2012-01-22 11:39 . 2002-08-19 23:41 413760 ----a-w- c:\windows\system32\mpg4c32.dll
2012-01-22 11:39 . 2000-03-14 19:55 13239 ----a-w- c:\windows\system32\Scg726.acm
2012-01-21 16:24 . 2008-12-17 12:22 57344 ----a-w- c:\windows\system32\ff_vfw.dll
2012-01-21 16:24 . 2008-06-15 08:13 6144 ----a-w- c:\windows\system32\ff_acm.acm
2012-01-21 16:24 . 2008-06-14 21:01 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2012-01-21 16:24 . 2008-06-14 21:01 258352 ----a-w- c:\windows\system32\unicows.dll
2012-01-21 16:24 . 2003-03-24 17:49 98304 ----a-w- c:\windows\system32\L3CODECX.AX
2012-01-21 16:11 . 2012-01-21 16:11 -------- d-----w- c:\users\PC\AppData\Roaming\DVDVideoSoft
2012-01-21 13:40 . 2012-01-21 13:44 -------- d-----w- c:\users\PC\AppData\Local\Jaksta_Technologies_Pty_L
2012-01-21 13:38 . 2012-01-21 13:38 -------- d-----w- c:\programdata\Applian
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\program files\Conduit
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\users\PC\AppData\Local\Conduit
2012-01-21 13:36 . 2012-01-22 11:58 -------- d-----w- c:\program files\Freecorder
2012-01-21 13:35 . 2012-01-30 13:30 -------- d-----w- c:\users\PC\AppData\Local\FLVService
2012-01-17 22:28 . 2011-11-17 06:48 440192 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-17 22:28 . 2011-11-16 16:23 377344 ----a-w- c:\windows\system32\winhttp.dll
2012-01-17 22:28 . 2011-11-16 16:23 278528 ----a-w- c:\windows\system32\schannel.dll
2012-01-17 22:28 . 2011-11-16 16:21 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-17 22:28 . 2011-11-16 16:23 72704 ----a-w- c:\windows\system32\secur32.dll
2012-01-17 22:28 . 2011-11-16 14:12 9728 ----a-w- c:\windows\system32\lsass.exe
2012-01-11 14:15 . 2011-10-14 16:03 189952 ----a-w- c:\windows\system32\winmm.dll
2012-01-11 14:15 . 2011-10-14 16:00 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-01-11 14:15 . 2011-11-18 20:23 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 14:15 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2012-01-11 14:15 . 2011-11-25 15:59 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-01-11 14:15 . 2011-12-01 15:21 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2012-01-11 14:15 . 2011-10-25 15:58 1314816 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 14:15 . 2011-10-25 15:58 497152 ----a-w- c:\windows\system32\qdvd.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-08 09:52 . 2010-11-02 13:20 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2012-01-08 09:52 . 2009-06-14 16:52 16432 ----a-w- c:\windows\system32\lsdelete.exe
2011-12-16 21:18 . 2011-12-16 21:18 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-07 09:08 . 2009-10-02 18:31 236576 ------w- c:\windows\system32\MpSigStub.exe
2011-11-28 18:01 . 2010-10-01 09:35 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2009-05-20 19:55 199816 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:53 . 2011-03-03 15:01 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2009-05-20 19:55 314456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2009-05-20 19:55 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2009-05-20 19:55 52952 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2009-05-20 19:55 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-11-28 17:51 . 2009-05-20 19:55 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-11-23 13:37 . 2011-12-15 09:26 2043904 ----a-w- c:\windows\system32\win32k.sys
2011-11-08 14:42 . 2011-12-15 09:26 2048 ----a-w- c:\windows\system32\tzres.dll
2011-11-03 22:47 . 2011-12-15 10:23 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-11-03 22:40 . 2011-12-15 10:23 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-03 22:39 . 2011-12-15 10:23 1127424 ----a-w- c:\windows\system32\wininet.dll
2011-11-03 22:31 . 2011-12-15 10:23 2382848 ----a-w- c:\windows\system32\mshtml.tlb
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
2011-05-09 08:49 176936 ----a-w- c:\program files\Freecorder\prxtbFre0.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{1392B8D2-5C05-419F-A8F6-B9F15A596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"mapdisk"="d:\users\PC\Documents\ArmAWork\mapdisk.bat" [2010-11-10 45]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2012-01-08 1191216]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-06-10 13785632]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-13 185896]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Obsah adresáře 'Naplánované úlohy'
.
2012-01-30 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2010-09-23 09:51]
.
2012-01-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 18:11]
.
2012-01-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 18:11]
.
.
------- Doplňkový sken -------
.
uStart Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - About:Blank
FF - prefs.js: network.proxy.http - 203.161.30.110
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: DAEMON Tools Toolbar: DTToolbar@toolbarnet.com - %profile%\extensions\DTToolbar@toolbarnet.com
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
.
.
------- Asociace souborů -------
.
txtfile="d:\program files\PSPad editor\PSPad.exe" "%1"
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-AdobeBridge - (no file)
MSConfigStartUp-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-iMesh 1 MediaBar - c:\program files\iMesh Applications\MediaBar\uninstall.exe
.
.
.
**************************************************************************
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory:
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EverestDriver]
"ImagePath"="\??\d:\program files\Lavalys\EVEREST Home Edition\kerneld.wnt"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1484727336-25265518-3277325258-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*h*t*a*c*c*e*s*s* \OpenWithList]
@Class="Shell"
"a"="NOTEPAD.EXE"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Lavasoft\Ad-Aware\AAWService.exe
c:\program files\ICQ6Toolbar\ICQ Service.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\System32\nvSCPAPISvr.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\system32\conime.exe
c:\windows\ehome\ehmsas.exe
c:\windows\system32\wbem\unsecapp.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2012-01-30 17:02:38 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-01-30 16:02
.
Před spuštěním: Volných bajtů: 70 632 136 704
Po spuštění: Volných bajtů: 71 120 494 592
.
- - End Of File - - D86C72E181009B6F1C9E9221B2121DDD
ComboFix 12-01-30.02 - PC 30.01.2012 16:49:39.1.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3326.2059 [GMT 1:00]
Spuštěný z: c:\users\PC\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\About RelevantKnowledge.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Privacy Policy and User License Agreement.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Support.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Uninstall Instructions.lnk
c:\windows\iun6002.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\tmpA0F0.tmp
c:\windows\system32\tmpA100.tmp
c:\windows\system32\win.ini
c:\windows\Tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_RelevantKnowledge
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-28 do 2012-01-30 )))))))))))))))))))))))))))))))
.
.
2012-01-30 15:55 . 2012-01-30 15:55 -------- d-----w- c:\users\PC\AppData\Local\temp
2012-01-30 15:55 . 2012-01-30 15:55 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- C:\rsit
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- c:\program files\trend micro
2012-01-27 13:21 . 2012-01-06 04:19 6557240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{750B10F9-8187-48EC-9454-C9C0A363CC39}\mpengine.dll
2012-01-23 14:44 . 2012-01-23 14:45 -------- d-----w- c:\program files\Canon
2012-01-22 11:39 . 2011-08-10 15:49 61440 ----a-w- c:\windows\system32\mslvddsfilter.ax
2012-01-22 11:39 . 2012-01-22 11:45 -------- d-----w- c:\program files\Common Files\Axara
2012-01-22 11:39 . 2004-12-10 09:03 438272 ----a-w- c:\windows\system32\vp6vfw.dll
2012-01-22 11:39 . 2004-07-03 20:08 139264 ----a-w- c:\windows\system32\xvidvfw.dll
2012-01-22 11:39 . 2004-02-04 20:11 81920 ----a-w- c:\windows\system32\AC3ACM.acm
2012-01-22 11:39 . 2003-05-22 11:26 221215 ----a-w- c:\windows\system32\divxdec.ax
2012-01-22 11:39 . 2003-05-21 22:50 82944 ----a-w- c:\windows\system32\vct3216.acm
2012-01-22 11:39 . 2003-05-21 22:50 38912 ----a-w- c:\windows\system32\alf2cd.acm
2012-01-22 11:39 . 2003-05-21 22:50 261632 ----a-w- c:\windows\system32\mcdvd_32.dll
2012-01-22 11:39 . 2002-08-19 23:41 413760 ----a-w- c:\windows\system32\mpg4c32.dll
2012-01-22 11:39 . 2000-03-14 19:55 13239 ----a-w- c:\windows\system32\Scg726.acm
2012-01-21 16:24 . 2008-12-17 12:22 57344 ----a-w- c:\windows\system32\ff_vfw.dll
2012-01-21 16:24 . 2008-06-15 08:13 6144 ----a-w- c:\windows\system32\ff_acm.acm
2012-01-21 16:24 . 2008-06-14 21:01 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2012-01-21 16:24 . 2008-06-14 21:01 258352 ----a-w- c:\windows\system32\unicows.dll
2012-01-21 16:24 . 2003-03-24 17:49 98304 ----a-w- c:\windows\system32\L3CODECX.AX
2012-01-21 16:11 . 2012-01-21 16:11 -------- d-----w- c:\users\PC\AppData\Roaming\DVDVideoSoft
2012-01-21 13:40 . 2012-01-21 13:44 -------- d-----w- c:\users\PC\AppData\Local\Jaksta_Technologies_Pty_L
2012-01-21 13:38 . 2012-01-21 13:38 -------- d-----w- c:\programdata\Applian
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\program files\Conduit
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\users\PC\AppData\Local\Conduit
2012-01-21 13:36 . 2012-01-22 11:58 -------- d-----w- c:\program files\Freecorder
2012-01-21 13:35 . 2012-01-30 13:30 -------- d-----w- c:\users\PC\AppData\Local\FLVService
2012-01-17 22:28 . 2011-11-17 06:48 440192 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-17 22:28 . 2011-11-16 16:23 377344 ----a-w- c:\windows\system32\winhttp.dll
2012-01-17 22:28 . 2011-11-16 16:23 278528 ----a-w- c:\windows\system32\schannel.dll
2012-01-17 22:28 . 2011-11-16 16:21 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-17 22:28 . 2011-11-16 16:23 72704 ----a-w- c:\windows\system32\secur32.dll
2012-01-17 22:28 . 2011-11-16 14:12 9728 ----a-w- c:\windows\system32\lsass.exe
2012-01-11 14:15 . 2011-10-14 16:03 189952 ----a-w- c:\windows\system32\winmm.dll
2012-01-11 14:15 . 2011-10-14 16:00 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-01-11 14:15 . 2011-11-18 20:23 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 14:15 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2012-01-11 14:15 . 2011-11-25 15:59 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-01-11 14:15 . 2011-12-01 15:21 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2012-01-11 14:15 . 2011-10-25 15:58 1314816 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 14:15 . 2011-10-25 15:58 497152 ----a-w- c:\windows\system32\qdvd.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-08 09:52 . 2010-11-02 13:20 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2012-01-08 09:52 . 2009-06-14 16:52 16432 ----a-w- c:\windows\system32\lsdelete.exe
2011-12-16 21:18 . 2011-12-16 21:18 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-07 09:08 . 2009-10-02 18:31 236576 ------w- c:\windows\system32\MpSigStub.exe
2011-11-28 18:01 . 2010-10-01 09:35 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2009-05-20 19:55 199816 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:53 . 2011-03-03 15:01 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2009-05-20 19:55 314456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2009-05-20 19:55 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2009-05-20 19:55 52952 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2009-05-20 19:55 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-11-28 17:51 . 2009-05-20 19:55 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-11-23 13:37 . 2011-12-15 09:26 2043904 ----a-w- c:\windows\system32\win32k.sys
2011-11-08 14:42 . 2011-12-15 09:26 2048 ----a-w- c:\windows\system32\tzres.dll
2011-11-03 22:47 . 2011-12-15 10:23 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-11-03 22:40 . 2011-12-15 10:23 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-03 22:39 . 2011-12-15 10:23 1127424 ----a-w- c:\windows\system32\wininet.dll
2011-11-03 22:31 . 2011-12-15 10:23 2382848 ----a-w- c:\windows\system32\mshtml.tlb
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
2011-05-09 08:49 176936 ----a-w- c:\program files\Freecorder\prxtbFre0.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{1392B8D2-5C05-419F-A8F6-B9F15A596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"mapdisk"="d:\users\PC\Documents\ArmAWork\mapdisk.bat" [2010-11-10 45]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2012-01-08 1191216]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-06-10 13785632]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-13 185896]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Obsah adresáře 'Naplánované úlohy'
.
2012-01-30 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2010-09-23 09:51]
.
2012-01-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 18:11]
.
2012-01-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-26 18:11]
.
.
------- Doplňkový sken -------
.
uStart Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - About:Blank
FF - prefs.js: network.proxy.http - 203.161.30.110
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: DAEMON Tools Toolbar: DTToolbar@toolbarnet.com - %profile%\extensions\DTToolbar@toolbarnet.com
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
.
.
------- Asociace souborů -------
.
txtfile="d:\program files\PSPad editor\PSPad.exe" "%1"
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-AdobeBridge - (no file)
MSConfigStartUp-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-iMesh 1 MediaBar - c:\program files\iMesh Applications\MediaBar\uninstall.exe
.
.
.
**************************************************************************
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory:
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EverestDriver]
"ImagePath"="\??\d:\program files\Lavalys\EVEREST Home Edition\kerneld.wnt"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1484727336-25265518-3277325258-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*h*t*a*c*c*e*s*s* \OpenWithList]
@Class="Shell"
"a"="NOTEPAD.EXE"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Lavasoft\Ad-Aware\AAWService.exe
c:\program files\ICQ6Toolbar\ICQ Service.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\System32\nvSCPAPISvr.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\system32\conime.exe
c:\windows\ehome\ehmsas.exe
c:\windows\system32\wbem\unsecapp.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2012-01-30 17:02:38 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-01-30 16:02
.
Před spuštěním: Volných bajtů: 70 632 136 704
Po spuštění: Volných bajtů: 71 120 494 592
.
- - End Of File - - D86C72E181009B6F1C9E9221B2121DDD
Re: Prosím o kontrolugu logu
Podle počtu smazaných souborů usuzuji, že v systému něco mám.
Může se k tomu někdo kompetentní vyjádřit? Děkuji předem.
Může se k tomu někdo kompetentní vyjádřit? Děkuji předem.
Re: Prosím o kontrolugu logu
Omlouvam se za zdrzeni, mel jsem nejake soukrome zalezitosti Doporucuji odinstalovat Lavasoft Ad-Aware - program ma uz nejlepsi leta davno za sebou a posledni cca 3 roky neni schopen celit aktualnim hrozbam
- Nahrada za Ad-Aware:
- Samozrejme pouzivejte jen jeden z nich
- Osobne doporucuji SuperAntiSpyware
Pokud nemate, tak presunte Combofix na plochu
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
KillAll:: Registry:: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AdobeAAMUpdater-1.0"=- "SwitchBoard"=- "AdobeCS5ServiceManager"=- Firefox:: FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\ FF - prefs.js: browser.search.selectedEngine - ICQ Search FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} FF - Ext: DAEMON Tools Toolbar: DTToolbar@toolbarnet.com - %profile%\extensions\DTToolbar@toolbarnet.com FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} FF - user.js: browser.blink_allowed - true FF - user.js: network.prefetch-next - true FF - user.js: nglayout.initialpaint.delay - 50 FF - user.js: layout.spellcheckDefault - 1 FF - user.js: browser.search.openintab - false FF - user.js: browser.tabs.closeButtons - 1 FF - user.js: browser.tabs.opentabfor.middleclick - true FF - user.js: browser.tabs.tabMinWidth - 100 File:: c:\windows\Tasks\GoogleUpdateTaskMachineCore.job c:\windows\Tasks\GoogleUpdateTaskMachineUA.job RegLock:: HKEY_USERS\S-1-5-21-1484727336-25265518-3277325258-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*h*t*a*c*c*e*s*s* \OpenWithList] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] Folder:: c:\program files\ICQ6Toolbar Driver:: ICQ Service gupdate gupdatem LTVGZLNIOD MKJLYM NBService NIXBWMDVDAE NMIndexingService OUCBN PWFZ RHQQEONC Collect:: C:\Users\PC\AppData\Local\Temp\LTVGZLNIOD.exe C:\Users\PC\AppData\Local\Temp\MKJLYM.exe C:\Users\PC\AppData\Local\Temp\NIXBWMDVDAE.exe C:\Users\PC\AppData\Local\Temp\OUCBN.exe C:\Users\PC\AppData\Local\Temp\PWFZ.exe C:\Users\PC\AppData\Local\Temp\RHQQEONC.exe ClearJavaCache:: AtJob:: Reboot::- Ulozte vytvoreny TXT jako CFScript.txt
- Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
- Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte
Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolugu logu
Hotovo. Mohu se zeptat co jsem tam měl? A ještě jednou díky.
ComboFix 12-01-30.02 - PC 30.01.2012 22:36:39.2.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3326.2114 [GMT 1:00]
Spuštěný z: c:\users\PC\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\PC\Desktop\CFscript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ICQ6Toolbar
c:\program files\ICQ6Toolbar\config.xml
c:\program files\ICQ6Toolbar\Icons.bmp
c:\program files\ICQ6Toolbar\ICQ Service.exe
c:\program files\ICQ6Toolbar\icq6Toolbar.ico
c:\program files\ICQ6Toolbar\ICQToolBar.dll
c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
c:\program files\ICQ6Toolbar\logo_small.gif
c:\program files\ICQ6Toolbar\ServiceStarter.exe
c:\program files\ICQ6Toolbar\short.wav
c:\program files\ICQ6Toolbar\Version.txt
c:\program files\ICQ6Toolbar\voucher.bmp
c:\program files\ICQ6Toolbar\voucher2.bmp
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components\ITB_History.js
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences\prefs.js
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences\user.js
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome.manifest
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\icqtoolbar.jar
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\install.rdf
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\manifest.mf
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\zigbert.rsa
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\zigbert.sf
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.gif
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.src
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components\ITB_History.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences\prefs.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences\user.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome.manifest
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\about.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\about.xul
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\autocomplete.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\exitobserver.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\globals.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\highlight.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtabs.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtabs.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtoolbar.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtoolbar.xul
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\bgLarge.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\bgSmall.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\buttonBlue.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\buttonGreen.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\searchLogo.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\localfileupdate.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\menu-button.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_bg.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_cz.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_de.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_en.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_es.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_fr.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_he.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_it.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_ru.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_sk.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_tr.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_uk.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\options.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\options.xul
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\parsegamesxml.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\parsemenuxml.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\peoplesearch.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\peoplesearch.xul
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\prefutils.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\search.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\splitter.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\statistics.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\tabcontext.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\utilities.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\voucher.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\zoom.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\about.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\abt.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\ain.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\ang.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\default.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\dis.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\dropmarker.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\hide.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\icons.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\logo_small.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\more_vouchers_r.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\more_vouchers_y.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\options.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\peoplesearch.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\voucher_bg.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\voucher_bg_y.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\install.rdf
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\manifest.mf
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\zigbert.rsa
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\zigbert.sf
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.src
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.xpt
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\about.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\AboutWindow.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\AddRadioStation.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\as.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\as.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astro.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\az.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\b1.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\b1.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\BurnImage.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\buy.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond000.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond001.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond003.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond004.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond005.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond006.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond007.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond008.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond009.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond010.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond011.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond019.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond020.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond021.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond022.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond023.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond024.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond025.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond026.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond037.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond038.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond039.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond040.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond041.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond046.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond048.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond050.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond051.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond052.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond053.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond054.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond055.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond056.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond057.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond058.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond059.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond060.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond061.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond062.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond063.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond064.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond065.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond066.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond067.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond068.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond069.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond075.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond076.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond077.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond078.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond079.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond080.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond084.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond085.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond086.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond087.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond088.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond089.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond090.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond091.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond092.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond093.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond094.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond095.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond108.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond109.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond110.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond111.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond112.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond113.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond120.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond121.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond122.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond126.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond127.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond128.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond129.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond130.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond131.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond132.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond133.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond134.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond135.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond136.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond137.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond138.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond140.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond141.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond142.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond143.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond148.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond149.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond152.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond154.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond155.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond156.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond157.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Config.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\d.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\d2.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\daemon.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dot_disabled.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dot_enabled.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dot_on_over.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ds.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dsearch.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\DTPro.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dtt16.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dtt32.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Dwnl.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\emulation.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\favicon.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\features.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameCentrix.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameS.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameSA.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\gd.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\genre.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\globe.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GrabImage.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\hb.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\hb.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\help.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\hide.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ImageS.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ImageSA.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ip.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\lang.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\lingvo.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\m.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_disable.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_disable.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuRadioConfig.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuRadioStation.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuRSCur.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuTr.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\none.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\none_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\noW.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\op.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\pragma.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prod.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Radio.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioBg.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioBg.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioBgMask.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDisp.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDisp_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioE.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioG.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioL.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLDotMask.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLeft.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLeftMask.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLM.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioM.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioN.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioR.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioR.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioRM.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioRU.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioW.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rbcheck.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rbtxt.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Rss.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Rss1.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RssA.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RssA1.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rssClose.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rssL.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rssOpen.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RssRefresh.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\s2.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\show.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\size.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\size_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\skins.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\spt.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\style.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\SupportRequest.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\time.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\TitleIcon.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\toolbar.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\trans.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_disable.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\u.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_back.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_dott.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_dott_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_mute.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_mute_check.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wb.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Weather_m42.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Weather_m43.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\WebS.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\WebSa.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi0.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi1.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi10.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi11.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi12.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi13.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi14.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi2.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi3.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi4.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi5.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi6.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi7.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi8.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi9.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\chrome.manifest
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\chrome\dttoolbar.jar
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\install.rdf
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_ICQ Service
-------\Service_LTVGZLNIOD
-------\Service_MKJLYM
-------\Service_NBService
-------\Service_NIXBWMDVDAE
-------\Service_NMIndexingService
-------\Service_OUCBN
-------\Service_PWFZ
-------\Service_RHQQEONC
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-28 do 2012-01-30 )))))))))))))))))))))))))))))))
.
.
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- C:\rsit
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- c:\program files\trend micro
2012-01-27 13:21 . 2012-01-06 04:19 6557240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{750B10F9-8187-48EC-9454-C9C0A363CC39}\mpengine.dll
2012-01-23 14:44 . 2012-01-23 14:45 -------- d-----w- c:\program files\Canon
2012-01-22 11:39 . 2011-08-10 15:49 61440 ----a-w- c:\windows\system32\mslvddsfilter.ax
2012-01-22 11:39 . 2012-01-22 11:45 -------- d-----w- c:\program files\Common Files\Axara
2012-01-22 11:39 . 2004-12-10 09:03 438272 ----a-w- c:\windows\system32\vp6vfw.dll
2012-01-22 11:39 . 2004-07-03 20:08 139264 ----a-w- c:\windows\system32\xvidvfw.dll
2012-01-22 11:39 . 2004-02-04 20:11 81920 ----a-w- c:\windows\system32\AC3ACM.acm
2012-01-22 11:39 . 2003-05-22 11:26 221215 ----a-w- c:\windows\system32\divxdec.ax
2012-01-22 11:39 . 2003-05-21 22:50 82944 ----a-w- c:\windows\system32\vct3216.acm
2012-01-22 11:39 . 2003-05-21 22:50 38912 ----a-w- c:\windows\system32\alf2cd.acm
2012-01-22 11:39 . 2003-05-21 22:50 261632 ----a-w- c:\windows\system32\mcdvd_32.dll
2012-01-22 11:39 . 2002-08-19 23:41 413760 ----a-w- c:\windows\system32\mpg4c32.dll
2012-01-22 11:39 . 2000-03-14 19:55 13239 ----a-w- c:\windows\system32\Scg726.acm
2012-01-21 16:24 . 2008-12-17 12:22 57344 ----a-w- c:\windows\system32\ff_vfw.dll
2012-01-21 16:24 . 2008-06-15 08:13 6144 ----a-w- c:\windows\system32\ff_acm.acm
2012-01-21 16:24 . 2008-06-14 21:01 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2012-01-21 16:24 . 2008-06-14 21:01 258352 ----a-w- c:\windows\system32\unicows.dll
2012-01-21 16:24 . 2003-03-24 17:49 98304 ----a-w- c:\windows\system32\L3CODECX.AX
2012-01-21 16:11 . 2012-01-21 16:11 -------- d-----w- c:\users\PC\AppData\Roaming\DVDVideoSoft
2012-01-21 13:40 . 2012-01-21 13:44 -------- d-----w- c:\users\PC\AppData\Local\Jaksta_Technologies_Pty_L
2012-01-21 13:38 . 2012-01-21 13:38 -------- d-----w- c:\programdata\Applian
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\program files\Conduit
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\users\PC\AppData\Local\Conduit
2012-01-21 13:36 . 2012-01-22 11:58 -------- d-----w- c:\program files\Freecorder
2012-01-21 13:35 . 2012-01-30 13:30 -------- d-----w- c:\users\PC\AppData\Local\FLVService
2012-01-17 22:28 . 2011-11-17 06:48 440192 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-17 22:28 . 2011-11-16 16:23 377344 ----a-w- c:\windows\system32\winhttp.dll
2012-01-17 22:28 . 2011-11-16 16:23 278528 ----a-w- c:\windows\system32\schannel.dll
2012-01-17 22:28 . 2011-11-16 16:21 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-17 22:28 . 2011-11-16 16:23 72704 ----a-w- c:\windows\system32\secur32.dll
2012-01-17 22:28 . 2011-11-16 14:12 9728 ----a-w- c:\windows\system32\lsass.exe
2012-01-11 14:15 . 2011-10-14 16:03 189952 ----a-w- c:\windows\system32\winmm.dll
2012-01-11 14:15 . 2011-10-14 16:00 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-01-11 14:15 . 2011-11-18 20:23 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 14:15 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2012-01-11 14:15 . 2011-11-25 15:59 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-01-11 14:15 . 2011-12-01 15:21 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2012-01-11 14:15 . 2011-10-25 15:58 1314816 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 14:15 . 2011-10-25 15:58 497152 ----a-w- c:\windows\system32\qdvd.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-08 09:52 . 2010-11-02 13:20 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2012-01-08 09:52 . 2009-06-14 16:52 16432 ----a-w- c:\windows\system32\lsdelete.exe
2011-12-16 21:18 . 2011-12-16 21:18 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-07 09:08 . 2009-10-02 18:31 236576 ------w- c:\windows\system32\MpSigStub.exe
2011-11-28 18:01 . 2010-10-01 09:35 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2009-05-20 19:55 199816 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:53 . 2011-03-03 15:01 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2009-05-20 19:55 314456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2009-05-20 19:55 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2009-05-20 19:55 52952 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2009-05-20 19:55 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-11-28 17:51 . 2009-05-20 19:55 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-11-23 13:37 . 2011-12-15 09:26 2043904 ----a-w- c:\windows\system32\win32k.sys
2011-11-08 14:42 . 2011-12-15 09:26 2048 ----a-w- c:\windows\system32\tzres.dll
2011-11-03 22:47 . 2011-12-15 10:23 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-11-03 22:40 . 2011-12-15 10:23 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-03 22:39 . 2011-12-15 10:23 1127424 ----a-w- c:\windows\system32\wininet.dll
2011-11-03 22:31 . 2011-12-15 10:23 2382848 ----a-w- c:\windows\system32\mshtml.tlb
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
2011-05-09 08:49 176936 ----a-w- c:\program files\Freecorder\prxtbFre0.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{1392B8D2-5C05-419F-A8F6-B9F15A596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"mapdisk"="d:\users\PC\Documents\ArmAWork\mapdisk.bat" [2010-11-10 45]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2012-01-08 1191216]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-06-10 13785632]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-13 185896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
.
------- Doplňkový sken -------
.
uStart Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\
FF - prefs.js: browser.startup.homepage - About:Blank
FF - prefs.js: network.proxy.http - 203.161.30.110
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-ICQToolbar - c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-30 22:46
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EverestDriver]
"ImagePath"="\??\d:\program files\Lavalys\EVEREST Home Edition\kerneld.wnt"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1484727336-25265518-3277325258-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*h*t*a*c*c*e*s*s* \OpenWithList]
@Class="Shell"
"a"="NOTEPAD.EXE"
"MRUList"="a"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\System32\nvSCPAPISvr.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\system32\conime.exe
c:\windows\ehome\ehmsas.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Lavasoft\Ad-Aware\AAWService.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2012-01-30 22:51:20 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-01-30 21:51
ComboFix2.txt 2012-01-30 16:02
.
Před spuštěním: Volných bajtů: 71 084 654 592
Po spuštění: Volných bajtů: 70 934 450 176
.
- - End Of File - - 493B1325353D536585B6378246C24414
ComboFix 12-01-30.02 - PC 30.01.2012 22:36:39.2.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3326.2114 [GMT 1:00]
Spuštěný z: c:\users\PC\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\PC\Desktop\CFscript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ICQ6Toolbar
c:\program files\ICQ6Toolbar\config.xml
c:\program files\ICQ6Toolbar\Icons.bmp
c:\program files\ICQ6Toolbar\ICQ Service.exe
c:\program files\ICQ6Toolbar\icq6Toolbar.ico
c:\program files\ICQ6Toolbar\ICQToolBar.dll
c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
c:\program files\ICQ6Toolbar\logo_small.gif
c:\program files\ICQ6Toolbar\ServiceStarter.exe
c:\program files\ICQ6Toolbar\short.wav
c:\program files\ICQ6Toolbar\Version.txt
c:\program files\ICQ6Toolbar\voucher.bmp
c:\program files\ICQ6Toolbar\voucher2.bmp
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components\ITB_History.js
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences\prefs.js
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences\user.js
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome.manifest
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\icqtoolbar.jar
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\install.rdf
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\manifest.mf
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\zigbert.rsa
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\zigbert.sf
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.gif
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.src
c:\program files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components\ITB_History.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences\prefs.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences\user.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome.manifest
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\about.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\about.xul
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\autocomplete.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\exitobserver.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\globals.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\highlight.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtabs.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtabs.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtoolbar.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\icqtoolbar.xul
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\bgLarge.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\bgSmall.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\buttonBlue.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\buttonGreen.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img\searchLogo.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\localfileupdate.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\menu-button.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_bg.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_cz.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_de.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_en.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_es.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_fr.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_he.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_it.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_ru.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_sk.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_tr.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\newTab_uk.html
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\options.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\options.xul
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\parsegamesxml.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\parsemenuxml.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\peoplesearch.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\peoplesearch.xul
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\prefutils.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\search.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\splitter.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\statistics.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\tabcontext.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\utilities.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\voucher.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\zoom.js
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\icq_locale.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\itb.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\itb_options.dtd
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr\options.properties
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\about.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\abt.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\ain.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\ang.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\default.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\dis.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\dropmarker.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\hide.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\icons.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\logo_small.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\more_vouchers_r.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\more_vouchers_y.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\options.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\peoplesearch.css
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\voucher_bg.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin\voucher_bg_y.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\install.rdf
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\manifest.mf
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\zigbert.rsa
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF\zigbert.sf
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.src
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine\icqplugin.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.xpt
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\about.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\AboutWindow.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\AddRadioStation.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\as.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\as.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\astro.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\az.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\b1.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\b1.png
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\BurnImage.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\buy.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond000.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond001.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond003.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond004.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond005.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond006.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond007.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond008.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond009.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond010.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond011.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond019.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond020.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond021.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond022.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond023.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond024.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond025.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond026.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond037.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond038.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond039.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond040.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond041.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond046.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond048.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond050.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond051.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond052.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond053.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond054.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond055.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond056.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond057.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond058.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond059.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond060.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond061.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond062.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond063.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond064.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond065.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond066.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond067.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond068.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond069.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond075.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond076.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond077.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond078.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond079.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond080.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond084.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond085.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond086.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond087.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond088.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond089.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond090.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond091.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond092.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond093.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond094.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond095.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond108.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond109.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond110.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond111.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond112.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond113.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond120.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond121.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond122.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond126.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond127.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond128.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond129.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond130.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond131.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond132.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond133.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond134.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond135.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond136.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond137.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond138.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond140.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond141.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond142.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond143.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond148.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond149.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond152.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond154.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond155.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond156.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\cond157.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Config.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\d.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\d2.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\daemon.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dot_disabled.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dot_enabled.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dot_on_over.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ds.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dsearch.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dt.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\DTPro.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dtt16.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\dtt32.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Dwnl.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\emulation.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\favicon.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\features.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameCentrix.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameS.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GameSA.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\gd.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\genre.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\globe.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\GrabImage.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\hb.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\hb.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\help.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\hide.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ImageS.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ImageSA.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\ip.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\lang.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\lingvo.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\m.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_disable.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mail_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_disable.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\mailc_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuRadioConfig.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuRadioStation.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuRSCur.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\MenuTr.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\next_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\none.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\none_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\noW.gif
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\op.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\play_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\pragma.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prev_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\prod.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Radio.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioBg.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioBg.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioBgMask.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDisp.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDisp_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioDown_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioE.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioG.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioL.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLDotMask.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLeft.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLeftMask.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioLM.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioM.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioN.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioR.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioR.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioRM.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioRU.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioVolume_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RadioW.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rbcheck.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rbtxt.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\refresh_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Rss.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Rss1.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RssA.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RssA1.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rssClose.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rssL.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\rssOpen.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\RssRefresh.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\s2.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\show.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\size.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\size_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\skins.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\spt.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\stop_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\style.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\SupportRequest.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\time.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\TitleIcon.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\toolbar.xml
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\trans.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_disable.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Trash_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\u.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_back.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_dott.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_dott_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_mute.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_mute_check.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\vol_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wb.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtClose_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText_down.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText_m.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wBtText_under.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Weather_m42.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\Weather_m43.bmp
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\WebS.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\WebSa.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi0.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi1.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi10.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi11.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi12.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi13.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi14.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi2.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi3.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi4.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi5.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi6.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi7.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi8.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\components\Resources\wi9.ico
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\chrome.manifest
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\chrome\dttoolbar.jar
c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\DTToolbar@toolbarnet.com\install.rdf
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_ICQ Service
-------\Service_LTVGZLNIOD
-------\Service_MKJLYM
-------\Service_NBService
-------\Service_NIXBWMDVDAE
-------\Service_NMIndexingService
-------\Service_OUCBN
-------\Service_PWFZ
-------\Service_RHQQEONC
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-28 do 2012-01-30 )))))))))))))))))))))))))))))))
.
.
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- C:\rsit
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- c:\program files\trend micro
2012-01-27 13:21 . 2012-01-06 04:19 6557240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{750B10F9-8187-48EC-9454-C9C0A363CC39}\mpengine.dll
2012-01-23 14:44 . 2012-01-23 14:45 -------- d-----w- c:\program files\Canon
2012-01-22 11:39 . 2011-08-10 15:49 61440 ----a-w- c:\windows\system32\mslvddsfilter.ax
2012-01-22 11:39 . 2012-01-22 11:45 -------- d-----w- c:\program files\Common Files\Axara
2012-01-22 11:39 . 2004-12-10 09:03 438272 ----a-w- c:\windows\system32\vp6vfw.dll
2012-01-22 11:39 . 2004-07-03 20:08 139264 ----a-w- c:\windows\system32\xvidvfw.dll
2012-01-22 11:39 . 2004-02-04 20:11 81920 ----a-w- c:\windows\system32\AC3ACM.acm
2012-01-22 11:39 . 2003-05-22 11:26 221215 ----a-w- c:\windows\system32\divxdec.ax
2012-01-22 11:39 . 2003-05-21 22:50 82944 ----a-w- c:\windows\system32\vct3216.acm
2012-01-22 11:39 . 2003-05-21 22:50 38912 ----a-w- c:\windows\system32\alf2cd.acm
2012-01-22 11:39 . 2003-05-21 22:50 261632 ----a-w- c:\windows\system32\mcdvd_32.dll
2012-01-22 11:39 . 2002-08-19 23:41 413760 ----a-w- c:\windows\system32\mpg4c32.dll
2012-01-22 11:39 . 2000-03-14 19:55 13239 ----a-w- c:\windows\system32\Scg726.acm
2012-01-21 16:24 . 2008-12-17 12:22 57344 ----a-w- c:\windows\system32\ff_vfw.dll
2012-01-21 16:24 . 2008-06-15 08:13 6144 ----a-w- c:\windows\system32\ff_acm.acm
2012-01-21 16:24 . 2008-06-14 21:01 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2012-01-21 16:24 . 2008-06-14 21:01 258352 ----a-w- c:\windows\system32\unicows.dll
2012-01-21 16:24 . 2003-03-24 17:49 98304 ----a-w- c:\windows\system32\L3CODECX.AX
2012-01-21 16:11 . 2012-01-21 16:11 -------- d-----w- c:\users\PC\AppData\Roaming\DVDVideoSoft
2012-01-21 13:40 . 2012-01-21 13:44 -------- d-----w- c:\users\PC\AppData\Local\Jaksta_Technologies_Pty_L
2012-01-21 13:38 . 2012-01-21 13:38 -------- d-----w- c:\programdata\Applian
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\program files\Conduit
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\users\PC\AppData\Local\Conduit
2012-01-21 13:36 . 2012-01-22 11:58 -------- d-----w- c:\program files\Freecorder
2012-01-21 13:35 . 2012-01-30 13:30 -------- d-----w- c:\users\PC\AppData\Local\FLVService
2012-01-17 22:28 . 2011-11-17 06:48 440192 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-17 22:28 . 2011-11-16 16:23 377344 ----a-w- c:\windows\system32\winhttp.dll
2012-01-17 22:28 . 2011-11-16 16:23 278528 ----a-w- c:\windows\system32\schannel.dll
2012-01-17 22:28 . 2011-11-16 16:21 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-17 22:28 . 2011-11-16 16:23 72704 ----a-w- c:\windows\system32\secur32.dll
2012-01-17 22:28 . 2011-11-16 14:12 9728 ----a-w- c:\windows\system32\lsass.exe
2012-01-11 14:15 . 2011-10-14 16:03 189952 ----a-w- c:\windows\system32\winmm.dll
2012-01-11 14:15 . 2011-10-14 16:00 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-01-11 14:15 . 2011-11-18 20:23 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 14:15 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2012-01-11 14:15 . 2011-11-25 15:59 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-01-11 14:15 . 2011-12-01 15:21 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2012-01-11 14:15 . 2011-10-25 15:58 1314816 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 14:15 . 2011-10-25 15:58 497152 ----a-w- c:\windows\system32\qdvd.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-08 09:52 . 2010-11-02 13:20 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2012-01-08 09:52 . 2009-06-14 16:52 16432 ----a-w- c:\windows\system32\lsdelete.exe
2011-12-16 21:18 . 2011-12-16 21:18 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-07 09:08 . 2009-10-02 18:31 236576 ------w- c:\windows\system32\MpSigStub.exe
2011-11-28 18:01 . 2010-10-01 09:35 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2009-05-20 19:55 199816 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:53 . 2011-03-03 15:01 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2009-05-20 19:55 314456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2009-05-20 19:55 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2009-05-20 19:55 52952 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2009-05-20 19:55 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-11-28 17:51 . 2009-05-20 19:55 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-11-23 13:37 . 2011-12-15 09:26 2043904 ----a-w- c:\windows\system32\win32k.sys
2011-11-08 14:42 . 2011-12-15 09:26 2048 ----a-w- c:\windows\system32\tzres.dll
2011-11-03 22:47 . 2011-12-15 10:23 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-11-03 22:40 . 2011-12-15 10:23 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-03 22:39 . 2011-12-15 10:23 1127424 ----a-w- c:\windows\system32\wininet.dll
2011-11-03 22:31 . 2011-12-15 10:23 2382848 ----a-w- c:\windows\system32\mshtml.tlb
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
2011-05-09 08:49 176936 ----a-w- c:\program files\Freecorder\prxtbFre0.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{1392B8D2-5C05-419F-A8F6-B9F15A596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"mapdisk"="d:\users\PC\Documents\ArmAWork\mapdisk.bat" [2010-11-10 45]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2012-01-08 1191216]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-06-10 13785632]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-13 185896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
.
------- Doplňkový sken -------
.
uStart Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\
FF - prefs.js: browser.startup.homepage - About:Blank
FF - prefs.js: network.proxy.http - 203.161.30.110
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-ICQToolbar - c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-30 22:46
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EverestDriver]
"ImagePath"="\??\d:\program files\Lavalys\EVEREST Home Edition\kerneld.wnt"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1484727336-25265518-3277325258-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*h*t*a*c*c*e*s*s* \OpenWithList]
@Class="Shell"
"a"="NOTEPAD.EXE"
"MRUList"="a"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\System32\nvSCPAPISvr.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\system32\conime.exe
c:\windows\ehome\ehmsas.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Lavasoft\Ad-Aware\AAWService.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2012-01-30 22:51:20 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-01-30 21:51
ComboFix2.txt 2012-01-30 16:02
.
Před spuštěním: Volných bajtů: 71 084 654 592
Po spuštění: Volných bajtů: 70 934 450 176
.
- - End Of File - - 493B1325353D536585B6378246C24414
Re: Prosím o kontrolugu logu
Poprosim o log z DDS
- Stahnete DDS odsud http://download.bleepingcomputer.com/sUBs/dds.com a ulozte na plochu
- Spustte a kliknete na Start
- Po chvili vyskoci log, ten rad uvidim
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolugu logu
Vkládám log z DDS
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_20
Run by PC at 14:44:09 on 2012-01-31
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3326.2327 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\conime.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
uURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
uURLSearchHooks: H - No File
uURLSearchHooks: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
mURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
mURLSearchHooks: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
mURLSearchHooks: H - No File
mURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
mURLSearchHooks: H - No File
BHO: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
BHO: Pomocník pro přihlášení ke službě Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - c:\program files\daemon tools toolbar\DTToolbar.dll
TB: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
TB: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [mapdisk] "d:\users\pc\documents\armawork\mapdisk.bat"
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: WikiKomentáře Google... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\icq7.4\ICQ.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\progra~1\micros~1\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{C51ECA95-90CD-4287-8E92-25866C0571FB} : DhcpNameServer = 192.168.1.254
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\pc\appdata\roaming\mozilla\firefox\profiles\699uwz96.default\
FF - prefs.js: browser.startup.homepage - About:Blank
FF - prefs.js: network.proxy.http - 203.161.30.110
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\sony\media go\npmediago.dll
FF - plugin: d:\program files\real\realplayer\netscape6\nppl3260.dll
FF - plugin: d:\program files\real\realplayer\netscape6\nprjplug.dll
FF - plugin: d:\program files\real\realplayer\netscape6\nprpjplug.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
.
---- FIREFOX POLICIES ----
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
.
============= SERVICES / DRIVERS ===============
.
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010-11-2 64288]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-3-3 435032]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2009-5-20 314456]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-5-20 20568]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2009-5-20 55128]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-10-1 44768]
R2 FontCache;Mezipaměť písem Windows;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 21504]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\windows\system32\nvSCPAPISvr.exe [2009-6-10 232960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 EverestDriver;Lavalys EVEREST Kernel Driver;d:\program files\lavalys\everest home edition\kerneld.wnt [2005-8-18 7168]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [2010-7-12 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [2010-7-12 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [2010-7-12 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1018mgmt.sys [2010-7-12 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1018nd5.sys [2010-7-12 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\drivers\s1018obex.sys [2010-7-12 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1018unic.sys [2010-7-12 109864]
S3 SwitchBoard;SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== File Associations ===============
.
txtfile="d:\program files\pspad editor\PSPad.exe" "%1"
.
=============== Created Last 30 ================
.
.
==================== Find3M ====================
.
2012-01-08 09:52:15 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-12-16 21:18:58 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-07 09:08:58 236576 ------w- c:\windows\system32\MpSigStub.exe
2011-11-28 18:01:25 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 17:53:53 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:52:07 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-11-25 15:59:48 376320 ----a-w- c:\windows\system32\winsrv.dll
2011-11-23 13:37:27 2043904 ----a-w- c:\windows\system32\win32k.sys
2011-11-18 20:23:34 1205064 ----a-w- c:\windows\system32\ntdll.dll
2011-11-18 17:47:03 66560 ----a-w- c:\windows\system32\packager.dll
2011-11-17 06:48:37 440192 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2011-11-16 16:23:44 377344 ----a-w- c:\windows\system32\winhttp.dll
2011-11-16 16:23:08 72704 ----a-w- c:\windows\system32\secur32.dll
2011-11-16 16:23:05 278528 ----a-w- c:\windows\system32\schannel.dll
2011-11-16 16:21:57 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2011-11-16 14:12:25 9728 ----a-w- c:\windows\system32\lsass.exe
2011-11-08 14:42:19 2048 ----a-w- c:\windows\system32\tzres.dll
2011-11-03 22:47:42 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-11-03 22:40:21 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-03 22:39:47 1127424 ----a-w- c:\windows\system32\wininet.dll
2011-11-03 22:31:57 2382848 ----a-w- c:\windows\system32\mshtml.tlb
.
============= FINISH: 14:46:02,81 ===============
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_20
Run by PC at 14:44:09 on 2012-01-31
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3326.2327 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\conime.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
uURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
uURLSearchHooks: H - No File
uURLSearchHooks: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
mURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
mURLSearchHooks: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
mURLSearchHooks: H - No File
mURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
mURLSearchHooks: H - No File
BHO: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
BHO: Pomocník pro přihlášení ke službě Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - c:\program files\daemon tools toolbar\DTToolbar.dll
TB: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
TB: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [mapdisk] "d:\users\pc\documents\armawork\mapdisk.bat"
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: WikiKomentáře Google... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\icq7.4\ICQ.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\progra~1\micros~1\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{C51ECA95-90CD-4287-8E92-25866C0571FB} : DhcpNameServer = 192.168.1.254
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\pc\appdata\roaming\mozilla\firefox\profiles\699uwz96.default\
FF - prefs.js: browser.startup.homepage - About:Blank
FF - prefs.js: network.proxy.http - 203.161.30.110
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\sony\media go\npmediago.dll
FF - plugin: d:\program files\real\realplayer\netscape6\nppl3260.dll
FF - plugin: d:\program files\real\realplayer\netscape6\nprjplug.dll
FF - plugin: d:\program files\real\realplayer\netscape6\nprpjplug.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
.
---- FIREFOX POLICIES ----
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
.
============= SERVICES / DRIVERS ===============
.
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010-11-2 64288]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-3-3 435032]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2009-5-20 314456]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-5-20 20568]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2009-5-20 55128]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-10-1 44768]
R2 FontCache;Mezipaměť písem Windows;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 21504]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\windows\system32\nvSCPAPISvr.exe [2009-6-10 232960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 EverestDriver;Lavalys EVEREST Kernel Driver;d:\program files\lavalys\everest home edition\kerneld.wnt [2005-8-18 7168]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [2010-7-12 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [2010-7-12 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [2010-7-12 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1018mgmt.sys [2010-7-12 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1018nd5.sys [2010-7-12 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\drivers\s1018obex.sys [2010-7-12 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1018unic.sys [2010-7-12 109864]
S3 SwitchBoard;SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== File Associations ===============
.
txtfile="d:\program files\pspad editor\PSPad.exe" "%1"
.
=============== Created Last 30 ================
.
.
==================== Find3M ====================
.
2012-01-08 09:52:15 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-12-16 21:18:58 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-07 09:08:58 236576 ------w- c:\windows\system32\MpSigStub.exe
2011-11-28 18:01:25 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 17:53:53 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:52:07 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-11-25 15:59:48 376320 ----a-w- c:\windows\system32\winsrv.dll
2011-11-23 13:37:27 2043904 ----a-w- c:\windows\system32\win32k.sys
2011-11-18 20:23:34 1205064 ----a-w- c:\windows\system32\ntdll.dll
2011-11-18 17:47:03 66560 ----a-w- c:\windows\system32\packager.dll
2011-11-17 06:48:37 440192 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2011-11-16 16:23:44 377344 ----a-w- c:\windows\system32\winhttp.dll
2011-11-16 16:23:08 72704 ----a-w- c:\windows\system32\secur32.dll
2011-11-16 16:23:05 278528 ----a-w- c:\windows\system32\schannel.dll
2011-11-16 16:21:57 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2011-11-16 14:12:25 9728 ----a-w- c:\windows\system32\lsass.exe
2011-11-08 14:42:19 2048 ----a-w- c:\windows\system32\tzres.dll
2011-11-03 22:47:42 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-11-03 22:40:21 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-03 22:39:47 1127424 ----a-w- c:\windows\system32\wininet.dll
2011-11-03 22:31:57 2382848 ----a-w- c:\windows\system32\mshtml.tlb
.
============= FINISH: 14:46:02,81 ===============
Re: Prosím o kontrolugu logu
Jeste jeden skript pro ComboFix - postup je stejny jako minule
Kód: Vybrat vše
KillAll::
DDS::
uURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
uURLSearchHooks: H - No File
uURLSearchHooks: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
mURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
mURLSearchHooks: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
mURLSearchHooks: H - No File
mURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
mURLSearchHooks: H - No File
BHO: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - c:\program files\daemon tools toolbar\DTToolbar.dll
TB: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll
TB: Freecorder Toolbar: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - c:\program files\freecorder\prxtbFre0.dll
mRun: [TkBellExe]
Folder::
c:\program files\icq6toolbar
c:\program files\daemon tools toolbar
File::
c:\program files\freecorder\prxtbFre0.dll
RegLock::
[HKEY_USERS\S-1-5-21-1484727336-25265518-3277325258-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*h*t*a*c*c*e*s*s* \OpenWithList]
ClearJavaCache::
Reboot::"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolugu logu
Výpis logu. Jsem zvědavý co jsem tam měl.
ComboFix 12-01-30.02 - PC 31.01.2012 15:17:25.3.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3326.2089 [GMT 1:00]
Spuštěný z: c:\users\PC\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\PC\Desktop\CFscript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\program files\freecorder\prxtbFre0.dll"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\daemon tools toolbar
c:\program files\daemon tools toolbar\DTToolbar.dll
c:\program files\daemon tools toolbar\Resources\about.ico
c:\program files\daemon tools toolbar\Resources\AboutWindow.ico
c:\program files\daemon tools toolbar\Resources\AddRadioStation.ico
c:\program files\daemon tools toolbar\Resources\as.ico
c:\program files\daemon tools toolbar\Resources\as.png
c:\program files\daemon tools toolbar\Resources\astro.ico
c:\program files\daemon tools toolbar\Resources\az.ico
c:\program files\daemon tools toolbar\Resources\b1.bmp
c:\program files\daemon tools toolbar\Resources\b1.png
c:\program files\daemon tools toolbar\Resources\BurnImage.ico
c:\program files\daemon tools toolbar\Resources\buy.ico
c:\program files\daemon tools toolbar\Resources\cond000.gif
c:\program files\daemon tools toolbar\Resources\cond001.gif
c:\program files\daemon tools toolbar\Resources\cond003.gif
c:\program files\daemon tools toolbar\Resources\cond004.gif
c:\program files\daemon tools toolbar\Resources\cond005.gif
c:\program files\daemon tools toolbar\Resources\cond006.gif
c:\program files\daemon tools toolbar\Resources\cond007.gif
c:\program files\daemon tools toolbar\Resources\cond008.gif
c:\program files\daemon tools toolbar\Resources\cond009.gif
c:\program files\daemon tools toolbar\Resources\cond010.gif
c:\program files\daemon tools toolbar\Resources\cond011.gif
c:\program files\daemon tools toolbar\Resources\cond019.gif
c:\program files\daemon tools toolbar\Resources\cond020.gif
c:\program files\daemon tools toolbar\Resources\cond021.gif
c:\program files\daemon tools toolbar\Resources\cond022.gif
c:\program files\daemon tools toolbar\Resources\cond023.gif
c:\program files\daemon tools toolbar\Resources\cond024.gif
c:\program files\daemon tools toolbar\Resources\cond025.gif
c:\program files\daemon tools toolbar\Resources\cond026.gif
c:\program files\daemon tools toolbar\Resources\cond037.gif
c:\program files\daemon tools toolbar\Resources\cond038.gif
c:\program files\daemon tools toolbar\Resources\cond039.gif
c:\program files\daemon tools toolbar\Resources\cond040.gif
c:\program files\daemon tools toolbar\Resources\cond041.gif
c:\program files\daemon tools toolbar\Resources\cond046.gif
c:\program files\daemon tools toolbar\Resources\cond048.gif
c:\program files\daemon tools toolbar\Resources\cond050.gif
c:\program files\daemon tools toolbar\Resources\cond051.gif
c:\program files\daemon tools toolbar\Resources\cond052.gif
c:\program files\daemon tools toolbar\Resources\cond053.gif
c:\program files\daemon tools toolbar\Resources\cond054.gif
c:\program files\daemon tools toolbar\Resources\cond055.gif
c:\program files\daemon tools toolbar\Resources\cond056.gif
c:\program files\daemon tools toolbar\Resources\cond057.gif
c:\program files\daemon tools toolbar\Resources\cond058.gif
c:\program files\daemon tools toolbar\Resources\cond059.gif
c:\program files\daemon tools toolbar\Resources\cond060.gif
c:\program files\daemon tools toolbar\Resources\cond061.gif
c:\program files\daemon tools toolbar\Resources\cond062.gif
c:\program files\daemon tools toolbar\Resources\cond063.gif
c:\program files\daemon tools toolbar\Resources\cond064.gif
c:\program files\daemon tools toolbar\Resources\cond065.gif
c:\program files\daemon tools toolbar\Resources\cond066.gif
c:\program files\daemon tools toolbar\Resources\cond067.gif
c:\program files\daemon tools toolbar\Resources\cond068.gif
c:\program files\daemon tools toolbar\Resources\cond069.gif
c:\program files\daemon tools toolbar\Resources\cond075.gif
c:\program files\daemon tools toolbar\Resources\cond076.gif
c:\program files\daemon tools toolbar\Resources\cond077.gif
c:\program files\daemon tools toolbar\Resources\cond078.gif
c:\program files\daemon tools toolbar\Resources\cond079.gif
c:\program files\daemon tools toolbar\Resources\cond080.gif
c:\program files\daemon tools toolbar\Resources\cond084.gif
c:\program files\daemon tools toolbar\Resources\cond085.gif
c:\program files\daemon tools toolbar\Resources\cond086.gif
c:\program files\daemon tools toolbar\Resources\cond087.gif
c:\program files\daemon tools toolbar\Resources\cond088.gif
c:\program files\daemon tools toolbar\Resources\cond089.gif
c:\program files\daemon tools toolbar\Resources\cond090.gif
c:\program files\daemon tools toolbar\Resources\cond091.gif
c:\program files\daemon tools toolbar\Resources\cond092.gif
c:\program files\daemon tools toolbar\Resources\cond093.gif
c:\program files\daemon tools toolbar\Resources\cond094.gif
c:\program files\daemon tools toolbar\Resources\cond095.gif
c:\program files\daemon tools toolbar\Resources\cond108.gif
c:\program files\daemon tools toolbar\Resources\cond109.gif
c:\program files\daemon tools toolbar\Resources\cond110.gif
c:\program files\daemon tools toolbar\Resources\cond111.gif
c:\program files\daemon tools toolbar\Resources\cond112.gif
c:\program files\daemon tools toolbar\Resources\cond113.gif
c:\program files\daemon tools toolbar\Resources\cond120.gif
c:\program files\daemon tools toolbar\Resources\cond121.gif
c:\program files\daemon tools toolbar\Resources\cond122.gif
c:\program files\daemon tools toolbar\Resources\cond126.gif
c:\program files\daemon tools toolbar\Resources\cond127.gif
c:\program files\daemon tools toolbar\Resources\cond128.gif
c:\program files\daemon tools toolbar\Resources\cond129.gif
c:\program files\daemon tools toolbar\Resources\cond130.gif
c:\program files\daemon tools toolbar\Resources\cond131.gif
c:\program files\daemon tools toolbar\Resources\cond132.gif
c:\program files\daemon tools toolbar\Resources\cond133.gif
c:\program files\daemon tools toolbar\Resources\cond134.gif
c:\program files\daemon tools toolbar\Resources\cond135.gif
c:\program files\daemon tools toolbar\Resources\cond136.gif
c:\program files\daemon tools toolbar\Resources\cond137.gif
c:\program files\daemon tools toolbar\Resources\cond138.gif
c:\program files\daemon tools toolbar\Resources\cond140.gif
c:\program files\daemon tools toolbar\Resources\cond141.gif
c:\program files\daemon tools toolbar\Resources\cond142.gif
c:\program files\daemon tools toolbar\Resources\cond143.gif
c:\program files\daemon tools toolbar\Resources\cond148.gif
c:\program files\daemon tools toolbar\Resources\cond149.gif
c:\program files\daemon tools toolbar\Resources\cond152.gif
c:\program files\daemon tools toolbar\Resources\cond154.gif
c:\program files\daemon tools toolbar\Resources\cond155.gif
c:\program files\daemon tools toolbar\Resources\cond156.gif
c:\program files\daemon tools toolbar\Resources\cond157.gif
c:\program files\daemon tools toolbar\Resources\Config.ico
c:\program files\daemon tools toolbar\Resources\d.ico
c:\program files\daemon tools toolbar\Resources\d2.ico
c:\program files\daemon tools toolbar\Resources\daemon.ico
c:\program files\daemon tools toolbar\Resources\dot_disabled.bmp
c:\program files\daemon tools toolbar\Resources\dot_enabled.bmp
c:\program files\daemon tools toolbar\Resources\dot_on_over.bmp
c:\program files\daemon tools toolbar\Resources\ds.ico
c:\program files\daemon tools toolbar\Resources\dsearch.ico
c:\program files\daemon tools toolbar\Resources\dt.ico
c:\program files\daemon tools toolbar\Resources\DTPro.ico
c:\program files\daemon tools toolbar\Resources\dtt16.ico
c:\program files\daemon tools toolbar\Resources\dtt32.ico
c:\program files\daemon tools toolbar\Resources\Dwnl.ico
c:\program files\daemon tools toolbar\Resources\emulation.ico
c:\program files\daemon tools toolbar\Resources\favicon.ico
c:\program files\daemon tools toolbar\Resources\features.ico
c:\program files\daemon tools toolbar\Resources\GameCentrix.ico
c:\program files\daemon tools toolbar\Resources\GameS.ico
c:\program files\daemon tools toolbar\Resources\GameSA.ico
c:\program files\daemon tools toolbar\Resources\gd.ico
c:\program files\daemon tools toolbar\Resources\genre.xml
c:\program files\daemon tools toolbar\Resources\globe.ico
c:\program files\daemon tools toolbar\Resources\GrabImage.ico
c:\program files\daemon tools toolbar\Resources\hb.bmp
c:\program files\daemon tools toolbar\Resources\hb.ico
c:\program files\daemon tools toolbar\Resources\help.ico
c:\program files\daemon tools toolbar\Resources\hide.ico
c:\program files\daemon tools toolbar\Resources\ImageS.ico
c:\program files\daemon tools toolbar\Resources\ImageSA.ico
c:\program files\daemon tools toolbar\Resources\ip.ico
c:\program files\daemon tools toolbar\Resources\lang.xml
c:\program files\daemon tools toolbar\Resources\lingvo.ico
c:\program files\daemon tools toolbar\Resources\m.ico
c:\program files\daemon tools toolbar\Resources\mail.bmp
c:\program files\daemon tools toolbar\Resources\mail_disable.bmp
c:\program files\daemon tools toolbar\Resources\mail_down.bmp
c:\program files\daemon tools toolbar\Resources\mail_m.bmp
c:\program files\daemon tools toolbar\Resources\mail_under.bmp
c:\program files\daemon tools toolbar\Resources\mailc.bmp
c:\program files\daemon tools toolbar\Resources\mailc_disable.bmp
c:\program files\daemon tools toolbar\Resources\mailc_down.bmp
c:\program files\daemon tools toolbar\Resources\mailc_m.bmp
c:\program files\daemon tools toolbar\Resources\mailc_under.bmp
c:\program files\daemon tools toolbar\Resources\MenuRadioConfig.ico
c:\program files\daemon tools toolbar\Resources\MenuRadioStation.ico
c:\program files\daemon tools toolbar\Resources\MenuRSCur.ico
c:\program files\daemon tools toolbar\Resources\MenuTr.ico
c:\program files\daemon tools toolbar\Resources\next.bmp
c:\program files\daemon tools toolbar\Resources\next_down.bmp
c:\program files\daemon tools toolbar\Resources\next_m.bmp
c:\program files\daemon tools toolbar\Resources\next_under.bmp
c:\program files\daemon tools toolbar\Resources\none.bmp
c:\program files\daemon tools toolbar\Resources\none_m.bmp
c:\program files\daemon tools toolbar\Resources\noW.gif
c:\program files\daemon tools toolbar\Resources\op.ico
c:\program files\daemon tools toolbar\Resources\play.bmp
c:\program files\daemon tools toolbar\Resources\play.ico
c:\program files\daemon tools toolbar\Resources\play_down.bmp
c:\program files\daemon tools toolbar\Resources\play_m.bmp
c:\program files\daemon tools toolbar\Resources\play_under.bmp
c:\program files\daemon tools toolbar\Resources\pragma.ico
c:\program files\daemon tools toolbar\Resources\prev.bmp
c:\program files\daemon tools toolbar\Resources\prev_down.bmp
c:\program files\daemon tools toolbar\Resources\prev_m.bmp
c:\program files\daemon tools toolbar\Resources\prev_under.bmp
c:\program files\daemon tools toolbar\Resources\prod.ico
c:\program files\daemon tools toolbar\Resources\Radio.ico
c:\program files\daemon tools toolbar\Resources\RadioBg.bmp
c:\program files\daemon tools toolbar\Resources\RadioBg.ico
c:\program files\daemon tools toolbar\Resources\RadioBgMask.bmp
c:\program files\daemon tools toolbar\Resources\RadioDisp.bmp
c:\program files\daemon tools toolbar\Resources\RadioDisp_m.bmp
c:\program files\daemon tools toolbar\Resources\RadioDown.bmp
c:\program files\daemon tools toolbar\Resources\RadioDown.ico
c:\program files\daemon tools toolbar\Resources\RadioDown_down.bmp
c:\program files\daemon tools toolbar\Resources\RadioDown_m.bmp
c:\program files\daemon tools toolbar\Resources\RadioDown_under.bmp
c:\program files\daemon tools toolbar\Resources\RadioE.bmp
c:\program files\daemon tools toolbar\Resources\RadioG.bmp
c:\program files\daemon tools toolbar\Resources\RadioL.bmp
c:\program files\daemon tools toolbar\Resources\RadioLDotMask.bmp
c:\program files\daemon tools toolbar\Resources\RadioLeft.bmp
c:\program files\daemon tools toolbar\Resources\RadioLeftMask.bmp
c:\program files\daemon tools toolbar\Resources\RadioLM.bmp
c:\program files\daemon tools toolbar\Resources\RadioM.bmp
c:\program files\daemon tools toolbar\Resources\RadioN.bmp
c:\program files\daemon tools toolbar\Resources\RadioR.bmp
c:\program files\daemon tools toolbar\Resources\RadioR.ico
c:\program files\daemon tools toolbar\Resources\RadioRM.bmp
c:\program files\daemon tools toolbar\Resources\RadioRU.bmp
c:\program files\daemon tools toolbar\Resources\RadioVolume.bmp
c:\program files\daemon tools toolbar\Resources\RadioVolume_down.bmp
c:\program files\daemon tools toolbar\Resources\RadioVolume_m.bmp
c:\program files\daemon tools toolbar\Resources\RadioVolume_under.bmp
c:\program files\daemon tools toolbar\Resources\RadioW.bmp
c:\program files\daemon tools toolbar\Resources\rbcheck.ico
c:\program files\daemon tools toolbar\Resources\rbtxt.ico
c:\program files\daemon tools toolbar\Resources\refresh.bmp
c:\program files\daemon tools toolbar\Resources\refresh_down.bmp
c:\program files\daemon tools toolbar\Resources\refresh_m.bmp
c:\program files\daemon tools toolbar\Resources\refresh_under.bmp
c:\program files\daemon tools toolbar\Resources\Rss.ico
c:\program files\daemon tools toolbar\Resources\Rss1.ico
c:\program files\daemon tools toolbar\Resources\RssA.ico
c:\program files\daemon tools toolbar\Resources\RssA1.ico
c:\program files\daemon tools toolbar\Resources\rssClose.ico
c:\program files\daemon tools toolbar\Resources\rssL.bmp
c:\program files\daemon tools toolbar\Resources\rssOpen.ico
c:\program files\daemon tools toolbar\Resources\RssRefresh.ico
c:\program files\daemon tools toolbar\Resources\s2.ico
c:\program files\daemon tools toolbar\Resources\show.ico
c:\program files\daemon tools toolbar\Resources\size.bmp
c:\program files\daemon tools toolbar\Resources\size_m.bmp
c:\program files\daemon tools toolbar\Resources\skins.ico
c:\program files\daemon tools toolbar\Resources\spt.ico
c:\program files\daemon tools toolbar\Resources\stop.bmp
c:\program files\daemon tools toolbar\Resources\stop.ico
c:\program files\daemon tools toolbar\Resources\stop_down.bmp
c:\program files\daemon tools toolbar\Resources\stop_m.bmp
c:\program files\daemon tools toolbar\Resources\stop_under.bmp
c:\program files\daemon tools toolbar\Resources\style.ico
c:\program files\daemon tools toolbar\Resources\SupportRequest.ico
c:\program files\daemon tools toolbar\Resources\time.ico
c:\program files\daemon tools toolbar\Resources\TitleIcon.ico
c:\program files\daemon tools toolbar\Resources\toolbar.xml
c:\program files\daemon tools toolbar\Resources\trans.ico
c:\program files\daemon tools toolbar\Resources\Trash.bmp
c:\program files\daemon tools toolbar\Resources\Trash_disable.bmp
c:\program files\daemon tools toolbar\Resources\Trash_down.bmp
c:\program files\daemon tools toolbar\Resources\Trash_m.bmp
c:\program files\daemon tools toolbar\Resources\Trash_under.bmp
c:\program files\daemon tools toolbar\Resources\u.ico
c:\program files\daemon tools toolbar\Resources\vol.bmp
c:\program files\daemon tools toolbar\Resources\vol.ico
c:\program files\daemon tools toolbar\Resources\vol_back.bmp
c:\program files\daemon tools toolbar\Resources\vol_dott.bmp
c:\program files\daemon tools toolbar\Resources\vol_dott_m.bmp
c:\program files\daemon tools toolbar\Resources\vol_down.bmp
c:\program files\daemon tools toolbar\Resources\vol_m.bmp
c:\program files\daemon tools toolbar\Resources\vol_mute.bmp
c:\program files\daemon tools toolbar\Resources\vol_mute_check.bmp
c:\program files\daemon tools toolbar\Resources\vol_under.bmp
c:\program files\daemon tools toolbar\Resources\wb.bmp
c:\program files\daemon tools toolbar\Resources\wBtClose.bmp
c:\program files\daemon tools toolbar\Resources\wBtClose_down.bmp
c:\program files\daemon tools toolbar\Resources\wBtClose_m.bmp
c:\program files\daemon tools toolbar\Resources\wBtClose_under.bmp
c:\program files\daemon tools toolbar\Resources\wBtText.bmp
c:\program files\daemon tools toolbar\Resources\wBtText_down.bmp
c:\program files\daemon tools toolbar\Resources\wBtText_m.bmp
c:\program files\daemon tools toolbar\Resources\wBtText_under.bmp
c:\program files\daemon tools toolbar\Resources\Weather_m42.bmp
c:\program files\daemon tools toolbar\Resources\Weather_m43.bmp
c:\program files\daemon tools toolbar\Resources\WebS.ico
c:\program files\daemon tools toolbar\Resources\WebSa.ico
c:\program files\daemon tools toolbar\Resources\wi.ico
c:\program files\daemon tools toolbar\Resources\wi0.ico
c:\program files\daemon tools toolbar\Resources\wi1.ico
c:\program files\daemon tools toolbar\Resources\wi10.ico
c:\program files\daemon tools toolbar\Resources\wi11.ico
c:\program files\daemon tools toolbar\Resources\wi12.ico
c:\program files\daemon tools toolbar\Resources\wi13.ico
c:\program files\daemon tools toolbar\Resources\wi14.ico
c:\program files\daemon tools toolbar\Resources\wi2.ico
c:\program files\daemon tools toolbar\Resources\wi3.ico
c:\program files\daemon tools toolbar\Resources\wi4.ico
c:\program files\daemon tools toolbar\Resources\wi5.ico
c:\program files\daemon tools toolbar\Resources\wi6.ico
c:\program files\daemon tools toolbar\Resources\wi7.ico
c:\program files\daemon tools toolbar\Resources\wi8.ico
c:\program files\daemon tools toolbar\Resources\wi9.ico
c:\program files\daemon tools toolbar\uninst.exe
c:\program files\freecorder\prxtbFre0.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-28 do 2012-01-31 )))))))))))))))))))))))))))))))
.
.
2012-01-31 14:23 . 2012-01-31 14:25 -------- d-----w- c:\users\PC\AppData\Local\temp
2012-01-31 14:23 . 2012-01-31 14:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-01-31 09:49 . 2012-01-06 04:19 6557240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C4B950F8-650B-4DAB-9C01-0C11A74AFD92}\mpengine.dll
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- C:\rsit
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- c:\program files\trend micro
2012-01-23 14:44 . 2012-01-23 14:45 -------- d-----w- c:\program files\Canon
2012-01-22 11:39 . 2011-08-10 15:49 61440 ----a-w- c:\windows\system32\mslvddsfilter.ax
2012-01-22 11:39 . 2012-01-22 11:45 -------- d-----w- c:\program files\Common Files\Axara
2012-01-22 11:39 . 2004-12-10 09:03 438272 ----a-w- c:\windows\system32\vp6vfw.dll
2012-01-22 11:39 . 2004-07-03 20:08 139264 ----a-w- c:\windows\system32\xvidvfw.dll
2012-01-22 11:39 . 2004-02-04 20:11 81920 ----a-w- c:\windows\system32\AC3ACM.acm
2012-01-22 11:39 . 2003-05-22 11:26 221215 ----a-w- c:\windows\system32\divxdec.ax
2012-01-22 11:39 . 2003-05-21 22:50 82944 ----a-w- c:\windows\system32\vct3216.acm
2012-01-22 11:39 . 2003-05-21 22:50 38912 ----a-w- c:\windows\system32\alf2cd.acm
2012-01-22 11:39 . 2003-05-21 22:50 261632 ----a-w- c:\windows\system32\mcdvd_32.dll
2012-01-22 11:39 . 2002-08-19 23:41 413760 ----a-w- c:\windows\system32\mpg4c32.dll
2012-01-22 11:39 . 2000-03-14 19:55 13239 ----a-w- c:\windows\system32\Scg726.acm
2012-01-21 16:24 . 2008-12-17 12:22 57344 ----a-w- c:\windows\system32\ff_vfw.dll
2012-01-21 16:24 . 2008-06-15 08:13 6144 ----a-w- c:\windows\system32\ff_acm.acm
2012-01-21 16:24 . 2008-06-14 21:01 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2012-01-21 16:24 . 2008-06-14 21:01 258352 ----a-w- c:\windows\system32\unicows.dll
2012-01-21 16:24 . 2003-03-24 17:49 98304 ----a-w- c:\windows\system32\L3CODECX.AX
2012-01-21 16:11 . 2012-01-21 16:11 -------- d-----w- c:\users\PC\AppData\Roaming\DVDVideoSoft
2012-01-21 13:40 . 2012-01-21 13:44 -------- d-----w- c:\users\PC\AppData\Local\Jaksta_Technologies_Pty_L
2012-01-21 13:38 . 2012-01-21 13:38 -------- d-----w- c:\programdata\Applian
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\program files\Conduit
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\users\PC\AppData\Local\Conduit
2012-01-21 13:36 . 2012-01-31 14:23 -------- d-----w- c:\program files\Freecorder
2012-01-21 13:35 . 2012-01-30 13:30 -------- d-----w- c:\users\PC\AppData\Local\FLVService
2012-01-17 22:28 . 2011-11-17 06:48 440192 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-17 22:28 . 2011-11-16 16:23 377344 ----a-w- c:\windows\system32\winhttp.dll
2012-01-17 22:28 . 2011-11-16 16:23 278528 ----a-w- c:\windows\system32\schannel.dll
2012-01-17 22:28 . 2011-11-16 16:21 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-17 22:28 . 2011-11-16 16:23 72704 ----a-w- c:\windows\system32\secur32.dll
2012-01-17 22:28 . 2011-11-16 14:12 9728 ----a-w- c:\windows\system32\lsass.exe
2012-01-11 14:15 . 2011-10-14 16:03 189952 ----a-w- c:\windows\system32\winmm.dll
2012-01-11 14:15 . 2011-10-14 16:00 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-01-11 14:15 . 2011-11-18 20:23 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 14:15 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2012-01-11 14:15 . 2011-11-25 15:59 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-01-11 14:15 . 2011-12-01 15:21 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2012-01-11 14:15 . 2011-10-25 15:58 1314816 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 14:15 . 2011-10-25 15:58 497152 ----a-w- c:\windows\system32\qdvd.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-08 09:52 . 2010-11-02 13:20 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-12-16 21:18 . 2011-12-16 21:18 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-07 09:08 . 2009-10-02 18:31 236576 ------w- c:\windows\system32\MpSigStub.exe
2011-11-28 18:01 . 2010-10-01 09:35 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2009-05-20 19:55 199816 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:53 . 2011-03-03 15:01 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2009-05-20 19:55 314456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2009-05-20 19:55 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2009-05-20 19:55 52952 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2009-05-20 19:55 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-11-28 17:51 . 2009-05-20 19:55 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-11-23 13:37 . 2011-12-15 09:26 2043904 ----a-w- c:\windows\system32\win32k.sys
2011-11-08 14:42 . 2011-12-15 09:26 2048 ----a-w- c:\windows\system32\tzres.dll
2011-11-03 22:47 . 2011-12-15 10:23 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-11-03 22:40 . 2011-12-15 10:23 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-03 22:39 . 2011-12-15 10:23 1127424 ----a-w- c:\windows\system32\wininet.dll
2011-11-03 22:31 . 2011-12-15 10:23 2382848 ----a-w- c:\windows\system32\mshtml.tlb
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"mapdisk"="d:\users\PC\Documents\ArmAWork\mapdisk.bat" [2010-11-10 45]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-04-20 2423752]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-06-10 13785632]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\
FF - prefs.js: browser.startup.homepage - About:Blank
FF - prefs.js: network.proxy.http - 203.161.30.110
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-DAEMON Tools Toolbar - c:\program files\DAEMON Tools Toolbar\uninst.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-31 15:24
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EverestDriver]
"ImagePath"="\??\d:\program files\Lavalys\EVEREST Home Edition\kerneld.wnt"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1484727336-25265518-3277325258-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*h*t*a*c*c*e*s*s* \OpenWithList]
@Class="Shell"
"a"="NOTEPAD.EXE"
"MRUList"="a"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\System32\nvSCPAPISvr.exe
c:\windows\system32\conime.exe
c:\windows\ehome\ehmsas.exe
c:\windows\system32\wbem\unsecapp.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2012-01-31 15:29:16 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-01-31 14:29
ComboFix2.txt 2012-01-30 21:51
ComboFix3.txt 2012-01-30 16:02
.
Před spuštěním: Volných bajtů: 72 586 420 224
Po spuštění: Volných bajtů: 72 430 100 480
.
- - End Of File - - 767D2107B15BB07C44FD0D03D002CBDC
ComboFix 12-01-30.02 - PC 31.01.2012 15:17:25.3.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3326.2089 [GMT 1:00]
Spuštěný z: c:\users\PC\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\PC\Desktop\CFscript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\program files\freecorder\prxtbFre0.dll"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\daemon tools toolbar
c:\program files\daemon tools toolbar\DTToolbar.dll
c:\program files\daemon tools toolbar\Resources\about.ico
c:\program files\daemon tools toolbar\Resources\AboutWindow.ico
c:\program files\daemon tools toolbar\Resources\AddRadioStation.ico
c:\program files\daemon tools toolbar\Resources\as.ico
c:\program files\daemon tools toolbar\Resources\as.png
c:\program files\daemon tools toolbar\Resources\astro.ico
c:\program files\daemon tools toolbar\Resources\az.ico
c:\program files\daemon tools toolbar\Resources\b1.bmp
c:\program files\daemon tools toolbar\Resources\b1.png
c:\program files\daemon tools toolbar\Resources\BurnImage.ico
c:\program files\daemon tools toolbar\Resources\buy.ico
c:\program files\daemon tools toolbar\Resources\cond000.gif
c:\program files\daemon tools toolbar\Resources\cond001.gif
c:\program files\daemon tools toolbar\Resources\cond003.gif
c:\program files\daemon tools toolbar\Resources\cond004.gif
c:\program files\daemon tools toolbar\Resources\cond005.gif
c:\program files\daemon tools toolbar\Resources\cond006.gif
c:\program files\daemon tools toolbar\Resources\cond007.gif
c:\program files\daemon tools toolbar\Resources\cond008.gif
c:\program files\daemon tools toolbar\Resources\cond009.gif
c:\program files\daemon tools toolbar\Resources\cond010.gif
c:\program files\daemon tools toolbar\Resources\cond011.gif
c:\program files\daemon tools toolbar\Resources\cond019.gif
c:\program files\daemon tools toolbar\Resources\cond020.gif
c:\program files\daemon tools toolbar\Resources\cond021.gif
c:\program files\daemon tools toolbar\Resources\cond022.gif
c:\program files\daemon tools toolbar\Resources\cond023.gif
c:\program files\daemon tools toolbar\Resources\cond024.gif
c:\program files\daemon tools toolbar\Resources\cond025.gif
c:\program files\daemon tools toolbar\Resources\cond026.gif
c:\program files\daemon tools toolbar\Resources\cond037.gif
c:\program files\daemon tools toolbar\Resources\cond038.gif
c:\program files\daemon tools toolbar\Resources\cond039.gif
c:\program files\daemon tools toolbar\Resources\cond040.gif
c:\program files\daemon tools toolbar\Resources\cond041.gif
c:\program files\daemon tools toolbar\Resources\cond046.gif
c:\program files\daemon tools toolbar\Resources\cond048.gif
c:\program files\daemon tools toolbar\Resources\cond050.gif
c:\program files\daemon tools toolbar\Resources\cond051.gif
c:\program files\daemon tools toolbar\Resources\cond052.gif
c:\program files\daemon tools toolbar\Resources\cond053.gif
c:\program files\daemon tools toolbar\Resources\cond054.gif
c:\program files\daemon tools toolbar\Resources\cond055.gif
c:\program files\daemon tools toolbar\Resources\cond056.gif
c:\program files\daemon tools toolbar\Resources\cond057.gif
c:\program files\daemon tools toolbar\Resources\cond058.gif
c:\program files\daemon tools toolbar\Resources\cond059.gif
c:\program files\daemon tools toolbar\Resources\cond060.gif
c:\program files\daemon tools toolbar\Resources\cond061.gif
c:\program files\daemon tools toolbar\Resources\cond062.gif
c:\program files\daemon tools toolbar\Resources\cond063.gif
c:\program files\daemon tools toolbar\Resources\cond064.gif
c:\program files\daemon tools toolbar\Resources\cond065.gif
c:\program files\daemon tools toolbar\Resources\cond066.gif
c:\program files\daemon tools toolbar\Resources\cond067.gif
c:\program files\daemon tools toolbar\Resources\cond068.gif
c:\program files\daemon tools toolbar\Resources\cond069.gif
c:\program files\daemon tools toolbar\Resources\cond075.gif
c:\program files\daemon tools toolbar\Resources\cond076.gif
c:\program files\daemon tools toolbar\Resources\cond077.gif
c:\program files\daemon tools toolbar\Resources\cond078.gif
c:\program files\daemon tools toolbar\Resources\cond079.gif
c:\program files\daemon tools toolbar\Resources\cond080.gif
c:\program files\daemon tools toolbar\Resources\cond084.gif
c:\program files\daemon tools toolbar\Resources\cond085.gif
c:\program files\daemon tools toolbar\Resources\cond086.gif
c:\program files\daemon tools toolbar\Resources\cond087.gif
c:\program files\daemon tools toolbar\Resources\cond088.gif
c:\program files\daemon tools toolbar\Resources\cond089.gif
c:\program files\daemon tools toolbar\Resources\cond090.gif
c:\program files\daemon tools toolbar\Resources\cond091.gif
c:\program files\daemon tools toolbar\Resources\cond092.gif
c:\program files\daemon tools toolbar\Resources\cond093.gif
c:\program files\daemon tools toolbar\Resources\cond094.gif
c:\program files\daemon tools toolbar\Resources\cond095.gif
c:\program files\daemon tools toolbar\Resources\cond108.gif
c:\program files\daemon tools toolbar\Resources\cond109.gif
c:\program files\daemon tools toolbar\Resources\cond110.gif
c:\program files\daemon tools toolbar\Resources\cond111.gif
c:\program files\daemon tools toolbar\Resources\cond112.gif
c:\program files\daemon tools toolbar\Resources\cond113.gif
c:\program files\daemon tools toolbar\Resources\cond120.gif
c:\program files\daemon tools toolbar\Resources\cond121.gif
c:\program files\daemon tools toolbar\Resources\cond122.gif
c:\program files\daemon tools toolbar\Resources\cond126.gif
c:\program files\daemon tools toolbar\Resources\cond127.gif
c:\program files\daemon tools toolbar\Resources\cond128.gif
c:\program files\daemon tools toolbar\Resources\cond129.gif
c:\program files\daemon tools toolbar\Resources\cond130.gif
c:\program files\daemon tools toolbar\Resources\cond131.gif
c:\program files\daemon tools toolbar\Resources\cond132.gif
c:\program files\daemon tools toolbar\Resources\cond133.gif
c:\program files\daemon tools toolbar\Resources\cond134.gif
c:\program files\daemon tools toolbar\Resources\cond135.gif
c:\program files\daemon tools toolbar\Resources\cond136.gif
c:\program files\daemon tools toolbar\Resources\cond137.gif
c:\program files\daemon tools toolbar\Resources\cond138.gif
c:\program files\daemon tools toolbar\Resources\cond140.gif
c:\program files\daemon tools toolbar\Resources\cond141.gif
c:\program files\daemon tools toolbar\Resources\cond142.gif
c:\program files\daemon tools toolbar\Resources\cond143.gif
c:\program files\daemon tools toolbar\Resources\cond148.gif
c:\program files\daemon tools toolbar\Resources\cond149.gif
c:\program files\daemon tools toolbar\Resources\cond152.gif
c:\program files\daemon tools toolbar\Resources\cond154.gif
c:\program files\daemon tools toolbar\Resources\cond155.gif
c:\program files\daemon tools toolbar\Resources\cond156.gif
c:\program files\daemon tools toolbar\Resources\cond157.gif
c:\program files\daemon tools toolbar\Resources\Config.ico
c:\program files\daemon tools toolbar\Resources\d.ico
c:\program files\daemon tools toolbar\Resources\d2.ico
c:\program files\daemon tools toolbar\Resources\daemon.ico
c:\program files\daemon tools toolbar\Resources\dot_disabled.bmp
c:\program files\daemon tools toolbar\Resources\dot_enabled.bmp
c:\program files\daemon tools toolbar\Resources\dot_on_over.bmp
c:\program files\daemon tools toolbar\Resources\ds.ico
c:\program files\daemon tools toolbar\Resources\dsearch.ico
c:\program files\daemon tools toolbar\Resources\dt.ico
c:\program files\daemon tools toolbar\Resources\DTPro.ico
c:\program files\daemon tools toolbar\Resources\dtt16.ico
c:\program files\daemon tools toolbar\Resources\dtt32.ico
c:\program files\daemon tools toolbar\Resources\Dwnl.ico
c:\program files\daemon tools toolbar\Resources\emulation.ico
c:\program files\daemon tools toolbar\Resources\favicon.ico
c:\program files\daemon tools toolbar\Resources\features.ico
c:\program files\daemon tools toolbar\Resources\GameCentrix.ico
c:\program files\daemon tools toolbar\Resources\GameS.ico
c:\program files\daemon tools toolbar\Resources\GameSA.ico
c:\program files\daemon tools toolbar\Resources\gd.ico
c:\program files\daemon tools toolbar\Resources\genre.xml
c:\program files\daemon tools toolbar\Resources\globe.ico
c:\program files\daemon tools toolbar\Resources\GrabImage.ico
c:\program files\daemon tools toolbar\Resources\hb.bmp
c:\program files\daemon tools toolbar\Resources\hb.ico
c:\program files\daemon tools toolbar\Resources\help.ico
c:\program files\daemon tools toolbar\Resources\hide.ico
c:\program files\daemon tools toolbar\Resources\ImageS.ico
c:\program files\daemon tools toolbar\Resources\ImageSA.ico
c:\program files\daemon tools toolbar\Resources\ip.ico
c:\program files\daemon tools toolbar\Resources\lang.xml
c:\program files\daemon tools toolbar\Resources\lingvo.ico
c:\program files\daemon tools toolbar\Resources\m.ico
c:\program files\daemon tools toolbar\Resources\mail.bmp
c:\program files\daemon tools toolbar\Resources\mail_disable.bmp
c:\program files\daemon tools toolbar\Resources\mail_down.bmp
c:\program files\daemon tools toolbar\Resources\mail_m.bmp
c:\program files\daemon tools toolbar\Resources\mail_under.bmp
c:\program files\daemon tools toolbar\Resources\mailc.bmp
c:\program files\daemon tools toolbar\Resources\mailc_disable.bmp
c:\program files\daemon tools toolbar\Resources\mailc_down.bmp
c:\program files\daemon tools toolbar\Resources\mailc_m.bmp
c:\program files\daemon tools toolbar\Resources\mailc_under.bmp
c:\program files\daemon tools toolbar\Resources\MenuRadioConfig.ico
c:\program files\daemon tools toolbar\Resources\MenuRadioStation.ico
c:\program files\daemon tools toolbar\Resources\MenuRSCur.ico
c:\program files\daemon tools toolbar\Resources\MenuTr.ico
c:\program files\daemon tools toolbar\Resources\next.bmp
c:\program files\daemon tools toolbar\Resources\next_down.bmp
c:\program files\daemon tools toolbar\Resources\next_m.bmp
c:\program files\daemon tools toolbar\Resources\next_under.bmp
c:\program files\daemon tools toolbar\Resources\none.bmp
c:\program files\daemon tools toolbar\Resources\none_m.bmp
c:\program files\daemon tools toolbar\Resources\noW.gif
c:\program files\daemon tools toolbar\Resources\op.ico
c:\program files\daemon tools toolbar\Resources\play.bmp
c:\program files\daemon tools toolbar\Resources\play.ico
c:\program files\daemon tools toolbar\Resources\play_down.bmp
c:\program files\daemon tools toolbar\Resources\play_m.bmp
c:\program files\daemon tools toolbar\Resources\play_under.bmp
c:\program files\daemon tools toolbar\Resources\pragma.ico
c:\program files\daemon tools toolbar\Resources\prev.bmp
c:\program files\daemon tools toolbar\Resources\prev_down.bmp
c:\program files\daemon tools toolbar\Resources\prev_m.bmp
c:\program files\daemon tools toolbar\Resources\prev_under.bmp
c:\program files\daemon tools toolbar\Resources\prod.ico
c:\program files\daemon tools toolbar\Resources\Radio.ico
c:\program files\daemon tools toolbar\Resources\RadioBg.bmp
c:\program files\daemon tools toolbar\Resources\RadioBg.ico
c:\program files\daemon tools toolbar\Resources\RadioBgMask.bmp
c:\program files\daemon tools toolbar\Resources\RadioDisp.bmp
c:\program files\daemon tools toolbar\Resources\RadioDisp_m.bmp
c:\program files\daemon tools toolbar\Resources\RadioDown.bmp
c:\program files\daemon tools toolbar\Resources\RadioDown.ico
c:\program files\daemon tools toolbar\Resources\RadioDown_down.bmp
c:\program files\daemon tools toolbar\Resources\RadioDown_m.bmp
c:\program files\daemon tools toolbar\Resources\RadioDown_under.bmp
c:\program files\daemon tools toolbar\Resources\RadioE.bmp
c:\program files\daemon tools toolbar\Resources\RadioG.bmp
c:\program files\daemon tools toolbar\Resources\RadioL.bmp
c:\program files\daemon tools toolbar\Resources\RadioLDotMask.bmp
c:\program files\daemon tools toolbar\Resources\RadioLeft.bmp
c:\program files\daemon tools toolbar\Resources\RadioLeftMask.bmp
c:\program files\daemon tools toolbar\Resources\RadioLM.bmp
c:\program files\daemon tools toolbar\Resources\RadioM.bmp
c:\program files\daemon tools toolbar\Resources\RadioN.bmp
c:\program files\daemon tools toolbar\Resources\RadioR.bmp
c:\program files\daemon tools toolbar\Resources\RadioR.ico
c:\program files\daemon tools toolbar\Resources\RadioRM.bmp
c:\program files\daemon tools toolbar\Resources\RadioRU.bmp
c:\program files\daemon tools toolbar\Resources\RadioVolume.bmp
c:\program files\daemon tools toolbar\Resources\RadioVolume_down.bmp
c:\program files\daemon tools toolbar\Resources\RadioVolume_m.bmp
c:\program files\daemon tools toolbar\Resources\RadioVolume_under.bmp
c:\program files\daemon tools toolbar\Resources\RadioW.bmp
c:\program files\daemon tools toolbar\Resources\rbcheck.ico
c:\program files\daemon tools toolbar\Resources\rbtxt.ico
c:\program files\daemon tools toolbar\Resources\refresh.bmp
c:\program files\daemon tools toolbar\Resources\refresh_down.bmp
c:\program files\daemon tools toolbar\Resources\refresh_m.bmp
c:\program files\daemon tools toolbar\Resources\refresh_under.bmp
c:\program files\daemon tools toolbar\Resources\Rss.ico
c:\program files\daemon tools toolbar\Resources\Rss1.ico
c:\program files\daemon tools toolbar\Resources\RssA.ico
c:\program files\daemon tools toolbar\Resources\RssA1.ico
c:\program files\daemon tools toolbar\Resources\rssClose.ico
c:\program files\daemon tools toolbar\Resources\rssL.bmp
c:\program files\daemon tools toolbar\Resources\rssOpen.ico
c:\program files\daemon tools toolbar\Resources\RssRefresh.ico
c:\program files\daemon tools toolbar\Resources\s2.ico
c:\program files\daemon tools toolbar\Resources\show.ico
c:\program files\daemon tools toolbar\Resources\size.bmp
c:\program files\daemon tools toolbar\Resources\size_m.bmp
c:\program files\daemon tools toolbar\Resources\skins.ico
c:\program files\daemon tools toolbar\Resources\spt.ico
c:\program files\daemon tools toolbar\Resources\stop.bmp
c:\program files\daemon tools toolbar\Resources\stop.ico
c:\program files\daemon tools toolbar\Resources\stop_down.bmp
c:\program files\daemon tools toolbar\Resources\stop_m.bmp
c:\program files\daemon tools toolbar\Resources\stop_under.bmp
c:\program files\daemon tools toolbar\Resources\style.ico
c:\program files\daemon tools toolbar\Resources\SupportRequest.ico
c:\program files\daemon tools toolbar\Resources\time.ico
c:\program files\daemon tools toolbar\Resources\TitleIcon.ico
c:\program files\daemon tools toolbar\Resources\toolbar.xml
c:\program files\daemon tools toolbar\Resources\trans.ico
c:\program files\daemon tools toolbar\Resources\Trash.bmp
c:\program files\daemon tools toolbar\Resources\Trash_disable.bmp
c:\program files\daemon tools toolbar\Resources\Trash_down.bmp
c:\program files\daemon tools toolbar\Resources\Trash_m.bmp
c:\program files\daemon tools toolbar\Resources\Trash_under.bmp
c:\program files\daemon tools toolbar\Resources\u.ico
c:\program files\daemon tools toolbar\Resources\vol.bmp
c:\program files\daemon tools toolbar\Resources\vol.ico
c:\program files\daemon tools toolbar\Resources\vol_back.bmp
c:\program files\daemon tools toolbar\Resources\vol_dott.bmp
c:\program files\daemon tools toolbar\Resources\vol_dott_m.bmp
c:\program files\daemon tools toolbar\Resources\vol_down.bmp
c:\program files\daemon tools toolbar\Resources\vol_m.bmp
c:\program files\daemon tools toolbar\Resources\vol_mute.bmp
c:\program files\daemon tools toolbar\Resources\vol_mute_check.bmp
c:\program files\daemon tools toolbar\Resources\vol_under.bmp
c:\program files\daemon tools toolbar\Resources\wb.bmp
c:\program files\daemon tools toolbar\Resources\wBtClose.bmp
c:\program files\daemon tools toolbar\Resources\wBtClose_down.bmp
c:\program files\daemon tools toolbar\Resources\wBtClose_m.bmp
c:\program files\daemon tools toolbar\Resources\wBtClose_under.bmp
c:\program files\daemon tools toolbar\Resources\wBtText.bmp
c:\program files\daemon tools toolbar\Resources\wBtText_down.bmp
c:\program files\daemon tools toolbar\Resources\wBtText_m.bmp
c:\program files\daemon tools toolbar\Resources\wBtText_under.bmp
c:\program files\daemon tools toolbar\Resources\Weather_m42.bmp
c:\program files\daemon tools toolbar\Resources\Weather_m43.bmp
c:\program files\daemon tools toolbar\Resources\WebS.ico
c:\program files\daemon tools toolbar\Resources\WebSa.ico
c:\program files\daemon tools toolbar\Resources\wi.ico
c:\program files\daemon tools toolbar\Resources\wi0.ico
c:\program files\daemon tools toolbar\Resources\wi1.ico
c:\program files\daemon tools toolbar\Resources\wi10.ico
c:\program files\daemon tools toolbar\Resources\wi11.ico
c:\program files\daemon tools toolbar\Resources\wi12.ico
c:\program files\daemon tools toolbar\Resources\wi13.ico
c:\program files\daemon tools toolbar\Resources\wi14.ico
c:\program files\daemon tools toolbar\Resources\wi2.ico
c:\program files\daemon tools toolbar\Resources\wi3.ico
c:\program files\daemon tools toolbar\Resources\wi4.ico
c:\program files\daemon tools toolbar\Resources\wi5.ico
c:\program files\daemon tools toolbar\Resources\wi6.ico
c:\program files\daemon tools toolbar\Resources\wi7.ico
c:\program files\daemon tools toolbar\Resources\wi8.ico
c:\program files\daemon tools toolbar\Resources\wi9.ico
c:\program files\daemon tools toolbar\uninst.exe
c:\program files\freecorder\prxtbFre0.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-28 do 2012-01-31 )))))))))))))))))))))))))))))))
.
.
2012-01-31 14:23 . 2012-01-31 14:25 -------- d-----w- c:\users\PC\AppData\Local\temp
2012-01-31 14:23 . 2012-01-31 14:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-01-31 09:49 . 2012-01-06 04:19 6557240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C4B950F8-650B-4DAB-9C01-0C11A74AFD92}\mpengine.dll
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- C:\rsit
2012-01-30 15:05 . 2012-01-30 15:06 -------- d-----w- c:\program files\trend micro
2012-01-23 14:44 . 2012-01-23 14:45 -------- d-----w- c:\program files\Canon
2012-01-22 11:39 . 2011-08-10 15:49 61440 ----a-w- c:\windows\system32\mslvddsfilter.ax
2012-01-22 11:39 . 2012-01-22 11:45 -------- d-----w- c:\program files\Common Files\Axara
2012-01-22 11:39 . 2004-12-10 09:03 438272 ----a-w- c:\windows\system32\vp6vfw.dll
2012-01-22 11:39 . 2004-07-03 20:08 139264 ----a-w- c:\windows\system32\xvidvfw.dll
2012-01-22 11:39 . 2004-02-04 20:11 81920 ----a-w- c:\windows\system32\AC3ACM.acm
2012-01-22 11:39 . 2003-05-22 11:26 221215 ----a-w- c:\windows\system32\divxdec.ax
2012-01-22 11:39 . 2003-05-21 22:50 82944 ----a-w- c:\windows\system32\vct3216.acm
2012-01-22 11:39 . 2003-05-21 22:50 38912 ----a-w- c:\windows\system32\alf2cd.acm
2012-01-22 11:39 . 2003-05-21 22:50 261632 ----a-w- c:\windows\system32\mcdvd_32.dll
2012-01-22 11:39 . 2002-08-19 23:41 413760 ----a-w- c:\windows\system32\mpg4c32.dll
2012-01-22 11:39 . 2000-03-14 19:55 13239 ----a-w- c:\windows\system32\Scg726.acm
2012-01-21 16:24 . 2008-12-17 12:22 57344 ----a-w- c:\windows\system32\ff_vfw.dll
2012-01-21 16:24 . 2008-06-15 08:13 6144 ----a-w- c:\windows\system32\ff_acm.acm
2012-01-21 16:24 . 2008-06-14 21:01 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2012-01-21 16:24 . 2008-06-14 21:01 258352 ----a-w- c:\windows\system32\unicows.dll
2012-01-21 16:24 . 2003-03-24 17:49 98304 ----a-w- c:\windows\system32\L3CODECX.AX
2012-01-21 16:11 . 2012-01-21 16:11 -------- d-----w- c:\users\PC\AppData\Roaming\DVDVideoSoft
2012-01-21 13:40 . 2012-01-21 13:44 -------- d-----w- c:\users\PC\AppData\Local\Jaksta_Technologies_Pty_L
2012-01-21 13:38 . 2012-01-21 13:38 -------- d-----w- c:\programdata\Applian
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\program files\Conduit
2012-01-21 13:36 . 2012-01-21 13:36 -------- d-----w- c:\users\PC\AppData\Local\Conduit
2012-01-21 13:36 . 2012-01-31 14:23 -------- d-----w- c:\program files\Freecorder
2012-01-21 13:35 . 2012-01-30 13:30 -------- d-----w- c:\users\PC\AppData\Local\FLVService
2012-01-17 22:28 . 2011-11-17 06:48 440192 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-17 22:28 . 2011-11-16 16:23 377344 ----a-w- c:\windows\system32\winhttp.dll
2012-01-17 22:28 . 2011-11-16 16:23 278528 ----a-w- c:\windows\system32\schannel.dll
2012-01-17 22:28 . 2011-11-16 16:21 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-17 22:28 . 2011-11-16 16:23 72704 ----a-w- c:\windows\system32\secur32.dll
2012-01-17 22:28 . 2011-11-16 14:12 9728 ----a-w- c:\windows\system32\lsass.exe
2012-01-11 14:15 . 2011-10-14 16:03 189952 ----a-w- c:\windows\system32\winmm.dll
2012-01-11 14:15 . 2011-10-14 16:00 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-01-11 14:15 . 2011-11-18 20:23 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 14:15 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2012-01-11 14:15 . 2011-11-25 15:59 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-01-11 14:15 . 2011-12-01 15:21 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2012-01-11 14:15 . 2011-10-25 15:58 1314816 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 14:15 . 2011-10-25 15:58 497152 ----a-w- c:\windows\system32\qdvd.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-08 09:52 . 2010-11-02 13:20 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-12-16 21:18 . 2011-12-16 21:18 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-07 09:08 . 2009-10-02 18:31 236576 ------w- c:\windows\system32\MpSigStub.exe
2011-11-28 18:01 . 2010-10-01 09:35 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2009-05-20 19:55 199816 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:53 . 2011-03-03 15:01 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2009-05-20 19:55 314456 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2009-05-20 19:55 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2009-05-20 19:55 52952 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2009-05-20 19:55 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-11-28 17:51 . 2009-05-20 19:55 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-11-23 13:37 . 2011-12-15 09:26 2043904 ----a-w- c:\windows\system32\win32k.sys
2011-11-08 14:42 . 2011-12-15 09:26 2048 ----a-w- c:\windows\system32\tzres.dll
2011-11-03 22:47 . 2011-12-15 10:23 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-11-03 22:40 . 2011-12-15 10:23 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-03 22:39 . 2011-12-15 10:23 1127424 ----a-w- c:\windows\system32\wininet.dll
2011-11-03 22:31 . 2011-12-15 10:23 2382848 ----a-w- c:\windows\system32\mshtml.tlb
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"mapdisk"="d:\users\PC\Documents\ArmAWork\mapdisk.bat" [2010-11-10 45]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-04-20 2423752]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-06-10 13785632]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\
FF - prefs.js: browser.startup.homepage - About:Blank
FF - prefs.js: network.proxy.http - 203.161.30.110
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-DAEMON Tools Toolbar - c:\program files\DAEMON Tools Toolbar\uninst.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-31 15:24
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\EverestDriver]
"ImagePath"="\??\d:\program files\Lavalys\EVEREST Home Edition\kerneld.wnt"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1484727336-25265518-3277325258-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*h*t*a*c*c*e*s*s* \OpenWithList]
@Class="Shell"
"a"="NOTEPAD.EXE"
"MRUList"="a"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\System32\nvSCPAPISvr.exe
c:\windows\system32\conime.exe
c:\windows\ehome\ehmsas.exe
c:\windows\system32\wbem\unsecapp.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2012-01-31 15:29:16 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-01-31 14:29
ComboFix2.txt 2012-01-30 21:51
ComboFix3.txt 2012-01-30 16:02
.
Před spuštěním: Volných bajtů: 72 586 420 224
Po spuštění: Volných bajtů: 72 430 100 480
.
- - End Of File - - 767D2107B15BB07C44FD0D03D002CBDC
Re: Prosím o kontrolugu logu
Byla tam havet typu adware a spousty zbytecnosti v podobe toolbaru Odinstalujte Combofix
- Prejmenujte ComboFix na Uninstall
- Spustte jej
- Tohle smaze Combofix a jeho slozky
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner (viz muj podpis)Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
Poprosim o novy log z RSIT a napiste co PC"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolugu logu
Vypadá to, že menší problém. Když jsem přepsal ComboFix na Uninstall a spustil vypsalo to cestu a hlášku "neplatný název adresáře". Pak jsem přišel, že to dělá u všech instalačních souborů.
Doufám, že to půjde jednoduše odstranit.
Doufám, že to půjde jednoduše odstranit.
Re: Prosím o kontrolugu logu
Restart PC a pokracujte T-Cleanerem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolugu logu
To bylo první co jsem udělal.
Vkládám log z RSIT. Jinak počítač je teď znatelně rychlejší, je to supr. Zítra to projedu těmi čistícími programy.
Logfile of random's system information tool 1.09 (written by random/random)
Run by PC at 2012-01-31 22:30:15
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 69 GB (43%) free of 160 GB
Total RAM: 3326 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:30:24, on 31.1.2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\conime.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\system32\ctfmon.exe
C:\Uninstall\CF25172.3XE
C:\Windows\system32\DllHost.exe
C:\Windows\system32\cscript.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\PC\Desktop\RSIT.exe
C:\Program Files\trend micro\PC.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [mapdisk] "D:\Users\PC\Documents\ArmAWork\mapdisk.bat"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files\ICQ7.4\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Windows\System32\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
--
End of file - 3399 bytes
=========Mozilla firefox=========
ProfilePath - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "About:Blank"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {20a82645-c095-46ed-80e3-08825760534b}:1.1, firebug@software.joehewitt.com:1.5.4, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.24"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2897]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2955]
"Description"=RealJukebox Netscape Plugin
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1675]
"Description"=6.0.12.1675
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0]
"Description"=
"Path"=c:\Program Files\Sony\Media Go\npmediago.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
AskSearch.js
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nppl3260.xpt
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npnul32.dll
NPOFFICE.DLL
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpjplug.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
iMeshWebSearch.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\
firebug@software.joehewitt.com
staged-xpis
ytvdw@pgport.com
{20a82645-c095-46ed-80e3-08825760534b}
{28387537-e3f9-4ed7-860c-11e69af4a8a0}
C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\searchplugins\
ask.xml
daemon-search.xml
icq-search.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.gif
icqplugin.src
icqplugin.xml
iMeshWebSearch.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-04 41760]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-06-10 13785632]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"mapdisk"=D:\Users\PC\Documents\ArmAWork\mapdisk.bat [2010-11-10 45]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-04-20 2423752]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=0
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"VIDC.FPS1"=frapsvid.dll
"msacm.lhacm"=lhacm.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"vidc.dvsd"=mcdvd_32.dll
"vidc.mpg4"=mpg4c32.dll
"vidc.mp42"=mpg4c32.dll
"vidc.mp43"=mpg4c32.dll
"vidc.xvid"=xvidvfw.dll
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - "D:\Program Files\PSPad editor\PSPad.exe" "%1"
======List of files/folders created in the last 1 month======
2012-01-31 22:29:37 ----SD---- C:\Uninstall
2012-01-31 22:28:08 ----SD---- C:\32788R22FWJFW
2012-01-31 22:26:05 ----D---- C:\Windows\TEMP
2012-01-31 16:38:34 ----A---- C:\ComboFix.txt
2012-01-31 16:38:02 ----SHD---- C:\$RECYCLE.BIN
2012-01-31 16:31:07 ----D---- C:\Unistall
2012-01-31 15:16:35 ----D---- C:\ComboFix
2012-01-31 13:13:33 ----D---- C:\Config.Msi
2012-01-30 16:47:42 ----A---- C:\Windows\NIRCMD.exe
2012-01-30 16:47:39 ----D---- C:\Windows\ERDNT
2012-01-30 16:05:51 ----D---- C:\rsit
2012-01-30 16:05:51 ----D---- C:\Program Files\trend micro
2012-01-23 15:44:50 ----D---- C:\Program Files\Canon
2012-01-22 12:39:08 ----D---- C:\Program Files\Common Files\Axara
2012-01-22 12:39:08 ----A---- C:\Windows\system32\xvidvfw.dll
2012-01-22 12:39:08 ----A---- C:\Windows\system32\vp6vfw.dll
2012-01-22 12:39:08 ----A---- C:\Windows\system32\mpg4c32.dll
2012-01-22 12:39:08 ----A---- C:\Windows\system32\mcdvd_32.dll
2012-01-21 17:24:23 ----A---- C:\Windows\system32\unicows.dll
2012-01-21 17:24:23 ----A---- C:\Windows\system32\pthreadGC2.dll
2012-01-21 17:24:23 ----A---- C:\Windows\system32\ff_vfw.dll
2012-01-21 17:11:30 ----D---- C:\Users\PC\AppData\Roaming\DVDVideoSoft
2012-01-21 17:11:23 ----D---- C:\Users\PC\AppData\Roaming\DVDVideoSoftIEHelpers
2012-01-21 14:38:38 ----D---- C:\ProgramData\Applian
2012-01-21 14:36:02 ----D---- C:\Program Files\Conduit
2012-01-21 14:36:00 ----D---- C:\Program Files\Freecorder
2012-01-17 23:28:39 ----A---- C:\Windows\system32\winhttp.dll
2012-01-17 23:28:39 ----A---- C:\Windows\system32\schannel.dll
2012-01-17 23:28:39 ----A---- C:\Windows\system32\lsasrv.dll
2012-01-17 23:28:39 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-01-17 23:28:38 ----A---- C:\Windows\system32\secur32.dll
2012-01-17 23:28:38 ----A---- C:\Windows\system32\lsass.exe
2012-01-11 15:15:22 ----A---- C:\Windows\system32\winmm.dll
2012-01-11 15:15:22 ----A---- C:\Windows\system32\mciseq.dll
2012-01-11 15:15:20 ----A---- C:\Windows\system32\ntdll.dll
2012-01-11 15:15:19 ----A---- C:\Windows\system32\packager.dll
2012-01-11 15:15:18 ----A---- C:\Windows\system32\winsrv.dll
2012-01-11 15:15:16 ----A---- C:\Windows\system32\quartz.dll
2012-01-11 15:15:15 ----A---- C:\Windows\system32\qdvd.dll
======List of files/folders modified in the last 1 month======
2012-01-31 22:30:24 ----D---- C:\Windows\Prefetch
2012-01-31 22:29:43 ----D---- C:\Windows
2012-01-31 22:28:52 ----D---- C:\Windows\system32\drivers
2012-01-31 22:27:11 ----D---- C:\ProgramData\NVIDIA
2012-01-31 20:36:14 ----D---- C:\Windows\System32
2012-01-31 20:36:14 ----D---- C:\Windows\inf
2012-01-31 20:36:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-01-31 16:37:27 ----A---- C:\Windows\system.ini
2012-01-31 16:35:17 ----D---- C:\Windows\AppPatch
2012-01-31 16:35:16 ----D---- C:\Program Files\Common Files
2012-01-31 16:31:48 ----D---- C:\Windows\system32\catroot2
2012-01-31 15:28:40 ----D---- C:\Windows\Tasks
2012-01-31 15:24:56 ----D---- C:\Windows\system32\drivers\etc
2012-01-31 15:23:09 ----RD---- C:\Program Files
2012-01-31 13:15:20 ----D---- C:\ProgramData
2012-01-31 13:13:35 ----SHD---- C:\Windows\Installer
2012-01-31 13:13:29 ----D---- C:\ProgramData\Lavasoft
2012-01-31 11:01:17 ----SHD---- C:\System Volume Information
2012-01-30 22:48:28 ----D---- C:\Windows\system32\Tasks
2012-01-30 22:43:27 ----D---- C:\Windows\system32\config
2012-01-27 16:13:03 ----RSD---- C:\Windows\assembly
2012-01-25 23:16:55 ----D---- C:\Program Files\Mozilla Firefox
2012-01-23 15:45:45 ----D---- C:\Users\PC\AppData\Roaming\Canon
2012-01-21 14:44:17 ----D---- C:\Windows\system32\catroot
2012-01-21 14:41:04 ----SD---- C:\Users\PC\AppData\Roaming\Microsoft
2012-01-18 10:43:16 ----D---- C:\Windows\winsxs
2012-01-13 15:31:51 ----D---- C:\Users\PC\AppData\Roaming\Skype
2012-01-11 23:59:18 ----A---- C:\Windows\system32\mrt.exe
2012-01-11 23:59:03 ----D---- C:\Program Files\Windows Mail
2012-01-11 23:58:56 ----D---- C:\Windows\ehome
2012-01-11 13:41:46 ----D---- C:\Windows\Microsoft.NET
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys [2010-09-23 64288]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-10-29 721904]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-11-28 34392]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-11-28 435032]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-11-28 314456]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-11-28 52952]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-11-28 20568]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-11-28 55128]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-06-10 9899296]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-02-14 118784]
S3 acfoq3yz;acfoq3yz; C:\Windows\system32\drivers\acfoq3yz.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\D:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt [2005-08-18 7168]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2009-12-09 16608]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-06-27 2149912]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\Windows\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-11-28 44768]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-06-10 211488]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Windows\System32\nvSCPAPISvr.exe [2009-06-10 232960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
-----------------EOF-----------------
Vkládám log z RSIT. Jinak počítač je teď znatelně rychlejší, je to supr. Zítra to projedu těmi čistícími programy.
Logfile of random's system information tool 1.09 (written by random/random)
Run by PC at 2012-01-31 22:30:15
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 69 GB (43%) free of 160 GB
Total RAM: 3326 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:30:24, on 31.1.2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\conime.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\system32\ctfmon.exe
C:\Uninstall\CF25172.3XE
C:\Windows\system32\DllHost.exe
C:\Windows\system32\cscript.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\PC\Desktop\RSIT.exe
C:\Program Files\trend micro\PC.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = file:///C:/Users/PC/Desktop/Kvalitnistroje/detail.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [mapdisk] "D:\Users\PC\Documents\ArmAWork\mapdisk.bat"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files\ICQ7.4\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Windows\System32\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
--
End of file - 3399 bytes
=========Mozilla firefox=========
ProfilePath - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "About:Blank"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {20a82645-c095-46ed-80e3-08825760534b}:1.1, firebug@software.joehewitt.com:1.5.4, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.24"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2897]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2955]
"Description"=RealJukebox Netscape Plugin
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1675]
"Description"=6.0.12.1675
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0]
"Description"=
"Path"=c:\Program Files\Sony\Media Go\npmediago.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
AskSearch.js
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nppl3260.xpt
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npnul32.dll
NPOFFICE.DLL
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpjplug.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
iMeshWebSearch.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\extensions\
firebug@software.joehewitt.com
staged-xpis
ytvdw@pgport.com
{20a82645-c095-46ed-80e3-08825760534b}
{28387537-e3f9-4ed7-860c-11e69af4a8a0}
C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\699uwz96.default\searchplugins\
ask.xml
daemon-search.xml
icq-search.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.gif
icqplugin.src
icqplugin.xml
iMeshWebSearch.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-04 41760]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-06-10 13785632]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"mapdisk"=D:\Users\PC\Documents\ArmAWork\mapdisk.bat [2010-11-10 45]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-04-20 2423752]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=0
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"VIDC.FPS1"=frapsvid.dll
"msacm.lhacm"=lhacm.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"vidc.dvsd"=mcdvd_32.dll
"vidc.mpg4"=mpg4c32.dll
"vidc.mp42"=mpg4c32.dll
"vidc.mp43"=mpg4c32.dll
"vidc.xvid"=xvidvfw.dll
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - "D:\Program Files\PSPad editor\PSPad.exe" "%1"
======List of files/folders created in the last 1 month======
2012-01-31 22:29:37 ----SD---- C:\Uninstall
2012-01-31 22:28:08 ----SD---- C:\32788R22FWJFW
2012-01-31 22:26:05 ----D---- C:\Windows\TEMP
2012-01-31 16:38:34 ----A---- C:\ComboFix.txt
2012-01-31 16:38:02 ----SHD---- C:\$RECYCLE.BIN
2012-01-31 16:31:07 ----D---- C:\Unistall
2012-01-31 15:16:35 ----D---- C:\ComboFix
2012-01-31 13:13:33 ----D---- C:\Config.Msi
2012-01-30 16:47:42 ----A---- C:\Windows\NIRCMD.exe
2012-01-30 16:47:39 ----D---- C:\Windows\ERDNT
2012-01-30 16:05:51 ----D---- C:\rsit
2012-01-30 16:05:51 ----D---- C:\Program Files\trend micro
2012-01-23 15:44:50 ----D---- C:\Program Files\Canon
2012-01-22 12:39:08 ----D---- C:\Program Files\Common Files\Axara
2012-01-22 12:39:08 ----A---- C:\Windows\system32\xvidvfw.dll
2012-01-22 12:39:08 ----A---- C:\Windows\system32\vp6vfw.dll
2012-01-22 12:39:08 ----A---- C:\Windows\system32\mpg4c32.dll
2012-01-22 12:39:08 ----A---- C:\Windows\system32\mcdvd_32.dll
2012-01-21 17:24:23 ----A---- C:\Windows\system32\unicows.dll
2012-01-21 17:24:23 ----A---- C:\Windows\system32\pthreadGC2.dll
2012-01-21 17:24:23 ----A---- C:\Windows\system32\ff_vfw.dll
2012-01-21 17:11:30 ----D---- C:\Users\PC\AppData\Roaming\DVDVideoSoft
2012-01-21 17:11:23 ----D---- C:\Users\PC\AppData\Roaming\DVDVideoSoftIEHelpers
2012-01-21 14:38:38 ----D---- C:\ProgramData\Applian
2012-01-21 14:36:02 ----D---- C:\Program Files\Conduit
2012-01-21 14:36:00 ----D---- C:\Program Files\Freecorder
2012-01-17 23:28:39 ----A---- C:\Windows\system32\winhttp.dll
2012-01-17 23:28:39 ----A---- C:\Windows\system32\schannel.dll
2012-01-17 23:28:39 ----A---- C:\Windows\system32\lsasrv.dll
2012-01-17 23:28:39 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-01-17 23:28:38 ----A---- C:\Windows\system32\secur32.dll
2012-01-17 23:28:38 ----A---- C:\Windows\system32\lsass.exe
2012-01-11 15:15:22 ----A---- C:\Windows\system32\winmm.dll
2012-01-11 15:15:22 ----A---- C:\Windows\system32\mciseq.dll
2012-01-11 15:15:20 ----A---- C:\Windows\system32\ntdll.dll
2012-01-11 15:15:19 ----A---- C:\Windows\system32\packager.dll
2012-01-11 15:15:18 ----A---- C:\Windows\system32\winsrv.dll
2012-01-11 15:15:16 ----A---- C:\Windows\system32\quartz.dll
2012-01-11 15:15:15 ----A---- C:\Windows\system32\qdvd.dll
======List of files/folders modified in the last 1 month======
2012-01-31 22:30:24 ----D---- C:\Windows\Prefetch
2012-01-31 22:29:43 ----D---- C:\Windows
2012-01-31 22:28:52 ----D---- C:\Windows\system32\drivers
2012-01-31 22:27:11 ----D---- C:\ProgramData\NVIDIA
2012-01-31 20:36:14 ----D---- C:\Windows\System32
2012-01-31 20:36:14 ----D---- C:\Windows\inf
2012-01-31 20:36:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-01-31 16:37:27 ----A---- C:\Windows\system.ini
2012-01-31 16:35:17 ----D---- C:\Windows\AppPatch
2012-01-31 16:35:16 ----D---- C:\Program Files\Common Files
2012-01-31 16:31:48 ----D---- C:\Windows\system32\catroot2
2012-01-31 15:28:40 ----D---- C:\Windows\Tasks
2012-01-31 15:24:56 ----D---- C:\Windows\system32\drivers\etc
2012-01-31 15:23:09 ----RD---- C:\Program Files
2012-01-31 13:15:20 ----D---- C:\ProgramData
2012-01-31 13:13:35 ----SHD---- C:\Windows\Installer
2012-01-31 13:13:29 ----D---- C:\ProgramData\Lavasoft
2012-01-31 11:01:17 ----SHD---- C:\System Volume Information
2012-01-30 22:48:28 ----D---- C:\Windows\system32\Tasks
2012-01-30 22:43:27 ----D---- C:\Windows\system32\config
2012-01-27 16:13:03 ----RSD---- C:\Windows\assembly
2012-01-25 23:16:55 ----D---- C:\Program Files\Mozilla Firefox
2012-01-23 15:45:45 ----D---- C:\Users\PC\AppData\Roaming\Canon
2012-01-21 14:44:17 ----D---- C:\Windows\system32\catroot
2012-01-21 14:41:04 ----SD---- C:\Users\PC\AppData\Roaming\Microsoft
2012-01-18 10:43:16 ----D---- C:\Windows\winsxs
2012-01-13 15:31:51 ----D---- C:\Users\PC\AppData\Roaming\Skype
2012-01-11 23:59:18 ----A---- C:\Windows\system32\mrt.exe
2012-01-11 23:59:03 ----D---- C:\Program Files\Windows Mail
2012-01-11 23:58:56 ----D---- C:\Windows\ehome
2012-01-11 13:41:46 ----D---- C:\Windows\Microsoft.NET
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys [2010-09-23 64288]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-10-29 721904]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-11-28 34392]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-11-28 435032]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-11-28 314456]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-11-28 52952]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-11-28 20568]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-11-28 55128]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-06-10 9899296]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-02-14 118784]
S3 acfoq3yz;acfoq3yz; C:\Windows\system32\drivers\acfoq3yz.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\D:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt [2005-08-18 7168]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2009-12-09 16608]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-06-27 2149912]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\Windows\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-11-28 44768]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-06-10 211488]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Windows\System32\nvSCPAPISvr.exe [2009-06-10 232960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
-----------------EOF-----------------
Re: Prosím o kontrolugu logu
Log jiz vypada na havet OK
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?