Pomalý PC

Zpráva

wehiq · #1 Příspěvek od **wehiq** » 07 úno 2012 10:46

Čau, přijde mi, že je PC značně pomalejší než obvykle, nevím si moc rady tak přikládám log a prosím někoho o kontrolu..
Díky moc

Logfile of random's system information tool 1.09 (written by random/random)
Run by Honza at 2012-02-07 10:43:53
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 152 GB (76%) free of 200 GB
Total RAM: 2047 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:44:15, on 7.2.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
D:\Software\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Ask.com\Updater\Updater.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\RunDLL32.exe
D:\Software\iTunes\iTunesHelper.exe
D:\Software\AVG\AVG9\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
D:\Software\AVG\AVG9\avgwdsvc.exe
D:\Software\AVG\AVG9\avgfws9.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\nvsvc32.exe
D:\Software\AVG\AVG9\avgam.exe
D:\Software\AVG\AVG9\avgnsx.exe
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\WINDOWS\system32\svchost.exe
D:\Software\AVG\AVG9\avgemc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
D:\Software\AVG\AVG9\avgcsrvx.exe
D:\Software\AVG\AVG9\avgchsvx.exe
D:\Software\AVG\AVG9\avgcsrvx.exe
D:\Software\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe
D:\Software\AVG\AVG9\avgrsx.exe
D:\Software\AVG\AVG9\avgcsrvx.exe
D:\Software\Mozilla Firefox\firefox.exe
D:\Software\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Honza\Plocha\RSIT.exe
C:\Program Files\trend micro\Honza.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - D:\Software\AVG\AVG9\avgssie.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exe
O4 - HKLM\..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [iTunesHelper] "D:\Software\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NSU_agent] "C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [AVG9_TRAY] D:\Software\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-839522115-1275210071-2147167427-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-839522115-1275210071-2147167427-1005\..\RunOnce: [avg_spchecker] "D:\Software\AVG\AVG9\Notification\SPChecker1.exe" /start (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - D:\Software\AVG\AVG9\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVG E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - D:\Software\AVG\AVG9\avgemc.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - D:\Software\AVG\AVG9\avgwdsvc.exe
O23 - Service: AVG Firewall (avgfws9) - AVG Technologies CZ, s.r.o. - D:\Software\AVG\AVG9\avgfws9.exe
O23 - Service: AVG9IDSAgent (AVGIDSAgent) - AVG Technologies CZ, s.r.o. - D:\Software\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Power Manager (PowerManager) - Unknown owner - C:\WINDOWS\svchost.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe

--
End of file - 7954 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\WINDOWS\tasks\tempoperfectShakeIcon.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\6toyepp2.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{3f963a5b-e555-4543-90e2-c3908898db71}"=D:\Software\AVG\AVG9\Firefox

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=D:\Software\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=D:\Software\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

D:\Software\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

D:\Software\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

D:\Software\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - D:\Software\AVG\AVG9\avgssie.dll [2012-02-06 1623392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-08-23 1515688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-07-19 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-08-23 1515688]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\WINDOWS\JM\JMInsIDE.exe [2006-10-30 36864]
"JMB36X Configure"=C:\WINDOWS\system32\JMRaidSetup.exe [2006-10-30 1953792]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2011-09-26 868352]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2007-04-03 839680]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe []
""= []
"ApnUpdater"=C:\Program Files\Ask.com\Updater\Updater.exe [2011-08-23 887976]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-11-01 59240]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe -atboottime []
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-10-08 16744256]
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit -login []
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2011-10-08 1632360]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe []
"iTunesHelper"=D:\Software\iTunes\iTunesHelper.exe [2011-12-08 421736]
"NSU_agent"=C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe []
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2012-01-10 2775728]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2012-01-10 3609776]
"tsnp2std"=C:\WINDOWS\tsnp2std.exe [2007-01-05 293376]
"snp2std"=C:\WINDOWS\vsnp2std.exe [2006-09-15 675840]
"AVG9_TRAY"=D:\Software\AVG\AVG9\avgtray.exe [2012-02-07 2077536]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2012-02-06 12536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager"
"D:\Hry\FIFA 12\Game\fifa.exe"="D:\Hry\FIFA 12\Game\fifa.exe:*:Enabled:FIFA 12"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Hry\KONAMI\Pro Evolution Soccer 2012\pes2012.exe"="D:\Hry\KONAMI\Pro Evolution Soccer 2012\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"D:\Software\Readon Technology\Readon TV Movie Radio Player 7.5.0.0\internettv.exe"="D:\Software\Readon Technology\Readon TV Movie Radio Player 7.5.0.0\internettv.exe:*:Enabled:Readon TV Movie Radio Player"
"D:\Hry\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="D:\Hry\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"D:\Hry\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="D:\Hry\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"D:\Hry\Rockstar Games\Grand Theft Auto IV\GTAIV.exe"="D:\Hry\Rockstar Games\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit"
"D:\Software\iTunes\iTunes.exe"="D:\Software\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Spyware Terminator\SpywareTerminator.exe"="C:\Program Files\Spyware Terminator\SpywareTerminator.exe:*:Enabled:Spyware Terminator 2012"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator 2012"
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"D:\Hry\Ubisoft\Related Designs\ANNO 2070\Anno5.exe"="D:\Hry\Ubisoft\Related Designs\ANNO 2070\Anno5.exe:*:Enabled:ANNO 2070"
"D:\Hry\Ubisoft\Related Designs\ANNO 2070\AutoPatcher.exe"="D:\Hry\Ubisoft\Related Designs\ANNO 2070\AutoPatcher.exe:*:Enabled:ANNO 2070"
"D:\Hry\Ubisoft\Related Designs\ANNO 2070\InitEngine.exe"="D:\Hry\Ubisoft\Related Designs\ANNO 2070\InitEngine.exe:*:Enabled:ANNO 2070"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Software\AVG\AVG9\avgam.exe"="D:\Software\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe"
"D:\Software\AVG\AVG9\avgdiagex.exe"="D:\Software\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"D:\Software\AVG\AVG9\avgemc.exe"="D:\Software\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe"
"D:\Software\AVG\AVG9\avgupd.exe"="D:\Software\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"D:\Software\AVG\AVG9\avgnsx.exe"="D:\Software\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.vbs - open - WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-02-07 10:43:53 ----D---- C:\rsit
2012-02-07 10:43:53 ----D---- C:\Program Files\trend micro
2012-02-07 10:31:51 ----D---- C:\WINDOWS\ERDNT
2012-02-07 10:29:14 ----D---- C:\Qoobox
2012-02-06 23:18:50 ----HD---- C:\Documents and Settings\All Users\Data aplikací\Common Files
2012-02-06 23:15:26 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2012-02-06 23:14:02 ----A---- C:\WINDOWS\UPGRADE.TXT
2012-02-06 23:11:47 ----A---- C:\WINDOWS\system32\browserchoice.exe
2012-02-06 23:11:47 ----A---- C:\WINDOWS\svchost.exe
2012-02-06 22:50:16 ----HD---- C:\$AVG
2012-02-06 22:49:48 ----D---- C:\WINDOWS\system32\drivers\Avg
2012-02-06 22:49:41 ----A---- C:\WINDOWS\system32\drivers\avgrkx86.sys
2012-02-06 22:49:41 ----A---- C:\WINDOWS\system32\drivers\AVGIDSxx.sys
2012-02-06 22:49:40 ----A---- C:\WINDOWS\system32\drivers\avgtdix.sys
2012-02-06 22:49:40 ----A---- C:\WINDOWS\system32\drivers\avgldx86.sys
2012-02-06 22:49:37 ----A---- C:\WINDOWS\system32\drivers\avgmfx86.sys
2012-02-06 22:49:27 ----A---- C:\WINDOWS\system32\drivers\avgfwdx.sys
2012-02-06 22:49:27 ----A---- C:\WINDOWS\system32\avgfwdx.dll
2012-02-06 22:49:26 ----D---- C:\Program Files\AVG
2012-02-06 22:49:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\avg9
2012-02-01 14:19:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2012-01-25 21:00:52 ----D---- C:\Documents and Settings\Honza\Data aplikací\Ubisoft
2012-01-25 20:59:47 ----D---- C:\Program Files\Ubisoft
2012-01-25 20:59:31 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2012-01-25 20:59:31 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2012-01-25 20:59:29 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2012-01-25 20:59:29 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2012-01-25 20:59:29 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2012-01-25 20:59:29 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2012-01-25 18:16:45 ----A---- C:\WINDOWS\system32\drivers\MSTEE.sys
2012-01-25 18:16:43 ----A---- C:\WINDOWS\system32\drivers\NdisIP.sys
2012-01-25 18:16:42 ----A---- C:\WINDOWS\system32\drivers\StreamIP.sys
2012-01-25 18:16:41 ----A---- C:\WINDOWS\system32\drivers\SLIP.sys
2012-01-25 18:16:39 ----A---- C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2012-01-25 18:16:37 ----A---- C:\WINDOWS\system32\drivers\NABTSFEC.sys
2012-01-25 18:16:36 ----A---- C:\WINDOWS\system32\drivers\CCDECODE.sys
2012-01-25 18:16:19 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2012-01-25 18:16:07 ----A---- C:\WINDOWS\WindowsXP-KB822603-x86.exe
2012-01-25 18:16:07 ----A---- C:\WINDOWS\amcap.exe
2012-01-25 18:16:06 ----A---- C:\WINDOWS\vsnp2std.exe
2012-01-25 18:16:06 ----A---- C:\WINDOWS\tsnp2std.exe
2012-01-25 18:16:06 ----A---- C:\WINDOWS\snp2std.src
2012-01-25 18:16:06 ----A---- C:\WINDOWS\snp2std.ini
2012-01-25 18:16:04 ----A---- C:\WINDOWS\system32\drivers\sncamd.sys
2012-01-25 18:16:03 ----A---- C:\WINDOWS\system32\drivers\snp2sxp.sys
2012-01-25 18:16:02 ----D---- C:\Program Files\Common Files\snp2std
2012-01-25 18:16:02 ----A---- C:\WINDOWS\system32\vsnp2std.dll
2012-01-25 18:16:02 ----A---- C:\WINDOWS\system32\rsnp2std.dll
2012-01-25 18:16:02 ----A---- C:\WINDOWS\system32\csnp2std.dll
2012-01-25 18:15:54 ----D---- C:\Documents and Settings\Honza\Data aplikací\InstallShield
2012-01-25 17:55:31 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2012-01-25 14:41:15 ----D---- C:\Documents and Settings\Honza\Data aplikací\Sports Interactive
2012-01-24 16:00:57 ----A---- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2012-01-24 16:00:54 ----D---- C:\Documents and Settings\Honza\Data aplikací\Spyware Terminator
2012-01-24 16:00:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2012-01-24 16:00:00 ----D---- C:\Program Files\Spyware Terminator
2012-01-24 15:52:08 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys
2012-01-24 15:24:41 ----D---- C:\Program Files\PC Connectivity Solution
2012-01-24 15:22:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\NokiaInstallerCache
2012-01-24 14:34:23 ----D---- C:\Program Files\Common Files\Web Solution Mart
2012-01-24 14:11:02 ----D---- C:\Documents and Settings\Honza\Data aplikací\Skype
2012-01-24 14:10:55 ----RD---- C:\Program Files\Skype
2012-01-24 14:10:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-01-13 22:33:04 ----D---- C:\WINDOWS\Globalization
2012-01-13 22:32:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\NokiaMusic
2012-01-13 21:41:57 ----HDC---- C:\WINDOWS\$NtUninstallWudf01009$
2012-01-13 21:41:15 ----D---- C:\Program Files\MSXML 4.0
2012-01-13 21:41:01 ----D---- C:\Program Files\Nokia
2012-01-13 21:21:13 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2012-01-13 21:21:02 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2012-01-13 21:20:59 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2012-01-13 21:19:31 ----D---- C:\Documents and Settings\Honza\Data aplikací\PC Suite
2012-01-13 21:19:31 ----D---- C:\Documents and Settings\Honza\Data aplikací\Nokia
2012-01-13 21:19:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2012-01-13 21:18:00 ----D---- C:\Program Files\Common Files\PCSuite
2012-01-13 21:17:51 ----D---- C:\Program Files\Common Files\Nokia
2012-01-13 21:17:45 ----D---- C:\Program Files\DIFX
2012-01-13 21:17:33 ----A---- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
2012-01-13 21:17:32 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys
2012-01-13 21:17:32 ----A---- C:\WINDOWS\system32\drivers\nmwcdnsu.sys
2012-01-13 21:17:31 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys
2012-01-13 21:17:30 ----A---- C:\WINDOWS\system32\drivers\ccdcmbo.sys
2012-01-13 21:17:27 ----A---- C:\WINDOWS\system32\wdfcoinstaller01009.dll
2012-01-13 21:17:27 ----A---- C:\WINDOWS\system32\nmwcdcocls.dll
2012-01-13 21:17:27 ----A---- C:\WINDOWS\system32\nmwcdcls.dll
2012-01-13 21:17:27 ----A---- C:\WINDOWS\system32\drivers\ccdcmb.sys
2012-01-13 21:17:27 ----A---- C:\WINDOWS\system32\ccdcmbwu.dll
2012-01-13 21:16:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2012-01-12 09:30:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2646524$
2012-01-12 09:30:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2012-01-12 00:07:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2012-01-12 00:05:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2012-01-12 00:03:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2012-01-09 19:27:53 ----A---- C:\WINDOWS\NeroDigital.ini

======List of files/folders modified in the last 1 month======

2012-02-07 10:44:03 ----D---- C:\WINDOWS\Temp
2012-02-07 10:43:53 ----RD---- C:\Program Files
2012-02-07 10:32:46 ----D---- C:\WINDOWS
2012-02-07 10:31:51 ----D---- C:\WINDOWS\Prefetch
2012-02-07 10:29:21 ----D---- C:\WINDOWS\system32\drivers
2012-02-07 10:13:54 ----D---- C:\WINDOWS\system32
2012-02-07 10:13:52 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-02-07 10:09:45 ----D---- C:\WINDOWS\system32\CatRoot2
2012-02-07 10:06:53 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-02-07 10:05:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-02-07 10:05:42 ----HD---- C:\WINDOWS\inf
2012-02-07 10:05:41 ----D---- C:\WINDOWS\system32\CatRoot
2012-02-06 23:45:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2012-02-06 23:45:22 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2012-02-06 23:40:39 ----D---- C:\Program Files\Windows Media Player
2012-02-06 23:40:08 ----D---- C:\Program Files\QuickTime
2012-02-06 23:37:18 ----D---- C:\Program Files\Messenger
2012-02-06 23:12:13 ----D---- C:\Program Files\Internet Explorer
2012-02-06 23:12:08 ----D---- C:\Program Files\Movie Maker
2012-02-06 22:49:22 ----SHD---- C:\WINDOWS\Installer
2012-02-06 22:49:21 ----D---- C:\WINDOWS\WinSxS
2012-02-06 22:47:21 ----SD---- C:\Documents and Settings\Honza\Data aplikací\Microsoft
2012-02-06 13:59:36 ----D---- C:\Documents and Settings\Honza\Data aplikací\Audacity
2012-02-01 21:26:20 ----D---- C:\Documents and Settings\Honza\Data aplikací\Adobe
2012-01-31 15:24:27 ----HD---- C:\WINDOWS\$hf_mig$
2012-01-30 18:50:55 ----HD---- C:\Program Files\InstallShield Installation Information
2012-01-30 18:38:31 ----SD---- C:\WINDOWS\Tasks
2012-01-26 13:33:22 ----A---- C:\WINDOWS\win.ini
2012-01-26 13:33:01 ----D---- C:\WINDOWS\security
2012-01-25 20:59:32 ----D---- C:\WINDOWS\system32\DirectX
2012-01-25 20:59:13 ----RSD---- C:\WINDOWS\assembly
2012-01-25 18:16:06 ----D---- C:\WINDOWS\twain_32
2012-01-25 18:16:02 ----D---- C:\Program Files\Common Files
2012-01-24 16:08:46 ----D---- C:\WINDOWS\system32\drivers\UMDF
2012-01-24 16:02:58 ----D---- C:\Program Files\Ask.com
2012-01-24 16:02:41 ----D---- C:\Program Files\Apple Software Update
2012-01-24 15:52:08 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-01-18 22:36:08 ----D---- C:\Program Files\Common Files\Adobe
2012-01-15 17:30:26 ----D---- C:\Documents and Settings\Honza\Data aplikací\vlc
2012-01-13 22:33:01 ----RSD---- C:\WINDOWS\Fonts
2012-01-13 21:42:06 ----A---- C:\WINDOWS\imsins.BAK
2012-01-12 09:25:56 ----D---- C:\WINDOWS\Microsoft.NET
2012-01-12 00:07:08 ----A---- C:\WINDOWS\system32\MRT.INI
2012-01-12 00:05:34 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSErHrxpx;AVG9IDSErHr; C:\WINDOWS\System32\Drivers\AVGIDSxx.sys [2012-02-06 25168]
R0 AvgRkx86;avgrkx86.sys; C:\WINDOWS\System32\Drivers\avgrkx86.sys [2012-02-06 52872]
R0 JGOGO;JMicron Hot-Plug Driver; C:\WINDOWS\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; C:\WINDOWS\system32\DRIVERS\jraid.sys [2006-10-30 43648]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2012-02-06 216400]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2012-02-06 29712]
R1 AvgTdiX;AVG Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2012-02-06 243152]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-10-01 232512]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2011-09-26 304640]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2011-09-26 94848]
R3 Avgfwdx;Avgfwdx; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2012-02-06 30104]
R3 AVGIDSDriverxpx;AVG9IDSDriver; \??\D:\Software\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys []
R3 AVGIDSFilterxpx;AVG9IDSFilter; \??\D:\Software\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys []
R3 AVGIDSShimxpx;AVG9IDSShim; \??\D:\Software\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-10-08 12791488]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-07-27 83712]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2011-09-26 392960]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 Avgfwfd;AVG network filter service; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2012-02-06 30104]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2011-11-01 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2011-11-01 23168]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2011-11-01 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2011-11-01 8576]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 SNP2STD;USB2.0 PC Camera (SNP2STD); C:\WINDOWS\system32\DRIVERS\snp2sxp.sys [2007-04-09 12039552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2011-11-01 8192]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2011-05-10 42496]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2011-11-01 8192]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-10-24 55144]
R2 avg9emc;AVG E-mail Scanner; D:\Software\AVG\AVG9\avgemc.exe [2012-02-06 921952]
R2 avg9wd;AVG WatchDog; D:\Software\AVG\AVG9\avgwdsvc.exe [2012-02-07 308136]
R2 avgfws9;AVG Firewall; D:\Software\AVG\AVG9\avgfws9.exe [2012-02-06 2331544]
R2 AVGIDSAgent;AVG9IDSAgent; D:\Software\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2012-02-06 5897808]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-10-08 298304]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-08 2253120]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2012-01-10 482992]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-12-08 821608]
S2 PowerManager;Power Manager; C:\WINDOWS\svchost.exe [2012-02-06 36352]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-01-04 718888]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 07 úno 2012 12:04

Zdravim a pekny den preji

Odinstalujte Ask Toolbar

Trvate na antiviru AVG - u nas neni moc obliben - vysoka zatez systemu, slabsi detekce

wehiq · #3 Příspěvek od **wehiq** » 07 úno 2012 12:31

Netrvám na něm.. Takže jsem odinstaloval AVG a Ask Toolbar a opět přikládám log

Logfile of random's system information tool 1.09 (written by random/random)
Run by Honza at 2012-02-07 12:30:10
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 152 GB (76%) free of 200 GB
Total RAM: 2047 MB (76% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:30:14, on 7.2.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\RunDLL32.exe
D:\Software\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\msiexec.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Honza\Plocha\RSIT.exe
C:\Program Files\trend micro\Honza.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exe
O4 - HKLM\..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [iTunesHelper] "D:\Software\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NSU_agent] "C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.914
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-839522115-1275210071-2147167427-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-839522115-1275210071-2147167427-1005\..\RunOnce: [avg_spchecker] "D:\Software\AVG\AVG9\Notification\SPChecker1.exe" /start (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe

--
End of file - 6575 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\tempoperfectShakeIcon.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\6toyepp2.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=D:\Software\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=D:\Software\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

D:\Software\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

D:\Software\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

D:\Software\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-07-19 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\WINDOWS\JM\JMInsIDE.exe [2006-10-30 36864]
"JMB36X Configure"=C:\WINDOWS\system32\JMRaidSetup.exe [2006-10-30 1953792]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2011-09-26 868352]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2007-04-03 839680]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-11-01 59240]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe -atboottime []
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-10-08 16744256]
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit -login []
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2011-10-08 1632360]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe []
"iTunesHelper"=D:\Software\iTunes\iTunesHelper.exe [2011-12-08 421736]
"NSU_agent"=C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe []
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2012-01-10 2775728]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2012-01-10 3609776]
"tsnp2std"=C:\WINDOWS\tsnp2std.exe [2007-01-05 293376]
"snp2std"=C:\WINDOWS\vsnp2std.exe [2006-09-15 675840]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"=cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.914 []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager"
"D:\Hry\FIFA 12\Game\fifa.exe"="D:\Hry\FIFA 12\Game\fifa.exe:*:Enabled:FIFA 12"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Hry\KONAMI\Pro Evolution Soccer 2012\pes2012.exe"="D:\Hry\KONAMI\Pro Evolution Soccer 2012\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"D:\Software\Readon Technology\Readon TV Movie Radio Player 7.5.0.0\internettv.exe"="D:\Software\Readon Technology\Readon TV Movie Radio Player 7.5.0.0\internettv.exe:*:Enabled:Readon TV Movie Radio Player"
"D:\Hry\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="D:\Hry\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"D:\Hry\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="D:\Hry\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"D:\Hry\Rockstar Games\Grand Theft Auto IV\GTAIV.exe"="D:\Hry\Rockstar Games\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit"
"D:\Software\iTunes\iTunes.exe"="D:\Software\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Spyware Terminator\SpywareTerminator.exe"="C:\Program Files\Spyware Terminator\SpywareTerminator.exe:*:Enabled:Spyware Terminator 2012"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator 2012"
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"D:\Hry\Ubisoft\Related Designs\ANNO 2070\Anno5.exe"="D:\Hry\Ubisoft\Related Designs\ANNO 2070\Anno5.exe:*:Enabled:ANNO 2070"
"D:\Hry\Ubisoft\Related Designs\ANNO 2070\AutoPatcher.exe"="D:\Hry\Ubisoft\Related Designs\ANNO 2070\AutoPatcher.exe:*:Enabled:ANNO 2070"
"D:\Hry\Ubisoft\Related Designs\ANNO 2070\InitEngine.exe"="D:\Hry\Ubisoft\Related Designs\ANNO 2070\InitEngine.exe:*:Enabled:ANNO 2070"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.vbs - open - WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-02-07 10:43:53 ----D---- C:\rsit
2012-02-07 10:43:53 ----D---- C:\Program Files\trend micro
2012-02-07 10:31:51 ----D---- C:\WINDOWS\ERDNT
2012-02-07 10:29:14 ----D---- C:\Qoobox
2012-02-06 23:18:50 ----HD---- C:\Documents and Settings\All Users\Data aplikací\Common Files
2012-02-06 23:14:02 ----A---- C:\WINDOWS\UPGRADE.TXT
2012-02-06 23:11:47 ----A---- C:\WINDOWS\system32\browserchoice.exe
2012-02-06 23:11:47 ----A---- C:\WINDOWS\svchost.exe
2012-02-06 22:50:16 ----HD---- C:\$AVG
2012-02-06 22:49:26 ----D---- C:\Program Files\AVG
2012-02-06 22:49:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\avg9
2012-02-01 14:19:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2012-01-25 21:00:52 ----D---- C:\Documents and Settings\Honza\Data aplikací\Ubisoft
2012-01-25 20:59:47 ----D---- C:\Program Files\Ubisoft
2012-01-25 20:59:31 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2012-01-25 20:59:31 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2012-01-25 20:59:30 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2012-01-25 20:59:29 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2012-01-25 20:59:29 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2012-01-25 20:59:29 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2012-01-25 20:59:29 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2012-01-25 18:16:45 ----A---- C:\WINDOWS\system32\drivers\MSTEE.sys
2012-01-25 18:16:43 ----A---- C:\WINDOWS\system32\drivers\NdisIP.sys
2012-01-25 18:16:42 ----A---- C:\WINDOWS\system32\drivers\StreamIP.sys
2012-01-25 18:16:41 ----A---- C:\WINDOWS\system32\drivers\SLIP.sys
2012-01-25 18:16:39 ----A---- C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2012-01-25 18:16:37 ----A---- C:\WINDOWS\system32\drivers\NABTSFEC.sys
2012-01-25 18:16:36 ----A---- C:\WINDOWS\system32\drivers\CCDECODE.sys
2012-01-25 18:16:19 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2012-01-25 18:16:07 ----A---- C:\WINDOWS\WindowsXP-KB822603-x86.exe
2012-01-25 18:16:07 ----A---- C:\WINDOWS\amcap.exe
2012-01-25 18:16:06 ----A---- C:\WINDOWS\vsnp2std.exe
2012-01-25 18:16:06 ----A---- C:\WINDOWS\tsnp2std.exe
2012-01-25 18:16:06 ----A---- C:\WINDOWS\snp2std.src
2012-01-25 18:16:06 ----A---- C:\WINDOWS\snp2std.ini
2012-01-25 18:16:04 ----A---- C:\WINDOWS\system32\drivers\sncamd.sys
2012-01-25 18:16:03 ----A---- C:\WINDOWS\system32\drivers\snp2sxp.sys
2012-01-25 18:16:02 ----D---- C:\Program Files\Common Files\snp2std
2012-01-25 18:16:02 ----A---- C:\WINDOWS\system32\vsnp2std.dll
2012-01-25 18:16:02 ----A---- C:\WINDOWS\system32\rsnp2std.dll
2012-01-25 18:16:02 ----A---- C:\WINDOWS\system32\csnp2std.dll
2012-01-25 18:15:54 ----D---- C:\Documents and Settings\Honza\Data aplikací\InstallShield
2012-01-25 17:55:31 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2012-01-25 14:41:15 ----D---- C:\Documents and Settings\Honza\Data aplikací\Sports Interactive
2012-01-24 16:00:57 ----A---- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2012-01-24 16:00:54 ----D---- C:\Documents and Settings\Honza\Data aplikací\Spyware Terminator
2012-01-24 16:00:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2012-01-24 16:00:00 ----D---- C:\Program Files\Spyware Terminator
2012-01-24 15:52:08 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys
2012-01-24 15:24:41 ----D---- C:\Program Files\PC Connectivity Solution
2012-01-24 15:22:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\NokiaInstallerCache
2012-01-24 14:34:23 ----D---- C:\Program Files\Common Files\Web Solution Mart
2012-01-24 14:11:02 ----D---- C:\Documents and Settings\Honza\Data aplikací\Skype
2012-01-24 14:10:55 ----RD---- C:\Program Files\Skype
2012-01-24 14:10:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-01-13 22:33:04 ----D---- C:\WINDOWS\Globalization
2012-01-13 22:32:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\NokiaMusic
2012-01-13 21:41:57 ----HDC---- C:\WINDOWS\$NtUninstallWudf01009$
2012-01-13 21:41:15 ----D---- C:\Program Files\MSXML 4.0
2012-01-13 21:41:01 ----D---- C:\Program Files\Nokia
2012-01-13 21:21:13 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2012-01-13 21:21:02 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2012-01-13 21:20:59 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2012-01-13 21:19:31 ----D---- C:\Documents and Settings\Honza\Data aplikací\PC Suite
2012-01-13 21:19:31 ----D---- C:\Documents and Settings\Honza\Data aplikací\Nokia
2012-01-13 21:19:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2012-01-13 21:18:00 ----D---- C:\Program Files\Common Files\PCSuite
2012-01-13 21:17:51 ----D---- C:\Program Files\Common Files\Nokia
2012-01-13 21:17:45 ----D---- C:\Program Files\DIFX
2012-01-13 21:17:33 ----A---- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
2012-01-13 21:17:32 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys
2012-01-13 21:17:32 ----A---- C:\WINDOWS\system32\drivers\nmwcdnsu.sys
2012-01-13 21:17:31 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys
2012-01-13 21:17:30 ----A---- C:\WINDOWS\system32\drivers\ccdcmbo.sys
2012-01-13 21:17:27 ----A---- C:\WINDOWS\system32\wdfcoinstaller01009.dll
2012-01-13 21:17:27 ----A---- C:\WINDOWS\system32\nmwcdcocls.dll
2012-01-13 21:17:27 ----A---- C:\WINDOWS\system32\nmwcdcls.dll
2012-01-13 21:17:27 ----A---- C:\WINDOWS\system32\drivers\ccdcmb.sys
2012-01-13 21:17:27 ----A---- C:\WINDOWS\system32\ccdcmbwu.dll
2012-01-13 21:16:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2012-01-12 09:30:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2646524$
2012-01-12 09:30:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2012-01-12 00:07:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2012-01-12 00:05:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2012-01-12 00:03:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2012-01-09 19:27:53 ----A---- C:\WINDOWS\NeroDigital.ini

======List of files/folders modified in the last 1 month======

2012-02-07 12:29:51 ----D---- C:\WINDOWS\system32\drivers
2012-02-07 12:29:51 ----D---- C:\WINDOWS\system32
2012-02-07 12:29:51 ----D---- C:\WINDOWS
2012-02-07 12:28:04 ----HD---- C:\WINDOWS\inf
2012-02-07 12:27:18 ----SD---- C:\Documents and Settings\Honza\Data aplikací\Microsoft
2012-02-07 12:24:32 ----SHD---- C:\WINDOWS\Installer
2012-02-07 12:24:24 ----SD---- C:\WINDOWS\Tasks
2012-02-07 12:24:24 ----RD---- C:\Program Files
2012-02-07 12:24:22 ----D---- C:\WINDOWS\Temp
2012-02-07 10:31:51 ----D---- C:\WINDOWS\Prefetch
2012-02-07 10:13:52 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-02-07 10:09:45 ----D---- C:\WINDOWS\system32\CatRoot2
2012-02-07 10:06:53 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-02-07 10:05:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-02-07 10:05:41 ----D---- C:\WINDOWS\system32\CatRoot
2012-02-06 23:45:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2012-02-06 23:45:22 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2012-02-06 23:40:39 ----D---- C:\Program Files\Windows Media Player
2012-02-06 23:40:08 ----D---- C:\Program Files\QuickTime
2012-02-06 23:37:18 ----D---- C:\Program Files\Messenger
2012-02-06 23:12:13 ----D---- C:\Program Files\Internet Explorer
2012-02-06 23:12:08 ----D---- C:\Program Files\Movie Maker
2012-02-06 22:49:21 ----D---- C:\WINDOWS\WinSxS
2012-02-06 13:59:36 ----D---- C:\Documents and Settings\Honza\Data aplikací\Audacity
2012-02-01 21:26:20 ----D---- C:\Documents and Settings\Honza\Data aplikací\Adobe
2012-01-31 15:24:27 ----HD---- C:\WINDOWS\$hf_mig$
2012-01-30 18:50:55 ----HD---- C:\Program Files\InstallShield Installation Information
2012-01-26 13:33:22 ----A---- C:\WINDOWS\win.ini
2012-01-26 13:33:01 ----D---- C:\WINDOWS\security
2012-01-25 20:59:32 ----D---- C:\WINDOWS\system32\DirectX
2012-01-25 20:59:13 ----RSD---- C:\WINDOWS\assembly
2012-01-25 18:16:06 ----D---- C:\WINDOWS\twain_32
2012-01-25 18:16:02 ----D---- C:\Program Files\Common Files
2012-01-24 16:08:46 ----D---- C:\WINDOWS\system32\drivers\UMDF
2012-01-24 16:02:41 ----D---- C:\Program Files\Apple Software Update
2012-01-24 15:52:08 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-01-18 22:36:08 ----D---- C:\Program Files\Common Files\Adobe
2012-01-15 17:30:26 ----D---- C:\Documents and Settings\Honza\Data aplikací\vlc
2012-01-13 22:33:01 ----RSD---- C:\WINDOWS\Fonts
2012-01-13 21:42:06 ----A---- C:\WINDOWS\imsins.BAK
2012-01-12 09:25:56 ----D---- C:\WINDOWS\Microsoft.NET
2012-01-12 00:07:08 ----A---- C:\WINDOWS\system32\MRT.INI
2012-01-12 00:05:34 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 JGOGO;JMicron Hot-Plug Driver; C:\WINDOWS\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; C:\WINDOWS\system32\DRIVERS\jraid.sys [2006-10-30 43648]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-10-01 232512]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2011-09-26 304640]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2011-09-26 94848]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-10-08 12791488]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-07-27 83712]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2011-09-26 392960]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R4 AVGIDSDriverxpx;AVG9IDSDriver; \??\D:\Software\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSDriver.sys []
R4 AVGIDSFilterxpx;AVG9IDSFilter; \??\D:\Software\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSFilter.sys []
R4 AVGIDSShimxpx;AVG9IDSShim; \??\D:\Software\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys []
R4 AvgRkx86;avgrkx86.sys; C:\WINDOWS\System32\Drivers\avgrkx86.sys []
R4 AvgTdiX;AVG Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2011-11-01 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2011-11-01 23168]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2011-11-01 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2011-11-01 8576]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 SNP2STD;USB2.0 PC Camera (SNP2STD); C:\WINDOWS\system32\DRIVERS\snp2sxp.sys [2007-04-09 12039552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2011-11-01 8192]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2011-05-10 42496]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2011-11-01 8192]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-10-24 55144]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-10-08 298304]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-08 2253120]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2012-01-10 482992]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-12-08 821608]
S2 PowerManager;Power Manager; C:\WINDOWS\svchost.exe [2012-02-06 36352]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-01-04 718888]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#4 Příspěvek od **vyosek** » 07 úno 2012 12:45

Pustte tam jeste tenhle remover http://download.avg.com/filedir/util/su ... 1_1184.exe

nainstalujte Avast free http://www.avast.com/cs-cz/free-antivirus-download jelikoz bez zabezpeceni nejde byti

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

wehiq · #5 Příspěvek od **wehiq** » 07 úno 2012 13:19

Extras.txt

OTL Extras logfile created on: 7.2.2012 13:11:09 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Honza\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,44 Gb Available Physical Memory | 72,04% Memory free
3,85 Gb Paging File | 3,43 Gb Available in Paging File | 89,10% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 195,31 Gb Total Space | 148,02 Gb Free Space | 75,79% Space Free | Partition Type: NTFS
Drive D: | 736,19 Gb Total Space | 575,49 Gb Free Space | 78,17% Space Free | Partition Type: NTFS
Drive E: | 574,32 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: JAN-9A30C0C7535 | User Name: Honza | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-839522115-1275210071-2147167427-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Software\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "D:\Software\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "D:\Software\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Electronic Arts\EADM\Core.exe" = C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager
"D:\Hry\FIFA 12\Game\fifa.exe" = D:\Hry\FIFA 12\Game\fifa.exe:*:Enabled:FIFA 12 -- (Electronic Arts)
"D:\Hry\KONAMI\Pro Evolution Soccer 2012\pes2012.exe" = D:\Hry\KONAMI\Pro Evolution Soccer 2012\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012 -- (Konami Digital Entertainment Co., Ltd.)
"D:\Software\Readon Technology\Readon TV Movie Radio Player 7.5.0.0\internettv.exe" = D:\Software\Readon Technology\Readon TV Movie Radio Player 7.5.0.0\internettv.exe:*:Enabled:Readon TV Movie Radio Player -- (Readon Technology)
"D:\Hry\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" = D:\Hry\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club -- (Take-Two Interactive Software, Inc.)
"D:\Hry\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe" = D:\Hry\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV -- (Sony DADC Austria AG)
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"D:\Hry\Rockstar Games\Grand Theft Auto IV\GTAIV.exe" = D:\Hry\Rockstar Games\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Program Files\Spyware Terminator\SpywareTerminator.exe" = C:\Program Files\Spyware Terminator\SpywareTerminator.exe:*:Enabled:Spyware Terminator 2012 -- (Crawler.com)
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe" = C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator 2012 -- (Crawler.com)
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher
"D:\Hry\Ubisoft\Related Designs\ANNO 2070\Anno5.exe" = D:\Hry\Ubisoft\Related Designs\ANNO 2070\Anno5.exe:*:Enabled:ANNO 2070 -- ()
"D:\Hry\Ubisoft\Related Designs\ANNO 2070\AutoPatcher.exe" = D:\Hry\Ubisoft\Related Designs\ANNO 2070\AutoPatcher.exe:*:Enabled:ANNO 2070 -- (Related Designs Software)
"D:\Hry\Ubisoft\Related Designs\ANNO 2070\InitEngine.exe" = D:\Hry\Ubisoft\Related Designs\ANNO 2070\InitEngine.exe:*:Enabled:ANNO 2070 -- ()

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03840E8D-A75E-4C49-ADFC-09A867C7F943}" = Readon TV Movie Radio Player 7.5.0.0
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1" = Guitar Pro 6
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{25F61E72-AAA4-4607-95D2-1E5139C98FFB}" = Nokia_Multimedia_Common_Components_2_5
"{26A24AE4-039D-4CA4-87B4-2F83216026FF}" = Java(TM) 6 Update 27
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMB36X Raid Configurer
"{41313863-5170-4D7E-AD60-3CDF4DEBA81F}" = Nokia PC Suite
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AA68A73-DB9C-439D-9481-981C82BD008B}" = Nokia Connectivity Cable Driver
"{4FCB1267-7380-4EBA-9A6C-69809C6E8227}" = Nokia Music Player
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}" = VoiceOver Kit
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71828142-5A24-4BD0-97E7-976DA08CE6CF}" = The Sims™ 3 Luxusní bydlení – Kolekce
"{75438C0E-9925-412E-AD85-D0E71C6CE2ED}" = USB2.0 PC Camera (SN9C201&202)
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7B11296A-F894-449C-8DF6-6AAAA7D4D118}" = Kolekce The Sims™ 3 Moje městečko
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{889D48DA-457F-4C8B-9095-6458F2793B12}" = Nokia Software Updater
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AE850A4-B89D-4875-A159-B1B64D717EFB}" = OMSI - Der Omnibussimulator
"{A2AA4204-C05A-4013-888A-AD153139297F}" = PC Connectivity Solution
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Czech
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 285.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.95
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.5.20
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B48E264C-C8CD-4617-B0BE-46E977BAD694}" = ANNO 2070
"{B7DBF6E8-0D17-4BE4-853B-ACD6EFBD4A1F}" = iTunes
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D5B94160-4A07-4956-9C73-8C5EEFEF180F}" = OpenOffice.org 3.3
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E737A098-F161-4B6F-AF22-86AAE34F6FBD}" = Pro Evolution Soccer 2012
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"72A50F48CC5601190B9C4E74D81161693133E7F7" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9)
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AP Guitar Tuner 1.02" = AP Guitar Tuner 1.02
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.12 (Unicode)
"Cities XL 2012" = Cities XL 2012
"DAEMON Tools Lite" = DAEMON Tools Lite
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)
"FIFA 12 (c) EA_is1" = FIFA 12 (c) EA version 1
"Football Manager 2012_is1" = Football Manager 2012
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.8.0 (Basic)
"LAME for Audacity_is1" = LAME v3.98.3 for Audacity
"LastFM_is1" = Last.fm 1.5.4.27091
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 9.0.1 (x86 cs)" = Mozilla Firefox 9.0.1 (x86 cs)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia PC Suite" = Nokia PC Suite
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"P2PFilter" = P2PFilter 3.0.5
"Revo Uninstaller" = Revo Uninstaller 1.93
"TempoPerfect" = TempoPerfect Metronome Software
"The KMPlayer" = The KMPlayer (remove only)
"VLC media player" = VLC media player 1.1.11
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-839522115-1275210071-2147167427-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"FBW_549" = FBW_549
"Man 2011" = Man 2011

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 11.1.2012 13:07:50 | Computer Name = JAN-9A30C0C7535 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace GTAIV.exe, verze 1.0.2.0, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 12.1.2012 4:18:14 | Computer Name = JAN-9A30C0C7535 | Source = MsiInstaller | ID = 11328
Description = Produkt: Adobe Reader X (10.1.2) - Czech -- Chyba 1328.Chyba při aplikování
opravy na soubor D:\Config.Msi\PT48.tmp. Asi byl aktualizován jinými prostředky
a nelze ho již upravovat touto opravou. Více informací získáte od dodavatele opravy.
System Error: -1072807676

Error - 12.1.2012 4:18:17 | Computer Name = JAN-9A30C0C7535 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Adobe Reader X (10.1.2) produktu Adobe Reader X (10.1.2)
- Czech nebylo možné nainstalovat. Kód chyby: 1603. Instalační služba systému Windows
může vytvořit soubor protokolu s informacemi, které usnadní řešení potíží při instalaci
softwaru. Další informace naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error - 14.1.2012 15:54:12 | Computer Name = JAN-9A30C0C7535 | Source = Application Error | ID = 1000
Description = Chybující aplikace gtaiv.exe, verze 1.0.2.0, chybující modul gtaiv.exe,
verze 1.0.2.0, adresa chyby 0x0062ab33.

Error - 15.1.2012 7:34:26 | Computer Name = JAN-9A30C0C7535 | Source = MsiInstaller | ID = 11328
Description = Produkt: Adobe Reader X (10.1.2) - Czech -- Chyba 1328.Chyba při aplikování
opravy na soubor D:\Config.Msi\PT42.tmp. Asi byl aktualizován jinými prostředky
a nelze ho již upravovat touto opravou. Více informací získáte od dodavatele opravy.
System Error: -1072807676

Error - 15.1.2012 7:34:27 | Computer Name = JAN-9A30C0C7535 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Adobe Reader X (10.1.2) produktu Adobe Reader X (10.1.2)
- Czech nebylo možné nainstalovat. Kód chyby: 1603. Instalační služba systému Windows
může vytvořit soubor protokolu s informacemi, které usnadní řešení potíží při instalaci
softwaru. Další informace naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error - 18.1.2012 15:49:14 | Computer Name = JAN-9A30C0C7535 | Source = MsiInstaller | ID = 11328
Description = Produkt: Adobe Reader X (10.1.2) - Czech -- Chyba 1328.Chyba při aplikování
opravy na soubor D:\Config.Msi\PT42.tmp. Asi byl aktualizován jinými prostředky
a nelze ho již upravovat touto opravou. Více informací získáte od dodavatele opravy.
System Error: -1072807676

Error - 18.1.2012 15:49:16 | Computer Name = JAN-9A30C0C7535 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Adobe Reader X (10.1.2) produktu Adobe Reader X (10.1.2)
- Czech nebylo možné nainstalovat. Kód chyby: 1603. Instalační služba systému Windows
může vytvořit soubor protokolu s informacemi, které usnadní řešení potíží při instalaci
softwaru. Další informace naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error - 22.1.2012 6:07:53 | Computer Name = JAN-9A30C0C7535 | Source = MsiInstaller | ID = 11328
Description = Produkt: Adobe Reader X (10.1.2) - Czech -- Chyba 1328.Chyba při aplikování
opravy na soubor D:\Config.Msi\PT42.tmp. Asi byl aktualizován jinými prostředky
a nelze ho již upravovat touto opravou. Více informací získáte od dodavatele opravy.
System Error: -1072807676

Error - 22.1.2012 6:07:54 | Computer Name = JAN-9A30C0C7535 | Source = MsiInstaller | ID = 1024
Description = Aktualizaci Adobe Reader X (10.1.2) produktu Adobe Reader X (10.1.2)
- Czech nebylo možné nainstalovat. Kód chyby: 1603. Instalační služba systému Windows
může vytvořit soubor protokolu s informacemi, které usnadní řešení potíží při instalaci
softwaru. Další informace naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

[ System Events ]
Error - 7.2.2012 5:17:14 | Computer Name = JAN-9A30C0C7535 | Source = DCOM | ID = 10001
Description = Nelze spustit DCOM Server: {88F5E7B2-09B9-471E-895A-25247585905C}
jako /. Došlo k chybě: %2 při provádění příkazu: "C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.1\ComUpdatus.exe"
-Embedding

Error - 7.2.2012 5:25:14 | Computer Name = JAN-9A30C0C7535 | Source = DCOM | ID = 10001
Description = Nelze spustit DCOM Server: {88F5E7B2-09B9-471E-895A-25247585905C}
jako /. Došlo k chybě: %2 při provádění příkazu: "C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.1\ComUpdatus.exe"
-Embedding

Error - 7.2.2012 5:41:14 | Computer Name = JAN-9A30C0C7535 | Source = DCOM | ID = 10001
Description = Nelze spustit DCOM Server: {88F5E7B2-09B9-471E-895A-25247585905C}
jako /. Došlo k chybě: %2 při provádění příkazu: "C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.1\ComUpdatus.exe"
-Embedding

Error - 7.2.2012 6:13:14 | Computer Name = JAN-9A30C0C7535 | Source = DCOM | ID = 10001
Description = Nelze spustit DCOM Server: {88F5E7B2-09B9-471E-895A-25247585905C}
jako /. Došlo k chybě: %2 při provádění příkazu: "C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.1\ComUpdatus.exe"
-Embedding

Error - 7.2.2012 7:13:14 | Computer Name = JAN-9A30C0C7535 | Source = DCOM | ID = 10001
Description = Nelze spustit DCOM Server: {88F5E7B2-09B9-471E-895A-25247585905C}
jako /. Došlo k chybě: %2 při provádění příkazu: "C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.1\ComUpdatus.exe"
-Embedding

Error - 7.2.2012 8:06:41 | Computer Name = JAN-9A30C0C7535 | Source = DCOM | ID = 10001
Description = Nelze spustit DCOM Server: {88F5E7B2-09B9-471E-895A-25247585905C}
jako /. Došlo k chybě: %2 při provádění příkazu: "C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.1\ComUpdatus.exe"
-Embedding

Error - 7.2.2012 8:07:41 | Computer Name = JAN-9A30C0C7535 | Source = DCOM | ID = 10001
Description = Nelze spustit DCOM Server: {88F5E7B2-09B9-471E-895A-25247585905C}
jako /. Došlo k chybě: %2 při provádění příkazu: "C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.1\ComUpdatus.exe"
-Embedding

Error - 7.2.2012 8:09:41 | Computer Name = JAN-9A30C0C7535 | Source = DCOM | ID = 10001
Description = Nelze spustit DCOM Server: {88F5E7B2-09B9-471E-895A-25247585905C}
jako /. Došlo k chybě: %2 při provádění příkazu: "C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.1\ComUpdatus.exe"
-Embedding

Error - 7.2.2012 8:13:41 | Computer Name = JAN-9A30C0C7535 | Source = DCOM | ID = 10001
Description = Nelze spustit DCOM Server: {88F5E7B2-09B9-471E-895A-25247585905C}
jako /. Došlo k chybě: %2 při provádění příkazu: "C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.1\ComUpdatus.exe"
-Embedding

Error - 7.2.2012 8:16:52 | Computer Name = JAN-9A30C0C7535 | Source = Service Control Manager | ID = 7034
Description = Služba Power Manager byla neočekávaně ukončena. Tento stav nastal
již 1krát.

< End of report >

OTL.txt

OTL logfile created on: 7.2.2012 13:11:09 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Honza\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,44 Gb Available Physical Memory | 72,04% Memory free
3,85 Gb Paging File | 3,43 Gb Available in Paging File | 89,10% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 195,31 Gb Total Space | 148,02 Gb Free Space | 75,79% Space Free | Partition Type: NTFS
Drive D: | 736,19 Gb Total Space | 575,49 Gb Free Space | 78,17% Space Free | Partition Type: NTFS
Drive E: | 574,32 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: JAN-9A30C0C7535 | User Name: Honza | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.02.07 13:08:29 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Honza\Plocha\OTL.exe
PRC - [2012.01.13 16:27:29 | 000,924,632 | ---- | M] (Mozilla Corporation) -- D:\Software\Mozilla Firefox\firefox.exe
PRC - [2012.01.10 05:14:40 | 000,482,992 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\st_rsser.exe
PRC - [2011.10.08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.09.15 13:21:54 | 000,675,840 | ---- | M] (Sonix) -- C:\WINDOWS\vsnp2std.exe
PRC - [2001.08.24 19:00:00 | 000,036,352 | --S- | M] (Microsoft Corporation) -- C:\WINDOWS\svchost.exe

========== Modules (No Company Name) ==========

MOD - [2012.01.13 16:27:28 | 002,124,760 | ---- | M] () -- D:\Software\Mozilla Firefox\mozjs.dll
MOD - [2011.11.21 21:38:39 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011.09.27 06:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011.09.27 06:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2012.01.10 05:14:40 | 000,482,992 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files\Spyware Terminator\st_rsser.exe -- (ST2012_Svc)
SRV - [2012.01.04 13:32:36 | 000,718,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011.10.08 05:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2001.08.24 19:00:00 | 000,036,352 | --S- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\svchost.exe -- (PowerManager)

========== Driver Services (SafeList) ==========

DRV - [2011.11.01 10:07:26 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011.11.01 10:07:26 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011.11.01 10:07:26 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011.11.01 10:07:24 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2011.11.01 10:07:24 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011.11.01 10:07:24 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2011.10.01 08:45:20 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011.09.26 15:36:33 | 000,392,960 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2011.06.21 11:24:06 | 000,032,768 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007.04.09 11:38:06 | 012,039,552 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\snp2sxp.sys -- (SNP2STD) USB2.0 PC Camera (SNP2STD)
DRV - [2006.10.30 04:31:58 | 000,043,648 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\jraid.sys -- (JRAID)
DRV - [2006.07.27 02:49:10 | 000,083,712 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2006.02.07 12:52:58 | 000,006,912 | R--- | M] (JMicron ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\JGOGO.sys -- (JGOGO)
DRV - [2004.08.13 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-839522115-1275210071-2147167427-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-839522115-1275210071-2147167427-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: D:\Software\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: D:\Software\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: D:\Software\Mozilla Firefox\components [2012.01.13 16:27:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: D:\Software\Mozilla Firefox\plugins

[2011.09.26 15:13:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Extensions
[2012.01.16 18:33:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Honza\Data aplikací\Mozilla\Firefox\Profiles\6toyepp2.default\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\HONZA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\6TOYEPP2.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI

O1 HOSTS File: ([2006.03.02 13:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKU\S-1-5-21-839522115-1275210071-2147167427-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [JMB36X Configure] C:\WINDOWS\System32\JMRaidSetup.exe (JMicron Technology Corp.)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe File not found
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup File not found
O4 - HKLM..\Run: [NSU_agent] "C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe" File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime File not found
O4 - HKLM..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe (Sonix)
O4 - HKLM..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com)
O4 - HKLM..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe (Crawler.com)
O4 - HKLM..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe ()
O4 - HKLM..\RunOnce: [AvgUninstallURL] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-839522115-1275210071-2147167427-1005..\RunOnce: [avg_spchecker] "D:\Software\AVG\AVG9\Notification\SPChecker1.exe" /start File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-839522115-1275210071-2147167427-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-839522115-1275210071-2147167427-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_27)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{343F9DF3-9772-4058-A65D-CA69FBDF6E18}: DhcpNameServer = 10.0.0.138
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Honza\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Honza\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.09.26 14:20:07 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006.03.02 13:00:00 | 000,000,112 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{3ed35c35-e84c-11e0-a642-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{3ed35c35-e84c-11e0-a642-806d6172696f}\Shell\AutoRun\command - "" = I:\Bin\Assetup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2012.02.07 13:08:27 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Honza\Plocha\OTL.exe
[2012.02.07 13:03:51 | 001,090,912 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Documents and Settings\Honza\Plocha\avg_remover_stf_x86_2011_1184.exe
[2012.02.07 12:23:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Nabídka Start\Programy\Revo Uninstaller
[2012.02.07 12:22:42 | 002,653,528 | ---- | C] (VS Revo Group Ltd.) -- C:\Documents and Settings\Honza\Plocha\revosetup.exe
[2012.02.07 10:43:53 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.02.07 10:43:53 | 000,000,000 | ---D | C] -- C:\rsit
[2012.02.07 10:31:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2012.02.07 10:29:14 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.02.07 10:29:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Honza\Nabídka Start\Programy\Nástroje pro správu
[2012.02.06 23:18:50 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2012.02.06 23:11:47 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2012.02.06 22:50:16 | 000,000,000 | -H-D | C] -- C:\$AVG
[2012.02.06 22:49:26 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2012.02.06 22:49:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\avg9
[2012.02.06 22:45:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Plocha\AVG Internet Security 9.0 + serial [crack] licence do 2018
[2012.01.25 18:16:02 | 000,151,552 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2std.dll
[2012.01.25 18:16:02 | 000,077,824 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2std.dll
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2012.02.07 13:12:18 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.02.07 13:10:42 | 064,207,032 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\setup_av_free.exe
[2012.02.07 13:09:56 | 000,441,224 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.02.07 13:09:56 | 000,437,756 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.02.07 13:09:56 | 000,081,864 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.02.07 13:09:56 | 000,071,260 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.02.07 13:08:29 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Honza\Plocha\OTL.exe
[2012.02.07 13:05:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.02.07 13:03:52 | 001,090,912 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Documents and Settings\Honza\Plocha\avg_remover_stf_x86_2011_1184.exe
[2012.02.07 12:23:15 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\Revo Uninstaller.lnk
[2012.02.07 12:22:49 | 002,653,528 | ---- | M] (VS Revo Group Ltd.) -- C:\Documents and Settings\Honza\Plocha\revosetup.exe
[2012.02.07 10:43:14 | 000,817,735 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\RSIT.exe
[2012.02.06 22:40:03 | 108,608,018 | ---- | M] () -- C:\Documents and Settings\Honza\Plocha\AVG Internet Security 9.0 + serial [crack] licence do 2018.rar
[2012.02.06 22:37:08 | 000,049,152 | ---- | M] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.02.05 20:11:48 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.02.07 13:12:18 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.02.07 13:08:13 | 064,207,032 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\setup_av_free.exe
[2012.02.07 12:23:15 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\Revo Uninstaller.lnk
[2012.02.07 10:43:13 | 000,817,735 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\RSIT.exe
[2012.02.06 22:35:53 | 108,608,018 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\AVG Internet Security 9.0 + serial [crack] licence do 2018.rar
[2012.01.25 18:16:06 | 000,293,376 | ---- | C] () -- C:\WINDOWS\tsnp2std.exe
[2012.01.25 18:16:06 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2std.ini
[2012.01.25 18:16:04 | 000,025,472 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncamd.sys
[2012.01.25 18:16:03 | 012,039,552 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2sxp.sys
[2012.01.24 16:00:57 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2012.01.09 19:27:53 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011.12.25 19:11:22 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.12.03 00:25:04 | 000,854,824 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2011.10.29 13:00:48 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2011.09.28 23:06:29 | 000,065,076 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2011.09.27 17:44:08 | 000,049,152 | ---- | C] () -- C:\Documents and Settings\Honza\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.09.26 22:37:49 | 000,000,078 | ---- | C] () -- C:\WINDOWS\hms_odpocet.ini
[2011.09.26 17:26:47 | 000,017,764 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2011.09.26 16:11:36 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.09.26 16:08:39 | 000,126,112 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.09.26 15:20:38 | 000,286,052 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011.09.26 15:20:38 | 000,286,052 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011.09.26 15:20:38 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011.09.26 15:20:28 | 002,130,002 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2011.09.26 14:27:02 | 000,014,682 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2011.09.26 14:27:02 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2011.09.26 14:26:46 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2011.09.26 14:22:27 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.09.26 14:17:08 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008.10.22 05:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2006.03.02 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006.03.02 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006.03.02 13:00:00 | 000,441,224 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006.03.02 13:00:00 | 000,437,756 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2006.03.02 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006.03.02 13:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2006.03.02 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006.03.02 13:00:00 | 000,081,864 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2006.03.02 13:00:00 | 000,071,260 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006.03.02 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006.03.02 13:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2006.03.02 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006.03.02 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006.03.02 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006.03.02 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006.03.02 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2012.02.07 12:29:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\avg9
[2012.02.06 23:18:50 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2011.10.01 08:44:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.09.27 09:26:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2011.11.04 20:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Guitar Pro 6
[2012.01.13 21:40:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2011.10.08 17:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\KONAMI
[2011.11.28 19:04:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Last.fm
[2012.01.01 14:47:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NCH Swift Sound
[2012.01.24 15:22:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NokiaInstallerCache
[2012.01.13 22:32:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NokiaMusic
[2012.01.13 21:41:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2011.10.29 13:04:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Readon
[2012.02.07 13:06:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2011.09.26 17:15:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012.02.06 13:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Audacity
[2011.10.01 08:47:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\DAEMON Tools Lite
[2011.11.04 20:59:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Guitar Pro 6
[2012.01.13 22:33:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Nokia
[2011.10.02 09:20:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\OpenOffice.org
[2012.01.24 15:15:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\PC Suite
[2012.01.25 14:41:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Sports Interactive
[2012.01.24 16:00:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Spyware Terminator
[2012.01.25 21:00:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Ubisoft
[2012.01.30 18:38:31 | 000,000,302 | ---- | M] () -- C:\WINDOWS\Tasks\tempoperfectShakeIcon.job

========== Purity Check ==========

========== Custom Scans ==========

< >

< >

< MD5 for: AGP440.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\agp440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006.03.02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\atapi.sys
[2006.03.02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\autochk.exe
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2006.03.02 13:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 04:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\eventlog.dll
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006.03.02 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 07:52:24 | 001,070,592 | ---- | M] (Microsoft Corporation) MD5=E5D09FF94F5C6D1AEC17B485D9FAAA46 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2008.04.14 04:22:22 | 001,070,592 | ---- | M] (Microsoft Corporation) MD5=E5D09FF94F5C6D1AEC17B485D9FAAA46 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\explorer.exe

< MD5 for: HAL.DLL >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 23:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 23:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 19:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\hal.dll
[2006.03.02 13:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 23:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
[2008.04.13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.24 10:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2006.03.02 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\isapnp.sys
[2006.03.02 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\isapnp.sys
[2008.04.14 06:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 03:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\isapnp.sys
[2008.04.14 06:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2006.03.02 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 04:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\ndis.sys
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006.03.02 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009.02.06 19:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009.02.06 19:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2006.03.02 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2006.03.02 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2006.03.02 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 07:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 04:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\smss.exe
[2008.04.14 07:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2001.08.24 19:00:00 | 000,036,352 | --S- | M] (Microsoft Corporation) MD5=9E3C13B6556D5636B745D3E466D47467 -- C:\WINDOWS\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB2509553$\tcpip.sys
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\userinit.exe
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2006.03.02 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2006.03.02 13:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 04:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\AppPatch\*.tmp files -> C:\WINDOWS\AppPatch\*.tmp -> ]
[12 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\Globalization\*.tmp files -> C:\WINDOWS\Globalization\*.tmp -> ]
[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[2 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012.02.01 21:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Adobe
[2011.11.19 19:35:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Apple Computer
[2012.02.06 13:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Audacity
[2011.10.01 08:47:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\DAEMON Tools Lite
[2011.11.04 20:59:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Guitar Pro 6
[2011.09.26 14:25:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Identities
[2012.01.25 18:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\InstallShield
[2011.09.26 15:19:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Macromedia
[2012.02.07 12:29:51 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Honza\Data aplikací\Microsoft
[2011.09.26 15:13:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Mozilla
[2012.01.13 22:33:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Nokia
[2011.11.05 18:07:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\NVIDIA
[2011.10.02 09:20:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\OpenOffice.org
[2012.01.24 15:15:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\PC Suite
[2012.02.06 23:06:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Skype
[2012.01.25 14:41:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Sports Interactive
[2012.01.24 16:00:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Spyware Terminator
[2011.09.28 12:47:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Sun
[2012.01.25 21:00:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\Ubisoft
[2012.01.15 17:30:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\vlc
[2011.09.26 17:21:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Honza\Data aplikací\WinRAR

< %APPDATA%\*.exe /s >
[2011.10.29 12:58:30 | 000,005,430 | R--- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{03840E8D-A75E-4C49-ADFC-09A867C7F943}\_532EEF936FFAE0ABE2522D.exe
[2011.10.29 12:58:30 | 000,005,430 | R--- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{03840E8D-A75E-4C49-ADFC-09A867C7F943}\_A290953C7595C4E6A1FDBA.exe
[2012.01.13 21:41:12 | 000,053,248 | R--- | M] (Flexera Software, Inc.) -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{889D48DA-457F-4C8B-9095-6458F2793B12}\ARPPRODUCTICON.exe
[2012.01.13 21:41:12 | 000,049,152 | R--- | M] (Flexera Software, Inc.) -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{889D48DA-457F-4C8B-9095-6458F2793B12}\NewShortcut2_1C7B7089989A424FB39D41A32581C775.exe
[2012.01.13 21:41:12 | 000,073,728 | R--- | M] (Flexera Software, Inc.) -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{889D48DA-457F-4C8B-9095-6458F2793B12}\NewShortcut46_74B9CE5DF1F4447F982DCA29A461B529.exe
[2012.01.13 21:41:12 | 000,073,728 | R--- | M] (Flexera Software, Inc.) -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{889D48DA-457F-4C8B-9095-6458F2793B12}\NewShortcut47_74B9CE5DF1F4447F982DCA29A461B529.exe
[2012.01.13 21:41:12 | 000,049,152 | R--- | M] (Flexera Software, Inc.) -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{889D48DA-457F-4C8B-9095-6458F2793B12}\Uninstall_QA_OTI_H_FE5D756F71E147C4972AD6775344B40B.exe
[2011.09.26 21:05:38 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Honza\Data aplikací\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2011.09.26 16:07:56 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2011.09.26 16:07:55 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2011.09.26 16:07:55 | 000,499,712 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.02.07 13:09:56 | 000,081,864 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2012.02.07 13:09:56 | 000,071,260 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2012.02.07 13:09:56 | 000,437,756 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2012.02.07 13:09:56 | 000,441,224 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2012.02.07 13:09:56 | 001,046,078 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2012.02.05 20:11:48 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 07:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.02.07 13:12:18 | 000,000,512 | ---- | M] () MD5=3B41B75228F733CB87DEFD39D0575561 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2012.02.06 22:40:03 | 108,608,018 | ---- | M] () -- \Documents and Settings\Honza\Plocha\AVG Internet Security 9.0 + serial [crack] licence do 2018.rar
[2012.02.06 22:47:39 | 000,000,630 | ---- | M] () -- \Documents and Settings\Honza\Recent\AVG Internet Security 9.0 + serial [crack] licence do 2018 (2).lnk
[2012.02.06 22:40:03 | 000,000,728 | ---- | M] () -- \Documents and Settings\Honza\Recent\AVG Internet Security 9.0 + serial [crack] licence do 2018.lnk
[2012.01.20 16:18:33 | 000,000,657 | ---- | M] () -- \Documents and Settings\Honza\Recent\CITIES XL 2012 + CZ + Crack.lnk
[2012.01.20 13:07:55 | 000,000,603 | ---- | M] () -- \Documents and Settings\Honza\Recent\CITIES XL 2012 + CZ + Crack.part5.lnk

< *keygen* /s >

< *loader* /s >
[2011.11.11 12:20:12 | 000,112,128 | ---- | M] () -- \Program Files\Common Files\Nokia\Tss\ProductApiLoader\ta_productapiloader.dll
[2006.03.02 13:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 23:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 23:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 04:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\dmloader.dll
[2008.04.13 19:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\osloader.exe
[2008.04.13 19:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\osloader.ntd
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[7 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]

========== Files - Unicode (All) ==========
[2011.11.04 20:53:50 | 000,000,000 | ---D | M](C:\Documents and Settings\Honza\Data aplikac?) -- C:\Documents and Settings\Honza\Data aplikac�
(C:\Documents and Settings\Honza\Data aplikac?) -- C:\Documents and Settings\Honza\Data aplikac�

< End of report >

#6 Příspěvek od **vyosek** » 07 úno 2012 14:07

K tomu cracknutemu AVG asi nema cenu se vyjadrovat ze

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
O3 - HKU\S-1-5-21-839522115-1275210071-2147167427-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKU\S-1-5-21-839522115-1275210071-2147167427-1005..\RunOnce: [avg_spchecker] "D:\Software\AVG\AVG9\Notification\SPChecker1.exe" /start File not found
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O33 - MountPoints2\{3ed35c35-e84c-11e0-a642-806d6172696f}\Shell - "" = AutoRun
[2012.02.07 13:03:51 | 001,090,912 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Documents and Settings\Honza\Plocha\avg_remover_stf_x86_2011_1184.exe
[2012.02.06 22:49:26 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2012.02.06 22:49:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\avg9
[2012.02.06 22:45:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Honza\Plocha\AVG Internet Security 9.0 + serial [crack] licence do 2018
[2012.02.07 13:03:52 | 001,090,912 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Documents and Settings\Honza\Plocha\avg_remover_stf_x86_2011_1184.exe
[2012.02.06 22:35:53 | 108,608,018 | ---- | C] () -- C:\Documents and Settings\Honza\Plocha\AVG Internet Security 9.0 + serial [crack] licence do 2018.rar
[2012.02.07 12:29:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\avg9
[2011.09.26 17:15:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\AppPatch\*.tmp files -> C:\WINDOWS\AppPatch\*.tmp -> ]
[12 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\Globalization\*.tmp files -> C:\WINDOWS\Globalization\*.tmp -> ]
[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[2 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
""=-
"ApnUpdater"=-
"SunJavaUpdateSched"=-
"QuickTime Task"=-
"NeroFilterCheck"=-
"iTunesHelper"=-
"NSU_agent"=-
"NokiaMServer"=-
"SpywareTerminatorShield"=-
"SpywareTerminatorUpdater"=-

:files
C:\Program Files\Ask.com
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\WINDOWS\tasks\tempoperfectShakeIcon.job
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

wehiq · #7 Příspěvek od **wehiq** » 07 úno 2012 14:32

to AVG už je pryč..

All processes killed
========== OTL ==========
Service AppMgmt stopped successfully!
Service AppMgmt deleted successfully!
Registry value HKEY_USERS\S-1-5-21-839522115-1275210071-2147167427-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_USERS\S-1-5-21-839522115-1275210071-2147167427-1005\Software\Microsoft\Windows\CurrentVersion\RunOnce\\avg_spchecker deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{FB5F1910-F110-11d2-BB9E-00C04F795683}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FB5F1910-F110-11d2-BB9E-00C04F795683}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3ed35c35-e84c-11e0-a642-806d6172696f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3ed35c35-e84c-11e0-a642-806d6172696f}\ not found.
C:\Documents and Settings\Honza\Plocha\avg_remover_stf_x86_2011_1184.exe moved successfully.
C:\Program Files\AVG folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\avg9\Log folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\avg9 folder moved successfully.
C:\Documents and Settings\Honza\Plocha\AVG Internet Security 9.0 + serial [crack] licence do 2018 folder moved successfully.
File C:\Documents and Settings\Honza\Plocha\avg_remover_stf_x86_2011_1184.exe not found.
C:\Documents and Settings\Honza\Plocha\AVG Internet Security 9.0 + serial [crack] licence do 2018.rar moved successfully.
Folder C:\Documents and Settings\All Users\Data aplikací\avg9\ not found.
C:\Documents and Settings\All Users\Data aplikací\{429CAD59-35B1-4DBC-BB6D-1DB246563521}\x86\x86 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\{429CAD59-35B1-4DBC-BB6D-1DB246563521}\x86 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\{429CAD59-35B1-4DBC-BB6D-1DB246563521} folder moved successfully.
C:\WINDOWS\002737_.tmp deleted successfully.
C:\WINDOWS\SET21.tmp deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET123F.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET124A.tmp deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP124.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP18C.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP202.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP268.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP345.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP365.tmp\mscorlib.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP365.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP37C.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP392.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3E6.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP463.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4BD.tmp\mscorlib.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4BD.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP83.tmp folder deleted successfully.
C:\WINDOWS\Globalization\tl-PH-Nokia.tmp0 deleted successfully.
C:\WINDOWS\system32\CONFIG.TMP deleted successfully.
C:\WINDOWS\system32\SET1253.tmp deleted successfully.
C:\WINDOWS\system32\SET194.tmp deleted successfully.
C:\WINDOWS\system32\SET196.tmp deleted successfully.
C:\WINDOWS\system32\SET19A.tmp deleted successfully.
C:\WINDOWS\system32\SET1A2.tmp deleted successfully.
C:\WINDOWS\system32\SET1E9.tmp deleted successfully.
C:\WINDOWS\Temp\e4294c40-bbfb-4661-9ebc-555e387c28ed.tmp deleted successfully.
C:\WINDOWS\Temp\WDFAA.tmp\Microsoft User-Mode Driver Framework Install-v1.9-WinXP-Srv03.exe deleted successfully.
C:\WINDOWS\Temp\WDFAA.tmp folder deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NSU_agent deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NokiaMServer deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SpywareTerminatorShield deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SpywareTerminatorUpdater deleted successfully.
========== FILES ==========
File\Folder C:\Program Files\Ask.com not found.
C:\WINDOWS\tasks\AppleSoftwareUpdate.job moved successfully.
File\Folder C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job not found.
C:\WINDOWS\tasks\tempoperfectShakeIcon.job moved successfully.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Honza
->Temp folder emptied: 401315670 bytes
->Temporary Internet Files folder emptied: 3158003 bytes
->Java cache emptied: 4564992 bytes
->FireFox cache emptied: 366234919 bytes
->Flash cache emptied: 2395 bytes

User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 81510879 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 24334212 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 133682844 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 7280293 bytes

Total Files Cleaned = 975,00 mb

[EMPTYFLASH]

User: All Users

User: Default User

User: Honza
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.31.0 log created on 02072012_142516

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

#8 Příspěvek od **vyosek** » 07 úno 2012 14:33

Vsak ja nerikam ze tam je ted, ale bylo

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://www.slunecnice.cz/sw/ccleaner/
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Doporucuji provest defragmentaci disku

Nejjednodussi (ale nejmene ucinny) zpusob je pomoci utility ve windowsech
- Kliknete na Tento pocitac, dale na disk kliknete pravym tlacitkem, vyberte Vlastnosti
- prepnete se do zalozky Nastroje
- Nyni vidite pomucky Defragmentace - spustte ji kliknutim na Defragmentovat
- Toto provedte se vsemi disky
Dalsi moznosti (a mnou doporucenou) je pres programek Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
- Program stahnete, nainstalujte (dejte fajfku pryc u yahoo toolbaru) a spustte
- Kliknete na Analyzovat
- Pokud je ve sloupci Fragmentováno vice jak 5%, doporucuji provest defragmentaci (klik na Defragmentovat)
- Postup provedte se vsemi disky
Posledni moznost je pres jednoduchy programek JKDefrag http://www.stahuj.centrum.cz/utility_a_ ... /jkdefrag/
- Vyhodou programku je, ze se neinstaluje
- Staci tedy jen stahnout dle verze vaseho OS a rozbalit
- Nasledne spustit pomoci souboru JKDefrag pripadne JKDefrag64
- Probehne analyza disku a nasledne i defragmentace

Napiste co PC

wehiq · #9 Příspěvek od **wehiq** » 09 úno 2012 12:18

Defragmentaci nechám dělat přes noc, zatím je to rychlejší, ale pořád ne standard. Asi budu muset odinstalovat Avast, protože mi blokuje hrozně moc neškodných programů, jako např. Skype.. Ale AVG to dělalo taky, tak nevím čím to je..

#10 Příspěvek od **vyosek** » 09 úno 2012 16:12

Jak to myslite blokuje

wehiq · #11 Příspěvek od **wehiq** » 09 úno 2012 23:15

Prostě mi to oznamuje že jsou tam viry a přesouvá to spouštěcí .exe soubory do virové truhly, tudíž ty programy pak nejdou..

#12 Příspěvek od **vyosek** » 09 úno 2012 23:18

Muzete mi sem dat nejake hlaseni, pripadne screen z truhly...muze tam byt tzv. fileinfector

wehiq · #13 Příspěvek od **wehiq** » 11 úno 2012 11:06

Tady je screen z truhly Avastu

http://imageshack.us/photo/my-images/209/screenxg.jpg/

#14 Příspěvek od **vyosek** » 11 úno 2012 18:04

No jo, presne jak jsem tusil - je tam file infector

Uvidime jak moc je rozlezly a zda-li pujde lecit

Udelejte sken AvpToolem http://forum.viry.cz/viewtopic.php?f=29&t=58179

wehiq · #15 Příspěvek od **wehiq** » 13 úno 2012 08:30

Ten scan je hrozně dlouhý, tak ho přikládám v souboru

http://leteckaposta.cz/531983866

VIRY.CZ

Pomalý PC

Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC

Re: Pomalý PC