preventivka

Zpráva

macc · #1 Příspěvek od **macc** » 25 čer 2012 14:12

Dobrý den,prosim o kontrolu logu,děkuji

Logfile of random's system information tool 1.09 (written by random/random)
Run by dom at 2012-06-25 15:08:40
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 46 GB (69%) free of 66 GB
Total RAM: 2047 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:08:49, on 25.6.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\WINDOWS\system32\AEADISRV.EXE
C:\Program Files\Comodo\Dragon\dragon_updater.exe
C:\Program Files\FarStone\RestoreIT 7\IBP\fsloader.exe
C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe
C:\Program Files\FarStone\RestoreIT 7\IBP\VBPTask.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe
C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
C:\Program Files\NovaStor\NovaStor NovaBACKUP\nsService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\dom\Plocha\RSIT.exe
C:\Program Files\trend micro\dom.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [EaseUs Watch] "C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: Steganos Password Manager - {024538B9-3F39-49FF-9503-975F743210FA} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra 'Tools' menuitem: &KeyScrambler Options - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://*.google-analytics.com
O15 - Trusted Zone: http://*.novastor.com
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\WINDOWS\system32\AEADISRV.EXE
O23 - Service: Backup Client Agent Service - NovaStor Corporation - C:\Program Files\NovaStor\NovaStor NovaBACKUP\ManagementServer.Agent.Service.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
O23 - Service: DriveClone Network Client IBP - Unknown owner - C:\Program Files\FarStone\RestoreIT 7\IBP\fsloader.exe
O23 - Service: EaseUS Agent - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Guard Agent - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iolo System Service (ioloSystemService) - iolo technologies, LLC - C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NovaStor NovaBACKUP Backup/Copy Engine (nsService) - NovaStor - C:\Program Files\NovaStor\NovaStor NovaBACKUP\nsService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 6190 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{D0F7BD77-CCB4-4A6F-9796-3E0F6A6FD883}.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\dom\Data aplikací\Mozilla\Firefox\Profiles\m2020q5z.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.257 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi]
"Description"=ZoneAlarm LTD Toolbar Api
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.0]
"Description"=
"Path"=C:\WINDOWS\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mozilla.zeniko.ch/SumatraPDF_Browser_Plugin]
"Description"=SumatraPDF Browser Plugin
"Path"=C:\Program Files\SumatraPDF\npPdfViewer.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\dom\Data aplikací\Mozilla\Firefox\Profiles\m2020q5z.default\extensions\
firefox@ghostery.com
keyscrambler@qfx.software.corporation

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2B9F5787-88A5-4945-90E7-C4B18563BC5E}]
KeyScramblerBHO Class - C:\Program Files\KeyScrambler\KeyScramblerIE.dll [2012-06-15 918160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-06-15 453104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-06-15 157680]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2012-03-11 6749512]
"EaseUs Watch"=C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe [2011-12-22 70792]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2012-03-07 3117344]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTimounterMonitor]
C:\Program Files\Seagate\DiscWizard\TimounterMonitor.exe [2009-11-02 906288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AntiLogger10_Uninstall1]
C:\WINDOWS\system32\winlogon.exe [2008-04-14 507904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Automatic Backup Manager]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cobian Backup 10 Interface]
C:\Program Files\Cobian Backup 10\cbInterface.exe [2010-09-23 3154432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-04-17 3671872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DiscWizardMonitor.exe]
C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe [2009-11-02 1346000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DriverScanner]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUs Tray]
C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe [2012-03-15 744584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUs Watch]
C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe [2011-12-22 70792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\High Definition Audio Property Page Shortcut]
C:\WINDOWS\system32\HDAShCut.exe [2004-10-27 61952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iolo Startup]
C:\Program Files\iolo\Common\Lib\ioloLManager.exe [2012-04-17 938680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KeePass 2 PreLoad]
C:\Program Files\KeePass Password Safe 2\KeePass.exe [2012-05-01 1895424]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware]
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2012-04-04 462408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2012-05-15 15504192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
NvMCTray.dll,NvTaskbarInit -login []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2012-05-15 1634112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seagate Scheduler2 Service]
C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe [2009-11-02 136544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
C:\Program Files\Analog Devices\SoundMAX\smax4.exe [2005-09-07 716800]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2012-01-15 1310720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2012-05-21 3905920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TB]
C:\Program Files\EaseUS\Todo Backup\bin\XSnapShotTip.exe [2011-12-22 243336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^AdFender.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^alternative flash player auto-updater.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^NovaBACKUP Tray Control.lnk]
C:\PROGRA~1\NovaStor\NOVAST~1\nsCtrl.exe [2011-11-11 222352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dom^Nabídka Start^Programy^Po spuštění^_uninst_14916961.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dom^Nabídka Start^Programy^Po spuštění^_uninst_15433183.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dom^Nabídka Start^Programy^Po spuštění^_uninst_17665752.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dom^Nabídka Start^Programy^Po spuštění^_uninst_36775014.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dom^Nabídka Start^Programy^Po spuštění^_uninst_43822013.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dom^Nabídka Start^Programy^Po spuštění^_uninst_87173346.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"SkypeUpdate"=2
"SharedAccess"=2
"SgtSch2Svc"=3
"RasMan"=3
"nvUpdatusService"=2
"NVSvc"=2
"JavaQuickStarterService"=2
"helpsvc"=2
"ERSvc"=2
"EaseUS Agent"=2
"cbVSCService"=2
"AdobeFlashPlayerUpdateSvc"=3
"DragonUpdater"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\prwntdrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro36]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro36.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ioloSystemService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PFNet]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\prwntdrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=383
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\EASEUS\Todo Backup\bin\TbService.exe"="C:\Program Files\EASEUS\Todo Backup\bin\TbService.exe:*:Enabled:TbService.exe"
"C:\Program Files\EASEUS\Todo Backup\bin\TBConsoleUI.exe"="C:\Program Files\EASEUS\Todo Backup\bin\TBConsoleUI.exe:*:Enabled:Local TBConsoleUI.exe"
"C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe"="C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe:*:Enabled:Agent.exe"
"D:\Hry instal\PES2012\pes2012.exe"="D:\Hry instal\PES2012\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012"
"C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\Program Files\RapidSolution\Audials 9\Audials.exe"="C:\Program Files\RapidSolution\Audials 9\Audials.exe:LocalSubNet:Enabled:Audials local subnet"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"midi"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.l3acm"=C:\WINDOWS\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.WMV3"=wmv9vcm.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - open - NOTEPAD.EXE "%1"
.reg - open - NOTEPAD.EXE "%1"
.scr - open - NOTEPAD.EXE "%1"
.vbs - open - NOTEPAD.EXE "%1"

======List of files/folders created in the last 1 month======

2012-06-25 15:08:40 ----D---- C:\rsit
2012-06-19 14:36:49 ----D---- C:\Program Files\Uploader
2012-06-18 15:59:11 ----SHD---- C:\WINDOWS\system32\AI_RecycleBin
2012-06-18 15:58:53 ----D---- C:\Program Files\RapidSolution
2012-06-18 15:58:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\RapidSolution
2012-06-18 15:58:30 ----N---- C:\WINDOWS\system32\spmsg2.dll
2012-06-18 15:58:26 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2012-06-18 12:09:10 ----D---- C:\Documents and Settings\dom\Data aplikací\Need for Speed World
2012-06-18 10:53:47 ----D---- C:\Program Files\Electronic Arts
2012-06-18 10:53:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
2012-06-16 11:03:02 ----A---- C:\repairs_running.dat
2012-06-16 11:01:34 ----D---- C:\WINDOWS\SoftwareDistribution
2012-06-16 10:56:11 ----HD---- C:\Program Files\WindowsUpdate
2012-06-16 10:56:06 ----D---- C:\Program Files\Uninstall Information
2012-06-16 10:48:52 ----A---- C:\subinacl.exe
2012-06-16 10:48:39 ----D---- C:\Reg_Backup
2012-06-16 10:48:38 ----A---- C:\WINDOWS\PSEXESVC.EXE
2012-06-16 10:35:36 ----D---- C:\WINDOWS\system32\appmgmt
2012-06-16 10:32:29 ----D---- C:\Tweaking.com_Windows_Repair_Logs
2012-06-16 10:32:20 ----D---- C:\Program Files\Tweaking.com
2012-06-15 16:07:01 ----A---- C:\WINDOWS\system32\javaws.exe
2012-06-15 16:06:55 ----A---- C:\WINDOWS\system32\javaw.exe
2012-06-15 16:06:55 ----A---- C:\WINDOWS\system32\java.exe
2012-06-15 14:13:41 ----D---- C:\Documents and Settings\dom\Data aplikací\Mozilla
2012-06-15 14:13:32 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-06-15 14:06:55 ----A---- C:\WINDOWS\system32\drivers\keyscrambler.sys
2012-06-15 14:06:54 ----D---- C:\Program Files\KeyScrambler
2012-06-14 02:56:19 ----DC---- C:\WINDOWS\$NtUninstallKB2707511$
2012-06-14 02:46:53 ----DC---- C:\WINDOWS\$NtUninstallKB2685939$
2012-06-14 02:46:02 ----DC---- C:\WINDOWS\$NtUninstallKB2709162$
2012-06-12 09:30:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\NovaStor
2012-06-12 09:30:15 ----D---- C:\Program Files\NovaStor
2012-06-11 12:37:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\KONAMI
2012-06-10 18:15:08 ----D---- C:\Program Files\SUPERAntiSpyware
2012-06-10 18:13:10 ----D---- C:\Documents and Settings\dom\Data aplikací\SUPERAntiSpyware.com
2012-06-10 18:13:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2012-06-07 11:39:18 ----D---- C:\Program Files\ESET
2012-06-07 11:39:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2012-06-04 21:09:15 ----A---- C:\WINDOWS\system32\fbnative.exe
2012-06-04 20:52:20 ----D---- C:\Program Files\Auslogics
2012-06-04 07:43:04 ----DC---- C:\WINDOWS\$NtUninstallKB2718704$
2012-06-01 18:30:47 ----A---- C:\WINDOWS\system32\drivers\prodigy.sys
2012-06-01 18:03:53 ----D---- C:\Program Files\Common Files\PCSuite
2012-06-01 18:03:49 ----D---- C:\Program Files\Common Files\Nokia
2012-06-01 18:02:53 ----D---- C:\Program Files\PC Connectivity Solution
2012-06-01 18:02:37 ----A---- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
2012-06-01 18:02:35 ----A---- C:\WINDOWS\system32\drivers\nmwcdnsu.sys
2012-06-01 07:55:29 ----A---- C:\WINDOWS\wininit.ini
2012-05-31 11:33:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\ConeXware
2012-05-31 11:32:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\Caphyon
2012-05-31 11:32:42 ----D---- C:\Program Files\PatchBeam
2012-05-31 11:32:29 ----D---- C:\Program Files\PowerArchiver
2012-05-31 08:21:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\FolderPathDetail
2012-05-30 23:06:34 ----A---- C:\WINDOWS\system32\HMIPCore.dll
2012-05-30 14:45:41 ----D---- C:\Documents and Settings\dom\Data aplikací\Digiarty
2012-05-30 14:45:25 ----D---- C:\Program Files\Digiarty
2012-05-30 11:54:31 ----A---- C:\WINDOWS\system32\Incinerator32.dll
2012-05-30 11:54:30 ----A---- C:\WINDOWS\system32\smrgdf.exe
2012-05-30 11:54:30 ----A---- C:\WINDOWS\system32\offreg.dll
2012-05-30 11:54:30 ----A---- C:\WINDOWS\system32\iolobtdfg.exe
2012-05-30 11:54:29 ----D---- C:\Program Files\iolo
2012-05-30 11:53:03 ----D---- C:\iolo
2012-05-30 11:50:29 ----D---- C:\Documents and Settings\dom\Data aplikací\iolo
2012-05-30 11:50:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\iolo
2012-05-28 14:18:36 ----D---- C:\Program Files\KMedia Player
2012-05-26 11:39:32 ----D---- C:\VritualRoot
2012-05-26 09:57:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\Comodo
2012-05-26 09:57:35 ----D---- C:\Program Files\Comodo

======List of files/folders modified in the last 1 month======

2012-06-25 15:08:49 ----D---- C:\Program Files\trend micro
2012-06-25 15:08:48 ----D---- C:\WINDOWS\Prefetch
2012-06-25 15:07:54 ----D---- C:\WINDOWS\Temp
2012-06-25 13:41:36 ----A---- C:\WINDOWS\system32\sun_debug1.txt
2012-06-25 13:41:36 ----A---- C:\WINDOWS\system32\sun_debug.txt
2012-06-25 12:33:24 ----D---- C:\WINDOWS
2012-06-25 12:33:24 ----D---- C:\Documents and Settings\dom\Data aplikací\uTorrent
2012-06-25 10:39:29 ----D---- C:\WINDOWS\system32
2012-06-25 10:39:29 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-06-25 10:35:27 ----D---- C:\WINDOWS\system32\CatRoot2
2012-06-25 10:34:50 ----D---- C:\WINDOWS\Microsoft.NET
2012-06-25 09:27:22 ----N---- C:\WINDOWS\SchedLgU.Txt
2012-06-25 07:55:35 ----A---- C:\WINDOWS\wincmd.ini
2012-06-24 19:59:25 ----D---- C:\Documents and Settings\dom\Data aplikací\vlc
2012-06-22 06:42:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-06-21 13:43:40 ----D---- C:\WINDOWS\inf
2012-06-21 13:43:32 ----D---- C:\WINDOWS\Help
2012-06-21 13:40:42 ----D---- C:\WINDOWS\system32\drivers
2012-06-19 21:14:54 ----SHD---- C:\System Volume Information
2012-06-19 15:31:32 ----D---- C:\Documents and Settings\dom\Data aplikací\KeePass
2012-06-19 14:36:49 ----RD---- C:\Program Files
2012-06-19 14:33:50 ----D---- C:\Program Files\KeePass Password Safe 2
2012-06-19 09:02:33 ----SHD---- C:\WINDOWS\Installer
2012-06-19 09:02:33 ----D---- C:\Config.Msi
2012-06-19 08:57:42 ----RSD---- C:\WINDOWS\assembly
2012-06-19 08:57:39 ----D---- C:\WINDOWS\WinSxS
2012-06-18 15:58:15 ----D---- C:\WINDOWS\system32\XPSViewer
2012-06-18 15:58:15 ----D---- C:\WINDOWS\system32\cs-cz
2012-06-18 15:58:04 ----D---- C:\WINDOWS\system32\mui
2012-06-18 15:57:22 ----RSD---- C:\WINDOWS\Fonts
2012-06-18 15:55:09 ----D---- C:\Program Files\Internet Explorer
2012-06-18 10:36:04 ----D---- C:\Program Files\SecurityKISS Tunnel
2012-06-17 15:50:53 ----D---- C:\Program Files\Mozilla Firefox
2012-06-16 11:35:49 ----D---- C:\WINDOWS\system32\en-US
2012-06-16 11:02:14 ----D---- C:\WINDOWS\Registration
2012-06-16 11:01:24 ----D---- C:\WINDOWS\system32\CatRoot
2012-06-16 11:00:37 ----D---- C:\WINDOWS\system32\drivers\etc
2012-06-16 10:39:18 ----D---- C:\WINDOWS\system32\Restore
2012-06-15 16:09:07 ----D---- C:\Program Files\Defraggler
2012-06-15 16:06:44 ----A---- C:\WINDOWS\system32\npdeployJava1.dll
2012-06-15 16:06:44 ----A---- C:\WINDOWS\system32\deployJava1.dll
2012-06-15 16:05:39 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-06-15 14:26:35 ----D---- C:\WINDOWS\Debug
2012-06-15 14:13:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2012-06-15 14:10:49 ----D---- C:\Program Files\Opera
2012-06-14 02:50:04 ----A---- C:\WINDOWS\system32\MRT.exe
2012-06-14 02:46:59 ----D---- C:\WINDOWS\$hf_mig$
2012-06-12 13:12:22 ----D---- C:\WINDOWS\pss
2012-06-11 12:36:21 ----D---- C:\Documents and Settings\dom\Data aplikací\DAEMON Tools Lite
2012-06-07 11:18:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2012-06-05 08:30:24 ----D---- C:\BOOT
2012-06-05 07:26:38 ----D---- C:\WINDOWS\system32\NtmsData
2012-06-04 21:12:03 ----D---- C:\Program Files\EASEUS
2012-06-04 20:52:28 ----D---- C:\Documents and Settings\dom\Data aplikací\Auslogics
2012-06-02 15:19:44 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2012-06-02 15:19:38 ----A---- C:\WINDOWS\system32\wuweb.dll
2012-06-02 15:19:38 ----A---- C:\WINDOWS\system32\wucltui.dll
2012-06-02 15:19:34 ----A---- C:\WINDOWS\system32\wups2.dll
2012-06-02 15:19:34 ----A---- C:\WINDOWS\system32\wups.dll
2012-06-02 15:19:34 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2012-06-02 15:19:34 ----A---- C:\WINDOWS\system32\wuauclt.exe
2012-06-02 15:19:34 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2012-06-02 15:19:34 ----A---- C:\WINDOWS\system32\cdm.dll
2012-06-02 15:19:24 ----A---- C:\WINDOWS\system32\wuapi.dll
2012-06-02 15:19:18 ----A---- C:\WINDOWS\system32\wuaueng.dll
2012-06-02 15:19:02 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2012-06-02 15:18:58 ----A---- C:\WINDOWS\system32\muweb.dll
2012-06-02 15:18:58 ----A---- C:\WINDOWS\system32\mucltui.dll
2012-06-01 18:04:10 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-06-01 18:03:53 ----D---- C:\Program Files\Common Files
2012-06-01 18:03:50 ----D---- C:\Program Files\Nokia
2012-06-01 18:00:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2012-06-01 12:18:55 ----D---- C:\WINDOWS\Minidump
2012-05-31 15:22:06 ----A---- C:\WINDOWS\system32\crypt32.dll
2012-05-30 23:20:09 ----D---- C:\Program Files\CCleaner
2012-05-30 12:07:39 ----D---- C:\WINDOWS\CSC
2012-05-30 12:07:38 ----D---- C:\WINDOWS\system32\config
2012-05-29 14:16:15 ----ASH---- C:\boot.ini
2012-05-29 14:16:15 ----A---- C:\WINDOWS\win.ini
2012-05-29 14:16:15 ----A---- C:\WINDOWS\system.ini
2012-05-29 13:57:34 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2012-05-29 13:57:18 ----D---- C:\Program Files\SpywareBlaster
2012-05-26 10:04:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\CPA_VA
2012-05-26 09:10:32 ----SD---- C:\WINDOWS\Tasks
2012-05-26 08:48:44 ----D---- C:\WINDOWS\system32\drivers\NAV

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 EUBAKUP;EUBAKUP; C:\WINDOWS\system32\drivers\eubakup.sys [2011-12-22 50312]
R0 EUBKMON;EUBKMON; C:\WINDOWS\system32\drivers\EUBKMON.sys [2012-02-08 40840]
R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2012-03-11 97760]
R0 m5288;m5288; C:\WINDOWS\system32\DRIVERS\m5288.sys [2005-12-23 210304]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\System32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2012-01-20 170464]
R0 tdrpman;Acronis Try&Decide and Restore Points filter; C:\WINDOWS\system32\DRIVERS\tdrpman.sys [2011-07-26 368480]
R0 timounter;Acronis Backup Archive Explorer; C:\WINDOWS\system32\DRIVERS\timntr.sys [2012-02-24 600928]
R0 VVBackd5;VVBackd5; C:\WINDOWS\system32\drivers\VVBackd5.sys [2011-08-04 141400]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [2005-03-09 42496]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2012-03-11 494968]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2012-03-11 31704]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2012-04-28 242240]
R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2012-03-14 160816]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2012-03-14 120152]
R1 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2012-03-14 104160]
R1 EUDSKACS;EUDSKACS; \??\C:\WINDOWS\system32\drivers\eudskacs.sys []
R1 EUFDDISK;EUFDDISK; \??\C:\WINDOWS\system32\drivers\EuFdDisk.sys []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R1 SLEE_17_DRIVER;Steganos Live Encryption Engine 17 [Driver]; \??\C:\WINDOWS\system32\drivers\Sleen17.sys []
R2 ALIEHCD;ULi PCI to USB Enhanced Host Controller; C:\WINDOWS\System32\Drivers\ALIEHCI.sys [2012-01-15 84471]
R2 HCDisk;HCDisk; C:\WINDOWS\system32\drivers\HCDisk.sys [2011-01-05 56920]
R2 tifsfilter;Seagate DiscWizard FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2011-07-26 44384]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2012-01-15 380416]
R3 aliroothub;USB 2.0 Root Hub; C:\WINDOWS\system32\DRIVERS\AliRtHub.sys [2012-01-15 5304]
R3 FARMNTIO;FARMNTIO; \??\c:\windows\system32\drivers\farmntio.sys []
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 KeyScrambler;KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [2011-12-15 173880]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-18 2944]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2012-05-15 14014656]
R3 RRNetCapMP;RRNetCapMP; C:\WINDOWS\system32\DRIVERS\rrnetcap.sys [2012-05-24 31848]
R3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2011-07-01 26624]
R3 tbhsd;Audials Sound Capturing; C:\WINDOWS\system32\drivers\tbhsd.sys [2012-05-24 39016]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [2011-09-14 299424]
S1 Uim_IM;UIM Drive Backup Image Plugin; C:\WINDOWS\System32\Drivers\Uim_IM.sys [2011-10-13 441608]
S1 Uim_Vim;UIM Virtual Image Plugin; C:\WINDOWS\System32\Drivers\Uim_Vim.sys [2011-10-13 277576]
S1 UimBus;Universal Image Mounter Controller; C:\WINDOWS\system32\DRIVERS\UimBus.sys [2011-10-13 45240]
S3 alihub;Generic Hub on USB 2.0 Bus; C:\WINDOWS\system32\DRIVERS\AliHub.sys [2012-01-15 32118]
S3 ALSysIO;ALSysIO; \??\C:\DOCUME~1\dom\LOCALS~1\Temp\ALSysIO.sys []
S3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys []
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-14 60800]
S3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\WINDOWS\system32\drivers\asusgsb.sys [2007-07-12 12416]
S3 bdsandbox;bdsandbox; \??\C:\WINDOWS\system32\drivers\bdsandbox.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2004-10-27 145920]
S3 L8042Kbd;Logitech SetPoint Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2012-04-19 13440]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-14 61824]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2011-11-01 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2011-11-01 8576]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 PRODIGY;PRODIGY; C:\WINDOWS\System32\Drivers\PRODIGY.SYS [2006-08-29 32377]
S3 RRNetCap;RRNetCap Service; C:\WINDOWS\system32\DRIVERS\rrnetcap.sys [2012-05-24 31848]
S3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2012-01-15 50688]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
S3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2005-08-11 393088]
S3 slicedisk.sys;slicedisk.sys; \??\C:\WINDOWS\system32\slicedisk.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 taphss;Anchorfree HSS Adapter; C:\WINDOWS\system32\DRIVERS\taphss.sys [2012-01-05 32768]
S3 tapoas;TAP-Win32 Adapter OAS; C:\WINDOWS\system32\DRIVERS\tapoas.sys [2011-08-19 26112]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2011-12-19 104752]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys []
S3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D32.sys []
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2002-09-23 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2011-08-12 116608]
R2 AEADIFilters;Andrea ADI Filters Service; C:\WINDOWS\system32\AEADISRV.EXE [2012-01-15 90112]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2012-03-11 1983232]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2012-06-12 412304]
R2 DriveClone Network Client IBP;DriveClone Network Client IBP; C:\Program Files\FarStone\RestoreIT 7\IBP\fsloader.exe [2009-08-18 126976]
R2 EaseUS Agent;EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [2011-12-22 61064]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2012-03-07 913144]
R2 Guard Agent;Guard Agent; C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe [2011-12-22 23176]
R2 ioloSystemService;iolo System Service; C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe [2012-04-17 1047336]
R2 nsService;NovaStor NovaBACKUP Backup/Copy Engine; C:\Program Files\NovaStor\NovaStor NovaBACKUP\nsService.exe [2011-11-11 371856]
S2 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Backup Client Agent Service;Backup Client Agent Service; C:\Program Files\NovaStor\NovaStor NovaBACKUP\ManagementServer.Agent.Service.exe [2011-11-08 217600]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-01 113120]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-01-04 718888]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-15 257224]
S4 cbVSCService;Cobian Backup 10 Volume Shadow Copy service; C:\Program Files\Cobian Backup 10\cbVSCService.exe [2010-09-23 67584]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-06-15 161776]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2012-05-15 164160]
S4 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S4 SgtSch2Svc;Seagate Scheduler2 Service; C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe [2009-11-02 431456]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-29 158856]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 26 čer 2012 17:45

Zdravim a pekny vecer preji

Poprosim i o druhy log z RSIT s nazvem info.txt, je ulozen v c:\rsit

Jsou s PC nejake problemy

macc · #3 Příspěvek od **macc** » 27 čer 2012 13:35

Zravim,s PC nejsou žádné problémy,jen se chci zjistit,jesli tam preci neni něco schovaný.
Posílam info.txt a ješte sem dělal scan MBAM,hodilo to tam tam dvě věci,tak taky přikladam.Děkuji

info.txt logfile of random's system information tool 1.09 2012-06-25 15:08:51

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
Adobe Flash Player 11 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_3_300_257_ActiveX.exe -maintain activex
Adobe Flash Player 11 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_3_300_257_Plugin.exe -maintain plugin
AIDA64 Extreme Edition v1.85-->"C:\Program Files\FinalWire\AIDA64 Extreme Edition\unins000.exe"
Aktualizace NVIDIA 1.8.15-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.4\NVI2.DLL",UninstallPackage Display.Update
Aktualizace systému Windows Internet Explorer 8 (KB2447568)-->"C:\WINDOWS\ie8updates\KB2447568-IE8\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2616676-v2)-->"C:\WINDOWS\$NtUninstallKB2616676-v2$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2641690)-->"C:\WINDOWS\$NtUninstallKB2641690$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2718704)-->"C:\WINDOWS\$NtUninstallKB2718704$\spuninst\spuninst.exe"
Aktualizace zabezpečení pro Microsoft Windows (KB2564958)-->"C:\WINDOWS\$NtUninstallKB2564958$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2482017)-->"C:\WINDOWS\ie8updates\KB2482017-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2497640)-->"C:\WINDOWS\ie8updates\KB2497640-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531)-->"C:\WINDOWS\ie8updates\KB2510531-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2530548)-->"C:\WINDOWS\ie8updates\KB2530548-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2544521)-->"C:\WINDOWS\ie8updates\KB2544521-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2586448)-->"C:\WINDOWS\ie8updates\KB2586448-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2618444)-->"C:\WINDOWS\ie8updates\KB2618444-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2647516)-->"C:\WINDOWS\ie8updates\KB2647516-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2675157)-->"C:\WINDOWS\ie8updates\KB2675157-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2699988)-->"C:\WINDOWS\ie8updates\KB2699988-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2536276-v2)-->"C:\WINDOWS\$NtUninstallKB2536276-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2544893-v2)-->"C:\WINDOWS\$NtUninstallKB2544893-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2562937)-->"C:\WINDOWS\$NtUninstallKB2562937$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2566454)-->"C:\WINDOWS\$NtUninstallKB2566454$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2567053)-->"C:\WINDOWS\$NtUninstallKB2567053$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2567680)-->"C:\WINDOWS\$NtUninstallKB2567680$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2570222)-->"C:\WINDOWS\$NtUninstallKB2570222$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2570947)-->"C:\WINDOWS\$NtUninstallKB2570947$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2584146)-->"C:\WINDOWS\$NtUninstallKB2584146$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2585542)-->"C:\WINDOWS\$NtUninstallKB2585542$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2592799)-->"C:\WINDOWS\$NtUninstallKB2592799$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2598479)-->"C:\WINDOWS\$NtUninstallKB2598479$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2603381)-->"C:\WINDOWS\$NtUninstallKB2603381$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2618451)-->"C:\WINDOWS\$NtUninstallKB2618451$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2619339)-->"C:\WINDOWS\$NtUninstallKB2619339$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2620712)-->"C:\WINDOWS\$NtUninstallKB2620712$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2621440)-->"C:\WINDOWS\$NtUninstallKB2621440$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2624667)-->"C:\WINDOWS\$NtUninstallKB2624667$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2631813)-->"C:\WINDOWS\$NtUninstallKB2631813$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2633171)-->"C:\WINDOWS\$NtUninstallKB2633171$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2639417)-->"C:\WINDOWS\$NtUninstallKB2639417$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2641653)-->"C:\WINDOWS\$NtUninstallKB2641653$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2646524)-->"C:\WINDOWS\$NtUninstallKB2646524$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2647518)-->"C:\WINDOWS\$NtUninstallKB2647518$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2653956)-->"C:\WINDOWS\$NtUninstallKB2653956$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2659262)-->"C:\WINDOWS\$NtUninstallKB2659262$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2660465)-->"C:\WINDOWS\$NtUninstallKB2660465$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2661637)-->"C:\WINDOWS\$NtUninstallKB2661637$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2676562)-->"C:\WINDOWS\$NtUninstallKB2676562$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2685939)-->"C:\WINDOWS\$NtUninstallKB2685939$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2686509)-->"C:\WINDOWS\$NtUninstallKB2686509$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2695962)-->"C:\WINDOWS\$NtUninstallKB2695962$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2707511)-->"C:\WINDOWS\$NtUninstallKB2707511$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2709162)-->"C:\WINDOWS\$NtUninstallKB2709162$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Ashampoo Burning Studio 2012 CBE v.11.0.4-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 2012 CBE\unins000.exe"
Athlon 64 Processor Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x5
Audials-->MsiExec.exe /X{6ED9555A-A4DE-463D-A76C-8371E80C8913}
Auslogics BitReplica-->"C:\Program Files\Auslogics\Auslogics BitReplica\unins000.exe"
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokia_blue_D44140A13977AE94259B78D5DF8889C684CA993F\nokia_bluetooth.inf
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokbtmdm_B42570ED05EF0F77246242E26BBCA741434F76FB\nokbtmdm.inf
Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\B4723E9A0713E5B1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf
Belkin Desktop PCI Card Driver-->C:\Program Files\InstallShield Installation Information\{50D47CE8-9C16-42D1-A8D8-B143B22E232A}\setup.exe -runfromtemp -removeonly
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Cobian Backup 10-->C:\Program Files\Cobian Backup 10\cbUninstall.exe
Comodo Dragon-->"C:\Program Files\Comodo\Dragon\uninstall.exe"
COMODO Internet Security-->MsiExec.exe /I{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}
DAEMON Tools Lite-->C:\Program Files\DAEMON Tools Lite\uninst.exe
Defraggler-->"C:\Program Files\Defraggler\uninst.exe"
EaseUS Todo Backup Workstation 4.0-->"C:\Program Files\EaseUS\Todo Backup\unins000.exe"
FileHippo.com Update Checker-->"C:\Program Files\FileHippo.com\uninstall.exe"
HAPPYneuron Brain Jogging-->D:\Hry instal\Happyneuron\uninstall.exe
High Definition Audio Driver Package - KB835221-->C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
iolo technologies' System Mechanic-->"C:\Program Files\iolo\System Mechanic\unins000.exe" /log
Java(TM) 7 Update 5-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217005FF}
JavaFX 2.0.3-->MsiExec.exe /X{1111706F-666A-4037-7777-203328764D10}
KeePass Password Safe 2.19-->"C:\Program Files\KeePass Password Safe 2\unins000.exe"
KeyScrambler-->C:\Program Files\KeyScrambler\uninstall.exe
K-Lite Mega Codec Pack 7.2.0-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
KMedia Player-->"C:\Program Files\KMedia Player\unins000.exe"
Malwarebytes Anti-Malware verze 1.61.0.1400-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Marvell Miniport Driver-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY-->MsiExec.exe /I{A2C9CD1B-2551-3AED-B244-6698FB929FA6}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY-->MsiExec.exe /I{546C143E-68DC-314D-97BC-1E454E3BA429}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 - csy-->MsiExec.exe /I{DD73CA82-EA82-38AA-863D-9A24A018DC96}
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - csy\setup.exe
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->MsiExec.exe /X{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}
Microsoft Bootvis-->MsiExec.exe /I{0F9196C6-58B4-445B-B56E-B1200FECC151}
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9-->"C:\WINDOWS\$NtUninstallWdf01009$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411-->MsiExec.exe /X{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Windows Media Video 9 VCM-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmv9vcm.inf, Uninstall
Mozilla Firefox 13.0 (x86 cs)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
MSVC90_x86-->MsiExec.exe /I{AF111648-99A1-453E-81DD-80DBBF6DAD0D}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MSXML 4.0 SP3 Parser (KB973685)-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44}
MSXML 4.0 SP3 Parser-->MsiExec.exe /I{196467F1-C11F-4F76-858B-5812ADC83B94}
MSXML 6.0 Parser-->MsiExec.exe /I{EA2D9BC0-75E9-4975-9A0A-DD82198DDC53}
Need For Speed™ World-->"C:\Program Files\Electronic Arts\Need For Speed World\unins000.exe"
Nokia Connectivity Cable Driver-->MsiExec.exe /I{4AA68A73-DB9C-439D-9481-981C82BD008B}
Nokia PC Suite-->C:\Documents and Settings\All Users\Data aplikací\Installations\{A97F28B2-3BA1-49B7-AEF6-CC8956ED8CAA}\Nokia_PC_Suite_cze.exe
Nokia PC Suite-->MsiExec.exe /I{A97F28B2-3BA1-49B7-AEF6-CC8956ED8CAA}
NovaBACKUP-->C:\WINDOWS\system32\msiexec.exe /i {E83C2D54-5E65-4595-B59D-601B4467DDB1}
NVIDIA nView 136.27-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.4\NVI2.DLL",UninstallPackage Display.NView
NVIDIA nView Desktop Manager-->C:\Program Files\NVIDIA Corporation\nView\nViewSetup.exe -uninstall
NVIDIA Ovladače grafiky 301.42-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.4\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA PhysX-->MsiExec.exe /X{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}
NVIDIA Systémový software PhysX 9.12.0213-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.5\NVI2.DLL",UninstallPackage Display.PhysX
OpenOffice.org 3.4-->MsiExec.exe /I{51071D66-D034-4239-94E0-723FCA10B6FE}
Opera 12.00-->"C:\Program Files\Opera\Opera.exe" /uninstall
Oprava Hotfix systému Windows XP (KB2570791)-->"C:\WINDOWS\$NtUninstallKB2570791$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2633952)-->"C:\WINDOWS\$NtUninstallKB2633952$\spuninst\spuninst.exe"
PatchBeam-->C:\Program Files\PatchBeam\uninstall.exe
PC Connectivity Solution-->MsiExec.exe /I{A2AA4204-C05A-4013-888A-AD153139297F}
PowerArchiver 2011-->C:\Documents and Settings\All Users\Data aplikací\Caphyon\Advanced Installer\{C588048E-509F-4256-AB12-0ED0E81A1632}\setup.exe /x {0ECAEBD0-76C6-4D55-A5BB-23FA22069538}
PowerArchiver 2011-->MsiExec.exe /I{0ECAEBD0-76C6-4D55-A5BB-23FA22069538}
Pro Evolution Soccer 2012-->MsiExec.exe /X{E737A098-F161-4B6F-AF22-86AAE34F6FBD}
psani beta version 1.0.3.0-->"C:\Documents and Settings\All Users\Plocha\psani\unins000.exe"
REALTEK GbE & FE Ethernet PCI NIC Driver-->C:\Program Files\InstallShield Installation Information\{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}\setup.exe -runfromtemp -removeonly
RestoreIT 7-->C:\Program Files\FarStone\RestoreIT 7\UnInstall.exe
Revo Uninstaller 1.94-->C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
Seagate DiscWizard-->MsiExec.exe /X{C43E4B9C-14C8-4EB0-998B-85211B6EDD61}
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {94EFE014-E577-310B-B2D5-6973A21D8A90} /qb+ REBOOTPROMPT=""
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {F6F5AC31-9833-3E77-AC8E-8E910CAB39AE} /qb+ REBOOTPROMPT=""
SecurityKISS Tunnel v0.2.2-->"C:\Program Files\SecurityKISS Tunnel\unins000.exe"
Skype™ 5.8-->MsiExec.exe /X{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}
SMoKE Patch BLACK 4.7.3-->D:\Hry instal\PES2012\Uninstal SMoKE GOLD.exe
SoundMAX-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe" -l0x9 -removeonly
SpywareBlaster 4.6-->"C:\Program Files\SpywareBlaster\unins000.exe"
SumatraPDF 2.1.1-->C:\Program Files\SumatraPDF\uninstall.exe
SUPERAntiSpyware-->"C:\Program Files\SUPERAntiSpyware\Uninstall.exe"
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
Tweaking.com - Windows Repair (All in One)-->"C:\Program Files\Tweaking.com\Windows Repair (All in One)\uninstall.exe" "/U:C:\Program Files\Tweaking.com\Windows Repair (All in One)\Uninstall\uninstall.xml"
ULi M5288 SATA Controller Driver-->C:\Program Files\InstallShield Installation Information\ULi M5288 SATA Controller Driver\setup.exe
ULi USB2.0 Controller Driver-->C:\WINDOWS\system32\unusb20.EXE C:\WINDOWS\IsUninst.exe -y -fC:\WINDOWS\system32\ALiEHCI.isu
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Uploader-->C:\PROGRA~1\Uploader\UNWISE.EXE C:\PROGRA~1\Uploader\INSTALL.LOG
v0.2.2-->"C:\Program Files\SecurityKISS Tunnel\unins001.exe"
VC 9.0 Runtime-->MsiExec.exe /I{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}
VirusTotal Uploader 2.0-->"C:\Program Files\VirusTotalUploader2\uninstall.exe"
Visual IP Trace-->"C:\Program Files\Visual IP Trace 2009\Uninstall.exe" "C:\Program Files\Visual IP Trace 2009"
VLC media player 2.0.1-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows PowerShell(TM) 1.0-->"C:\WINDOWS\$NtUninstallKB926139-v2$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinX HD Video Converter Deluxe 3.0-->"C:\Program Files\Digiarty\WinX_HD_Video_Converter_Deluxe\unins000.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
XviD MPEG-4 Video Codec-->C:\WINDOWS\System32\rundll32.exe setupapi,InstallHinfSection Remove_XviD 132 C:\WINDOWS\INF\xvid.inf
Zoner Photo Studio 14-->"C:\Program Files\Zoner\Photo Studio 14\unins000.exe" /SILENT

======Security center information======

AV: ESET NOD32 Antivirus 5.2
FW: COMODO Firewall

======System event log======

Computer Name: JA
Event Code: 7036
Message: Stav služby Sledování umístění v síti (NLA) byl změněn na: Spuštěno

Record Number: 13997
Source Name: Service Control Manager
Time Written: 20120523065742.000000+120
Event Type: Informace
User:

Computer Name: JA
Event Code: 7036
Message: Stav služby Kompatibilita pro rychlé přepínání uživatelů byl změněn na: Spuštěno

Record Number: 13996
Source Name: Service Control Manager
Time Written: 20120523065742.000000+120
Event Type: Informace
User:

Computer Name: JA
Event Code: 7035
Message: Řídící příkaz Spuštěno byl službě Kompatibilita pro rychlé přepínání uživatelů úspěšně odeslán.

Record Number: 13995
Source Name: Service Control Manager
Time Written: 20120523065742.000000+120
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: JA
Event Code: 7036
Message: Stav služby Terminálová služba byl změněn na: Spuštěno

Record Number: 13994
Source Name: Service Control Manager
Time Written: 20120523065742.000000+120
Event Type: Informace
User:

Computer Name: JA
Event Code: 7036
Message: Stav služby Microsoft .NET Framework NGEN v4.0.30319_X86 byl změněn na: Spuštěno

Record Number: 13993
Source Name: Service Control Manager
Time Written: 20120523065742.000000+120
Event Type: Informace
User:

=====Application event log=====

Computer Name: JA
Event Code: 1516
Message: Systém Windows uvolnil registr uživatele S-1-5-21-789336058-113007714-839522115-1003_Classes po přijetí oznámení, že žádné jiné aplikace nebo služby tento profil nepoužívají.

Record Number: 1755
Source Name: Userenv
Time Written: 20120207174957.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: JA
Event Code: 1516
Message: Systém Windows uvolnil registr uživatele S-1-5-21-789336058-113007714-839522115-1003 po přijetí oznámení, že žádné jiné aplikace nebo služby tento profil nepoužívají.

Record Number: 1754
Source Name: Userenv
Time Written: 20120207174957.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: JA
Event Code: 1517
Message: Systém Windows uložil registr uživatele JA\dom, ale některá z aplikací nebo služeb během odhlášení registr nadále používala. Paměť používaná registrem uživatele nebyla uvolněna. Registr bude uvolněn, jakmile již nebude používán.

To je často způsobeno tím, že jsou služby spuštěny pomocí uživatelského účtu. Zkuste služby konfigurovat pro spuštění pomocí účtu místní nebo síťové služby.

Record Number: 1753
Source Name: Userenv
Time Written: 20120207174955.000000+060
Event Type: Upozornění
User: NT AUTHORITY\SYSTEM

Computer Name: JA
Event Code: 1524
Message: Systém Windows nemůže uvolnit soubor registru tříd. Tento soubor je stále používán jinými aplikacemi nebo službami. Soubor bude uvolněn, jakmile již nebude používán.

Record Number: 1752
Source Name: Userenv
Time Written: 20120207174954.000000+060
Event Type: Upozornění
User: JA\dom

Computer Name: JA
Event Code: 1800
Message: Služba Centrum zabezpečení systému Windows byla spuštěna.

Record Number: 1751
Source Name: SecurityCenter
Time Written: 20120207173501.000000+060
Event Type: Informace
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files\NVIDIA Corporation\PhysX\Common;C:\Program Files\Common Files\Acronis\SnapAPI;C:\WINDOWS\system32\WindowsPowerShell\v1.0
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.MSH;.MSH;.MSH;.MSH;.MSH;.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.PSC1
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"FP_NO_HOST_CHECK"=NO

-----------------EOF-----------------

Malwarebytes Anti-Malware 1.61.0.1400
http://www.malwarebytes.org

Verze databáze: v2012.06.25.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
dom :: JA [administrátor]

25.6.2012 15:25:50
mbam-log-2012-06-25 (16-11-57).txt

Typ: Úplná kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 380927
Uplynulý čas: 43 minut, 24 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 2
HKCR\scrfile\shell\open\command| (Broken.OpenCommand) -> Špatný: (NOTEPAD.EXE "%1") Dobrý: ("%1" /S) -> Žádná instrukce nebyla provedena.
HKCR\regfile\shell\open\command| (Broken.OpenCommand) -> Špatný: (NOTEPAD.EXE "%1") Dobrý: (regedit.exe "%1") -> Žádná instrukce nebyla provedena.

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

#4 Příspěvek od **vyosek** » 27 čer 2012 17:41

Nalezy MBAMu smazte

Aplikujte exeHelper by Raktor

Linky ke stazeni
- COM soubor http://vyosek.ic.cz/BE/exeHelper.com
- SCR soubor http://vyosek.ic.cz/BE/exeHelper.scr
Utilitu staci spustit jako Spravce (klik pravym mysidlem), probehne oprava a vznikne log exehelperlog.txt

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

macc · #5 Příspěvek od **macc** » 27 čer 2012 18:27

exeHelper by Raktor mi nešel spustit jako spravce,ale vyhodil mi toto:
exeHelper by Raktor
Build 20100414
Run at 19:23:12 on 06/27/12
Now searching...
Checking for numerical processes...
Checking for sysguard processes...
Checking for bad processes...
Checking for bad files...
Checking for bad registry entries...
Resetting filetype association for .exe
Resetting filetype association for .com
Resetting userinit and shell values...
Resetting policies...
--Finished--

logy OTL dodám

macc · #6 Příspěvek od **macc** » 27 čer 2012 18:39

OTL logfile created on: 27.6.2012 19:25:56 - Run 1
OTL by OldTimer - Version 3.2.53.0 Folder = C:\Documents and Settings\dom\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,20 Gb Available Physical Memory | 59,93% Memory free
3,85 Gb Paging File | 3,07 Gb Available in Paging File | 79,86% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 64,76 Gb Total Space | 45,23 Gb Free Space | 69,84% Space Free | Partition Type: NTFS
Drive D: | 401,00 Gb Total Space | 108,38 Gb Free Space | 27,03% Space Free | Partition Type: NTFS
Drive E: | 56,12 Gb Total Space | 55,88 Gb Free Space | 99,58% Space Free | Partition Type: NTFS
Drive H: | 232,88 Gb Total Space | 64,52 Gb Free Space | 27,71% Space Free | Partition Type: NTFS

Computer Name: JA | User Name: dom | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.06.27 19:21:30 | 000,596,992 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\dom\Plocha\OTL.exe
PRC - [2012.06.26 12:44:44 | 012,580,848 | ---- | M] (Zemana Ltd.) -- C:\Program Files\AntiLogger\AntiLogger.exe
PRC - [2012.06.15 14:10:37 | 000,874,384 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2012.06.15 14:10:37 | 000,800,656 | ---- | M] (Opera Software) -- C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
PRC - [2012.06.12 11:56:48 | 000,412,304 | ---- | M] () -- C:\Program Files\Comodo\Dragon\dragon_updater.exe
PRC - [2012.05.07 11:25:34 | 001,754,112 | ---- | M] (Krzysztof Kowalczyk) -- C:\Program Files\SumatraPDF\SumatraPDF.exe
PRC - [2012.04.17 09:30:36 | 001,047,336 | ---- | M] (iolo technologies, LLC) -- C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
PRC - [2012.03.11 21:13:22 | 001,983,232 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
PRC - [2012.03.11 21:13:02 | 006,749,512 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cfp.exe
PRC - [2012.03.07 15:40:34 | 000,913,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2012.03.07 15:40:28 | 003,117,344 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2012.01.15 09:36:55 | 000,090,112 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\AEADISRV.EXE
PRC - [2011.12.22 23:09:56 | 000,023,176 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) -- C:\Program Files\EASEUS\Todo Backup\bin\GuardAgent.exe
PRC - [2011.12.22 23:09:46 | 000,070,792 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) -- C:\Program Files\EASEUS\Todo Backup\bin\EuWatch.exe
PRC - [2011.12.22 23:09:46 | 000,061,064 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) -- C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe
PRC - [2011.11.11 18:33:16 | 000,371,856 | ---- | M] (NovaStor) -- C:\Program Files\NovaStor\NovaStor NovaBACKUP\nsService.exe
PRC - [2011.10.09 15:43:38 | 000,094,289 | ---- | M] (FarStone Technology, Inc.) -- C:\Program Files\FarStone\RestoreIT 7\IBP\VBPTask.exe
PRC - [2011.08.12 01:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2009.08.18 17:33:10 | 000,126,976 | ---- | M] () -- C:\Program Files\FarStone\RestoreIT 7\IBP\FsLoader.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.09.14 07:02:10 | 001,080,264 | ---- | M] (C. Ghisler & Co.) -- C:\totalcmd\TOTALCMD.EXE

========== Modules (No Company Name) ==========

MOD - [2012.06.15 14:10:47 | 000,316,928 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstoggdec.dll
MOD - [2012.06.15 14:10:47 | 000,276,480 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwebmdec.dll
MOD - [2012.06.15 14:10:47 | 000,078,336 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwavparse.dll
MOD - [2012.06.15 14:10:47 | 000,064,000 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstautodetect.dll
MOD - [2012.06.15 14:10:47 | 000,046,592 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwaveform.dll
MOD - [2012.06.15 14:10:47 | 000,045,568 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gsttypefindfunctions.dll
MOD - [2012.06.15 14:10:46 | 000,783,360 | ---- | M] () -- C:\Program Files\Opera\gstreamer\gstreamer.dll
MOD - [2012.06.15 14:10:46 | 000,168,448 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
MOD - [2012.06.15 14:10:46 | 000,099,840 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstcoreplugins.dll
MOD - [2012.06.15 14:10:46 | 000,098,816 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstaudioresample.dll
MOD - [2012.06.15 14:10:46 | 000,098,816 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstaudioconvert.dll
MOD - [2012.06.15 14:10:46 | 000,076,800 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstdirectsound.dll
MOD - [2012.06.15 14:10:46 | 000,068,608 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstdecodebin2.dll
MOD - [2012.06.12 11:56:48 | 000,412,304 | ---- | M] () -- C:\Program Files\Comodo\Dragon\dragon_updater.exe
MOD - [2012.05.15 12:18:00 | 000,357,184 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\nView\nvShell.dll
MOD - [2012.03.14 09:38:26 | 000,106,120 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\NASOperator.dll
MOD - [2012.02.23 19:26:34 | 000,051,336 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\TBGetRemoteNetInfo.dll
MOD - [2012.02.08 13:28:24 | 000,095,880 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\TBFireWall.dll
MOD - [2012.01.17 16:04:12 | 000,027,784 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\CompressFile.dll
MOD - [2011.12.23 15:15:24 | 000,023,176 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\AccountManager.dll
MOD - [2011.12.22 23:08:36 | 000,064,648 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\TbTapeBrowse.dll
MOD - [2011.12.22 23:08:30 | 000,245,896 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\ExImage.dll
MOD - [2011.12.22 23:08:30 | 000,114,312 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\ExchBackupSize.dll
MOD - [2011.12.22 23:08:30 | 000,069,768 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\EnumTapeDevice.dll
MOD - [2011.12.22 23:08:28 | 000,051,848 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\CodeLog.dll
MOD - [2011.11.11 18:32:48 | 000,124,560 | ---- | M] () -- C:\Program Files\NovaStor\NovaStor NovaBACKUP\nsSQLBackupRestore.dll
MOD - [2011.11.11 18:20:52 | 000,014,848 | ---- | M] () -- C:\Program Files\NovaStor\NovaStor NovaBACKUP\WindowsEventLogWriter.dll
MOD - [2011.11.11 18:17:12 | 000,179,344 | ---- | M] () -- C:\Program Files\NovaStor\NovaStor NovaBACKUP\nsEngineRes409.dll
MOD - [2011.09.16 15:40:14 | 000,005,120 | ---- | M] () -- C:\Program Files\NovaStor\NovaStor NovaBACKUP\throttle.dll
MOD - [2010.10.08 10:32:44 | 000,151,633 | ---- | M] () -- C:\Program Files\FarStone\RestoreIT 7\IBP\Snapshot.dll
MOD - [2010.08.19 15:17:02 | 000,176,189 | ---- | M] () -- C:\Program Files\FarStone\RestoreIT 7\IBP\vbioctl.dll
MOD - [2010.04.08 11:47:44 | 000,090,112 | ---- | M] () -- C:\Program Files\FarStone\RestoreIT 7\IBP\VBcfgEx.dll
MOD - [2010.03.09 14:53:48 | 000,073,779 | ---- | M] () -- C:\Program Files\FarStone\RestoreIT 7\IBP\UVFilter.dll
MOD - [2009.08.18 17:33:10 | 000,126,976 | ---- | M] () -- C:\Program Files\FarStone\RestoreIT 7\IBP\FsLoader.exe
MOD - [2009.08.18 17:33:10 | 000,057,403 | ---- | M] () -- C:\Program Files\FarStone\RestoreIT 7\IBP\DiskMsg.dll
MOD - [2008.11.25 17:18:00 | 001,291,264 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\libxml2.dll
MOD - [2008.04.14 08:51:48 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2004.10.05 03:08:00 | 000,055,808 | ---- | M] () -- C:\Program Files\EASEUS\Todo Backup\bin\zlib1.dll

========== Win32 Services (SafeList) ==========

SRV - [2012.06.15 16:06:45 | 000,161,776 | ---- | M] (Oracle Corporation) [Disabled | Stopped] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012.06.15 16:05:40 | 000,257,224 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.06.12 11:56:48 | 000,412,304 | ---- | M] () [Auto | Running] -- C:\Program Files\Comodo\Dragon\dragon_updater.exe -- (DragonUpdater)
SRV - [2012.06.01 17:37:22 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.05.15 12:18:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012.04.17 09:30:36 | 001,047,336 | ---- | M] (iolo technologies, LLC) [Auto | Running] -- C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe -- (ioloSystemService)
SRV - [2012.03.11 21:13:22 | 001,983,232 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2012.03.07 15:40:34 | 000,913,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2012.02.29 08:50:48 | 000,158,856 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.01.15 09:36:55 | 000,090,112 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\WINDOWS\system32\AEADISRV.EXE -- (AEADIFilters)
SRV - [2012.01.04 13:32:36 | 000,718,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011.12.22 23:09:56 | 000,023,176 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Auto | Running] -- C:\Program Files\EASEUS\Todo Backup\bin\GuardAgent.exe -- (Guard Agent)
SRV - [2011.12.22 23:09:46 | 000,061,064 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Auto | Running] -- C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe -- (EaseUS Agent)
SRV - [2011.11.11 18:33:16 | 000,371,856 | ---- | M] (NovaStor) [Auto | Running] -- C:\Program Files\NovaStor\NovaStor NovaBACKUP\nsService.exe -- (nsService)
SRV - [2011.11.08 04:40:16 | 000,217,600 | ---- | M] (NovaStor Corporation) [On_Demand | Stopped] -- C:\Program Files\NovaStor\NovaStor NovaBACKUP\ManagementServer.Agent.Service.exe -- (Backup Client Agent Service)
SRV - [2011.08.12 01:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2010.09.23 10:49:08 | 000,067,584 | ---- | M] (CobianSoft, Luis Cobian) [Disabled | Stopped] -- C:\Program Files\Cobian Backup 10\cbVSCService.exe -- (cbVSCService)
SRV - [2009.11.02 18:52:04 | 000,431,456 | ---- | M] (Seagate) [Disabled | Stopped] -- C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe -- (SgtSch2Svc)
SRV - [2009.08.18 17:33:10 | 000,126,976 | ---- | M] () [Auto | Running] -- C:\Program Files\FarStone\RestoreIT 7\IBP\FsLoader.exe -- (DriveClone Network Client IBP)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\Video3D32.sys -- (Video3D)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - File not found [Kernel | Unavailable | Unknown] -- D:\b69fbbbc5d50cade7f265c814ffed4\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\slicedisk.sys -- (slicedisk.sys)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\bdsandbox.sys -- (bdsandbox)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\Apfiltr.sys -- (ApfiltrService)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\dom\LOCALS~1\Temp\ALSysIO.sys -- (ALSysIO)
DRV - [2012.06.27 14:14:40 | 000,082,744 | ---- | M] (Raxco Software, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AntiLog32.sys -- (AntiLog32)
DRV - [2012.05.24 16:34:59 | 000,039,016 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tbhsd.sys -- (tbhsd)
DRV - [2012.05.24 16:34:53 | 000,031,848 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rrnetcap.sys -- (RRNetCapMP)
DRV - [2012.05.24 16:34:53 | 000,031,848 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rrnetcap.sys -- (RRNetCap)
DRV - [2012.04.28 20:08:33 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2012.04.19 14:08:53 | 000,013,440 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2012.03.14 08:40:04 | 000,104,160 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2012.03.14 08:40:02 | 000,160,816 | ---- | M] (ESET) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2012.03.14 08:40:02 | 000,120,152 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2012.03.11 23:13:45 | 000,031,704 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2012.03.11 23:13:44 | 000,494,968 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard)
DRV - [2012.03.11 21:13:48 | 000,097,760 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\inspect.sys -- (Inspect)
DRV - [2012.02.24 08:26:21 | 000,600,928 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
DRV - [2012.02.08 15:46:34 | 000,040,840 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\EUBKMON.sys -- (EUBKMON)
DRV - [2012.01.20 14:42:21 | 000,170,464 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman)
DRV - [2012.01.15 09:36:09 | 000,084,471 | ---- | M] (ULi Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\AliEhci.sys -- (ALIEHCD)
DRV - [2012.01.15 09:36:09 | 000,032,118 | ---- | M] (ULi Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AliHub.sys -- (alihub)
DRV - [2012.01.15 09:36:09 | 000,005,304 | ---- | M] (ULi Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AliRtHub.sys -- (aliroothub)
DRV - [2012.01.15 09:35:10 | 000,050,688 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2012.01.05 01:01:54 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss)
DRV - [2011.12.22 23:09:40 | 000,185,864 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EuFdDisk.sys -- (EUFDDISK)
DRV - [2011.12.22 23:09:32 | 000,016,008 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\eudskacs.sys -- (EUDSKACS)
DRV - [2011.12.22 23:09:30 | 000,050,312 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\eubakup.sys -- (EUBAKUP)
DRV - [2011.12.19 15:12:00 | 000,104,752 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2011.12.15 02:41:38 | 000,173,880 | ---- | M] (QFX Software Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\keyscrambler.sys -- (KeyScrambler)
DRV - [2011.11.01 10:07:24 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2011.11.01 10:07:24 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2011.10.13 14:06:14 | 000,441,608 | ---- | M] (Paragon) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\Uim_IM.sys -- (Uim_IM)
DRV - [2011.10.13 14:06:14 | 000,277,576 | ---- | M] (Paragon) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\Uim_Vim.sys -- (Uim_Vim)
DRV - [2011.10.13 14:06:14 | 000,045,240 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\UimBus.sys -- (UimBus)
DRV - [2011.09.14 15:58:38 | 000,299,424 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2011.08.19 02:46:06 | 000,026,112 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tapoas.sys -- (tapoas)
DRV - [2011.08.04 14:41:48 | 000,141,400 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\VvBackd5.sys -- (VVBackd5)
DRV - [2011.07.26 21:44:06 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2011.07.26 21:44:01 | 000,368,480 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\tdrpman.sys -- (tdrpman)
DRV - [2011.07.22 18:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011.07.12 23:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011.07.01 04:46:40 | 000,026,624 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2011.01.26 09:29:08 | 000,021,592 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\FarMntIo.sys -- (FARMNTIO)
DRV - [2011.01.05 02:18:22 | 000,056,920 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\HCDisk.sys -- (HCDisk)
DRV - [2010.02.17 14:21:12 | 000,094,560 | ---- | M] (Softwareentwicklung Remus - ArchiCrypt - ) [Driver] [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SleeN17.sys -- (SLEE_17_DRIVER)
DRV - [2008.12.26 12:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.04.14 00:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.04.13 22:05:40 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2007.07.12 10:03:42 | 000,012,416 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\asusgsb.sys -- (asusgsb)
DRV - [2007.07.12 10:03:38 | 000,012,288 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO)
DRV - [2006.08.29 16:56:19 | 000,032,377 | ---- | M] (B-phreaks) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\prodigy.sys -- (PRODIGY)
DRV - [2005.12.23 22:54:06 | 000,210,304 | ---- | M] (ULi Electronics Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\m5288.sys -- (m5288)
DRV - [2005.08.11 15:49:28 | 000,393,088 | R--- | M] (Sensaura) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2005.03.09 16:53:00 | 000,042,496 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004.10.27 15:21:30 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004.08.13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2001.08.18 00:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-789336058-113007714-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-789336058-113007714-839522115-1003\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-789336058-113007714-839522115-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-789336058-113007714-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-789336058-113007714-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: File not found
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.0: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@mozilla.zeniko.ch/SumatraPDF_Browser_Plugin: C:\Program Files\SumatraPDF\npPdfViewer.dll (Simon Bünzli)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: File not found
FF - HKCU\Software\MozillaPlugins\@mozilla.zeniko.ch/SumatraPDF_Browser_Plugin: C:\Program Files\SumatraPDF\npPdfViewer.dll (Simon Bünzli)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.06.15 14:13:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.06.15 16:06:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012.06.11 13:04:48 | 000,000,000 | ---D | M]

[2012.06.15 14:13:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dom\Data aplikací\Mozilla\Extensions
[2012.06.17 15:46:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\dom\Data aplikací\Mozilla\Firefox\Profiles\m2020q5z.default\extensions
[2012.06.15 14:29:11 | 000,000,000 | ---D | M] (Ghostery) -- C:\Documents and Settings\dom\Data aplikací\Mozilla\Firefox\Profiles\m2020q5z.default\extensions\firefox@ghostery.com
[2012.06.15 14:27:46 | 000,000,000 | ---D | M] (KeyScrambler) -- C:\Documents and Settings\dom\Data aplikací\Mozilla\Firefox\Profiles\m2020q5z.default\extensions\keyscrambler@qfx.software.corporation
[2012.06.15 14:13:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DOM\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\M2020Q5Z.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DOM\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\M2020Q5Z.DEFAULT\EXTENSIONS\FIREFOX@GHOSTERY.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DOM\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\M2020Q5Z.DEFAULT\EXTENSIONS\KEYSCRAMBLER@QFX.SOFTWARE.CORPORATION
[2012.06.01 17:38:43 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.06.01 20:01:06 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.06.01 20:01:06 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.06.01 20:01:06 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.06.01 20:01:06 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.06.01 20:01:06 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2012.06.16 11:00:37 | 000,000,855 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (KeyScramblerBHO Class) - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll (QFX Software Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [AntiLogger] C:\Program Files\AntiLogger\AntiLogger.exe (Zemana Ltd.)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [EaseUs Watch] C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe (CHENGDU YIWO Tech Development Co., Ltd)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 383
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-789336058-113007714-839522115-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-789336058-113007714-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-789336058-113007714-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-789336058-113007714-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-789336058-113007714-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-789336058-113007714-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Steganos Password Manager - {024538B9-3F39-49FF-9503-975F743210FA} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : &KeyScrambler Options - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll (QFX Software Corporation)
O15 - HKU\S-1-5-21-789336058-113007714-839522115-1003\..Trusted Domains: google-analytics.com ([]http in Důvěryhodné servery)
O15 - HKU\S-1-5-21-789336058-113007714-839522115-1003\..Trusted Domains: novastor.com ([]http in Důvěryhodné servery)
O15 - HKU\S-1-5-21-789336058-113007714-839522115-1003\..Trusted Domains: novastor.com ([]https in Důvěryhodné servery)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... vc1dmo.cab (Reg Error: Key error.)
O16 - DPF: DirectAnimation Java Classes Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java Reg Error: Value error. (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.4.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{58E5100F-BB5A-42A6-A201-62040E1C4AD4}: DhcpNameServer = 192.168.4.20
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) - C:\WINDOWS\system32\guard32.dll (COMODO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\dom\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\dom\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis)
O32 - HKLM CDRom: AutoRun - 0
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (autocheck smrgdf C:\Documents and Settings\dom\Data aplikací\iolo\)
O34 - HKLM BootExecute: (FT.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: LanmanWorkstation - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: VIDC.WMV3 - C:\WINDOWS\System32\wmv9vcm.dll (Microsoft Corporation)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2012.06.27 19:21:25 | 000,596,992 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\dom\Plocha\OTL.exe
[2012.06.27 14:17:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dom\Plocha\Zemana_AntiLogger_1.9.3.178
[2012.06.27 14:14:40 | 000,082,744 | ---- | C] (Raxco Software, Inc.) -- C:\WINDOWS\System32\drivers\AntiLog32.sys
[2012.06.27 14:14:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\dom\Local Settings\Data aplikací\Zemana
[2012.06.27 14:14:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\{220B1A6E-6AD0-48DC-9382-4F4B7ADD44B2}
[2012.06.27 14:14:34 | 000,000,000 | ---D | C] -- C:\Program Files\AntiLogger
[2012.06.27 14:14:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\AntiLogger
[2012.06.25 16:37:02 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\dom\Recent
[2012.06.25 15:08:40 | 000,000,000 | ---D | C] -- C:\rsit

========== Files - Modified Within 7 Days ==========

[2012.06.27 19:27:44 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.06.27 19:22:13 | 000,294,400 | ---- | M] () -- C:\Documents and Settings\dom\Plocha\exeHelper.scr
[2012.06.27 19:21:30 | 000,596,992 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\dom\Plocha\OTL.exe
[2012.06.27 19:20:58 | 000,294,400 | ---- | M] () -- C:\Documents and Settings\dom\Plocha\exeHelper.com
[2012.06.27 17:28:05 | 000,000,462 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{D0F7BD77-CCB4-4A6F-9796-3E0F6A6FD883}.job
[2012.06.27 16:58:07 | 000,003,264 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2012.06.27 16:57:58 | 012,541,396 | ---- | M] () -- C:\Documents and Settings\dom\Plocha\Newgameplay tool 6.4.5 beta (Multi-language) by Jenkey1002.rar
[2012.06.27 16:56:53 | 012,751,051 | ---- | M] () -- C:\Documents and Settings\dom\Plocha\Newgameplay tool 6.4.6 full (Multi-language) by Jenkey1002.rar
[2012.06.27 14:14:40 | 000,082,744 | ---- | M] (Raxco Software, Inc.) -- C:\WINDOWS\System32\drivers\AntiLog32.sys
[2012.06.27 10:45:40 | 000,498,136 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.06.27 10:45:40 | 000,492,880 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.06.27 10:45:40 | 000,093,192 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.06.27 10:45:40 | 000,080,918 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.06.27 10:41:45 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.06.27 10:41:29 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.06.25 15:08:31 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\dom\Plocha\RSIT.exe

========== Files Created - No Company Name ==========

[2012.06.27 19:27:44 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.06.27 19:22:13 | 000,294,400 | ---- | C] () -- C:\Documents and Settings\dom\Plocha\exeHelper.scr
[2012.06.27 19:20:58 | 000,294,400 | ---- | C] () -- C:\Documents and Settings\dom\Plocha\exeHelper.com
[2012.06.27 16:57:10 | 012,541,396 | ---- | C] () -- C:\Documents and Settings\dom\Plocha\Newgameplay tool 6.4.5 beta (Multi-language) by Jenkey1002.rar
[2012.06.27 14:11:10 | 012,751,051 | ---- | C] () -- C:\Documents and Settings\dom\Plocha\Newgameplay tool 6.4.6 full (Multi-language) by Jenkey1002.rar
[2012.06.25 15:08:31 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\dom\Plocha\RSIT.exe
[2012.06.12 09:30:15 | 000,000,097 | RHS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\1.12.5.lic
[2012.06.01 07:55:29 | 000,000,046 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2012.05.25 15:30:22 | 000,000,028 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2012.05.24 16:04:07 | 000,000,006 | ---- | C] () -- C:\WINDOWS\CT98.DAT
[2012.05.24 15:51:55 | 000,000,340 | ---- | C] () -- C:\Documents and Settings\dom\Data aplikací\SMRResults250.dat
[2012.05.17 18:35:46 | 000,017,408 | ---- | C] () -- C:\Documents and Settings\dom\Local Settings\Data aplikací\WebpageIcons.db
[2012.05.14 08:45:48 | 000,192,046 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\1336977795.bdinstall.bin
[2012.05.14 08:40:57 | 000,119,428 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\1336977236.bdinstall.bin
[2012.05.14 08:14:18 | 000,171,853 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\1336975933.bdinstall.bin
[2012.05.14 08:06:50 | 000,282,965 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\1336975112.bdinstall.bin
[2012.04.24 11:54:25 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe
[2012.03.15 10:15:17 | 000,141,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\VvBackd5.sys
[2012.03.15 10:15:17 | 000,056,920 | ---- | C] () -- C:\WINDOWS\System32\drivers\HCDisk.sys
[2012.03.15 10:14:11 | 000,021,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\FarMntIo.sys
[2012.03.12 18:46:23 | 000,000,239 | ---- | C] () -- C:\Documents and Settings\dom\SecurityKISSTunnel.config
[2012.03.12 17:50:36 | 000,000,259 | ---- | C] () -- C:\Documents and Settings\dom\openvpn-connect.json
[2012.02.22 16:35:39 | 000,000,316 | ---- | C] () -- C:\Documents and Settings\dom\.JavaPowUpload.properties
[2012.02.15 10:39:03 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.02.05 16:33:48 | 000,001,680 | ---- | C] () -- C:\WINDOWS\Sandboxie.ini
[2012.01.23 18:05:31 | 000,000,340 | ---- | C] () -- C:\Documents and Settings\dom\Data aplikací\SMRResults210.dat
[2012.01.22 19:39:31 | 000,040,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\EUBKMON.sys
[2012.01.12 22:02:46 | 000,000,030 | ---- | C] () -- C:\WINDOWS\PCCT.INI
[2011.12.10 08:03:10 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2011.12.10 08:03:10 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2011.12.10 08:03:09 | 000,644,608 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011.12.10 08:03:09 | 000,243,200 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011.12.10 08:03:08 | 000,073,216 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011.11.30 14:15:49 | 000,001,552 | ---- | C] () -- C:\WINDOWS\System32\.ini
[2011.11.22 17:03:22 | 000,299,544 | ---- | C] () -- C:\WINDOWS\RegGenieOnUninstall.exe
[2011.11.22 14:03:41 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\Unusb20.exe
[2011.11.22 14:03:41 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\PCIVP.SYS
[2011.11.22 12:26:12 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\UnM5461.exe
[2011.11.15 19:35:45 | 000,074,703 | ---- | C] () -- C:\WINDOWS\System32\mfc45.dll
[2011.06.09 11:18:32 | 000,016,968 | ---- | C] () -- C:\WINDOWS\System32\drivers\hitmanpro35.sys
[2011.06.08 12:30:40 | 000,000,554 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol
[2011.06.04 15:00:57 | 002,807,708 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2011.05.28 08:34:16 | 000,000,193 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\Microsoft.SqlServer.Compact.351.32.bc
[2011.05.11 09:18:53 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011.05.07 20:03:07 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2011.05.06 11:08:14 | 000,006,656 | ---- | C] () -- C:\Documents and Settings\dom\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.05.05 20:21:51 | 001,074,636 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011.05.02 21:10:57 | 000,003,264 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2011.05.02 19:46:29 | 001,074,636 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011.05.02 19:46:29 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011.04.30 11:10:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011.04.30 11:10:10 | 000,004,265 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.04.30 11:08:43 | 000,138,848 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.04.30 09:55:13 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011.04.30 09:42:18 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2011.04.30 09:42:17 | 000,018,558 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2011.04.30 09:42:08 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2011.04.30 09:24:06 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011.04.30 09:16:59 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

========== LOP Check ==========

[2012.02.24 12:32:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Acronis
[2012.01.11 14:47:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AdFender
[2012.05.23 09:58:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Applian
[2011.05.03 12:30:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2012.05.25 14:55:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2012.01.15 10:56:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\backup
[2012.05.14 08:06:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BDLogging
[2012.05.31 11:32:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Caphyon
[2012.05.25 15:49:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CheckPoint
[2012.05.31 11:33:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ConeXware
[2012.05.26 10:04:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CPA_VA
[2012.05.02 10:55:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2012.06.18 10:53:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2012.06.07 11:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2012.01.15 10:55:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\explauncher
[2012.03.15 10:23:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Farstone
[2012.05.31 08:28:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FolderPathDetail
[2012.01.22 17:16:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ftw
[2011.06.09 11:17:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Hitman Pro
[2012.04.05 09:12:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\HitmanPro
[2012.06.01 18:00:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2012.01.12 21:02:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2012.06.07 13:28:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\iolo
[2011.06.08 08:50:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IsolatedStorage
[2012.06.11 12:37:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\KONAMI
[2012.01.15 10:55:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\launcher
[2012.01.15 09:51:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MAGIX
[2012.01.22 16:30:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\managecapsule
[2012.06.12 09:30:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NovaStor
[2011.11.10 11:28:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\OO Software
[2012.02.11 20:47:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Paragon
[2011.11.26 13:36:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Particles
[2011.07.22 16:18:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2012.02.11 16:54:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PCSettings
[2012.05.25 15:30:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Privacyware
[2011.06.01 22:23:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\QFX Software
[2012.06.18 15:58:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\RapidSolution
[2012.01.15 11:19:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\restore
[2011.06.06 22:58:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Seagate
[2011.05.28 08:47:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Soluto
[2012.03.12 15:40:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SurfAnonymousFree
[2012.05.24 10:59:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Systweak
[2012.05.29 13:57:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.05.03 12:22:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2012.05.24 16:58:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Vba32
[2012.02.07 11:37:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Zoner
[2012.06.27 14:14:36 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{220B1A6E-6AD0-48DC-9382-4F4B7ADD44B2}
[2011.05.03 12:22:39 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
[2011.11.18 11:35:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{A66101B4-EC07-4C31-9A1D-6FC48C8E1E3F}
[2011.11.18 11:34:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{CC181458-DF98-49F8-879F-4BC769D8FA3F}
[2012.02.01 09:31:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\2K Sports
[2011.12.24 11:41:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Abelssoft
[2012.01.22 17:38:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Acronis
[2012.04.04 14:26:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Ashampoo
[2012.06.04 20:52:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Auslogics
[2011.06.04 14:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Avnex
[2012.05.25 15:51:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\CheckPoint
[2012.03.05 17:09:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\ChemTable Software
[2012.01.12 22:02:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\CrashLog
[2012.06.11 12:36:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\DAEMON Tools Lite
[2012.05.30 14:45:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Digiarty
[2012.01.19 12:45:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\ElevatedDiagnostics
[2011.06.09 09:53:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\EurekaLog
[2011.05.31 08:52:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\G DATA
[2012.04.28 20:17:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Gholam_Inc
[2012.03.12 17:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\GPass
[2012.05.30 12:22:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\iolo
[2011.12.14 16:58:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\JAM Software
[2012.06.19 15:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\KeePass
[2011.12.14 11:17:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\KillProcess
[2012.01.12 22:03:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\MAGIX
[2012.06.18 12:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Need for Speed World
[2011.07.22 16:20:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Nokia
[2012.01.12 22:02:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\OnDemandDump
[2011.05.06 05:18:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\OpenOffice.org
[2011.11.09 13:00:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Opera
[2012.02.23 11:10:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Oracle
[2011.07.22 16:20:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\PC Suite
[2011.06.01 22:23:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\QFX Software
[2011.05.18 19:19:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\QuickScan
[2011.11.26 13:36:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Rainbow
[2011.11.22 17:06:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\RegGenie
[2011.06.09 09:38:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\S.A.D
[2011.06.08 09:21:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Smarty Uninstaller
[2012.04.17 16:04:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Steganos
[2011.06.21 09:21:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\SumatraPDF
[2012.03.12 15:40:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\SurfAnonymousFree
[2012.05.24 10:59:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Systweak
[2011.07.02 18:20:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Thunderbird
[2011.05.03 12:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\TuneUp Software
[2012.06.25 15:55:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\uTorrent
[2011.06.05 08:27:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\VitySoft
[2012.05.13 06:45:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Web Proxy Checker
[2011.06.06 19:00:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\WinAVI
[2012.02.17 09:49:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Zoner
[2011.11.15 19:48:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\iolo
[2012.03.12 15:34:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Opera
[2012.06.27 17:28:05 | 000,000,462 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{D0F7BD77-CCB4-4A6F-9796-3E0F6A6FD883}.job

========== Purity Check ==========

========== Custom Scans ==========

< >

< >

< MD5 for: ATAPI.SYS >
[2002.09.23 14:00:00 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2002.09.23 14:00:00 | 000,086,912 | ---- | M] (Microsoft Corporation) MD5=95B858761A00E1D4F81F79A0DA019ACA -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0011\DriverFiles\i386\atapi.sys
[2008.04.14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0015\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2002.09.23 14:00:00 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=82CD2AA659D68781D29BA87421BE0E40 -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe

< MD5 for: CDROM.SYS >
[2002.09.23 14:00:00 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2002.09.23 14:00:00 | 000,047,488 | ---- | M] (Microsoft Corporation) MD5=6506E033AD04CFEC9EE56DBEFD1083DD -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2002.09.23 14:00:00 | 001,004,544 | ---- | M] (Microsoft Corporation) MD5=11D80755545CFB5EB9659EE88440EAE2 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe

< MD5 for: HAL.DLL >
[2002.09.23 14:00:00 | 010,174,968 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.14 00:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.14 00:01:30 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2002.09.23 14:00:00 | 000,127,872 | ---- | M] (Microsoft Corporation) MD5=E8D2B5D5186A9B93D7019D7A74D77A1E -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: SCECLI.DLL >
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
[2002.09.23 14:00:00 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B2666CAB5E8C8A741D63F18D551A47FB -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll

< MD5 for: SVCHOST.EXE >
[2012.04.04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2002.09.23 14:00:00 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=329945887A0C684C38A4845330BC9100 -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe

< MD5 for: TCPIP.SYS >
[2002.09.23 14:00:00 | 000,332,928 | ---- | M] (Microsoft Corporation) MD5=244A2F9816BC9B593957281EF577D976 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2012.03.15 14:35:00 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=CBEEBEB899E31EF52B962CB31FC8CA5C -- C:\WINDOWS\system32\drivers\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2002.09.23 14:00:00 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=B26871B5CE92F9D95AE6E62119799EB9 -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2012.04.04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
[2002.09.23 14:00:00 | 000,516,608 | ---- | M] (Microsoft Corporation) MD5=FF8857D1AF59071F172C0FAD0FD33E87 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe

< >

< %systemroot%*.* /U /s >
[13 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2004.06.12 01:33:28 | 000,290,304 | ---- | M] (Microsoft Corporation) -- C:\subinacl.exe

< %ALLUSERSPROFILE%\Application Data\*. >
[2012.05.17 18:35:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012.02.01 09:31:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\2K Sports
[2011.12.24 11:41:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Abelssoft
[2012.01.22 17:38:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Acronis
[2011.05.01 15:50:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Adobe
[2012.04.04 14:26:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Ashampoo
[2012.06.04 20:52:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Auslogics
[2011.06.04 14:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Avnex
[2012.05.25 15:51:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\CheckPoint
[2012.03.05 17:09:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\ChemTable Software
[2012.01.12 22:02:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\CrashLog
[2012.06.11 12:36:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\DAEMON Tools Lite
[2012.05.30 14:45:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Digiarty
[2012.01.19 12:45:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\ElevatedDiagnostics
[2011.06.09 09:53:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\EurekaLog
[2011.06.02 18:46:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\FastStone
[2011.05.31 08:52:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\G DATA
[2012.04.28 20:17:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Gholam_Inc
[2012.03.12 17:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\GPass
[2011.04.30 09:41:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Identities
[2012.05.30 12:22:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\iolo
[2011.12.14 16:58:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\JAM Software
[2012.06.19 15:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\KeePass
[2011.12.14 11:17:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\KillProcess
[2011.05.01 15:50:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Macromedia
[2012.01.12 22:03:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\MAGIX
[2011.11.16 18:55:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Malwarebytes
[2012.05.24 11:37:39 | 000,000,000 | --SD | M] -- C:\Documents and Settings\dom\Data aplikací\Microsoft
[2012.06.15 14:13:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Mozilla
[2011.07.14 14:30:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Mozilla(2)
[2012.06.18 12:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Need for Speed World
[2011.07.22 16:20:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Nokia
[2011.11.19 21:07:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\NVIDIA
[2012.01.12 22:02:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\OnDemandDump
[2011.05.06 05:18:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\OpenOffice.org
[2011.11.09 13:00:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Opera
[2012.02.23 11:10:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Oracle
[2011.07.22 16:20:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\PC Suite
[2011.06.01 22:23:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\QFX Software
[2011.05.18 19:19:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\QuickScan
[2011.11.26 13:36:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Rainbow
[2011.11.22 17:06:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\RegGenie
[2011.06.09 09:38:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\S.A.D
[2012.04.05 18:59:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Skype
[2011.11.10 11:26:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\skypePM
[2011.06.08 09:21:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Smarty Uninstaller
[2012.04.17 16:04:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Steganos
[2011.06.21 09:21:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\SumatraPDF
[2011.05.07 20:20:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Sun
[2012.06.10 18:13:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\SUPERAntiSpyware.com
[2012.03.12 15:40:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\SurfAnonymousFree
[2012.05.24 10:59:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Systweak
[2011.07.02 18:20:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Thunderbird
[2011.05.03 12:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\TuneUp Software
[2012.06.25 15:55:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\uTorrent
[2011.06.05 08:27:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\VitySoft
[2012.06.24 19:59:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\vlc
[2012.05.13 06:45:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Web Proxy Checker
[2011.06.06 19:00:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\WinAVI
[2012.02.17 09:49:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Data aplikací\Zoner

< %APPDATA%\*.exe /s >
[2011.05.03 12:28:59 | 007,391,320 | ---- | M] (ZONER software ) -- C:\Documents and Settings\dom\Data aplikací\Zoner\NLMDB\product.0032\autoupdate.cz\ZPS12_Update_Build12.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2012.06.15 16:05:41 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2012.06.27 17:28:05 | 000,000,462 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{D0F7BD77-CCB4-4A6F-9796-3E0F6A6FD883}.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2011.04.30 11:07:40 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2011.04.30 11:07:40 | 000,630,784 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2011.04.30 11:07:40 | 000,434,176 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >
[2012.06.27 14:14:40 | 000,082,744 | ---- | M] (Raxco Software, Inc.) -- C:\WINDOWS\system32\drivers\AntiLog32.sys

< %systemroot%\system32\*.* /3 >
[2012.06.27 10:45:40 | 000,093,192 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2012.06.27 10:45:40 | 000,080,918 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2012.06.27 10:45:40 | 000,492,880 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2012.06.27 10:45:40 | 000,498,136 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2012.06.27 10:45:40 | 001,179,636 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2012.06.27 16:02:47 | 000,001,518 | ---- | M] () -- C:\WINDOWS\system32\sun_debug.txt
[2012.06.27 16:02:46 | 000,000,021 | ---- | M] () -- C:\WINDOWS\system32\sun_debug1.txt
[2012.06.27 10:41:45 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl

< %SYSTEMDRIVE%\*.exe >
[2004.06.12 01:33:28 | 000,290,304 | ---- | M] (Microsoft Corporation) -- C:\subinacl.exe

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 08:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2012.06.01 17:37:13 | 000,913,888 | ---- | M] (Mozilla Corporation) MD5=2EAC0F6E91D9FCED7F367D5995550FA5 -- C:\Program Files\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2009.03.08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) MD5=B60DDDD2D63CE41CB8C487FCFBB6419E -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2012.06.15 14:10:37 | 000,874,384 | ---- | M] (Opera Software) MD5=308AB9B6B7BEDF60E458D1B950F5CD80 -- C:\Program Files\Opera\opera.exe

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.06.27 19:27:44 | 000,000,512 | ---- | M] () MD5=41047369F9E800419822D4B5C5D44F8A -- C:\PhysicalMBR.bin

< >

< *crack* /s >

< *keygen* /s >

< *loader* /s >
[

macc · #7 Příspěvek od **macc** » 27 čer 2012 18:40

[2012.06.18 11:03:08 | 000,004,068 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Electronic Arts\Need For Speed World\Data\GFX\_RadialFlareLoader_Double.gfx
[2011.05.04 08:57:53 | 000,001,562 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\MAGIX\PC_Check_Tuning_Free_2011\softupdate\VirusTotal Uploader.png
[2012.02.29 08:49:32 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.02.29 08:49:32 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2012.05.14 21:02:08 | 000,009,051 | ---- | M] () -- \Documents and Settings\dom\Data aplikací\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.05.14 21:02:08 | 000,016,119 | ---- | M] () -- \Documents and Settings\dom\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.05.14 21:02:08 | 000,018,434 | ---- | M] () -- \Documents and Settings\dom\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012.05.14 21:02:08 | 000,009,283 | ---- | M] () -- \Documents and Settings\dom\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012.05.14 21:02:08 | 000,001,699 | ---- | M] () -- \Documents and Settings\dom\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2012.06.19 15:45:14 | 000,001,514 | ---- | M] () -- \Documents and Settings\dom\Data aplikací\Microsoft\Internet Explorer\Quick Launch\Uploader.lnk
[2011.05.09 13:51:45 | 000,001,710 | ---- | M] () -- \Documents and Settings\dom\Data aplikací\Microsoft\Internet Explorer\Quick Launch\VirusTotal Uploader 2.0.lnk
[2012.04.13 08:17:09 | 000,000,751 | ---- | M] () -- \Documents and Settings\dom\Data aplikací\Steganos\ProductDownloader.exe.log
[2012.04.19 12:41:19 | 000,040,660 | ---- | M] () -- \Documents and Settings\dom\Local Settings\Data aplikací\Opera\Opera\widgets\fastesttube-youtube-video-downloader-1.5.4-1.oex
[2011.05.03 12:26:06 | 000,001,722 | ---- | M] () -- \Documents and Settings\dom\Nabídka Start\Programy\VirusTotal Uploader 2.0\VirusTotal Uploader 2.0.lnk
[2011.12.22 23:08:28 | 000,047,752 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\bin\AutoLoader.dll
[2011.12.22 22:06:10 | 000,000,616 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\bin\AutoLoader.dll.manifest
[2011.12.22 23:09:54 | 000,018,568 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\bin\AutoLoaderApp.exe
[2011.12.22 23:08:28 | 000,020,104 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\bin\AutoLoaderx86.dll
[2011.11.29 13:20:44 | 000,000,417 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\bin\CMCLoader.exe.manifest
[2011.11.26 10:38:14 | 000,262,144 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\bin\ESLOADER.REG
[2011.12.22 23:09:42 | 000,517,768 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\bin\Loader.exe
[2011.11.26 14:04:44 | 000,000,417 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\bin\Loader.exe.manifest
[2008.12.16 12:37:16 | 000,003,614 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\etc\gtk-2.0\gdk-pixbuf.loaders
[2008.12.16 12:17:26 | 000,028,560 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2008.12.16 12:17:22 | 000,027,492 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2008.12.16 12:17:24 | 000,041,827 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2008.12.16 12:17:34 | 000,020,750 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2008.12.16 12:17:26 | 000,027,004 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2008.12.16 12:17:28 | 000,033,364 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2008.12.16 12:17:36 | 000,021,329 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2008.12.16 12:17:20 | 000,035,326 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2008.12.16 12:17:28 | 000,023,528 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2008.12.16 12:17:30 | 000,018,354 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2008.12.16 12:17:34 | 000,023,858 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2008.12.16 12:17:30 | 000,028,334 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2008.12.16 12:17:22 | 000,017,895 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2008.12.16 12:17:32 | 000,023,851 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2008.12.16 12:17:32 | 000,041,060 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2012.01.12 10:04:50 | 000,683,256 | ---- | M] () -- \Program Files\EASEUS\Todo Backup\res\peloader.bmp
[2009.08.18 17:31:54 | 000,131,072 | ---- | M] () -- \Program Files\FarStone\RestoreIT 7\FsLoader.exe
[2009.08.18 17:33:10 | 000,126,976 | ---- | M] () -- \Program Files\FarStone\RestoreIT 7\IBP\FsLoader.exe
[2009.08.18 17:33:12 | 000,000,512 | ---- | M] () -- \Program Files\FarStone\RestoreIT 7\IBP\LOADER
[2009.08.18 17:33:14 | 000,016,395 | ---- | M] () -- \Program Files\FarStone\RestoreIT 7\IBP\RELoader.bio
[2012.03.26 10:53:30 | 000,002,560 | ---- | M] () -- \Program Files\Nokia\Nokia PC Suite 7\Lang\MapLoader_cze.NLR
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2012.04.19 08:47:30 | 000,006,081 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.py
[2012.05.13 07:33:45 | 000,020,992 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2012.04.19 08:50:38 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2012.05.13 07:34:03 | 000,029,696 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2012.04.19 04:08:12 | 000,003,867 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\java\unoloader.jar
[2010.01.20 19:18:34 | 000,468,480 | ---- | M] () -- \Program Files\Uploader\XFSUploader.exe
[2012.06.19 15:25:01 | 000,000,212 | ---- | M] () -- \Program Files\Uploader\XFSUploader.ini
[2012.06.19 15:25:01 | 000,003,282 | ---- | M] () -- \Program Files\Uploader\XFSUploader.log
[2012.03.30 16:03:44 | 000,430,080 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSFacebookUploader.exe
[2010.04.29 15:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSPluginLoader.exe
[2011.12.06 14:06:24 | 000,319,488 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\en\ZPSFacebookUploader.resources.dll
[2012.03.30 16:14:22 | 000,444,416 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSFlickrUploader.exe
[2010.04.29 15:12:42 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSPluginLoader.exe
[2011.12.06 14:06:40 | 000,323,584 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\en\ZPSFlickrUploader.resources.dll
[2011.03.08 18:09:04 | 000,194,048 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPicasaUploader.exe
[2010.04.29 15:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPluginLoader.exe
[2010.11.11 13:07:12 | 000,323,584 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\en\ZPSPicasaUploader.resources.dll
[2012.03.26 16:05:34 | 000,102,792 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\8bfLoader.exe
[2012.03.26 16:05:48 | 000,016,776 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\WICLoader.exe
[2002.12.12 00:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2002.12.12 00:14:32 | 000,033,280 | ---- | M] () -- \WINDOWS\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.14 00:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.14 00:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 08:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 194 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:CAEDBDA6
@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:07BF512B
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:5C321E34

< End of report >
a extras
OTL Extras logfile created on: 27.6.2012 19:25:56 - Run 1
OTL by OldTimer - Version 3.2.53.0 Folder = C:\Documents and Settings\dom\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,20 Gb Available Physical Memory | 59,93% Memory free
3,85 Gb Paging File | 3,07 Gb Available in Paging File | 79,86% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 64,76 Gb Total Space | 45,23 Gb Free Space | 69,84% Space Free | Partition Type: NTFS
Drive D: | 401,00 Gb Total Space | 108,38 Gb Free Space | 27,03% Space Free | Partition Type: NTFS
Drive E: | 56,12 Gb Total Space | 55,88 Gb Free Space | 99,58% Space Free | Partition Type: NTFS
Drive H: | 232,88 Gb Total Space | 64,52 Gb Free Space | 27,71% Space Free | Partition Type: NTFS

Computer Name: JA | User Name: dom | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-789336058-113007714-839522115-1003\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"135:TCP" = 135:TCP:*:Enabled:DCOM(135)
"12972:TCP" = 12972:TCP:LocalSubNet:Enabled:audials localhttpserver 12972
"14714:TCP" = 14714:TCP:LocalSubNet:Enabled:audials localhttpserver 14714
"31931:TCP" = 31931:TCP:LocalSubNet:Enabled:audials localhttpserver 31931

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"C:\Program Files\EASEUS\Todo Backup\bin\TbService.exe" = C:\Program Files\EASEUS\Todo Backup\bin\TbService.exe:*:Enabled:TbService.exe -- (CHENGDU YIWO Tech Development Co., Ltd)
"C:\Program Files\EASEUS\Todo Backup\bin\TBConsoleUI.exe" = C:\Program Files\EASEUS\Todo Backup\bin\TBConsoleUI.exe:*:Enabled:Local TBConsoleUI.exe -- (CHENGDU YIWO Tech Development Co., Ltd)
"C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe" = C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe:*:Enabled:Agent.exe -- (CHENGDU YIWO Tech Development Co., Ltd)
"D:\Hry instal\PES2012\pes2012.exe" = D:\Hry instal\PES2012\pes2012.exe:*:Enabled:Pro Evolution Soccer 2012 -- (Konami Digital Entertainment Co., Ltd.)
"C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe" = C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper -- (Opera Software)
"C:\Program Files\RapidSolution\Audials 9\Audials.exe" = C:\Program Files\RapidSolution\Audials 9\Audials.exe:LocalSubNet:Enabled:Audials local subnet -- (RapidSolution Software AG)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{014534FF-1D46-4A77-9B48-29EFD145995B}" = AntiLogger
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{0ECAEBD0-76C6-4D55-A5BB-23FA22069538}" = PowerArchiver 2011
"{0F9196C6-58B4-445B-B56E-B1200FECC151}" = Microsoft Bootvis
"{1111706F-666A-4037-7777-203328764D10}" = JavaFX 2.0.3
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83217005FF}" = Java(TM) 7 Update 5
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AA68A73-DB9C-439D-9481-981C82BD008B}" = Nokia Connectivity Cable Driver
"{50D47CE8-9C16-42D1-A8D8-B143B22E232A}" = Belkin Desktop PCI Card Driver
"{51071D66-D034-4239-94E0-723FCA10B6FE}" = OpenOffice.org 3.4
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{55FD1D5A-7AEF-4DA3-8FAF-A71B2A52FFC7}_is1" = iolo technologies' System Mechanic
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{6ED9555A-A4DE-463D-A76C-8371E80C8913}" = Audials
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1" = Need For Speed™ World
"{8E1DCD15-C9F1-49CE-807B-198C8241EB6B}" = ULi USB2.0 Controller Driver
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2AA4204-C05A-4013-888A-AD153139297F}" = PC Connectivity Solution
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A8ABAA1F-0825-4C68-80CF-CE834FE6729C}" = ESET NOD32 Antivirus
"{A97F28B2-3BA1-49B7-AEF6-CC8956ED8CAA}" = Nokia PC Suite
"{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet PCI NIC Driver
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AFAF626C-D2E6-455C-9A5A-ACDF049A6168}" = ASUS nVidia Driver
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 136.27
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.12.0213
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.8.15
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6AEA771-9737-41A2-AA07-772CB1A1CC27}_is1" = Auslogics BitReplica
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver
"{C43E4B9C-14C8-4EB0-998B-85211B6EDD61}" = Seagate DiscWizard
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}" = COMODO Internet Security
"{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E737A098-F161-4B6F-AF22-86AAE34F6FBD}" = Pro Evolution Soccer 2012
"{E83C2D54-5E65-4595-B59D-601B4467DDB1}" = NovaBACKUP
"{EA2D9BC0-75E9-4975-9A0A-DD82198DDC53}" = MSXML 6.0 Parser
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"72A50F48CC5601190B9C4E74D81161693133E7F7" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9)
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v1.85
"AntiLogger" = AntiLogger
"Ashampoo Burning Studio 2012 CBE_is1" = Ashampoo Burning Studio 2012 CBE v.11.0.4
"CCleaner" = CCleaner
"CD_EntrainementCerebral_CZ" = HAPPYneuron Brain Jogging
"CobBackup10" = Cobian Backup 10
"Comodo Dragon" = Comodo Dragon
"DAEMON Tools Lite" = DAEMON Tools Lite
"Defraggler" = Defraggler
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)
"EaseUS Todo Backup Workstation 4.0_is1" = EaseUS Todo Backup Workstation 4.0
"FileHippo.com" = FileHippo.com Update Checker
"ie8" = Windows Internet Explorer 8
"KeePassPasswordSafe2_is1" = KeePass Password Safe 2.19
"KeyScrambler" = KeyScrambler
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 7.2.0
"KMediaPlayer_is1" = KMedia Player
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.61.0.1400
"Marvell Miniport Driver" = Marvell Miniport Driver
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 13.0 (x86 cs)" = Mozilla Firefox 13.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Nokia PC Suite" = Nokia PC Suite
"NovaBACKUP" = NovaBACKUP
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Opera 12.00.1467" = Opera 12.00
"PatchBeam" = PatchBeam
"PowerArchiver 2011 12.12.04" = PowerArchiver 2011
"Psani na stroji_is1" = psani beta version 1.0.3.0
"RestoreIT 7" = RestoreIT 7
"Revo Uninstaller" = Revo Uninstaller 1.94
"SecurityKISS Certificate_is1" = v0.2.2
"SecurityKISS Tunnel_is1" = SecurityKISS Tunnel v0.2.2
"SMoKE Patch BLACK 4.7.3" = SMoKE Patch BLACK 4.7.3
"SpywareBlaster_is1" = SpywareBlaster 4.6
"SumatraPDF" = SumatraPDF 2.1.1
"Totalcmd" = Total Commander (Remove or Repair)
"Tweaking.com - Windows Repair (All in One)" = Tweaking.com - Windows Repair (All in One)
"ULi M5288 SATA Controller Driver" = ULi M5288 SATA Controller Driver
"Uploader" = Uploader
"uTorrent" = µTorrent
"VirusTotalUploader2.0" = VirusTotal Uploader 2.0
"Visual IP Trace" = Visual IP Trace
"VLC media player" = VLC media player 2.0.1
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinX HD Video Converter Deluxe_is1" = WinX HD Video Converter Deluxe 3.0
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"xvid" = XviD MPEG-4 Video Codec
"ZonerPhotoStudio14_EN_is1" = Zoner Photo Studio 14

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 7.4.2012 4:21:42 | Computer Name = JA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 7.4.2012 4:21:42 | Computer Name = JA | Source = PerfNet | ID = 2002
Description = Nelze otevřít službu přesměrovače. Data o výkonu přesměrovače nejsou
k
dispozici.Vrácený chybový kód je v datech DWORD 0.

Error - 11.4.2012 7:04:22 | Computer Name = JA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 11.4.2012 7:04:22 | Computer Name = JA | Source = PerfNet | ID = 2002
Description = Nelze otevřít službu přesměrovače. Data o výkonu přesměrovače nejsou
k
dispozici.Vrácený chybový kód je v datech DWORD 0.

Error - 11.4.2012 7:06:03 | Computer Name = JA | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: The server name or address could not be resolved

Error - 11.4.2012 8:26:58 | Computer Name = JA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 11.4.2012 8:26:58 | Computer Name = JA | Source = PerfNet | ID = 2002
Description = Nelze otevřít službu přesměrovače. Data o výkonu přesměrovače nejsou
k
dispozici.Vrácený chybový kód je v datech DWORD 0.

Error - 11.4.2012 9:37:46 | Computer Name = JA | Source = Application Error | ID = 1000
Description = Chybující aplikace pes2012.exe, verze 1.3.0.0, chybující modul pes2012.exe,
verze 1.3.0.0, adresa chyby 0x01020ef0.

Error - 12.4.2012 4:34:47 | Computer Name = JA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 12.4.2012 4:34:47 | Computer Name = JA | Source = PerfNet | ID = 2002
Description = Nelze otevřít službu přesměrovače. Data o výkonu přesměrovače nejsou
k
dispozici.Vrácený chybový kód je v datech DWORD 0.

[ Cobian Backup Boletus VSC Service Events ]
Error - 22.1.2012 12:57:11 | Computer Name = JA | Source = Cobian Backup Boletus VSC Service | ID = 0
Description = The provider returned an unexpected error code.

Error - 15.2.2012 14:06:26 | Computer Name = JA | Source = Cobian Backup Boletus VSC Service | ID = 0
Description = The operation has timed out.

[ System Events ]
Error - 16.6.2012 4:16:46 | Computer Name = JA | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: AliIde

Error - 16.6.2012 4:44:14 | Computer Name = JA | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Microsoft .NET Framework NGEN v4.0.30319_X86.

Error - 16.6.2012 4:48:17 | Computer Name = JA | Source = Windows Update Agent | ID = 20
Description = Instalace se nezdařila: Instalace následující aktualizace se nezdařila
z důvodu chyby (0x80070643): Aktualizace Microsoft .NET Framework 3.5 Service Pack
1 a .NET Framework 3.5 Family Update pro verze rozhraní .NET 2.0 až 3.5 (KB951847)
x86.

Error - 16.6.2012 5:05:16 | Computer Name = JA | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Microsoft .NET Framework NGEN v4.0.30319_X86.

Error - 16.6.2012 5:11:35 | Computer Name = JA | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Microsoft .NET Framework NGEN v4.0.30319_X86.

Error - 18.6.2012 4:36:24 | Computer Name = JA | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 10.11.21.194 pro síťovou kartu s adresou 00FF609C247A
byla serverem DHCP 10.10.27.213 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).

Error - 21.6.2012 7:42:00 | Computer Name = JA | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: AliIde

Error - 21.6.2012 7:42:12 | Computer Name = JA | Source = sr | ID = 1
Description = Filtr nástroje Obnovení systému zjistil neočekávanou chybu 0xC0000001
při zpracování souboru na svazku HarddiskVolume5. Sledování svazku bylo ukončeno.

Error - 25.6.2012 10:26:00 | Computer Name = JA | Source = sr | ID = 1
Description = Filtr nástroje Obnovení systému zjistil neočekávanou chybu 0xC0000010
při zpracování souboru Dokumenty na svazku HarddiskVolumeShadowCopy1. Sledování
svazku bylo ukončeno.

Error - 25.6.2012 10:29:19 | Computer Name = JA | Source = sr | ID = 1
Description = Filtr nástroje Obnovení systému zjistil neočekávanou chybu 0xC0000010
při zpracování souboru Dokumenty na svazku HarddiskVolumeShadowCopy1. Sledování
svazku bylo ukončeno.

[ TuneUp Events ]
Error - 3.5.2011 9:48:06 | Computer Name = JA | Source = TuneUp Program Statistics | ID = 131840
Description =

< End of report >

#8 Příspěvek od **vyosek** » 29 čer 2012 09:37

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\Video3D32.sys -- (Video3D)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - File not found [Kernel | Unavailable | Unknown] -- D:\b69fbbbc5d50cade7f265c814ffed4\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\slicedisk.sys -- (slicedisk.sys)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\bdsandbox.sys -- (bdsandbox)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\Apfiltr.sys -- (ApfiltrService)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\dom\LOCALS~1\Temp\ALSysIO.sys -- (ALSysIO)
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\S-1-5-21-789336058-113007714-839522115-1003\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-789336058-113007714-839522115-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DOM\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\M2020Q5Z.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DOM\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\M2020Q5Z.DEFAULT\EXTENSIONS\FIREFOX@GHOSTERY.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\DOM\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\M2020Q5Z.DEFAULT\EXTENSIONS\KEYSCRAMBLER@QFX.SOFTWARE.CORPORATION
[13 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2012.06.15 16:05:41 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2012.06.27 17:28:05 | 000,000,462 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{D0F7BD77-CCB4-4A6F-9796-3E0F6A6FD883}.job
@Alternate Data Stream - 194 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:CAEDBDA6
@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:07BF512B
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:5C321E34

:files
C:\Documents and Settings\All Users\Data aplikací\{*}
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

macc · #9 Příspěvek od **macc** » 29 čer 2012 09:53

Dobrý den,díky za Váš čas a dávam log
All processes killed
========== OTL ==========
Service WDICA stopped successfully!
Service WDICA deleted successfully!
Service Video3D stopped successfully!
Service Video3D deleted successfully!
File System32\Drivers\Video3D32.sys not found.
Service VBoxNetFlt stopped successfully!
Service VBoxNetFlt deleted successfully!
File system32\DRIVERS\VBoxNetFlt.sys not found.
Error: No service named UnlockerDriver5 was found to stop!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\UnlockerDriver5 deleted successfully.
File D:\b69fbbbc5d50cade7f265c814ffed4\UnlockerDriver5.sys not found.
Service slicedisk.sys stopped successfully!
Service slicedisk.sys deleted successfully!
File C:\WINDOWS\system32\slicedisk.sys not found.
Service PDRFRAME stopped successfully!
Service PDRFRAME deleted successfully!
Service PDRELI stopped successfully!
Service PDRELI deleted successfully!
Service PDFRAME stopped successfully!
Service PDFRAME deleted successfully!
Service PDCOMP stopped successfully!
Service PDCOMP deleted successfully!
Service PCIDump stopped successfully!
Service PCIDump deleted successfully!
Service lbrtfdc stopped successfully!
Service lbrtfdc deleted successfully!
Service i2omgmt stopped successfully!
Service i2omgmt deleted successfully!
Service Changer stopped successfully!
Service Changer deleted successfully!
Service bdsandbox stopped successfully!
Service bdsandbox deleted successfully!
File C:\WINDOWS\system32\drivers\bdsandbox.sys not found.
Service ApfiltrService stopped successfully!
Service ApfiltrService deleted successfully!
File system32\DRIVERS\Apfiltr.sys not found.
Service ALSysIO stopped successfully!
Service ALSysIO deleted successfully!
File C:\DOCUME~1\dom\LOCALS~1\Temp\ALSysIO.sys not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\S-1-5-21-789336058-113007714-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-789336058-113007714-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP125.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP17E.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP18A.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP221.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP22F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP24D.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP24F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP261.tmp\PresentationCore.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP261.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP26F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP297.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP345.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP385.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9A.tmp folder deleted successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job moved successfully.
C:\WINDOWS\Tasks\User_Feed_Synchronization-{D0F7BD77-CCB4-4A6F-9796-3E0F6A6FD883}.job moved successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:CAEDBDA6 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:07BF512B deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:5C321E34 deleted successfully.
========== FILES ==========
C:\Documents and Settings\All Users\Data aplikací\{220B1A6E-6AD0-48DC-9382-4F4B7ADD44B2} folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357} folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\{A66101B4-EC07-4C31-9A1D-6FC48C8E1E3F} folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\{CC181458-DF98-49F8-879F-4BC769D8FA3F}\data folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\{CC181458-DF98-49F8-879F-4BC769D8FA3F} folder moved successfully.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 35234 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: dom
->Temp folder emptied: 247808 bytes
->Temporary Internet Files folder emptied: 5405420 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 48562159 bytes
->Opera cache emptied: 738914 bytes
->Flash cache emptied: 939 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 28952060 bytes
->Opera cache emptied: 0 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33628 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 420233 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 19760082 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 548367 bytes

Total Files Cleaned = 100,00 mb

[EMPTYFLASH]

User: Administrator

User: All Users

User: Default User

User: dom
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.53.0 log created on 06292012_104934

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

#10 Příspěvek od **vyosek** » 29 čer 2012 10:03

Zdravim

OTL udelalo co melo, jak se chova PC

macc · #11 Příspěvek od **macc** » 29 čer 2012 10:06

Zdravim,ja myslím,že PC je v pořádku.Děkuji

#12 Příspěvek od **vyosek** » 29 čer 2012 10:27

Tak jeste uklidime

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

macc · #13 Příspěvek od **macc** » 29 čer 2012 10:41

Tak uklizeno a mocrát Vám děkuji

#14 Příspěvek od **vyosek** » 29 čer 2012 10:50

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

VIRY.CZ

preventivka

preventivka

Re: preventivka

Re: preventivka

Re: preventivka

Re: preventivka

Re: preventivka

Re: preventivka

Re: preventivka

Re: preventivka

Re: preventivka

Re: preventivka

Re: preventivka

Re: preventivka

Re: preventivka