Prosila bych o kontrolu logu. Mám problém se zamrznutím pc a zasekávání. Hlavně když chci najet na FF, ale nevím zda to s tím souvisí. Pc jsem už projížděla spy botem a adwarem, ten našel i nějaké trojany generic, které jsem smazala. Předem díky za pomoc a rady.
Tady log:
Run by Věruš at 2012-08-09 13:21:24
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 27 GB (16%) free of 170 GB
Total RAM: 2046 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:24:09, on 9.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\PROGRA~1\AD-AWA~1\AdAware.exe
C:\WINDOWS\system32\lxbkcoms.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Věruš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Věruš\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [lxbkbmgr.exe] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Ad-Aware Antivirus] "C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher" --windows-run
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP Infium - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP Infium\infium.exe (HKCU)
O9 - Extra button: Unibet - {34BC8567-523B-4C9E-BE3A-BC1366B656FA} - C:\Microgaming\Poker\unibetpokerMPP\MPPoker.exe (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {063F7D71-5E0B-48F2-87D5-F63C5917947E} - http://ahnlabdownload.nefficient.co.kr/ ... aosmgr.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{67EC769F-08AB-4797-8EFC-3B1833739DA1}: NameServer = 188.75.128.128,10.0.150.150
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ad-Aware Service - Lavasoft Limited - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: lxbk_device - - C:\WINDOWS\system32\lxbkcoms.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMSAccess - Unknown owner - C:\Program Files\Blaze Media Pro\NMSAccess32.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: Ad-Aware (SBAMSvc) - GFI Software - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
--
End of file - 12194 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Ad-Aware Antivirus Scheduled Scan.job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004UA.job
C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{1CCABC10-17CA-4840-AB3F-BD83ED048261}.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, jqs@sun.com:1.0, noia2_option@kk.noia:3.76, {20a82645-c095-46ed-80e3-08825760534b}:0.0.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, battlefieldheroespatcher@ea.com:5.0.31.0, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {32a1fd71-835e-4b11-8e54-886fda0b4c89}:1.1, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, plugin2@gameplaylabs.com:2.0, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94, {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17, {9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}:3.76"
prefs.js - "keyword.URL" - "chrome://browser-region/locale/region.properties"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.270 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{972ce4c6-7e08-4474-a285-3208198ce6fd}(2)
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
NPOFF12.DLL
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\
2020Player_IKEA@2020Technologies.com
battlefieldheroespatcher@ea.com
engine@conduit.com
noia2_option@kk.noia
plugin2@gameplaylabs.com
{32a1fd71-835e-4b11-8e54-886fda0b4c89}
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\
conduit.xml
icqplugin-1.xml
icqplugin-2.xml
icqplugin.xml
qip-search.xml
searchcanvas.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-04-04 65952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-07-21 453104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-07-21 157680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-03-26 931200]
"lxbkbmgr.exe"=C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe [2008-02-28 74408]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
"Ad-Aware Antivirus"=C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher --windows-run []
"Ad-Aware Browsing Protection"=C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe [2011-10-21 198032]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-07-03 17417392]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2012-05-18 880496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CHotkey]
C:\WINDOWS\mHotkey.exe [2006-12-08 547840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files\Clownfish\Clownfish.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]
C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe [2005-10-31 57344]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-09-16 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Ahead\InCD\InCD.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lexmark X1100 Series]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper]
Rundll32 P17.dll,P17Helper []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snp2uvc]
C:\WINDOWS\vsnp2uvc.exe [2008-09-10 569344]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TaskTray]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2012-01-23 247728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tsnp2uvc]
C:\WINDOWS\tsnp2uvc.exe [2008-09-10 237568]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
C:\WINDOWS\UpdReg.EXE [2000-05-11 90112]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe [2012-05-18 880496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^BDARemote.lnk]
C:\PROGRA~1\USBTV~1\EM28XX\BDAREM~1.EXE [2007-06-26 81997]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak EasyShare software.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak software updater.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"InCDsrv"=2
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-02-11 155648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MSIServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SBAMSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Ultima Online\client.exe"="C:\Program Files\Ultima Online\client.exe:*:Enabled:client"
"C:\QIP Infium\infium.exe"="C:\QIP Infium\infium.exe:*:Enabled:QIP Infium"
"C:\Program Files\QIP Infium\infium.exe"="C:\Program Files\QIP Infium\infium.exe:*:Enabled:QIP Infium"
"C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe"="C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe:*:Enabled:R6Vegas2_Game"
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe"="C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine"
"C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Akamai\netsession_win.exe"="C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Interface"
"C:\Documents and Settings\Věruš\Local Settings\Temp\CF_Downloader.exe"="C:\Documents and Settings\Věruš\Local Settings\Temp\CF_Downloader.exe:*:Enabled:CrossFire_Downloader"
"C:\Program Files\Z8Games\CrossFire\CF_G4box.exe"="C:\Program Files\Z8Games\CrossFire\CF_G4box.exe:*:Enabled:cf launcher"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil"
"C:\Program Files\Ultima Online DP2\client.exe"="C:\Program Files\Ultima Online DP2\client.exe:*:Enabled:Ultima Online Client"
"C:\Program Files\Ultima Online DP2\UOAM\uoam.exe"="C:\Program Files\Ultima Online DP2\UOAM\uoam.exe:*:Enabled:Ultima Online's premier mapping tool."
"C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe"="C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe:*:Enabled:CF_DOWNLOADER"
"C:\WINDOWS\system32\lxbkcoms.exe"="C:\WINDOWS\system32\lxbkcoms.exe:*:Enabled:X1100 Series Server"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.524\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.524\Agent.exe:*:Enabled:Blizzard Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Program Files\Diablo III\Diablo III.exe"="C:\Program Files\Diablo III\Diablo III.exe:*:Enabled:Diablo III"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1199\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1199\Agent.exe:*:Enabled:Battle.net Update Agent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
======List of files/folders created in the last 1 month======
2012-08-09 13:21:25 ----D---- C:\Program Files\trend micro
2012-08-09 13:21:24 ----D---- C:\rsit
2012-08-05 00:36:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection
2012-08-05 00:36:11 ----A---- C:\WINDOWS\system32\drivers\sbapifs.sys
2012-08-05 00:36:11 ----A---- C:\WINDOWS\system32\drivers\sbaphd.sys
2012-08-05 00:36:02 ----D---- C:\WINDOWS\system32\drivers\VDD
2012-08-05 00:36:02 ----D---- C:\Program Files\Ad-Aware Antivirus
2012-08-05 00:35:16 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus
2012-08-05 00:33:28 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-08-04 21:53:35 ----D---- C:\Reborn
2012-08-04 17:54:05 ----D---- C:\Program Files\PokerStars
2012-08-04 17:39:48 ----D---- C:\Program Files\CardCasino(2).com
2012-08-04 11:54:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2012-08-02 01:55:36 ----A---- C:\Documents and Settings\Věruš\Data aplikací\room_v3.dat
2012-08-01 23:27:49 ----D---- C:\Program Files\Garena Plus
2012-08-01 23:27:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
2012-08-01 23:25:26 ----D---- C:\Program Files\Warcraft III
2012-07-31 23:30:22 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Microgaming
2012-07-31 23:29:33 ----D---- C:\Microgaming
2012-07-31 23:29:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\MGS
2012-07-23 00:23:23 ----D---- C:\Documents and Settings\Věruš\Data aplikací\.minecraft
2012-07-22 17:33:10 ----D---- C:\Program Files\Diablo III
2012-07-22 17:33:10 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2012-07-22 17:33:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
2012-07-22 17:32:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Battle.net
2012-07-21 20:51:21 ----D---- C:\Program Files\Common Files\Java
2012-07-21 20:51:01 ----A---- C:\WINDOWS\system32\javaws.exe
2012-07-21 20:50:58 ----A---- C:\WINDOWS\system32\javaw.exe
2012-07-21 20:50:58 ----A---- C:\WINDOWS\system32\java.exe
2012-07-17 18:15:53 ----D---- C:\Program Files\Worms Reloaded
2012-07-13 21:27:38 ----D---- C:\Documents and Settings\All Users\Data aplikací\firebird
2012-07-13 21:26:11 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Exec
2012-07-13 17:45:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\tmp
2012-07-13 17:45:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\hps
2012-07-11 20:22:55 ----D---- C:\Program Files\dm
2012-07-11 15:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2012-07-11 15:20:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2718523$
2012-07-11 15:19:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2012-07-11 15:18:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2012-07-11 15:14:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2012-07-10 12:59:00 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Google
======List of files/folders modified in the last 1 month======
2012-08-09 13:21:25 ----RD---- C:\Program Files
2012-08-09 13:21:25 ----D---- C:\WINDOWS\Prefetch
2012-08-09 13:21:13 ----D---- C:\WINDOWS\Temp
2012-08-09 13:15:19 ----SD---- C:\WINDOWS\Tasks
2012-08-09 13:08:10 ----D---- C:\Documents and Settings\Věruš\Data aplikací\uTorrent
2012-08-09 13:07:08 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Skype
2012-08-09 13:06:06 ----D---- C:\WINDOWS\system32\CatRoot2
2012-08-09 13:05:18 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-08-09 13:03:36 ----D---- C:\WINDOWS\system32\CatRoot
2012-08-07 23:07:25 ----D---- C:\temp
2012-08-07 10:24:59 ----D---- C:\WINDOWS
2012-08-05 17:50:41 ----SHD---- C:\WINDOWS\Installer
2012-08-05 17:42:06 ----D---- C:\WINDOWS\system32
2012-08-05 17:42:00 ----D---- C:\Program Files\WinRAR
2012-08-05 12:41:26 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-08-05 00:36:16 ----D---- C:\Config.Msi
2012-08-05 00:36:11 ----D---- C:\WINDOWS\system32\drivers
2012-08-05 00:36:02 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-08-05 00:33:24 ----D---- C:\Program Files\Mozilla Firefox
2012-08-05 00:28:38 ----D---- C:\WINDOWS\system32\config
2012-08-05 00:28:16 ----D---- C:\WINDOWS\system32\wbem
2012-08-05 00:28:15 ----D---- C:\WINDOWS\Registration
2012-08-05 00:27:42 ----D---- C:\RO
2012-08-04 22:01:14 ----D---- C:\WINDOWS\WinSxS
2012-07-31 20:50:20 ----D---- C:\Program Files\DOSBox-0.74
2012-07-31 19:02:35 ----D---- C:\WINDOWS\Minidump
2012-07-31 19:02:34 ----D---- C:\Program Files\Xvid
2012-07-31 19:02:34 ----D---- C:\Program Files\Windows Media Connect 2
2012-07-31 19:02:34 ----D---- C:\Program Files\Valve
2012-07-31 19:02:34 ----D---- C:\Program Files\UOAM
2012-07-31 19:02:34 ----D---- C:\Program Files\Ultima Online
2012-07-31 19:02:34 ----D---- C:\Program Files\Messenger
2012-07-31 19:02:34 ----D---- C:\Program Files\ICQ6Toolbar
2012-07-31 19:02:34 ----D---- C:\Program Files\DivX
2012-07-31 19:02:34 ----D---- C:\Program Files\Ask.com
2012-07-31 18:52:40 ----A---- C:\WINDOWS\SuperUtil.ini
2012-07-31 18:37:39 ----D---- C:\Program Files\Quadriga Games
2012-07-31 18:37:04 ----RSD---- C:\WINDOWS\assembly
2012-07-31 18:37:04 ----D---- C:\Program Files\Sony
2012-07-31 18:36:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sony Corporation
2012-07-31 18:34:44 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-07-31 18:34:43 ----HD---- C:\WINDOWS\inf
2012-07-31 18:28:40 ----D---- C:\Program Files\I.CA
2012-07-31 18:28:12 ----D---- C:\Program Files\Ahead
2012-07-31 18:27:09 ----D---- C:\Program Files\Elite Utilities
2012-07-31 18:26:24 ----HD---- C:\Program Files\InstallShield Installation Information
2012-07-31 18:22:56 ----D---- C:\Program Files\Blaze Media Pro
2012-07-31 18:20:30 ----D---- C:\Program Files\Common Files
2012-07-31 18:05:16 ----D---- C:\Documents and Settings\Věruš\Data aplikací\ICQ
2012-07-15 11:13:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-07-15 11:13:44 ----RD---- C:\Program Files\Skype
2012-07-13 12:07:44 ----D---- C:\Program Files\rajce
2012-07-11 15:20:14 ----A---- C:\WINDOWS\imsins.BAK
2012-07-11 15:20:12 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-07-11 15:20:05 ----HD---- C:\WINDOWS\$hf_mig$
2012-07-11 15:20:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2012-07-11 15:19:32 ----D---- C:\Program Files\Common Files\System
2012-07-11 15:19:32 ----A---- C:\WINDOWS\win.ini
2012-07-11 15:14:59 ----A---- C:\WINDOWS\system32\MRT.exe
2012-07-10 12:49:12 ----D---- C:\Program Files\Google
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AFPAnsi;Alfa File Protector Ansi; C:\WINDOWS\System32\Drivers\AFPAnsi.sys [2007-03-11 43936]
R0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2008-07-31 20616]
R0 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2012-03-20 171064]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-08-21 105344]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-08-12 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-03-03 48640]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-05-30 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 MpKsl578de942;MpKsl578de942; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{BC3F5452-810F-4643-B4F4-C77F031A88D6}\MpKsl578de942.sys []
R1 NVTCP;NVIDIA TCP/IP Protocol Driver; C:\WINDOWS\System32\DRIVERS\NVTcp.sys [2006-09-11 110592]
R1 sbaphd;sbaphd; C:\WINDOWS\system32\drivers\sbaphd.sys [2011-11-29 21240]
R1 SBRE;SBRE; \??\C:\WINDOWS\system32\drivers\SBREdrv.sys []
R1 SuperMounter;SuperMounter; C:\WINDOWS\system32\drivers\SuperMounter.sys [2008-02-24 11264]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]
R2 sbapifs;sbapifs; C:\WINDOWS\system32\drivers\sbapifs.sys [2011-11-29 77816]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-02-11 3565056]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2005-01-10 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-09-11 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-09-11 19968]
R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2005-01-10 106496]
R3 P17;Sound Blaster Audigy; C:\WINDOWS\system32\drivers\P17.sys [2005-07-07 1389056]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2009-01-08 3528576]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S3 aj01x1dw;aj01x1dw; C:\WINDOWS\system32\drivers\aj01x1dw.sys []
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BTCOM;Bluetooth Serial port driver; C:\WINDOWS\system32\DRIVERS\btcomport.sys []
S3 BTCOMBUS;Bluetooth Serial Port Bus Service; C:\WINDOWS\System32\Drivers\btcombus.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2008-12-07 30088]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2011-05-16 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2011-05-16 25512]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2008-07-02 26248]
S3 Lavasoft Kernexplorer;Lavasoft helper driver; C:\WINDOWS\system32\drivers\Lavasoft Kernexplorer.sys []
S3 Mkd2kfNt;Mkd2kfNt; C:\WINDOWS\system32\drivers\Mkd2kfNt.sys [2010-10-29 142320]
S3 Mkd2Nadr;Mkd2Nadr; C:\WINDOWS\system32\drivers\Mkd2Nadr.sys [2011-01-14 88944]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys []
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 27064]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2006-03-02 5888]
S3 SE2Fbus;Sony Ericsson Device 047 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE2Fbus.sys [2006-11-10 61600]
S3 SE2Fmdfl;Sony Ericsson Device 047 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE2Fmdfl.sys [2006-11-10 9360]
S3 SE2Fmdm;Sony Ericsson Device 047 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE2Fmdm.sys [2006-11-10 97184]
S3 SE2Fmgmt;Sony Ericsson Device 047 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE2Fmgmt.sys [2006-11-10 88688]
S3 se2Fnd5;Sony Ericsson Device 047 USB Ethernet Emulation SEMC47 (NDIS); C:\WINDOWS\system32\DRIVERS\se2Fnd5.sys [2006-11-10 18704]
S3 SE2Fobex;Sony Ericsson Device 047 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE2Fobex.sys [2006-11-10 86560]
S3 se2Funic;Sony Ericsson Device 047 USB Ethernet Emulation SEMC47 (WDM); C:\WINDOWS\system32\DRIVERS\se2Funic.sys [2006-11-10 90800]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2010-02-25 25216]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 XDva349;XDva349; C:\WINDOWS\system32\drivers\XDva349.sys []
S3 XDva358;XDva358; C:\WINDOWS\system32\drivers\XDva358.sys []
S3 XDva359;XDva359; C:\WINDOWS\system32\drivers\XDva359.sys []
S3 XDva362;XDva362; C:\WINDOWS\system32\drivers\XDva362.sys []
S3 XDva367;XDva367; C:\WINDOWS\system32\drivers\XDva367.sys []
S3 XDva370;XDva370; C:\WINDOWS\system32\drivers\XDva370.sys []
S3 XDva374;XDva374; C:\WINDOWS\system32\drivers\XDva374.sys []
S3 XDva379;XDva379; C:\WINDOWS\system32\drivers\XDva379.sys []
S3 XDva382;XDva382; C:\WINDOWS\system32\drivers\XDva382.sys []
S3 XDva385;XDva385; C:\WINDOWS\system32\drivers\XDva385.sys []
S3 XDva386;XDva386; C:\WINDOWS\system32\drivers\XDva386.sys []
S3 XDva391;XDva391; C:\WINDOWS\system32\drivers\XDva391.sys []
S3 XDva394;XDva394; C:\WINDOWS\system32\drivers\XDva394.sys []
S3 XDva398;XDva398; \??\C:\WINDOWS\system32\XDva398.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ad-Aware Service;Ad-Aware Service; C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe [2012-07-12 1239952]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-02-11 602112]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.exe [1999-12-13 44032]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe [2006-09-11 172032]
R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-04-13 20543]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-07-21 161776]
R2 lxbk_device;lxbk_device; C:\WINDOWS\system32\lxbkcoms.exe [2008-02-19 537256]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-03-26 11552]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2006-09-11 135227]
R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2006-09-11 65599]
R2 SBAMSvc;Ad-Aware; C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe [2011-12-19 3289032]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2012-01-23 92592]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2010-02-10 593920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
S2 NMSAccess;NMSAccess; C:\Program Files\Blaze Media Pro\NMSAccess32.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-03 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-05 250056]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-22 136120]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-14 113120]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2010-06-07 3549224]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
kontrola logu - zamrzani pc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: kontrola logu - zamrzani pc
Zdravim 
V pc mate dva antiviry. MSE a Ad-Aware Antivirus. Jeden z nich odinstalujte, jinak dochazi ke kolizim stitu.
Odinstalujte Spyboota. Program je zastaraly a spis jen na ozdobu, nez ze by chranil.
Odinstalujte Toolbar: Conduit Engine
Pak dejte novy log z RSIT a docistime to
V pc mate dva antiviry. MSE a Ad-Aware Antivirus. Jeden z nich odinstalujte, jinak dochazi ke kolizim stitu. Odinstalujte Spyboota. Program je zastaraly a spis jen na ozdobu, nez ze by chranil. Odinstalujte Toolbar: Conduit Engine Pak dejte novy log z RSIT a docistime toPokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: kontrola logu - zamrzani pc
Hotovo a nový log
Run by Věruš at 2012-08-09 19:16:52
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 27 GB (16%) free of 170 GB
Total RAM: 2046 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:17:06, on 9.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\lxbkcoms.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Věruš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Věruš\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (file missing)
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [lxbkbmgr.exe] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP Infium - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP Infium\infium.exe (HKCU)
O9 - Extra button: Unibet - {34BC8567-523B-4C9E-BE3A-BC1366B656FA} - C:\Microgaming\Poker\unibetpokerMPP\MPPoker.exe (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {063F7D71-5E0B-48F2-87D5-F63C5917947E} - http://ahnlabdownload.nefficient.co.kr/ ... aosmgr.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{67EC769F-08AB-4797-8EFC-3B1833739DA1}: NameServer = 188.75.128.128,10.0.150.150
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: lxbk_device - - C:\WINDOWS\system32\lxbkcoms.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMSAccess - Unknown owner - C:\Program Files\Blaze Media Pro\NMSAccess32.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
--
End of file - 11344 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Ad-Aware Antivirus Scheduled Scan.job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004UA.job
C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{1CCABC10-17CA-4840-AB3F-BD83ED048261}.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, jqs@sun.com:1.0, noia2_option@kk.noia:3.76, {20a82645-c095-46ed-80e3-08825760534b}:0.0.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, battlefieldheroespatcher@ea.com:5.0.31.0, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {32a1fd71-835e-4b11-8e54-886fda0b4c89}:1.1, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, plugin2@gameplaylabs.com:2.0, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94, {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17, {9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}:3.76"
prefs.js - "keyword.URL" - "chrome://browser-region/locale/region.properties"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.270 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{972ce4c6-7e08-4474-a285-3208198ce6fd}(2)
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
NPOFF12.DLL
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\
2020Player_IKEA@2020Technologies.com
battlefieldheroespatcher@ea.com
noia2_option@kk.noia
plugin2@gameplaylabs.com
{32a1fd71-835e-4b11-8e54-886fda0b4c89}
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\
conduit.xml
icqplugin-1.xml
icqplugin-2.xml
icqplugin.xml
qip-search.xml
searchcanvas.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-04-04 65952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-07-21 453104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-07-21 157680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-03-26 931200]
"lxbkbmgr.exe"=C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe [2008-02-28 74408]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
"Ad-Aware Browsing Protection"=C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe [2011-10-21 198032]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-07-03 17417392]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2012-05-18 880496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CHotkey]
C:\WINDOWS\mHotkey.exe [2006-12-08 547840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files\Clownfish\Clownfish.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]
C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe [2005-10-31 57344]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-09-16 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Ahead\InCD\InCD.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lexmark X1100 Series]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper]
Rundll32 P17.dll,P17Helper []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snp2uvc]
C:\WINDOWS\vsnp2uvc.exe [2008-09-10 569344]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TaskTray]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2012-01-23 247728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tsnp2uvc]
C:\WINDOWS\tsnp2uvc.exe [2008-09-10 237568]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
C:\WINDOWS\UpdReg.EXE [2000-05-11 90112]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe [2012-05-18 880496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^BDARemote.lnk]
C:\PROGRA~1\USBTV~1\EM28XX\BDAREM~1.EXE [2007-06-26 81997]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak EasyShare software.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak software updater.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"InCDsrv"=2
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-02-11 155648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Ultima Online\client.exe"="C:\Program Files\Ultima Online\client.exe:*:Enabled:client"
"C:\QIP Infium\infium.exe"="C:\QIP Infium\infium.exe:*:Enabled:QIP Infium"
"C:\Program Files\QIP Infium\infium.exe"="C:\Program Files\QIP Infium\infium.exe:*:Enabled:QIP Infium"
"C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe"="C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe:*:Enabled:R6Vegas2_Game"
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe"="C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine"
"C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Akamai\netsession_win.exe"="C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Interface"
"C:\Documents and Settings\Věruš\Local Settings\Temp\CF_Downloader.exe"="C:\Documents and Settings\Věruš\Local Settings\Temp\CF_Downloader.exe:*:Enabled:CrossFire_Downloader"
"C:\Program Files\Z8Games\CrossFire\CF_G4box.exe"="C:\Program Files\Z8Games\CrossFire\CF_G4box.exe:*:Enabled:cf launcher"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil"
"C:\Program Files\Ultima Online DP2\client.exe"="C:\Program Files\Ultima Online DP2\client.exe:*:Enabled:Ultima Online Client"
"C:\Program Files\Ultima Online DP2\UOAM\uoam.exe"="C:\Program Files\Ultima Online DP2\UOAM\uoam.exe:*:Enabled:Ultima Online's premier mapping tool."
"C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe"="C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe:*:Enabled:CF_DOWNLOADER"
"C:\WINDOWS\system32\lxbkcoms.exe"="C:\WINDOWS\system32\lxbkcoms.exe:*:Enabled:X1100 Series Server"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.524\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.524\Agent.exe:*:Enabled:Blizzard Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Program Files\Diablo III\Diablo III.exe"="C:\Program Files\Diablo III\Diablo III.exe:*:Enabled:Diablo III"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1199\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1199\Agent.exe:*:Enabled:Battle.net Update Agent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
======List of files/folders created in the last 1 month======
2012-08-09 18:15:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\GFI Software
2012-08-09 13:21:25 ----D---- C:\Program Files\trend micro
2012-08-09 13:21:24 ----D---- C:\rsit
2012-08-05 00:36:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection
2012-08-05 00:36:02 ----D---- C:\Program Files\Ad-Aware Antivirus
2012-08-05 00:35:16 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus
2012-08-05 00:33:28 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-08-04 21:53:35 ----D---- C:\Reborn
2012-08-04 17:54:05 ----D---- C:\Program Files\PokerStars
2012-08-04 17:39:48 ----D---- C:\Program Files\CardCasino(2).com
2012-08-04 11:54:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2012-08-02 01:55:36 ----A---- C:\Documents and Settings\Věruš\Data aplikací\room_v3.dat
2012-08-01 23:27:49 ----D---- C:\Program Files\Garena Plus
2012-08-01 23:27:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
2012-08-01 23:25:26 ----D---- C:\Program Files\Warcraft III
2012-07-31 23:30:22 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Microgaming
2012-07-31 23:29:33 ----D---- C:\Microgaming
2012-07-31 23:29:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\MGS
2012-07-23 00:23:23 ----D---- C:\Documents and Settings\Věruš\Data aplikací\.minecraft
2012-07-22 17:33:10 ----D---- C:\Program Files\Diablo III
2012-07-22 17:33:10 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2012-07-22 17:33:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
2012-07-22 17:32:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Battle.net
2012-07-21 20:51:21 ----D---- C:\Program Files\Common Files\Java
2012-07-21 20:51:01 ----A---- C:\WINDOWS\system32\javaws.exe
2012-07-21 20:50:58 ----A---- C:\WINDOWS\system32\javaw.exe
2012-07-21 20:50:58 ----A---- C:\WINDOWS\system32\java.exe
2012-07-17 18:15:53 ----D---- C:\Program Files\Worms Reloaded
2012-07-13 21:27:38 ----D---- C:\Documents and Settings\All Users\Data aplikací\firebird
2012-07-13 21:26:11 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Exec
2012-07-13 17:45:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\tmp
2012-07-13 17:45:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\hps
2012-07-11 20:22:55 ----D---- C:\Program Files\dm
2012-07-11 15:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2012-07-11 15:20:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2718523$
2012-07-11 15:19:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2012-07-11 15:18:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2012-07-11 15:14:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2012-07-10 12:59:00 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Google
======List of files/folders modified in the last 1 month======
2012-08-09 19:15:30 ----D---- C:\Documents and Settings\Věruš\Data aplikací\uTorrent
2012-08-09 19:14:25 ----D---- C:\WINDOWS\Temp
2012-08-09 19:13:57 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Skype
2012-08-09 19:13:53 ----D---- C:\WINDOWS\system32\CatRoot2
2012-08-09 19:12:17 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-08-09 18:28:04 ----RD---- C:\Program Files
2012-08-09 18:21:53 ----D---- C:\WINDOWS\Prefetch
2012-08-09 18:16:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2012-08-09 18:16:21 ----SHD---- C:\WINDOWS\Installer
2012-08-09 18:15:52 ----D---- C:\Config.Msi
2012-08-09 18:15:50 ----D---- C:\WINDOWS\system32\drivers
2012-08-09 18:15:50 ----D---- C:\WINDOWS\system32
2012-08-09 17:57:22 ----SD---- C:\WINDOWS\Tasks
2012-08-09 13:03:36 ----D---- C:\WINDOWS\system32\CatRoot
2012-08-07 23:08:02 ----D---- C:\temp
2012-08-07 10:24:59 ----D---- C:\WINDOWS
2012-08-05 17:42:00 ----D---- C:\Program Files\WinRAR
2012-08-05 12:41:26 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-08-05 00:36:02 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-08-05 00:33:24 ----D---- C:\Program Files\Mozilla Firefox
2012-08-05 00:28:38 ----D---- C:\WINDOWS\system32\config
2012-08-05 00:28:16 ----D---- C:\WINDOWS\system32\wbem
2012-08-05 00:28:15 ----D---- C:\WINDOWS\Registration
2012-08-05 00:27:42 ----D---- C:\RO
2012-08-04 22:01:14 ----D---- C:\WINDOWS\WinSxS
2012-07-31 20:50:20 ----D---- C:\Program Files\DOSBox-0.74
2012-07-31 19:02:35 ----D---- C:\WINDOWS\Minidump
2012-07-31 19:02:34 ----D---- C:\Program Files\Xvid
2012-07-31 19:02:34 ----D---- C:\Program Files\Windows Media Connect 2
2012-07-31 19:02:34 ----D---- C:\Program Files\Valve
2012-07-31 19:02:34 ----D---- C:\Program Files\UOAM
2012-07-31 19:02:34 ----D---- C:\Program Files\Ultima Online
2012-07-31 19:02:34 ----D---- C:\Program Files\Messenger
2012-07-31 19:02:34 ----D---- C:\Program Files\ICQ6Toolbar
2012-07-31 19:02:34 ----D---- C:\Program Files\DivX
2012-07-31 19:02:34 ----D---- C:\Program Files\Ask.com
2012-07-31 18:52:40 ----A---- C:\WINDOWS\SuperUtil.ini
2012-07-31 18:37:39 ----D---- C:\Program Files\Quadriga Games
2012-07-31 18:37:04 ----RSD---- C:\WINDOWS\assembly
2012-07-31 18:37:04 ----D---- C:\Program Files\Sony
2012-07-31 18:36:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sony Corporation
2012-07-31 18:34:44 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-07-31 18:34:43 ----HD---- C:\WINDOWS\inf
2012-07-31 18:28:40 ----D---- C:\Program Files\I.CA
2012-07-31 18:28:12 ----D---- C:\Program Files\Ahead
2012-07-31 18:27:09 ----D---- C:\Program Files\Elite Utilities
2012-07-31 18:26:24 ----HD---- C:\Program Files\InstallShield Installation Information
2012-07-31 18:22:56 ----D---- C:\Program Files\Blaze Media Pro
2012-07-31 18:20:30 ----D---- C:\Program Files\Common Files
2012-07-31 18:05:16 ----D---- C:\Documents and Settings\Věruš\Data aplikací\ICQ
2012-07-15 11:13:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-07-15 11:13:44 ----RD---- C:\Program Files\Skype
2012-07-13 12:07:44 ----D---- C:\Program Files\rajce
2012-07-11 15:20:14 ----A---- C:\WINDOWS\imsins.BAK
2012-07-11 15:20:12 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-07-11 15:20:05 ----HD---- C:\WINDOWS\$hf_mig$
2012-07-11 15:20:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2012-07-11 15:19:32 ----D---- C:\Program Files\Common Files\System
2012-07-11 15:19:32 ----A---- C:\WINDOWS\win.ini
2012-07-11 15:14:59 ----A---- C:\WINDOWS\system32\MRT.exe
2012-07-10 12:49:12 ----D---- C:\Program Files\Google
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AFPAnsi;Alfa File Protector Ansi; C:\WINDOWS\System32\Drivers\AFPAnsi.sys [2007-03-11 43936]
R0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2008-07-31 20616]
R0 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2012-03-20 171064]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-08-21 105344]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-08-12 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-03-03 48640]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-05-30 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 NVTCP;NVIDIA TCP/IP Protocol Driver; C:\WINDOWS\System32\DRIVERS\NVTcp.sys [2006-09-11 110592]
R1 SuperMounter;SuperMounter; C:\WINDOWS\system32\drivers\SuperMounter.sys [2008-02-24 11264]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-02-11 3565056]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2005-01-10 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-09-11 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-09-11 19968]
R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2005-01-10 106496]
R3 P17;Sound Blaster Audigy; C:\WINDOWS\system32\drivers\P17.sys [2005-07-07 1389056]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2009-01-08 3528576]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S1 SBRE;SBRE; \??\C:\WINDOWS\system32\drivers\SBREdrv.sys []
S3 adb40d6r;adb40d6r; C:\WINDOWS\system32\drivers\adb40d6r.sys []
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BTCOM;Bluetooth Serial port driver; C:\WINDOWS\system32\DRIVERS\btcomport.sys []
S3 BTCOMBUS;Bluetooth Serial Port Bus Service; C:\WINDOWS\System32\Drivers\btcombus.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2008-12-07 30088]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2011-05-16 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2011-05-16 25512]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2008-07-02 26248]
S3 Lavasoft Kernexplorer;Lavasoft helper driver; C:\WINDOWS\system32\drivers\Lavasoft Kernexplorer.sys []
S3 Mkd2kfNt;Mkd2kfNt; C:\WINDOWS\system32\drivers\Mkd2kfNt.sys [2010-10-29 142320]
S3 Mkd2Nadr;Mkd2Nadr; C:\WINDOWS\system32\drivers\Mkd2Nadr.sys [2011-01-14 88944]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys []
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 27064]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2006-03-02 5888]
S3 SE2Fbus;Sony Ericsson Device 047 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE2Fbus.sys [2006-11-10 61600]
S3 SE2Fmdfl;Sony Ericsson Device 047 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE2Fmdfl.sys [2006-11-10 9360]
S3 SE2Fmdm;Sony Ericsson Device 047 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE2Fmdm.sys [2006-11-10 97184]
S3 SE2Fmgmt;Sony Ericsson Device 047 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE2Fmgmt.sys [2006-11-10 88688]
S3 se2Fnd5;Sony Ericsson Device 047 USB Ethernet Emulation SEMC47 (NDIS); C:\WINDOWS\system32\DRIVERS\se2Fnd5.sys [2006-11-10 18704]
S3 SE2Fobex;Sony Ericsson Device 047 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE2Fobex.sys [2006-11-10 86560]
S3 se2Funic;Sony Ericsson Device 047 USB Ethernet Emulation SEMC47 (WDM); C:\WINDOWS\system32\DRIVERS\se2Funic.sys [2006-11-10 90800]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2010-02-25 25216]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 XDva349;XDva349; C:\WINDOWS\system32\drivers\XDva349.sys []
S3 XDva358;XDva358; C:\WINDOWS\system32\drivers\XDva358.sys []
S3 XDva359;XDva359; C:\WINDOWS\system32\drivers\XDva359.sys []
S3 XDva362;XDva362; C:\WINDOWS\system32\drivers\XDva362.sys []
S3 XDva367;XDva367; C:\WINDOWS\system32\drivers\XDva367.sys []
S3 XDva370;XDva370; C:\WINDOWS\system32\drivers\XDva370.sys []
S3 XDva374;XDva374; C:\WINDOWS\system32\drivers\XDva374.sys []
S3 XDva379;XDva379; C:\WINDOWS\system32\drivers\XDva379.sys []
S3 XDva382;XDva382; C:\WINDOWS\system32\drivers\XDva382.sys []
S3 XDva385;XDva385; C:\WINDOWS\system32\drivers\XDva385.sys []
S3 XDva386;XDva386; C:\WINDOWS\system32\drivers\XDva386.sys []
S3 XDva391;XDva391; C:\WINDOWS\system32\drivers\XDva391.sys []
S3 XDva394;XDva394; C:\WINDOWS\system32\drivers\XDva394.sys []
S3 XDva398;XDva398; \??\C:\WINDOWS\system32\XDva398.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-02-11 602112]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.exe [1999-12-13 44032]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe [2006-09-11 172032]
R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-04-13 20543]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-07-21 161776]
R2 lxbk_device;lxbk_device; C:\WINDOWS\system32\lxbkcoms.exe [2008-02-19 537256]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-03-26 11552]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2006-09-11 135227]
R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2006-09-11 65599]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2012-01-23 92592]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2010-02-10 593920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
S2 NMSAccess;NMSAccess; C:\Program Files\Blaze Media Pro\NMSAccess32.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-03 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-05 250056]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-22 136120]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-14 113120]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2010-06-07 3549224]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Run by Věruš at 2012-08-09 19:16:52
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 27 GB (16%) free of 170 GB
Total RAM: 2046 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:17:06, on 9.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\lxbkcoms.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Věruš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Věruš\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (file missing)
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [lxbkbmgr.exe] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP Infium - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP Infium\infium.exe (HKCU)
O9 - Extra button: Unibet - {34BC8567-523B-4C9E-BE3A-BC1366B656FA} - C:\Microgaming\Poker\unibetpokerMPP\MPPoker.exe (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {063F7D71-5E0B-48F2-87D5-F63C5917947E} - http://ahnlabdownload.nefficient.co.kr/ ... aosmgr.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{67EC769F-08AB-4797-8EFC-3B1833739DA1}: NameServer = 188.75.128.128,10.0.150.150
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: lxbk_device - - C:\WINDOWS\system32\lxbkcoms.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMSAccess - Unknown owner - C:\Program Files\Blaze Media Pro\NMSAccess32.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
--
End of file - 11344 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Ad-Aware Antivirus Scheduled Scan.job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004UA.job
C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{1CCABC10-17CA-4840-AB3F-BD83ED048261}.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, jqs@sun.com:1.0, noia2_option@kk.noia:3.76, {20a82645-c095-46ed-80e3-08825760534b}:0.0.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, battlefieldheroespatcher@ea.com:5.0.31.0, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {32a1fd71-835e-4b11-8e54-886fda0b4c89}:1.1, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, plugin2@gameplaylabs.com:2.0, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94, {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17, {9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}:3.76"
prefs.js - "keyword.URL" - "chrome://browser-region/locale/region.properties"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.270 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{972ce4c6-7e08-4474-a285-3208198ce6fd}(2)
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
NPOFF12.DLL
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\
2020Player_IKEA@2020Technologies.com
battlefieldheroespatcher@ea.com
noia2_option@kk.noia
plugin2@gameplaylabs.com
{32a1fd71-835e-4b11-8e54-886fda0b4c89}
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\
conduit.xml
icqplugin-1.xml
icqplugin-2.xml
icqplugin.xml
qip-search.xml
searchcanvas.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-04-04 65952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-07-21 453104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-07-21 157680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-03-26 931200]
"lxbkbmgr.exe"=C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe [2008-02-28 74408]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
"Ad-Aware Browsing Protection"=C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection\adawarebp.exe [2011-10-21 198032]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-07-03 17417392]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2012-05-18 880496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CHotkey]
C:\WINDOWS\mHotkey.exe [2006-12-08 547840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files\Clownfish\Clownfish.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]
C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe [2005-10-31 57344]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-09-16 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Ahead\InCD\InCD.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lexmark X1100 Series]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper]
Rundll32 P17.dll,P17Helper []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snp2uvc]
C:\WINDOWS\vsnp2uvc.exe [2008-09-10 569344]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TaskTray]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2012-01-23 247728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tsnp2uvc]
C:\WINDOWS\tsnp2uvc.exe [2008-09-10 237568]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
C:\WINDOWS\UpdReg.EXE [2000-05-11 90112]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe [2012-05-18 880496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^BDARemote.lnk]
C:\PROGRA~1\USBTV~1\EM28XX\BDAREM~1.EXE [2007-06-26 81997]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak EasyShare software.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak software updater.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"InCDsrv"=2
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-02-11 155648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Ultima Online\client.exe"="C:\Program Files\Ultima Online\client.exe:*:Enabled:client"
"C:\QIP Infium\infium.exe"="C:\QIP Infium\infium.exe:*:Enabled:QIP Infium"
"C:\Program Files\QIP Infium\infium.exe"="C:\Program Files\QIP Infium\infium.exe:*:Enabled:QIP Infium"
"C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe"="C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe:*:Enabled:R6Vegas2_Game"
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe"="C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine"
"C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Akamai\netsession_win.exe"="C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Interface"
"C:\Documents and Settings\Věruš\Local Settings\Temp\CF_Downloader.exe"="C:\Documents and Settings\Věruš\Local Settings\Temp\CF_Downloader.exe:*:Enabled:CrossFire_Downloader"
"C:\Program Files\Z8Games\CrossFire\CF_G4box.exe"="C:\Program Files\Z8Games\CrossFire\CF_G4box.exe:*:Enabled:cf launcher"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil"
"C:\Program Files\Ultima Online DP2\client.exe"="C:\Program Files\Ultima Online DP2\client.exe:*:Enabled:Ultima Online Client"
"C:\Program Files\Ultima Online DP2\UOAM\uoam.exe"="C:\Program Files\Ultima Online DP2\UOAM\uoam.exe:*:Enabled:Ultima Online's premier mapping tool."
"C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe"="C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe:*:Enabled:CF_DOWNLOADER"
"C:\WINDOWS\system32\lxbkcoms.exe"="C:\WINDOWS\system32\lxbkcoms.exe:*:Enabled:X1100 Series Server"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.524\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.524\Agent.exe:*:Enabled:Blizzard Update Agent"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe:*:Enabled:Battle.net Update Agent"
"C:\Program Files\Diablo III\Diablo III.exe"="C:\Program Files\Diablo III\Diablo III.exe:*:Enabled:Diablo III"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ"
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1199\Agent.exe"="C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1199\Agent.exe:*:Enabled:Battle.net Update Agent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
======List of files/folders created in the last 1 month======
2012-08-09 18:15:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\GFI Software
2012-08-09 13:21:25 ----D---- C:\Program Files\trend micro
2012-08-09 13:21:24 ----D---- C:\rsit
2012-08-05 00:36:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection
2012-08-05 00:36:02 ----D---- C:\Program Files\Ad-Aware Antivirus
2012-08-05 00:35:16 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus
2012-08-05 00:33:28 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-08-04 21:53:35 ----D---- C:\Reborn
2012-08-04 17:54:05 ----D---- C:\Program Files\PokerStars
2012-08-04 17:39:48 ----D---- C:\Program Files\CardCasino(2).com
2012-08-04 11:54:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2012-08-02 01:55:36 ----A---- C:\Documents and Settings\Věruš\Data aplikací\room_v3.dat
2012-08-01 23:27:49 ----D---- C:\Program Files\Garena Plus
2012-08-01 23:27:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
2012-08-01 23:25:26 ----D---- C:\Program Files\Warcraft III
2012-07-31 23:30:22 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Microgaming
2012-07-31 23:29:33 ----D---- C:\Microgaming
2012-07-31 23:29:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\MGS
2012-07-23 00:23:23 ----D---- C:\Documents and Settings\Věruš\Data aplikací\.minecraft
2012-07-22 17:33:10 ----D---- C:\Program Files\Diablo III
2012-07-22 17:33:10 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2012-07-22 17:33:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
2012-07-22 17:32:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Battle.net
2012-07-21 20:51:21 ----D---- C:\Program Files\Common Files\Java
2012-07-21 20:51:01 ----A---- C:\WINDOWS\system32\javaws.exe
2012-07-21 20:50:58 ----A---- C:\WINDOWS\system32\javaw.exe
2012-07-21 20:50:58 ----A---- C:\WINDOWS\system32\java.exe
2012-07-17 18:15:53 ----D---- C:\Program Files\Worms Reloaded
2012-07-13 21:27:38 ----D---- C:\Documents and Settings\All Users\Data aplikací\firebird
2012-07-13 21:26:11 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Exec
2012-07-13 17:45:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\tmp
2012-07-13 17:45:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\hps
2012-07-11 20:22:55 ----D---- C:\Program Files\dm
2012-07-11 15:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2012-07-11 15:20:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2718523$
2012-07-11 15:19:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2012-07-11 15:18:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2012-07-11 15:14:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2012-07-10 12:59:00 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Google
======List of files/folders modified in the last 1 month======
2012-08-09 19:15:30 ----D---- C:\Documents and Settings\Věruš\Data aplikací\uTorrent
2012-08-09 19:14:25 ----D---- C:\WINDOWS\Temp
2012-08-09 19:13:57 ----D---- C:\Documents and Settings\Věruš\Data aplikací\Skype
2012-08-09 19:13:53 ----D---- C:\WINDOWS\system32\CatRoot2
2012-08-09 19:12:17 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-08-09 18:28:04 ----RD---- C:\Program Files
2012-08-09 18:21:53 ----D---- C:\WINDOWS\Prefetch
2012-08-09 18:16:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2012-08-09 18:16:21 ----SHD---- C:\WINDOWS\Installer
2012-08-09 18:15:52 ----D---- C:\Config.Msi
2012-08-09 18:15:50 ----D---- C:\WINDOWS\system32\drivers
2012-08-09 18:15:50 ----D---- C:\WINDOWS\system32
2012-08-09 17:57:22 ----SD---- C:\WINDOWS\Tasks
2012-08-09 13:03:36 ----D---- C:\WINDOWS\system32\CatRoot
2012-08-07 23:08:02 ----D---- C:\temp
2012-08-07 10:24:59 ----D---- C:\WINDOWS
2012-08-05 17:42:00 ----D---- C:\Program Files\WinRAR
2012-08-05 12:41:26 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-08-05 00:36:02 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-08-05 00:33:24 ----D---- C:\Program Files\Mozilla Firefox
2012-08-05 00:28:38 ----D---- C:\WINDOWS\system32\config
2012-08-05 00:28:16 ----D---- C:\WINDOWS\system32\wbem
2012-08-05 00:28:15 ----D---- C:\WINDOWS\Registration
2012-08-05 00:27:42 ----D---- C:\RO
2012-08-04 22:01:14 ----D---- C:\WINDOWS\WinSxS
2012-07-31 20:50:20 ----D---- C:\Program Files\DOSBox-0.74
2012-07-31 19:02:35 ----D---- C:\WINDOWS\Minidump
2012-07-31 19:02:34 ----D---- C:\Program Files\Xvid
2012-07-31 19:02:34 ----D---- C:\Program Files\Windows Media Connect 2
2012-07-31 19:02:34 ----D---- C:\Program Files\Valve
2012-07-31 19:02:34 ----D---- C:\Program Files\UOAM
2012-07-31 19:02:34 ----D---- C:\Program Files\Ultima Online
2012-07-31 19:02:34 ----D---- C:\Program Files\Messenger
2012-07-31 19:02:34 ----D---- C:\Program Files\ICQ6Toolbar
2012-07-31 19:02:34 ----D---- C:\Program Files\DivX
2012-07-31 19:02:34 ----D---- C:\Program Files\Ask.com
2012-07-31 18:52:40 ----A---- C:\WINDOWS\SuperUtil.ini
2012-07-31 18:37:39 ----D---- C:\Program Files\Quadriga Games
2012-07-31 18:37:04 ----RSD---- C:\WINDOWS\assembly
2012-07-31 18:37:04 ----D---- C:\Program Files\Sony
2012-07-31 18:36:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sony Corporation
2012-07-31 18:34:44 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-07-31 18:34:43 ----HD---- C:\WINDOWS\inf
2012-07-31 18:28:40 ----D---- C:\Program Files\I.CA
2012-07-31 18:28:12 ----D---- C:\Program Files\Ahead
2012-07-31 18:27:09 ----D---- C:\Program Files\Elite Utilities
2012-07-31 18:26:24 ----HD---- C:\Program Files\InstallShield Installation Information
2012-07-31 18:22:56 ----D---- C:\Program Files\Blaze Media Pro
2012-07-31 18:20:30 ----D---- C:\Program Files\Common Files
2012-07-31 18:05:16 ----D---- C:\Documents and Settings\Věruš\Data aplikací\ICQ
2012-07-15 11:13:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2012-07-15 11:13:44 ----RD---- C:\Program Files\Skype
2012-07-13 12:07:44 ----D---- C:\Program Files\rajce
2012-07-11 15:20:14 ----A---- C:\WINDOWS\imsins.BAK
2012-07-11 15:20:12 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-07-11 15:20:05 ----HD---- C:\WINDOWS\$hf_mig$
2012-07-11 15:20:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2012-07-11 15:19:32 ----D---- C:\Program Files\Common Files\System
2012-07-11 15:19:32 ----A---- C:\WINDOWS\win.ini
2012-07-11 15:14:59 ----A---- C:\WINDOWS\system32\MRT.exe
2012-07-10 12:49:12 ----D---- C:\Program Files\Google
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AFPAnsi;Alfa File Protector Ansi; C:\WINDOWS\System32\Drivers\AFPAnsi.sys [2007-03-11 43936]
R0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2008-07-31 20616]
R0 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2012-03-20 171064]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-08-21 105344]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-08-12 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-03-03 48640]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-05-30 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 NVTCP;NVIDIA TCP/IP Protocol Driver; C:\WINDOWS\System32\DRIVERS\NVTcp.sys [2006-09-11 110592]
R1 SuperMounter;SuperMounter; C:\WINDOWS\system32\drivers\SuperMounter.sys [2008-02-24 11264]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-02-11 3565056]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2005-01-10 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-09-11 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-09-11 19968]
R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2005-01-10 106496]
R3 P17;Sound Blaster Audigy; C:\WINDOWS\system32\drivers\P17.sys [2005-07-07 1389056]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2009-01-08 3528576]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S1 SBRE;SBRE; \??\C:\WINDOWS\system32\drivers\SBREdrv.sys []
S3 adb40d6r;adb40d6r; C:\WINDOWS\system32\drivers\adb40d6r.sys []
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BTCOM;Bluetooth Serial port driver; C:\WINDOWS\system32\DRIVERS\btcomport.sys []
S3 BTCOMBUS;Bluetooth Serial Port Bus Service; C:\WINDOWS\System32\Drivers\btcombus.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2008-12-07 30088]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2011-05-16 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2011-05-16 25512]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2008-07-02 26248]
S3 Lavasoft Kernexplorer;Lavasoft helper driver; C:\WINDOWS\system32\drivers\Lavasoft Kernexplorer.sys []
S3 Mkd2kfNt;Mkd2kfNt; C:\WINDOWS\system32\drivers\Mkd2kfNt.sys [2010-10-29 142320]
S3 Mkd2Nadr;Mkd2Nadr; C:\WINDOWS\system32\drivers\Mkd2Nadr.sys [2011-01-14 88944]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys []
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 27064]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2006-03-02 5888]
S3 SE2Fbus;Sony Ericsson Device 047 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE2Fbus.sys [2006-11-10 61600]
S3 SE2Fmdfl;Sony Ericsson Device 047 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE2Fmdfl.sys [2006-11-10 9360]
S3 SE2Fmdm;Sony Ericsson Device 047 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE2Fmdm.sys [2006-11-10 97184]
S3 SE2Fmgmt;Sony Ericsson Device 047 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE2Fmgmt.sys [2006-11-10 88688]
S3 se2Fnd5;Sony Ericsson Device 047 USB Ethernet Emulation SEMC47 (NDIS); C:\WINDOWS\system32\DRIVERS\se2Fnd5.sys [2006-11-10 18704]
S3 SE2Fobex;Sony Ericsson Device 047 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE2Fobex.sys [2006-11-10 86560]
S3 se2Funic;Sony Ericsson Device 047 USB Ethernet Emulation SEMC47 (WDM); C:\WINDOWS\system32\DRIVERS\se2Funic.sys [2006-11-10 90800]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2010-02-25 25216]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 XDva349;XDva349; C:\WINDOWS\system32\drivers\XDva349.sys []
S3 XDva358;XDva358; C:\WINDOWS\system32\drivers\XDva358.sys []
S3 XDva359;XDva359; C:\WINDOWS\system32\drivers\XDva359.sys []
S3 XDva362;XDva362; C:\WINDOWS\system32\drivers\XDva362.sys []
S3 XDva367;XDva367; C:\WINDOWS\system32\drivers\XDva367.sys []
S3 XDva370;XDva370; C:\WINDOWS\system32\drivers\XDva370.sys []
S3 XDva374;XDva374; C:\WINDOWS\system32\drivers\XDva374.sys []
S3 XDva379;XDva379; C:\WINDOWS\system32\drivers\XDva379.sys []
S3 XDva382;XDva382; C:\WINDOWS\system32\drivers\XDva382.sys []
S3 XDva385;XDva385; C:\WINDOWS\system32\drivers\XDva385.sys []
S3 XDva386;XDva386; C:\WINDOWS\system32\drivers\XDva386.sys []
S3 XDva391;XDva391; C:\WINDOWS\system32\drivers\XDva391.sys []
S3 XDva394;XDva394; C:\WINDOWS\system32\drivers\XDva394.sys []
S3 XDva398;XDva398; \??\C:\WINDOWS\system32\XDva398.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-02-11 602112]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.exe [1999-12-13 44032]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe [2006-09-11 172032]
R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-04-13 20543]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-07-21 161776]
R2 lxbk_device;lxbk_device; C:\WINDOWS\system32\lxbkcoms.exe [2008-02-19 537256]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-03-26 11552]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2006-09-11 135227]
R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2006-09-11 65599]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2012-01-23 92592]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2010-02-10 593920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
S2 NMSAccess;NMSAccess; C:\Program Files\Blaze Media Pro\NMSAccess32.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-03 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-05 250056]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-22 136120]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-14 113120]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2010-06-07 3549224]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Re: kontrola logu - zamrzani pc
Najdete tento soubor C:\Program Files\trend micro\Věruš.exe a spustte ho.Kliknete na Main menu a na Do a system scan only
U techto radku dejte vlevo zatrzitko
Kód: Vybrat vše
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Věruš\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
Do leveho okna zkopirujte tento skript (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[CreateRestorePoint]
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
:services
SBRE
Lavasoft Kernexplorer
XDva349
XDva358
XDva359
XDva362
XDva367
XDva370
XDva374
XDva379
XDva382
XDva385
XDva386
XDva391
XDva394
XDva398
JavaQuickStarterService
gupdate
NMSAccess
SkypeUpdate
AdobeFlashPlayerUpdateSvc
gupdatem
gusvc
npggsvc
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\tasks\Ad-Aware Antivirus Scheduled Scan.job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004UA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{1CCABC10-17CA-4840-AB3F-BD83ED048261}.job
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\conduit.xml
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\icqplugin-1.xml
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\icqplugin-2.xml
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\icqplugin.xml
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\qip-search.xml
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\searchcanvas.xml
C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection
C:\Program Files\Ad-Aware Antivirus
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
C:\Program Files\Ask.com
C:\Program Files\ConduitEngine
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
[-HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
"Ad-Aware Browsing Protection"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=-
"uTorrent"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lexmark X1100 Series]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TaskTray]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak EasyShare software.lnk]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak software updater.lnk]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
Po restartu sem dejte log, ktery na vas vyskoci, nebo bude zde C:\_OTM\MovedFiles\xxxxxxxx_xxxxxx (misto tech x budou cisla, predstavujici datum a cas spusteni)
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: kontrola logu - zamrzani pc
Provedeno, zde je log
All processes killed
========== COMMANDS ==========
Restore point Set: OTM Restore Point
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: jimi
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 1545476 bytes
->Temporary Internet Files folder emptied: 45124991 bytes
User: Věruš
->Temp folder emptied: 62925355 bytes
->Temporary Internet Files folder emptied: 411491967 bytes
->Java cache emptied: 25889088 bytes
->FireFox cache emptied: 865926256 bytes
->Google Chrome cache emptied: 252804026 bytes
->Flash cache emptied: 267290 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 8691153537 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 261124064 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 2712201953 bytes
Total Files Cleaned = 12 713,00 mb
[EMPTYFLASH]
User: All Users
User: Default User
User: jimi
User: LocalService
User: NetworkService
User: Věruš
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== SERVICES/DRIVERS ==========
Service SBRE stopped successfully!
Service SBRE deleted successfully!
Service Lavasoft Kernexplorer stopped successfully!
Service Lavasoft Kernexplorer deleted successfully!
Service XDva349 stopped successfully!
Service XDva349 deleted successfully!
Service XDva358 stopped successfully!
Service XDva358 deleted successfully!
Service XDva359 stopped successfully!
Service XDva359 deleted successfully!
Service XDva362 stopped successfully!
Service XDva362 deleted successfully!
Service XDva367 stopped successfully!
Service XDva367 deleted successfully!
Service XDva370 stopped successfully!
Service XDva370 deleted successfully!
Service XDva374 stopped successfully!
Service XDva374 deleted successfully!
Service XDva379 stopped successfully!
Service XDva379 deleted successfully!
Service XDva382 stopped successfully!
Service XDva382 deleted successfully!
Service XDva385 stopped successfully!
Service XDva385 deleted successfully!
Service XDva386 stopped successfully!
Service XDva386 deleted successfully!
Service XDva391 stopped successfully!
Service XDva391 deleted successfully!
Service XDva394 stopped successfully!
Service XDva394 deleted successfully!
Service XDva398 stopped successfully!
Service XDva398 deleted successfully!
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service NMSAccess stopped successfully!
Service NMSAccess deleted successfully!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
Service npggsvc stopped successfully!
Service npggsvc deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\Ad-Aware Antivirus Scheduled Scan.job moved successfully.
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job moved successfully.
C:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
C:\WINDOWS\tasks\AppleSoftwareUpdate.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004Core.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004UA.job moved successfully.
C:\WINDOWS\tasks\User_Feed_Synchronization-{1CCABC10-17CA-4840-AB3F-BD83ED048261}.job moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\conduit.xml moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\icqplugin.xml moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\qip-search.xml moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\searchcanvas.xml moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection folder moved successfully.
C:\Program Files\Ad-Aware Antivirus\Definitions\WDBF folder moved successfully.
C:\Program Files\Ad-Aware Antivirus\Definitions\Staging folder moved successfully.
C:\Program Files\Ad-Aware Antivirus\Definitions\LKGD folder moved successfully.
C:\Program Files\Ad-Aware Antivirus\Definitions folder moved successfully.
C:\Program Files\Ad-Aware Antivirus folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T161524.593750PID3972 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T154724.562500PID232 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T154722.140625PID1572 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T110529.765625PID568 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T110527.625000PID1880 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T105700.796875PID1832 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T105656.640625PID1992 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T074222.671875PID2268 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T074221.796875PID1928 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120808T134044.296875PID704 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120808T134041.578125PID1988 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T173914.156250PID672 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T173912.359375PID2020 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T110956.781250PID548 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T110954.500000PID1864 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T080115.765625PID388 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T080114.187500PID1916 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120806T095708.343750PID268 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120806T095707.593750PID1856 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120806T064805.093750PID1952 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120806T064803.656250PID1148 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120805T100621.250000PID388 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120805T100619.203125PID1668 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120804T223903.343750PID192 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120804T223855.984375PID1600 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120804T223516.312500PID680 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy\Recovery folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy\Logs folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy folder moved successfully.
C:\Program Files\Ask.com folder moved successfully.
File/Folder C:\Program Files\ConduitEngine not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Ad-Aware Browsing Protection deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Skype deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lexmark X1100 Series\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TaskTray\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak EasyShare software.lnk\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak software updater.lnk\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service\ deleted successfully.
OTM by OldTimer - Version 3.1.21.0 log created on 08112012_113144
Files moved on Reboot...
Registry entries deleted on Reboot...
All processes killed
========== COMMANDS ==========
Restore point Set: OTM Restore Point
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: jimi
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 1545476 bytes
->Temporary Internet Files folder emptied: 45124991 bytes
User: Věruš
->Temp folder emptied: 62925355 bytes
->Temporary Internet Files folder emptied: 411491967 bytes
->Java cache emptied: 25889088 bytes
->FireFox cache emptied: 865926256 bytes
->Google Chrome cache emptied: 252804026 bytes
->Flash cache emptied: 267290 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 8691153537 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 261124064 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 2712201953 bytes
Total Files Cleaned = 12 713,00 mb
[EMPTYFLASH]
User: All Users
User: Default User
User: jimi
User: LocalService
User: NetworkService
User: Věruš
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== SERVICES/DRIVERS ==========
Service SBRE stopped successfully!
Service SBRE deleted successfully!
Service Lavasoft Kernexplorer stopped successfully!
Service Lavasoft Kernexplorer deleted successfully!
Service XDva349 stopped successfully!
Service XDva349 deleted successfully!
Service XDva358 stopped successfully!
Service XDva358 deleted successfully!
Service XDva359 stopped successfully!
Service XDva359 deleted successfully!
Service XDva362 stopped successfully!
Service XDva362 deleted successfully!
Service XDva367 stopped successfully!
Service XDva367 deleted successfully!
Service XDva370 stopped successfully!
Service XDva370 deleted successfully!
Service XDva374 stopped successfully!
Service XDva374 deleted successfully!
Service XDva379 stopped successfully!
Service XDva379 deleted successfully!
Service XDva382 stopped successfully!
Service XDva382 deleted successfully!
Service XDva385 stopped successfully!
Service XDva385 deleted successfully!
Service XDva386 stopped successfully!
Service XDva386 deleted successfully!
Service XDva391 stopped successfully!
Service XDva391 deleted successfully!
Service XDva394 stopped successfully!
Service XDva394 deleted successfully!
Service XDva398 stopped successfully!
Service XDva398 deleted successfully!
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service NMSAccess stopped successfully!
Service NMSAccess deleted successfully!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
Service npggsvc stopped successfully!
Service npggsvc deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\Ad-Aware Antivirus Scheduled Scan.job moved successfully.
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job moved successfully.
C:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
C:\WINDOWS\tasks\AppleSoftwareUpdate.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004Core.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-725345543-179605362-839522115-1004UA.job moved successfully.
C:\WINDOWS\tasks\User_Feed_Synchronization-{1CCABC10-17CA-4840-AB3F-BD83ED048261}.job moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\conduit.xml moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\icqplugin.xml moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\qip-search.xml moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\searchplugins\searchcanvas.xml moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Ad-Aware Browsing Protection folder moved successfully.
C:\Program Files\Ad-Aware Antivirus\Definitions\WDBF folder moved successfully.
C:\Program Files\Ad-Aware Antivirus\Definitions\Staging folder moved successfully.
C:\Program Files\Ad-Aware Antivirus\Definitions\LKGD folder moved successfully.
C:\Program Files\Ad-Aware Antivirus\Definitions folder moved successfully.
C:\Program Files\Ad-Aware Antivirus folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T161524.593750PID3972 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T154724.562500PID232 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T154722.140625PID1572 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T110529.765625PID568 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T110527.625000PID1880 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T105700.796875PID1832 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T105656.640625PID1992 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T074222.671875PID2268 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120809T074221.796875PID1928 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120808T134044.296875PID704 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120808T134041.578125PID1988 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T173914.156250PID672 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T173912.359375PID2020 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T110956.781250PID548 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T110954.500000PID1864 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T080115.765625PID388 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120807T080114.187500PID1916 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120806T095708.343750PID268 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120806T095707.593750PID1856 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120806T064805.093750PID1952 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120806T064803.656250PID1148 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120805T100621.250000PID388 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120805T100619.203125PID1668 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120804T223903.343750PID192 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120804T223855.984375PID1600 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs\20120804T223516.312500PID680 folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus\Logs folder moved successfully.
C:\Documents and Settings\Věruš\Data aplikací\Ad-Aware Antivirus folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy\Recovery folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy\Logs folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy folder moved successfully.
C:\Program Files\Ask.com folder moved successfully.
File/Folder C:\Program Files\ConduitEngine not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Ad-Aware Browsing Protection deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Skype deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lexmark X1100 Series\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TaskTray\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak EasyShare software.lnk\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Kodak software updater.lnk\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service\ deleted successfully.
OTM by OldTimer - Version 3.1.21.0 log created on 08112012_113144
Files moved on Reboot...
Registry entries deleted on Reboot...
Re: kontrola logu - zamrzani pc
OTM provedlo co melo. Krom jineho smazlo i 12GB smeti Nastala nejaka zmena?
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe , ulozte na plochu a spustte.
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Az tu budu mit logy z OTL, pokracujte tomto
Udelejte !!!uplnou!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Nastala nejaka zmena? Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe , ulozte na plochu a spustte.Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Az tu budu mit logy z OTL, pokracujte tomto
Udelejte !!!uplnou!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: kontrola logu - zamrzani pc
OTL Extras logfile created on: 11.8.2012 12:15:10 - Run 1
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Documents and Settings\Věruš\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,65 Gb Available Physical Memory | 32,38% Memory free
3,85 Gb Paging File | 2,66 Gb Available in Paging File | 69,25% Paging File free
Paging file location(s): C:\pagefile.sys 2 3070 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 166,02 Gb Total Space | 37,75 Gb Free Space | 22,74% Space Free | Partition Type: NTFS
Drive D: | 299,74 Gb Total Space | 66,33 Gb Free Space | 22,13% Space Free | Partition Type: NTFS
Computer Name: VERA | User Name: Věruš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
[HKEY_USERS\S-1-5-21-725345543-179605362-839522115-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [CEWE prezentace fotografií] -- "C:\Program Files\dm\dm paradies foto 3\CEWE prezentace fotografií.exe" -d "%1" ()
Directory [dm paradies foto 3] -- "C:\Program Files\dm\dm paradies foto 3\dm paradies foto 3.exe" "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"59031:TCP" = 59031:TCP:*:Enabled:Pando Media Booster
"59031:UDP" = 59031:UDP:*:Enabled:Pando Media Booster
"57551:TCP" = 57551:TCP:*:Enabled:Pando Media Booster
"57551:UDP" = 57551:UDP:*:Enabled:Pando Media Booster
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"443:UDP" = 443:UDP:*:Disabled:ooVoo UDP port 443
"37674:TCP" = 37674:TCP:*:Disabled:ooVoo TCP port 37674
"37674:UDP" = 37674:UDP:*:Disabled:ooVoo UDP port 37674
"37675:UDP" = 37675:UDP:*:Disabled:ooVoo UDP port 37675
"59031:TCP" = 59031:TCP:*:Enabled:Pando Media Booster
"59031:UDP" = 59031:UDP:*:Enabled:Pando Media Booster
"57551:TCP" = 57551:TCP:*:Enabled:Pando Media Booster
"57551:UDP" = 57551:UDP:*:Enabled:Pando Media Booster
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"4239:TCP" = 4239:TCP:*:Enabled:Akamai NetSession Interface
"5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe" = C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server -- (Apache Software Foundation)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Ultima Online\client.exe" = C:\Program Files\Ultima Online\client.exe:*:Enabled:client -- ()
"C:\QIP Infium\infium.exe" = C:\QIP Infium\infium.exe:*:Enabled:QIP Infium -- ()
"C:\Program Files\QIP Infium\infium.exe" = C:\Program Files\QIP Infium\infium.exe:*:Enabled:QIP Infium -- ()
"C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe" = C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe:*:Enabled:R6Vegas2_Game -- ()
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe" = C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine -- ()
"C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Akamai\netsession_win.exe" = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Interface
"C:\Documents and Settings\Věruš\Local Settings\Temp\CF_Downloader.exe" = C:\Documents and Settings\Věruš\Local Settings\Temp\CF_Downloader.exe:*:Enabled:CrossFire_Downloader
"C:\Program Files\Z8Games\CrossFire\CF_G4box.exe" = C:\Program Files\Z8Games\CrossFire\CF_G4box.exe:*:Enabled:cf launcher -- (G4box Inc.)
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe" = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil -- (IVT Corporation.)
"C:\Program Files\Ultima Online DP2\client.exe" = C:\Program Files\Ultima Online DP2\client.exe:*:Enabled:Ultima Online Client -- (Electronic Arts)
"C:\Program Files\Ultima Online DP2\UOAM\uoam.exe" = C:\Program Files\Ultima Online DP2\UOAM\uoam.exe:*:Enabled:Ultima Online's premier mapping tool. -- ()
"C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe" = C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe:*:Enabled:CF_DOWNLOADER -- (BuddiePay Inc)
"C:\WINDOWS\system32\lxbkcoms.exe" = C:\WINDOWS\system32\lxbkcoms.exe:*:Enabled:X1100 Series Server -- ( )
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.524\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.524\Agent.exe:*:Enabled:Blizzard Update Agent -- (Blizzard Entertainment)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
"C:\Program Files\Diablo III\Diablo III.exe" = C:\Program Files\Diablo III\Diablo III.exe:*:Enabled:Diablo III -- (Blizzard Entertainment)
"C:\Program Files\ICQ7.5\ICQ.exe" = C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ -- (ICQ, LLC.)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1199\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1199\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0008546E-DF6E-4CC1-AFD0-2CB8E16C95A2}" = Notifier
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{03ADC8AB-C130-0C3D-1FF9-2C385DF25689}" = CCC Help Czech
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{07021185-008D-ABF9-7716-475AC035F8B3}" = CCC Help Spanish
"{083F79E4-6FE9-46FB-A6C6-4F8862742947}" = ATI HYDRAVISION
"{08C5815C-2C6E-44f8-8748-0E61BC9AFB0c}" = LaTale_eu_Test
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0F842B77-56EA-4AAF-8295-81A022350B5E}" = Microsoft Security Client
"{0F8D0406-7755-AC37-6529-73AD649DBE32}" = Catalyst Control Center Graphics Previews Common
"{137EA7E1-D30B-4373-B8B6-CB7E85107F6D}" = Angry Birds Rio
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1B1DDAD2-C704-49F8-8FC2-18DAAD9A87C5}" = Sound Blaster Audigy
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"{22072CC8-7230-96F8-52F4-05EAF3F906B6}" = CCC Help Polish
"{2368ADBD-6FDF-4B9F-FE41-E20B4D78E79E}" = CCC Help Chinese Standard
"{25EF0DC4-B072-2E04-4581-A13C91423CE6}" = CCC Help Portuguese
"{26A24AE4-039D-4CA4-87B4-2F83217005FF}" = Java(TM) 7 Update 5
"{26F7855C-443B-00A6-F7B8-A97A5403F617}" = CCC Help Danish
"{2CB4A925-48A7-DA65-DCEE-D4DE224B7D84}" = CCC Help English
"{306D75B9-7FFF-FF65-0C76-57F2FE4FE1D6}" = Catalyst Control Center Core Implementation
"{32B12FE4-5A51-751A-1FB6-A14E97EBDD5C}" = CCC Help German
"{33286280-8617-11E1-8FF6-B8AC6F97B88E}" = Google Earth Plug-in
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{351512E5-01BD-E878-6F57-AA3E517D9ECE}" = Skins
"{354A387E-0374-21A3-6832-335674A6D7D1}" = CCC Help French
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = StarCam Flip
"{3C00BEE9-26D0-D9E0-A2D1-62F70D412A12}" = CCC Help Turkish
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4346F7AA-3D56-0941-424C-4454E04D37F6}" = CCC Help Italian
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CAE2F2C-75CD-A0DE-7520-449BCBBCC833}" = CCC Help Korean
"{4F677FC7-7AA8-412B-A957-F13CBE1C7331}" = ESSSONIC
"{4F896DE0-EF26-11D5-BBEC-00D0B740900A}" = Multimedia keyboard driver
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client CS-CZ Language Pack
"{57F7F0A5-8F22-8E63-E819-803B5C9CA3A5}" = CCC Help Dutch
"{594F6A23-9FF2-4D03-8761-97483E55CE79}" = NVIDIA 3D Vision Video Player
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{5EA437D2-7A57-B60E-E8F2-76BFAC0895A5}" = CCC Help Chinese Traditional
"{61AF4E75-050E-0304-3417-8BC16417FEB1}" = CCC Help Greek
"{632005DA-C291-5275-284C-5EE96B05C714}" = Catalyst Control Center HydraVision Full
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.5.8
"{6889EE56-1816-4E89-94DF-9F56E7804039}_is1" = Counter-Strike 1.6 Non-Steam patch v36
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6C72BE0C-3E25-CACD-0070-2FD9C02ABA14}" = ccc-core-preinstall
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{880BB617-914E-17E8-D877-A96BAC5794D2}" = Catalyst Control Center Graphics Full New
"{8897CF22-DB6C-8248-895C-12BFA2677F51}" = CCC Help Hungarian
"{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}" = Battlefield Heroes
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Czech
"{AF710FDE-2815-8C8D-5281-8004C2654AA6}" = CCC Help Russian
"{AFF2D965-C6F2-A210-FBF7-532612AA1D23}" = CCC Help Swedish
"{B21336EE-4AEF-9940-4AC7-EDB89854B8D3}" = CCC Help Thai
"{B56B1487-9A26-4AFD-A1FD-949C40F5F2BC}" = Sony Ericsson PC Suite
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BBA69346-61A1-BD34-E75A-4D81232DB1FE}" = Catalyst Control Center Localization All
"{BFD5ED08-F066-92D5-BE67-3B9AE5DCFF0C}" = CCC Help Japanese
"{BPOINT_02082005}" = Boiling Point - Cesta do pekel
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4609F15-FB3C-D97E-BAA1-4F10815039C2}" = Catalyst Control Center Graphics Full Existing
"{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}" = AVIVO Codecs
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D01FAC3D-86B4-3A19-9D10-9156A0EB3EBE}" = CCC Help Finnish
"{D73722C8-3F65-C75B-A631-5D36894DAB92}" = ccc-core-static
"{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support
"{DDAD33B6-8C00-428D-087B-A7088355B9BE}" = Catalyst Control Center Graphics Light
"{E333F074-FC7F-596D-3D61-44F0EC28E8C0}" = ccc-utility
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{FA38F9E4-BED7-E021-B660-8FDFF7EC6E1A}" = CCC Help Norwegian
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"69083DC58646DE46A09847A522A1CC487F918039" = Balíček ovladače systému Windows - eMPIA Technology Inc, (emAudio) MEDIA (08/31/2007 5.7.0831.0)
"9722CA1E8F72F362E93CBEC75A707FDABFC8D880" = Balíček ovladače systému Windows - Advanced Micro Devices, Inc. (USB28xxBGA) Media (08/31/2007 5.7.0831.0)
"Ad-Aware Browsing Protection" = Ad-Aware Browsing Protection
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"Ashampoo Burning Studio 11_is1" = Ashampoo Burning Studio 11 v.11.0.3
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.80
"ATI Display Driver" = ATI Display Driver
"conduitEngine" = Conduit Engine
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"CreaVures3.3.0.63135" = CreaVures
"Cross Fire_is1" = Cross Fire En
"D-Fend v2" = D-Fend v2
"Diablo III" = Diablo III
"DivX Setup" = DivX Setup
"dm paradies foto 3" = dm paradies foto 3
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Fiesta Online(EU_English)" = Fiesta Online(EU_English) 1.04.000
"FormatFactory" = FormatFactory 2.70
"ie8" = Windows Internet Explorer 8
"InstallShield_{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"Lexmark X1100 Series" = Lexmark X1100 Series
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 14.0.1 (x86 cs)" = Mozilla Firefox 14.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NVIDIA Drivers" = NVIDIA Drivers
"Peggle Deluxe_is1" = Peggle Deluxe
"Picasa 3" = Picasa 3
"PokerStars" = PokerStars
"Posel smrti_is1" = Posel smrti 1.2
"rajče+.net_is1" = rajče verze 57v sestavení 179
"Super Utilities_is1" = Super Utilities Pro 9.6.25
"The KMPlayer" = The KMPlayer (remove only)
"TomTom HOME" = TomTom HOME 2.8.3.2499
"unibetpoker (Poker)" = Unibet
"Update Engine" = Sony Ericsson Update Engine
"uTorrent" = µTorrent
"WaveStudio 7" = Creative WaveStudio 7
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xvid_is1" = Xvid 1.2.1 final uninstall
"ZonerPhotoStudio12_CZ_is1" = Zoner Photo Studio 12
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-725345543-179605362-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"QIP Infium" = QIP Infium 3.0.9044
"Qip Infium packverze: 9040 s IRC protokolem" = Qip Infium pack verze: 9040 s IRC protokolem
"QipGuard" = QIP Internet Guardian
"Ultima Online DP2" = Ultima Online DP2
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 7.8.2012 4:02:35 | Computer Name = VERA | Source = ESENT | ID = 439
Description = Catalog Database (1264) Pro soubor C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
nelze zapsat stínové záhlaví. Chyba -1032
Error - 8.8.2012 9:42:26 | Computer Name = VERA | Source = ESENT | ID = 490
Description = svchost (1264) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error - 8.8.2012 10:01:04 | Computer Name = VERA | Source = ESENT | ID = 490
Description = svchost (1264) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error - 9.8.2012 3:44:13 | Computer Name = VERA | Source = ESENT | ID = 490
Description = svchost (1264) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error - 9.8.2012 3:44:13 | Computer Name = VERA | Source = ESENT | ID = 439
Description = Catalog Database (1264) Pro soubor C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
nelze zapsat stínové záhlaví. Chyba -1032
Error - 9.8.2012 3:44:13 | Computer Name = VERA | Source = ESENT | ID = 470
Description = Catalog Database (1264) Databáze C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
je částečně připojena. Fáze připojení: 1. Chyba: -1032
Error - 9.8.2012 6:57:58 | Computer Name = VERA | Source = ESENT | ID = 490
Description = svchost (1252) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error - 9.8.2012 6:57:58 | Computer Name = VERA | Source = ESENT | ID = 439
Description = Catalog Database (1252) Pro soubor C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
nelze zapsat stínové záhlaví. Chyba -1032
Error - 9.8.2012 6:57:58 | Computer Name = VERA | Source = ESENT | ID = 454
Description = Catalog Database (1252) Při zotavení či obnovení databáze došlo k
neočekávané chybě -1032.
Error - 9.8.2012 12:02:15 | Computer Name = VERA | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 14.0.1.4577, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
[ System Events ]
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA370\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA374\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA379\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA382\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA385\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA386\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA391\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA394\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA398\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 6:26:53 | Computer Name = VERA | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\D.
< End of report >
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Documents and Settings\Věruš\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,65 Gb Available Physical Memory | 32,38% Memory free
3,85 Gb Paging File | 2,66 Gb Available in Paging File | 69,25% Paging File free
Paging file location(s): C:\pagefile.sys 2 3070 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 166,02 Gb Total Space | 37,75 Gb Free Space | 22,74% Space Free | Partition Type: NTFS
Drive D: | 299,74 Gb Total Space | 66,33 Gb Free Space | 22,13% Space Free | Partition Type: NTFS
Computer Name: VERA | User Name: Věruš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
[HKEY_USERS\S-1-5-21-725345543-179605362-839522115-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [CEWE prezentace fotografií] -- "C:\Program Files\dm\dm paradies foto 3\CEWE prezentace fotografií.exe" -d "%1" ()
Directory [dm paradies foto 3] -- "C:\Program Files\dm\dm paradies foto 3\dm paradies foto 3.exe" "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"59031:TCP" = 59031:TCP:*:Enabled:Pando Media Booster
"59031:UDP" = 59031:UDP:*:Enabled:Pando Media Booster
"57551:TCP" = 57551:TCP:*:Enabled:Pando Media Booster
"57551:UDP" = 57551:UDP:*:Enabled:Pando Media Booster
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"443:UDP" = 443:UDP:*:Disabled:ooVoo UDP port 443
"37674:TCP" = 37674:TCP:*:Disabled:ooVoo TCP port 37674
"37674:UDP" = 37674:UDP:*:Disabled:ooVoo UDP port 37674
"37675:UDP" = 37675:UDP:*:Disabled:ooVoo UDP port 37675
"59031:TCP" = 59031:TCP:*:Enabled:Pando Media Booster
"59031:UDP" = 59031:UDP:*:Enabled:Pando Media Booster
"57551:TCP" = 57551:TCP:*:Enabled:Pando Media Booster
"57551:UDP" = 57551:UDP:*:Enabled:Pando Media Booster
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009
"4239:TCP" = 4239:TCP:*:Enabled:Akamai NetSession Interface
"5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe" = C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server -- (Apache Software Foundation)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Ultima Online\client.exe" = C:\Program Files\Ultima Online\client.exe:*:Enabled:client -- ()
"C:\QIP Infium\infium.exe" = C:\QIP Infium\infium.exe:*:Enabled:QIP Infium -- ()
"C:\Program Files\QIP Infium\infium.exe" = C:\Program Files\QIP Infium\infium.exe:*:Enabled:QIP Infium -- ()
"C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe" = C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe:*:Enabled:R6Vegas2_Game -- ()
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe" = C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine -- ()
"C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Akamai\netsession_win.exe" = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Interface
"C:\Documents and Settings\Věruš\Local Settings\Temp\CF_Downloader.exe" = C:\Documents and Settings\Věruš\Local Settings\Temp\CF_Downloader.exe:*:Enabled:CrossFire_Downloader
"C:\Program Files\Z8Games\CrossFire\CF_G4box.exe" = C:\Program Files\Z8Games\CrossFire\CF_G4box.exe:*:Enabled:cf launcher -- (G4box Inc.)
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe" = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil -- (IVT Corporation.)
"C:\Program Files\Ultima Online DP2\client.exe" = C:\Program Files\Ultima Online DP2\client.exe:*:Enabled:Ultima Online Client -- (Electronic Arts)
"C:\Program Files\Ultima Online DP2\UOAM\uoam.exe" = C:\Program Files\Ultima Online DP2\UOAM\uoam.exe:*:Enabled:Ultima Online's premier mapping tool. -- ()
"C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe" = C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe:*:Enabled:CF_DOWNLOADER -- (BuddiePay Inc)
"C:\WINDOWS\system32\lxbkcoms.exe" = C:\WINDOWS\system32\lxbkcoms.exe:*:Enabled:X1100 Series Server -- ( )
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.524\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.524\Agent.exe:*:Enabled:Blizzard Update Agent -- (Blizzard Entertainment)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
"C:\Program Files\Diablo III\Diablo III.exe" = C:\Program Files\Diablo III\Diablo III.exe:*:Enabled:Diablo III -- (Blizzard Entertainment)
"C:\Program Files\ICQ7.5\ICQ.exe" = C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ -- (ICQ, LLC.)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1199\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1199\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0008546E-DF6E-4CC1-AFD0-2CB8E16C95A2}" = Notifier
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{03ADC8AB-C130-0C3D-1FF9-2C385DF25689}" = CCC Help Czech
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{07021185-008D-ABF9-7716-475AC035F8B3}" = CCC Help Spanish
"{083F79E4-6FE9-46FB-A6C6-4F8862742947}" = ATI HYDRAVISION
"{08C5815C-2C6E-44f8-8748-0E61BC9AFB0c}" = LaTale_eu_Test
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0F842B77-56EA-4AAF-8295-81A022350B5E}" = Microsoft Security Client
"{0F8D0406-7755-AC37-6529-73AD649DBE32}" = Catalyst Control Center Graphics Previews Common
"{137EA7E1-D30B-4373-B8B6-CB7E85107F6D}" = Angry Birds Rio
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1B1DDAD2-C704-49F8-8FC2-18DAAD9A87C5}" = Sound Blaster Audigy
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"{22072CC8-7230-96F8-52F4-05EAF3F906B6}" = CCC Help Polish
"{2368ADBD-6FDF-4B9F-FE41-E20B4D78E79E}" = CCC Help Chinese Standard
"{25EF0DC4-B072-2E04-4581-A13C91423CE6}" = CCC Help Portuguese
"{26A24AE4-039D-4CA4-87B4-2F83217005FF}" = Java(TM) 7 Update 5
"{26F7855C-443B-00A6-F7B8-A97A5403F617}" = CCC Help Danish
"{2CB4A925-48A7-DA65-DCEE-D4DE224B7D84}" = CCC Help English
"{306D75B9-7FFF-FF65-0C76-57F2FE4FE1D6}" = Catalyst Control Center Core Implementation
"{32B12FE4-5A51-751A-1FB6-A14E97EBDD5C}" = CCC Help German
"{33286280-8617-11E1-8FF6-B8AC6F97B88E}" = Google Earth Plug-in
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{351512E5-01BD-E878-6F57-AA3E517D9ECE}" = Skins
"{354A387E-0374-21A3-6832-335674A6D7D1}" = CCC Help French
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = StarCam Flip
"{3C00BEE9-26D0-D9E0-A2D1-62F70D412A12}" = CCC Help Turkish
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4346F7AA-3D56-0941-424C-4454E04D37F6}" = CCC Help Italian
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CAE2F2C-75CD-A0DE-7520-449BCBBCC833}" = CCC Help Korean
"{4F677FC7-7AA8-412B-A957-F13CBE1C7331}" = ESSSONIC
"{4F896DE0-EF26-11D5-BBEC-00D0B740900A}" = Multimedia keyboard driver
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client CS-CZ Language Pack
"{57F7F0A5-8F22-8E63-E819-803B5C9CA3A5}" = CCC Help Dutch
"{594F6A23-9FF2-4D03-8761-97483E55CE79}" = NVIDIA 3D Vision Video Player
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{5EA437D2-7A57-B60E-E8F2-76BFAC0895A5}" = CCC Help Chinese Traditional
"{61AF4E75-050E-0304-3417-8BC16417FEB1}" = CCC Help Greek
"{632005DA-C291-5275-284C-5EE96B05C714}" = Catalyst Control Center HydraVision Full
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.5.8
"{6889EE56-1816-4E89-94DF-9F56E7804039}_is1" = Counter-Strike 1.6 Non-Steam patch v36
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6C72BE0C-3E25-CACD-0070-2FD9C02ABA14}" = ccc-core-preinstall
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{880BB617-914E-17E8-D877-A96BAC5794D2}" = Catalyst Control Center Graphics Full New
"{8897CF22-DB6C-8248-895C-12BFA2677F51}" = CCC Help Hungarian
"{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}" = Battlefield Heroes
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Czech
"{AF710FDE-2815-8C8D-5281-8004C2654AA6}" = CCC Help Russian
"{AFF2D965-C6F2-A210-FBF7-532612AA1D23}" = CCC Help Swedish
"{B21336EE-4AEF-9940-4AC7-EDB89854B8D3}" = CCC Help Thai
"{B56B1487-9A26-4AFD-A1FD-949C40F5F2BC}" = Sony Ericsson PC Suite
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BBA69346-61A1-BD34-E75A-4D81232DB1FE}" = Catalyst Control Center Localization All
"{BFD5ED08-F066-92D5-BE67-3B9AE5DCFF0C}" = CCC Help Japanese
"{BPOINT_02082005}" = Boiling Point - Cesta do pekel
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4609F15-FB3C-D97E-BAA1-4F10815039C2}" = Catalyst Control Center Graphics Full Existing
"{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}" = AVIVO Codecs
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D01FAC3D-86B4-3A19-9D10-9156A0EB3EBE}" = CCC Help Finnish
"{D73722C8-3F65-C75B-A631-5D36894DAB92}" = ccc-core-static
"{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support
"{DDAD33B6-8C00-428D-087B-A7088355B9BE}" = Catalyst Control Center Graphics Light
"{E333F074-FC7F-596D-3D61-44F0EC28E8C0}" = ccc-utility
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{FA38F9E4-BED7-E021-B660-8FDFF7EC6E1A}" = CCC Help Norwegian
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"69083DC58646DE46A09847A522A1CC487F918039" = Balíček ovladače systému Windows - eMPIA Technology Inc, (emAudio) MEDIA (08/31/2007 5.7.0831.0)
"9722CA1E8F72F362E93CBEC75A707FDABFC8D880" = Balíček ovladače systému Windows - Advanced Micro Devices, Inc. (USB28xxBGA) Media (08/31/2007 5.7.0831.0)
"Ad-Aware Browsing Protection" = Ad-Aware Browsing Protection
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"Ashampoo Burning Studio 11_is1" = Ashampoo Burning Studio 11 v.11.0.3
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.80
"ATI Display Driver" = ATI Display Driver
"conduitEngine" = Conduit Engine
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"CreaVures3.3.0.63135" = CreaVures
"Cross Fire_is1" = Cross Fire En
"D-Fend v2" = D-Fend v2
"Diablo III" = Diablo III
"DivX Setup" = DivX Setup
"dm paradies foto 3" = dm paradies foto 3
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Fiesta Online(EU_English)" = Fiesta Online(EU_English) 1.04.000
"FormatFactory" = FormatFactory 2.70
"ie8" = Windows Internet Explorer 8
"InstallShield_{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"Lexmark X1100 Series" = Lexmark X1100 Series
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 14.0.1 (x86 cs)" = Mozilla Firefox 14.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NVIDIA Drivers" = NVIDIA Drivers
"Peggle Deluxe_is1" = Peggle Deluxe
"Picasa 3" = Picasa 3
"PokerStars" = PokerStars
"Posel smrti_is1" = Posel smrti 1.2
"rajče+.net_is1" = rajče verze 57v sestavení 179
"Super Utilities_is1" = Super Utilities Pro 9.6.25
"The KMPlayer" = The KMPlayer (remove only)
"TomTom HOME" = TomTom HOME 2.8.3.2499
"unibetpoker (Poker)" = Unibet
"Update Engine" = Sony Ericsson Update Engine
"uTorrent" = µTorrent
"WaveStudio 7" = Creative WaveStudio 7
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xvid_is1" = Xvid 1.2.1 final uninstall
"ZonerPhotoStudio12_CZ_is1" = Zoner Photo Studio 12
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-725345543-179605362-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"QIP Infium" = QIP Infium 3.0.9044
"Qip Infium packverze: 9040 s IRC protokolem" = Qip Infium pack verze: 9040 s IRC protokolem
"QipGuard" = QIP Internet Guardian
"Ultima Online DP2" = Ultima Online DP2
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 7.8.2012 4:02:35 | Computer Name = VERA | Source = ESENT | ID = 439
Description = Catalog Database (1264) Pro soubor C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
nelze zapsat stínové záhlaví. Chyba -1032
Error - 8.8.2012 9:42:26 | Computer Name = VERA | Source = ESENT | ID = 490
Description = svchost (1264) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error - 8.8.2012 10:01:04 | Computer Name = VERA | Source = ESENT | ID = 490
Description = svchost (1264) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error - 9.8.2012 3:44:13 | Computer Name = VERA | Source = ESENT | ID = 490
Description = svchost (1264) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error - 9.8.2012 3:44:13 | Computer Name = VERA | Source = ESENT | ID = 439
Description = Catalog Database (1264) Pro soubor C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
nelze zapsat stínové záhlaví. Chyba -1032
Error - 9.8.2012 3:44:13 | Computer Name = VERA | Source = ESENT | ID = 470
Description = Catalog Database (1264) Databáze C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
je částečně připojena. Fáze připojení: 1. Chyba: -1032
Error - 9.8.2012 6:57:58 | Computer Name = VERA | Source = ESENT | ID = 490
Description = svchost (1252) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error - 9.8.2012 6:57:58 | Computer Name = VERA | Source = ESENT | ID = 439
Description = Catalog Database (1252) Pro soubor C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
nelze zapsat stínové záhlaví. Chyba -1032
Error - 9.8.2012 6:57:58 | Computer Name = VERA | Source = ESENT | ID = 454
Description = Catalog Database (1252) Při zotavení či obnovení databáze došlo k
neočekávané chybě -1032.
Error - 9.8.2012 12:02:15 | Computer Name = VERA | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 14.0.1.4577, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
[ System Events ]
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA370\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA374\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA379\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA382\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA385\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA386\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA391\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA394\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 5:34:14 | Computer Name = VERA | Source = PlugPlayManager | ID = 11
Description = Zařízení Root\LEGACY_XDVA398\0000 se již v systému nenachází, přestože
nebylo nejdříve připraveno k odebrání.
Error - 11.8.2012 6:26:53 | Computer Name = VERA | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\D.
< End of report >
Re: kontrola logu - zamrzani pc
OTL logfile created on: 11.8.2012 12:15:10 - Run 1
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Documents and Settings\Věruš\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,65 Gb Available Physical Memory | 32,38% Memory free
3,85 Gb Paging File | 2,66 Gb Available in Paging File | 69,25% Paging File free
Paging file location(s): C:\pagefile.sys 2 3070 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 166,02 Gb Total Space | 37,75 Gb Free Space | 22,74% Space Free | Partition Type: NTFS
Drive D: | 299,74 Gb Total Space | 66,33 Gb Free Space | 22,13% Space Free | Partition Type: NTFS
Computer Name: VERA | User Name: Věruš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012.08.11 12:12:49 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Věruš\Plocha\OTL.exe
PRC - [2012.07.14 02:13:42 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.03.26 17:08:12 | 000,931,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2012.03.26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2012.01.23 06:43:08 | 000,092,592 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.02.28 11:58:14 | 000,074,408 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark X1100 Series\LXBKbmgr.exe
PRC - [2008.02.28 11:57:36 | 000,058,024 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark X1100 Series\LXBKbmon.exe
PRC - [2008.02.19 09:12:18 | 000,537,256 | ---- | M] ( ) -- C:\WINDOWS\system32\lxbkcoms.exe
PRC - [2006.09.11 19:59:28 | 000,172,032 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
PRC - [2006.09.11 19:56:02 | 000,135,227 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
PRC - [2006.09.11 19:55:42 | 000,065,599 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
PRC - [2006.04.13 16:14:26 | 000,020,543 | ---- | M] (Apache Software Foundation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe
========== Modules (No Company Name) ==========
MOD - [2012.08.05 12:41:23 | 009,465,032 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll
MOD - [2012.07.14 02:14:07 | 002,003,424 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2010.02.18 00:49:10 | 000,323,584 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2010.02.10 18:10:12 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2008.04.14 05:21:47 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2006.09.11 19:59:28 | 000,172,032 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
MOD - [2006.04.13 16:14:26 | 000,876,544 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\libeay32.dll
MOD - [2006.04.13 16:14:26 | 000,159,744 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\ssleay32.dll
MOD - [2006.04.13 16:14:26 | 000,024,691 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\modules\mod_auth.so
MOD - [2005.09.13 16:27:10 | 000,061,440 | ---- | M] () -- C:\WINDOWS\system32\lxbkcnv5.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012.07.14 02:13:54 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.03.26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2012.01.23 06:43:08 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2008.02.19 09:12:18 | 000,537,256 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\system32\lxbkcoms.exe -- (lxbk_device)
SRV - [2006.09.11 19:59:28 | 000,172,032 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)
SRV - [2006.09.11 19:56:02 | 000,135,227 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe -- (nSvcIp)
SRV - [2006.09.11 19:55:42 | 000,065,599 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe -- (nSvcLog)
SRV - [2006.04.13 16:14:26 | 000,020,543 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe -- (ForcewareWebInterface)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\VcommMgr.sys -- (VcommMgr)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\VComm.sys -- (VComm)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\pccsmcfd.sys -- (pccsmcfd)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | Boot | Stopped] -- System32\Drivers\BTHidMgr.sys -- (BTHidMgr)
DRV - File not found [Kernel | Boot | Stopped] -- System32\Drivers\vbtenum.sys -- (BTHidEnum)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\btcusb.sys -- (Btcsrusb)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\btcombus.sys -- (BTCOMBUS)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btcomport.sys -- (BTCOM)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btnetdrv.sys -- (BT)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\BlueletSCOAudio.sys -- (BlueletSCOAudio)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\blueletaudio.sys -- (BlueletAudio)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (adj99gld)
DRV - [2011.05.16 17:33:41 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2011.05.16 17:33:41 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2011.01.14 12:04:00 | 000,088,944 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
DRV - [2010.10.29 03:38:00 | 000,142,320 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Mkd2kfNT.sys -- (Mkd2kfNt)
DRV - [2010.05.30 15:45:20 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2010.02.25 17:51:02 | 000,025,216 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2010.02.11 09:38:10 | 003,565,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009.12.30 11:20:56 | 000,027,064 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\revoflt.sys -- (Revoflt)
DRV - [2009.01.08 20:31:40 | 003,528,576 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC)
DRV - [2008.12.26 12:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer)
DRV - [2008.12.07 13:44:54 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btnetBus.sys -- (btnetBUs)
DRV - [2008.07.31 21:45:42 | 000,020,616 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\BtHidBus.sys -- (BtHidBus)
DRV - [2008.07.02 15:58:48 | 000,026,248 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV - [2008.02.24 16:17:00 | 000,011,264 | ---- | M] (Superlogix) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\supermounter.sys -- (SuperMounter)
DRV - [2007.03.11 21:39:46 | 000,043,936 | ---- | M] (Alfa Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\AFPAnsi.sys -- (AFPAnsi)
DRV - [2006.11.10 09:55:48 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2Funic.sys -- (se2Funic)
DRV - [2006.11.10 09:55:40 | 000,086,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Fobex.sys -- (SE2Fobex)
DRV - [2006.11.10 09:55:38 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2Fnd5.sys -- (se2Fnd5)
DRV - [2006.11.10 09:55:36 | 000,088,688 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Fmgmt.sys -- (SE2Fmgmt)
DRV - [2006.11.10 09:55:32 | 000,097,184 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Fmdm.sys -- (SE2Fmdm)
DRV - [2006.11.10 09:55:30 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Fmdfl.sys -- (SE2Fmdfl)
DRV - [2006.11.10 09:55:22 | 000,061,600 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Fbus.sys -- (SE2Fbus)
DRV - [2006.09.11 13:45:38 | 000,019,968 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.09.11 13:45:36 | 000,057,856 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2006.09.11 13:45:26 | 000,110,592 | R--- | M] (NVIDIA Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\nvtcp.sys -- (NVTCP)
DRV - [2006.08.21 12:24:28 | 000,105,344 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvata.sys -- (nvata)
DRV - [2006.06.18 23:59:28 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005.07.07 10:14:30 | 001,389,056 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P17.SYS -- (P17)
DRV - [2005.03.03 19:53:57 | 000,048,640 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2005.02.23 17:59:54 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
DRV - [2005.01.10 12:15:30 | 000,106,496 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CTOSS2K.SYS -- (ossrv)
DRV - [2005.01.10 12:15:24 | 000,138,752 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CTSFM2K.SYS -- (ctsfm2k)
DRV - [2004.12.03 12:20:41 | 000,020,544 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02)
DRV - [2004.08.13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2003.12.05 11:46:36 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
IE - HKLM\..\SearchScopes,DefaultScope = {95289393-33EA-4F8D-B952-483415B9C955}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKLM\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=wbst&s={s ... }&src=chrm
IE - HKLM\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {95289393-33EA-4F8D-B952-483415B9C955}
IE - HKU\.DEFAULT\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... orm=IE8SRC
IE - HKU\.DEFAULT\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {95289393-33EA-4F8D-B952-483415B9C955}
IE - HKU\S-1-5-18\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... orm=IE8SRC
IE - HKU\S-1-5-18\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\SearchScopes,DefaultScope = {57CC7D74-B00E-48F5-A158-5DCE9B650C72}
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\SearchScopes\{57CC7D74-B00E-48F5-A158-5DCE9B650C72}: "URL" = http://search.seznam.cz/?q={searchTerms ... chmodule_2
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaultthis.engineName: "XfireXO Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://start.icq.com/"
FF - prefs.js..extensions.enabledItems: noia2_option@kk.noia:3.76
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198
FF - prefs.js..extensions.enabledItems: {7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.7.1.3
FF - prefs.js..extensions.enabledItems: {5e5ab302-7f65-44cd-8211-c1d4caaccea3}:2.7.1.3
FF - prefs.js..extensions.enabledItems: {32a1fd71-835e-4b11-8e54-886fda0b4c89}:1.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: ffxtlbr@Facemoods.com:1.1.0
FF - prefs.js..extensions.enabledItems: {9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}:3.76
FF - prefs.js..keyword.URL: "http://start.facemoods.com/?a=wbst&s={s ... }&src=chrm"
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: File not found
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\Věruš\Data aplikací\Facebook\npfbplugin_1_0_3.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.12.26 19:39:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.08.05 00:33:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.06.27 20:42:17 | 000,000,000 | ---D | M]
[2012.02.09 12:30:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Extensions
[2012.02.09 12:30:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Extensions\home2@tomtom.com
[2010.11.25 00:16:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions
[2010.06.03 11:23:12 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.07.12 15:25:57 | 000,000,000 | ---D | M] (QipAuthorizer) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}
[2010.06.12 12:34:20 | 000,000,000 | ---D | M] (XfireXO Toolbar) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2010.08.02 16:50:00 | 000,000,000 | ---D | M] (Zynga Toolbar) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
[2011.07.06 23:30:51 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.01.10 20:25:40 | 000,000,000 | ---D | M] (DVDVideoSoftTB Toolbar) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2010.05.25 22:31:46 | 000,000,000 | ---D | M] (Noia 2.0 (eXtreme)) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}
[2011.03.10 14:58:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\ffxtlbr@Facemoods.com
[2010.05.25 22:31:50 | 000,000,000 | ---D | M] (Noia 2.0 eXtreme OPT) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\noia2_option@kk.noia
[2012.08.09 18:27:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions
[2011.01.31 00:16:05 | 000,000,000 | ---D | M] (QipAuthorizer) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}
[2011.08.30 11:26:52 | 000,000,000 | ---D | M] (20-20 3D Viewer - IKEA) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\2020Player_IKEA@2020Technologies.com
[2010.12.24 17:13:17 | 000,000,000 | ---D | M] (Battlefield Heroes Updater) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\battlefieldheroespatcher@ea.com
[2010.08.29 22:00:28 | 000,000,000 | ---D | M] (Noia 2.0 eXtreme OPT) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\noia2_option@kk.noia
[2011.03.24 11:48:25 | 000,000,000 | ---D | M] (GamePlayLabs Plugin) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\plugin2@gameplaylabs.com
[2010.06.11 02:08:24 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\conduit.xml
[2010.05.30 15:45:24 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\daemon-search.xml
[2011.03.30 15:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\icqplugin.xml
[2010.07.12 16:20:56 | 000,002,062 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\qip-search.xml
[2012.08.05 00:33:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.04.16 16:57:12 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{20A82645-C095-46ED-80E3-08825760534B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{32A1FD71-835E-4B11-8E54-886FDA0B4C89}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{7B13EC3E-999A-4B70-B9CB-2617B8323822}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\FFXTLBR@FACEMOODS.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\NOIA2_OPTION@KK.NOIA
[2010.05.27 12:06:05 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{AB2CE124-6272-4B12-94A9-7303C7397BD1}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2012.07.14 02:15:45 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.07.14 04:30:04 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.07.14 04:30:04 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.07.14 04:30:05 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.07.14 04:30:05 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.07.14 04:30:05 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - homepage: http://www.seznam.cz/
CHR - default_search_provider: Seznam (Enabled)
CHR - default_search_provider: search_url = http://search.seznam.cz/?q={searchTerms}
CHR - default_search_provider: suggest_url = http:///suggest.fulltext.seznam.cz/?dict=fulltext_ff&phrase={searchTerms}&encoding={inputEncoding}&response_encoding=utf-8
CHR - homepage: http://www.seznam.cz/
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\21.0.1180.60\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\21.0.1180.60\pdf.dll
CHR - plugin: GamePlayLabs Plugin (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\Default\Extensions\ocphobfcfafpclibolpjdafgaffkaoci\1.0_0\npGamePlayLabsPlugin.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Data aplikac\u00ED\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: AhnLab Online Security (Enabled) = C:\Program Files\AhnLab\ASP\Components\aosmgr\npaosmgr.dll
CHR - plugin: AhnLab Online Security Anti-KeyLogger SP (Enabled) = C:\Program Files\AhnLab\ASP\MyKeyDefense 2.5\npmkd25sp.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Skype Click to Call = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: GamePlayLabs Plugin = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ocphobfcfafpclibolpjdafgaffkaoci\1.0_0\
CHR - Extension: Gmail = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2012.08.11 11:34:12 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
O3 - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [lxbkbmgr.exe] C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-725345543-179605362-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-725345543-179605362-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-21-725345543-179605362-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {063F7D71-5E0B-48F2-87D5-F63C5917947E} http://ahnlabdownload.nefficient.co.kr/ ... aosmgr.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{67EC769F-08AB-4797-8EFC-3B1833739DA1}: NameServer = 188.75.128.128,10.0.150.150
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.05.25 17:20:46 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2012.08.11 12:12:45 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Věruš\Plocha\OTL.exe
[2012.08.11 11:31:44 | 000,000,000 | ---D | C] -- C:\_OTM
[2012.08.11 11:29:53 | 000,522,240 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Věruš\Plocha\OTM.exe
[2012.08.09 18:15:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\GFI Software
[2012.08.09 13:21:25 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.08.09 13:21:24 | 000,000,000 | ---D | C] -- C:\rsit
[2012.08.07 23:18:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Věruš\Plocha\.picasaoriginals
[2012.08.05 18:22:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PokerStars
[2012.08.05 00:38:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\Ad-Aware Antivirus
[2012.08.05 00:36:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Local Settings\Data aplikací\adaware
[2012.08.05 00:33:28 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012.08.04 21:53:35 | 000,000,000 | ---D | C] -- C:\Reborn
[2012.08.04 17:54:05 | 000,000,000 | ---D | C] -- C:\Program Files\PokerStars
[2012.08.04 17:39:48 | 000,000,000 | ---D | C] -- C:\Program Files\CardCasino(2).com
[2012.08.04 11:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Mozilla
[2012.08.01 23:27:49 | 000,000,000 | ---D | C] -- C:\Program Files\Garena Plus
[2012.08.01 23:27:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
[2012.08.01 23:25:26 | 000,000,000 | ---D | C] -- C:\Program Files\Warcraft III
[2012.07.31 23:30:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Data aplikací\Microgaming
[2012.07.31 23:29:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Unibet
[2012.07.31 23:29:33 | 000,000,000 | ---D | C] -- C:\Microgaming
[2012.07.31 23:29:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\MGS
[2012.07.31 20:49:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Local Settings\Data aplikací\DOSBox
[2012.07.31 20:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Plocha\Videa
[2012.07.31 20:06:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Plocha\hudba
[2012.07.31 20:04:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Plocha\Fotky
[2012.07.31 20:02:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Plocha\Hry
[2012.07.24 21:47:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Dokumenty\Diablo III
[2012.07.23 00:23:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Data aplikací\.minecraft
[2012.07.22 17:33:10 | 000,000,000 | ---D | C] -- C:\Program Files\Diablo III
[2012.07.22 17:33:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2012.07.22 17:33:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
[2012.07.22 17:32:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Battle.net
[2012.07.21 20:51:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012.07.21 20:51:01 | 000,227,824 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012.07.21 20:51:01 | 000,143,872 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2012.07.21 20:50:58 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.07.21 20:50:58 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.07.17 18:16:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Nabídka Start\Programy\Worms Reloaded
[2012.07.17 18:15:53 | 000,000,000 | ---D | C] -- C:\Program Files\Worms Reloaded
[2012.07.13 22:24:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Dokumenty\restore
[2012.07.13 21:27:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\firebird
[2012.07.13 21:26:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Data aplikací\Exec
[2012.07.13 17:50:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Plocha\knizka
[2012.07.13 17:45:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\tmp
[2012.07.13 17:45:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\hps
========== Files - Modified Within 30 Days ==========
[2012.08.11 12:16:52 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.08.11 12:12:49 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Věruš\Plocha\OTL.exe
[2012.08.11 12:07:55 | 003,584,591 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_120341.png
[2012.08.11 12:05:50 | 003,584,591 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_120240.png
[2012.08.11 11:57:30 | 003,584,591 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_115541.png
[2012.08.11 11:45:40 | 000,000,396 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2012.08.11 11:39:24 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2012.08.11 11:35:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.08.11 11:34:12 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2012.08.11 11:29:55 | 000,522,240 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Věruš\Plocha\OTM.exe
[2012.08.09 09:51:07 | 000,002,289 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\Google Chrome.lnk
[2012.08.07 23:18:01 | 000,287,765 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\stary foto.jpg
[2012.08.07 13:09:34 | 000,272,576 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.08.05 18:22:11 | 000,000,768 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\PokerStars.lnk
[2012.08.05 12:41:26 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012.08.05 12:41:24 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012.08.05 00:33:29 | 000,000,756 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2012.08.05 00:29:24 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.08.02 01:55:36 | 000,045,194 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\room_v3.dat
[2012.07.31 20:12:57 | 000,000,853 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\mpc-hc.lnk
[2012.07.31 20:08:50 | 000,086,528 | ---- | M] () -- C:\Documents and Settings\Věruš\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.07.31 18:52:40 | 000,000,080 | ---- | M] () -- C:\WINDOWS\SuperUtil.ini
[2012.07.22 16:16:51 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.07.21 20:50:48 | 000,227,824 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012.07.21 20:50:48 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.07.21 20:50:48 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.07.21 20:50:48 | 000,143,872 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2012.07.13 17:50:24 | 000,063,842 | ---- | M] () -- C:\Documents and Settings\Věruš\Dokumenty\dm turecko kniha.mcf
========== Files Created - No Company Name ==========
[2012.08.11 12:16:52 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.08.11 12:04:52 | 003,584,591 | ---- | C] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_120341.png
[2012.08.11 12:03:46 | 003,584,591 | ---- | C] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_120240.png
[2012.08.11 11:56:42 | 003,584,591 | ---- | C] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_115541.png
[2012.08.07 23:18:01 | 000,287,765 | ---- | C] () -- C:\Documents and Settings\Věruš\Plocha\stary foto.jpg
[2012.08.05 18:22:11 | 000,000,768 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\PokerStars.lnk
[2012.08.02 01:55:36 | 000,045,194 | ---- | C] () -- C:\Documents and Settings\Věruš\Data aplikací\room_v3.dat
[2012.07.31 20:12:57 | 000,000,853 | ---- | C] () -- C:\Documents and Settings\Věruš\Plocha\mpc-hc.lnk
[2012.07.13 17:50:23 | 000,063,842 | ---- | C] () -- C:\Documents and Settings\Věruš\Dokumenty\dm turecko kniha.mcf
[2012.07.09 17:11:14 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\lxbkcoin.dll
[2012.07.09 17:11:14 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxbkvs.dll
[2012.07.09 17:11:04 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\lxbkcnv4.dll
[2012.07.09 17:10:25 | 000,413,696 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkinpa.dll
[2012.07.09 17:10:25 | 000,323,584 | ---- | C] ( ) -- C:\WINDOWS\System32\LXBKhcp.dll
[2012.07.09 17:10:25 | 000,274,432 | ---- | C] () -- C:\WINDOWS\System32\LXBKinst.dll
[2012.07.09 17:10:24 | 001,224,704 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkserv.dll
[2012.07.09 17:10:24 | 000,991,232 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkusb1.dll
[2012.07.09 17:10:24 | 000,413,696 | ---- | C] () -- C:\WINDOWS\System32\lxbkutil.dll
[2012.07.09 17:10:24 | 000,397,312 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkiesc.dll
[2012.07.09 17:10:24 | 000,163,840 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkprox.dll
[2012.07.09 17:10:24 | 000,094,208 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkpplc.dll
[2012.07.09 17:10:23 | 000,696,320 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkhbn3.dll
[2012.07.09 17:10:23 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkpmui.dll
[2012.07.09 17:10:23 | 000,585,728 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbklmpm.dll
[2012.07.09 17:10:23 | 000,385,704 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkih.exe
[2012.07.09 17:10:23 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\lxbkinsr.dll
[2012.07.09 17:10:22 | 000,684,032 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkcomc.dll
[2012.07.09 17:10:22 | 000,537,256 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkcoms.exe
[2012.07.09 17:10:22 | 000,421,888 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkcomm.dll
[2012.07.09 17:10:21 | 000,381,608 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkcfg.exe
[2012.07.09 16:44:28 | 000,039,899 | ---- | C] () -- C:\WINDOWS\System32\rtsicis.ini
[2012.07.09 16:44:27 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\lxbkcnv5.dll
[2012.03.02 01:06:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2012.02.16 12:07:39 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.01.31 22:29:42 | 000,004,915 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\vwjsbrmd.jwx
[2012.01.13 04:00:26 | 000,272,174 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-725345543-179605362-839522115-1004-0.dat
[2011.12.07 02:21:30 | 000,271,346 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2011.12.06 20:15:31 | 000,034,308 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\mazuki.dll
[2011.11.11 22:55:37 | 003,528,576 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys
[2011.11.11 22:55:37 | 000,176,128 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2uvc.dll
[2011.11.11 22:55:37 | 000,028,544 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys
[2011.11.11 22:55:37 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2uvc.ini
[2011.11.11 22:26:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2011.09.04 19:24:43 | 000,000,080 | ---- | C] () -- C:\WINDOWS\SuperUtil.ini
[2011.09.04 19:10:06 | 000,261,120 | ---- | C] () -- C:\WINDOWS\System32\SuperMenuHook.dll
[2011.09.04 19:10:06 | 000,261,120 | ---- | C] () -- C:\WINDOWS\System32\baksm.dll
[2011.09.04 19:10:06 | 000,261,120 | ---- | C] () -- C:\WINDOWS\System32\baksm.dat
[2011.09.04 19:10:06 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\Shreder.dll
[2011.09.04 19:10:06 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\SuperRes.dll
[2011.09.04 19:10:06 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\vb6sock.dll
[2011.07.18 20:27:17 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ReminderNextRun
[2011.07.03 17:34:11 | 000,049,615 | ---- | C] () -- C:\Documents and Settings\Věruš\Steam_2011_07_03__15_34_11_187.mdmp
[2011.06.12 15:00:41 | 000,264,510 | ---- | C] () -- C:\Documents and Settings\Věruš\Steam_2011_06_12__13_00_41_015.mdmp
[2011.05.14 00:10:19 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.05.02 22:08:29 | 000,000,109 | ---- | C] () -- C:\WINDOWS\lexstat.ini
[2011.04.20 15:40:33 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2011.04.20 15:40:33 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2011.04.09 00:11:08 | 000,561,152 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011.04.09 00:11:08 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.12.30 14:10:13 | 000,237,568 | ---- | C] () -- C:\WINDOWS\tsnp2uvc.exe
[2010.12.30 14:10:13 | 000,180,224 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2uvc.dll
[2010.12.24 17:22:20 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Věruš\Data aplikací\PnkBstrK.sys
[2010.10.27 19:49:03 | 000,000,232 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010.09.28 18:18:55 | 000,547,840 | ---- | C] () -- C:\WINDOWS\mHotkey.exe
[2010.09.28 18:18:55 | 000,294,912 | ---- | C] () -- C:\WINDOWS\PIC.dll
[2010.09.28 18:18:55 | 000,024,576 | ---- | C] () -- C:\WINDOWS\HKNTDLL.dll
[2010.09.28 18:14:03 | 000,000,490 | ---- | C] () -- C:\WINDOWS\Instit.ini
[2010.05.29 11:24:54 | 000,086,528 | ---- | C] () -- C:\Documents and Settings\Věruš\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.28 18:23:47 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2010.05.27 19:15:10 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
========== LOP Check ==========
[2011.08.20 22:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2012.07.22 17:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Battle.net
[2012.03.14 01:33:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Bluetooth
[2010.05.30 15:44:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2012.07.13 22:01:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\firebird
[2012.08.05 00:27:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
[2012.08.09 18:15:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GFI Software
[2011.07.06 23:30:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2011.01.05 18:50:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2012.07.31 23:29:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MGS
[2012.06.04 13:08:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2010.06.07 00:27:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Teleca
[2011.12.25 15:10:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2012.07.31 19:02:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\tmp
[2012.02.09 12:30:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TomTom
[2011.02.19 20:04:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2012.08.05 00:38:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Ad-Aware Antivirus
[2012.07.26 00:24:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\.minecraft
[2011.12.24 22:06:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\3v
[2011.07.02 23:50:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Ahnlab
[2011.12.25 15:08:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\AnvSoft
[2011.12.06 20:12:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Ashampoo
[2012.04.11 22:22:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Avnex
[2010.10.03 14:13:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\DAEMON Tools Lite
[2011.12.26 19:43:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\DDMSettings
[2012.07.13 21:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Exec
[2011.02.02 14:55:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Genimo
[2011.07.03 16:53:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\GetRightToGo
[2012.07.31 18:05:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ICQ
[2012.04.10 22:34:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Iminent
[2010.05.27 19:21:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\InterTrust
[2012.08.10 20:27:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Microgaming
[2010.12.23 19:44:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\mojosoft
[2010.11.14 19:05:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ooVoo Details
[2011.04.28 13:30:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Opera
[2012.06.10 11:08:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Oracle
[2011.09.16 18:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\PriceGong
[2012.03.08 17:31:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Promaxx
[2010.05.25 21:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\QIP
[2011.01.31 00:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\QipGuard
[2012.04.14 12:49:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Razor
[2011.11.11 01:08:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Rovio
[2012.01.09 21:00:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Sony
[2011.08.01 23:20:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Stereoscopic Player
[2011.07.31 19:32:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Stereoscopic Player CHIP Edition
[2010.06.07 00:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Teleca
[2012.02.09 12:30:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\TomTom
[2012.02.04 14:59:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Trine2
[2012.08.11 11:31:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\uTorrent
[2011.02.02 19:03:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\V-Games
[2012.03.14 00:23:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\WinBatch
[2010.06.29 21:13:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Zoner
========== Purity Check ==========
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Documents and Settings\Věruš\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 0,65 Gb Available Physical Memory | 32,38% Memory free
3,85 Gb Paging File | 2,66 Gb Available in Paging File | 69,25% Paging File free
Paging file location(s): C:\pagefile.sys 2 3070 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 166,02 Gb Total Space | 37,75 Gb Free Space | 22,74% Space Free | Partition Type: NTFS
Drive D: | 299,74 Gb Total Space | 66,33 Gb Free Space | 22,13% Space Free | Partition Type: NTFS
Computer Name: VERA | User Name: Věruš | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012.08.11 12:12:49 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Věruš\Plocha\OTL.exe
PRC - [2012.07.14 02:13:42 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.03.26 17:08:12 | 000,931,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2012.03.26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2012.01.23 06:43:08 | 000,092,592 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.02.28 11:58:14 | 000,074,408 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark X1100 Series\LXBKbmgr.exe
PRC - [2008.02.28 11:57:36 | 000,058,024 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark X1100 Series\LXBKbmon.exe
PRC - [2008.02.19 09:12:18 | 000,537,256 | ---- | M] ( ) -- C:\WINDOWS\system32\lxbkcoms.exe
PRC - [2006.09.11 19:59:28 | 000,172,032 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
PRC - [2006.09.11 19:56:02 | 000,135,227 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
PRC - [2006.09.11 19:55:42 | 000,065,599 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
PRC - [2006.04.13 16:14:26 | 000,020,543 | ---- | M] (Apache Software Foundation) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe
========== Modules (No Company Name) ==========
MOD - [2012.08.05 12:41:23 | 009,465,032 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll
MOD - [2012.07.14 02:14:07 | 002,003,424 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2010.02.18 00:49:10 | 000,323,584 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2010.02.10 18:10:12 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2008.04.14 05:21:47 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2006.09.11 19:59:28 | 000,172,032 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
MOD - [2006.04.13 16:14:26 | 000,876,544 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\libeay32.dll
MOD - [2006.04.13 16:14:26 | 000,159,744 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\ssleay32.dll
MOD - [2006.04.13 16:14:26 | 000,024,691 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\modules\mod_auth.so
MOD - [2005.09.13 16:27:10 | 000,061,440 | ---- | M] () -- C:\WINDOWS\system32\lxbkcnv5.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012.07.14 02:13:54 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.03.26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2012.01.23 06:43:08 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2008.02.19 09:12:18 | 000,537,256 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\system32\lxbkcoms.exe -- (lxbk_device)
SRV - [2006.09.11 19:59:28 | 000,172,032 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)
SRV - [2006.09.11 19:56:02 | 000,135,227 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe -- (nSvcIp)
SRV - [2006.09.11 19:55:42 | 000,065,599 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe -- (nSvcLog)
SRV - [2006.04.13 16:14:26 | 000,020,543 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe -- (ForcewareWebInterface)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\VcommMgr.sys -- (VcommMgr)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\VComm.sys -- (VComm)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\pccsmcfd.sys -- (pccsmcfd)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | Boot | Stopped] -- System32\Drivers\BTHidMgr.sys -- (BTHidMgr)
DRV - File not found [Kernel | Boot | Stopped] -- System32\Drivers\vbtenum.sys -- (BTHidEnum)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\btcusb.sys -- (Btcsrusb)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\btcombus.sys -- (BTCOMBUS)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btcomport.sys -- (BTCOM)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btnetdrv.sys -- (BT)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\BlueletSCOAudio.sys -- (BlueletSCOAudio)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\blueletaudio.sys -- (BlueletAudio)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (adj99gld)
DRV - [2011.05.16 17:33:41 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2011.05.16 17:33:41 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2011.01.14 12:04:00 | 000,088,944 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
DRV - [2010.10.29 03:38:00 | 000,142,320 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Mkd2kfNT.sys -- (Mkd2kfNt)
DRV - [2010.05.30 15:45:20 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2010.02.25 17:51:02 | 000,025,216 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2010.02.11 09:38:10 | 003,565,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009.12.30 11:20:56 | 000,027,064 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\revoflt.sys -- (Revoflt)
DRV - [2009.01.08 20:31:40 | 003,528,576 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC)
DRV - [2008.12.26 12:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer)
DRV - [2008.12.07 13:44:54 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btnetBus.sys -- (btnetBUs)
DRV - [2008.07.31 21:45:42 | 000,020,616 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\BtHidBus.sys -- (BtHidBus)
DRV - [2008.07.02 15:58:48 | 000,026,248 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV - [2008.02.24 16:17:00 | 000,011,264 | ---- | M] (Superlogix) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\supermounter.sys -- (SuperMounter)
DRV - [2007.03.11 21:39:46 | 000,043,936 | ---- | M] (Alfa Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\AFPAnsi.sys -- (AFPAnsi)
DRV - [2006.11.10 09:55:48 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2Funic.sys -- (se2Funic)
DRV - [2006.11.10 09:55:40 | 000,086,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Fobex.sys -- (SE2Fobex)
DRV - [2006.11.10 09:55:38 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2Fnd5.sys -- (se2Fnd5)
DRV - [2006.11.10 09:55:36 | 000,088,688 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Fmgmt.sys -- (SE2Fmgmt)
DRV - [2006.11.10 09:55:32 | 000,097,184 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Fmdm.sys -- (SE2Fmdm)
DRV - [2006.11.10 09:55:30 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Fmdfl.sys -- (SE2Fmdfl)
DRV - [2006.11.10 09:55:22 | 000,061,600 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Fbus.sys -- (SE2Fbus)
DRV - [2006.09.11 13:45:38 | 000,019,968 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.09.11 13:45:36 | 000,057,856 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2006.09.11 13:45:26 | 000,110,592 | R--- | M] (NVIDIA Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\nvtcp.sys -- (NVTCP)
DRV - [2006.08.21 12:24:28 | 000,105,344 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvata.sys -- (nvata)
DRV - [2006.06.18 23:59:28 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005.07.07 10:14:30 | 001,389,056 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P17.SYS -- (P17)
DRV - [2005.03.03 19:53:57 | 000,048,640 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2005.02.23 17:59:54 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
DRV - [2005.01.10 12:15:30 | 000,106,496 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CTOSS2K.SYS -- (ossrv)
DRV - [2005.01.10 12:15:24 | 000,138,752 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CTSFM2K.SYS -- (ctsfm2k)
DRV - [2004.12.03 12:20:41 | 000,020,544 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02)
DRV - [2004.08.13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2003.12.05 11:46:36 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
IE - HKLM\..\SearchScopes,DefaultScope = {95289393-33EA-4F8D-B952-483415B9C955}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKLM\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=wbst&s={s ... }&src=chrm
IE - HKLM\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {95289393-33EA-4F8D-B952-483415B9C955}
IE - HKU\.DEFAULT\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... orm=IE8SRC
IE - HKU\.DEFAULT\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {95289393-33EA-4F8D-B952-483415B9C955}
IE - HKU\S-1-5-18\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... orm=IE8SRC
IE - HKU\S-1-5-18\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\SearchScopes,DefaultScope = {57CC7D74-B00E-48F5-A158-5DCE9B650C72}
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\SearchScopes\{57CC7D74-B00E-48F5-A158-5DCE9B650C72}: "URL" = http://search.seznam.cz/?q={searchTerms ... chmodule_2
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaultthis.engineName: "XfireXO Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://start.icq.com/"
FF - prefs.js..extensions.enabledItems: noia2_option@kk.noia:3.76
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198
FF - prefs.js..extensions.enabledItems: {7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.7.1.3
FF - prefs.js..extensions.enabledItems: {5e5ab302-7f65-44cd-8211-c1d4caaccea3}:2.7.1.3
FF - prefs.js..extensions.enabledItems: {32a1fd71-835e-4b11-8e54-886fda0b4c89}:1.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: ffxtlbr@Facemoods.com:1.1.0
FF - prefs.js..extensions.enabledItems: {9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}:3.76
FF - prefs.js..keyword.URL: "http://start.facemoods.com/?a=wbst&s={s ... }&src=chrm"
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: File not found
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Documents and Settings\Věruš\Data aplikací\Facebook\npfbplugin_1_0_3.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.12.26 19:39:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.08.05 00:33:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.06.27 20:42:17 | 000,000,000 | ---D | M]
[2012.02.09 12:30:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Extensions
[2012.02.09 12:30:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Extensions\home2@tomtom.com
[2010.11.25 00:16:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions
[2010.06.03 11:23:12 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.07.12 15:25:57 | 000,000,000 | ---D | M] (QipAuthorizer) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}
[2010.06.12 12:34:20 | 000,000,000 | ---D | M] (XfireXO Toolbar) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2010.08.02 16:50:00 | 000,000,000 | ---D | M] (Zynga Toolbar) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
[2011.07.06 23:30:51 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.01.10 20:25:40 | 000,000,000 | ---D | M] (DVDVideoSoftTB Toolbar) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2010.05.25 22:31:46 | 000,000,000 | ---D | M] (Noia 2.0 (eXtreme)) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e}
[2011.03.10 14:58:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\ffxtlbr@Facemoods.com
[2010.05.25 22:31:50 | 000,000,000 | ---D | M] (Noia 2.0 eXtreme OPT) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\noia2_option@kk.noia
[2012.08.09 18:27:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions
[2011.01.31 00:16:05 | 000,000,000 | ---D | M] (QipAuthorizer) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}
[2011.08.30 11:26:52 | 000,000,000 | ---D | M] (20-20 3D Viewer - IKEA) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\2020Player_IKEA@2020Technologies.com
[2010.12.24 17:13:17 | 000,000,000 | ---D | M] (Battlefield Heroes Updater) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\battlefieldheroespatcher@ea.com
[2010.08.29 22:00:28 | 000,000,000 | ---D | M] (Noia 2.0 eXtreme OPT) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\noia2_option@kk.noia
[2011.03.24 11:48:25 | 000,000,000 | ---D | M] (GamePlayLabs Plugin) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\plugin2@gameplaylabs.com
[2010.06.11 02:08:24 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\conduit.xml
[2010.05.30 15:45:24 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\daemon-search.xml
[2011.03.30 15:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\icqplugin.xml
[2010.07.12 16:20:56 | 000,002,062 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\qip-search.xml
[2012.08.05 00:33:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.04.16 16:57:12 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{20A82645-C095-46ED-80E3-08825760534B}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{32A1FD71-835E-4B11-8E54-886FDA0B4C89}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{7B13EC3E-999A-4B70-B9CB-2617B8323822}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\FFXTLBR@FACEMOODS.COM
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\NOIA2_OPTION@KK.NOIA
[2010.05.27 12:06:05 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{AB2CE124-6272-4B12-94A9-7303C7397BD1}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2012.07.14 02:15:45 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.07.14 04:30:04 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.07.14 04:30:04 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.07.14 04:30:05 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.07.14 04:30:05 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.07.14 04:30:05 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - homepage: http://www.seznam.cz/
CHR - default_search_provider: Seznam (Enabled)
CHR - default_search_provider: search_url = http://search.seznam.cz/?q={searchTerms}
CHR - default_search_provider: suggest_url = http:///suggest.fulltext.seznam.cz/?dict=fulltext_ff&phrase={searchTerms}&encoding={inputEncoding}&response_encoding=utf-8
CHR - homepage: http://www.seznam.cz/
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\21.0.1180.60\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\21.0.1180.60\pdf.dll
CHR - plugin: GamePlayLabs Plugin (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\Default\Extensions\ocphobfcfafpclibolpjdafgaffkaoci\1.0_0\npGamePlayLabsPlugin.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Facebook Plugin (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Data aplikac\u00ED\Facebook\npfbplugin_1_0_3.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\V\u011Bru\u0161\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: AhnLab Online Security (Enabled) = C:\Program Files\AhnLab\ASP\Components\aosmgr\npaosmgr.dll
CHR - plugin: AhnLab Online Security Anti-KeyLogger SP (Enabled) = C:\Program Files\AhnLab\ASP\MyKeyDefense 2.5\npmkd25sp.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Skype Click to Call = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: GamePlayLabs Plugin = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ocphobfcfafpclibolpjdafgaffkaoci\1.0_0\
CHR - Extension: Gmail = C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2012.08.11 11:34:12 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
O3 - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [lxbkbmgr.exe] C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-725345543-179605362-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-725345543-179605362-839522115-1004\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-21-725345543-179605362-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {063F7D71-5E0B-48F2-87D5-F63C5917947E} http://ahnlabdownload.nefficient.co.kr/ ... aosmgr.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{67EC769F-08AB-4797-8EFC-3B1833739DA1}: NameServer = 188.75.128.128,10.0.150.150
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.05.25 17:20:46 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2012.08.11 12:12:45 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Věruš\Plocha\OTL.exe
[2012.08.11 11:31:44 | 000,000,000 | ---D | C] -- C:\_OTM
[2012.08.11 11:29:53 | 000,522,240 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Věruš\Plocha\OTM.exe
[2012.08.09 18:15:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\GFI Software
[2012.08.09 13:21:25 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.08.09 13:21:24 | 000,000,000 | ---D | C] -- C:\rsit
[2012.08.07 23:18:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Věruš\Plocha\.picasaoriginals
[2012.08.05 18:22:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PokerStars
[2012.08.05 00:38:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\Ad-Aware Antivirus
[2012.08.05 00:36:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Local Settings\Data aplikací\adaware
[2012.08.05 00:33:28 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012.08.04 21:53:35 | 000,000,000 | ---D | C] -- C:\Reborn
[2012.08.04 17:54:05 | 000,000,000 | ---D | C] -- C:\Program Files\PokerStars
[2012.08.04 17:39:48 | 000,000,000 | ---D | C] -- C:\Program Files\CardCasino(2).com
[2012.08.04 11:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Mozilla
[2012.08.01 23:27:49 | 000,000,000 | ---D | C] -- C:\Program Files\Garena Plus
[2012.08.01 23:27:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
[2012.08.01 23:25:26 | 000,000,000 | ---D | C] -- C:\Program Files\Warcraft III
[2012.07.31 23:30:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Data aplikací\Microgaming
[2012.07.31 23:29:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Unibet
[2012.07.31 23:29:33 | 000,000,000 | ---D | C] -- C:\Microgaming
[2012.07.31 23:29:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\MGS
[2012.07.31 20:49:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Local Settings\Data aplikací\DOSBox
[2012.07.31 20:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Plocha\Videa
[2012.07.31 20:06:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Plocha\hudba
[2012.07.31 20:04:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Plocha\Fotky
[2012.07.31 20:02:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Plocha\Hry
[2012.07.24 21:47:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Dokumenty\Diablo III
[2012.07.23 00:23:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Data aplikací\.minecraft
[2012.07.22 17:33:10 | 000,000,000 | ---D | C] -- C:\Program Files\Diablo III
[2012.07.22 17:33:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2012.07.22 17:33:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
[2012.07.22 17:32:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Battle.net
[2012.07.21 20:51:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012.07.21 20:51:01 | 000,227,824 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012.07.21 20:51:01 | 000,143,872 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2012.07.21 20:50:58 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.07.21 20:50:58 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.07.17 18:16:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Nabídka Start\Programy\Worms Reloaded
[2012.07.17 18:15:53 | 000,000,000 | ---D | C] -- C:\Program Files\Worms Reloaded
[2012.07.13 22:24:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Dokumenty\restore
[2012.07.13 21:27:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\firebird
[2012.07.13 21:26:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Data aplikací\Exec
[2012.07.13 17:50:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Plocha\knizka
[2012.07.13 17:45:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\tmp
[2012.07.13 17:45:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\hps
========== Files - Modified Within 30 Days ==========
[2012.08.11 12:16:52 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.08.11 12:12:49 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Věruš\Plocha\OTL.exe
[2012.08.11 12:07:55 | 003,584,591 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_120341.png
[2012.08.11 12:05:50 | 003,584,591 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_120240.png
[2012.08.11 11:57:30 | 003,584,591 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_115541.png
[2012.08.11 11:45:40 | 000,000,396 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2012.08.11 11:39:24 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2012.08.11 11:35:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.08.11 11:34:12 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2012.08.11 11:29:55 | 000,522,240 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Věruš\Plocha\OTM.exe
[2012.08.09 09:51:07 | 000,002,289 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\Google Chrome.lnk
[2012.08.07 23:18:01 | 000,287,765 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\stary foto.jpg
[2012.08.07 13:09:34 | 000,272,576 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.08.05 18:22:11 | 000,000,768 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\PokerStars.lnk
[2012.08.05 12:41:26 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012.08.05 12:41:24 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012.08.05 00:33:29 | 000,000,756 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2012.08.05 00:29:24 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.08.02 01:55:36 | 000,045,194 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\room_v3.dat
[2012.07.31 20:12:57 | 000,000,853 | ---- | M] () -- C:\Documents and Settings\Věruš\Plocha\mpc-hc.lnk
[2012.07.31 20:08:50 | 000,086,528 | ---- | M] () -- C:\Documents and Settings\Věruš\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.07.31 18:52:40 | 000,000,080 | ---- | M] () -- C:\WINDOWS\SuperUtil.ini
[2012.07.22 16:16:51 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.07.21 20:50:48 | 000,227,824 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012.07.21 20:50:48 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.07.21 20:50:48 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.07.21 20:50:48 | 000,143,872 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[2012.07.13 17:50:24 | 000,063,842 | ---- | M] () -- C:\Documents and Settings\Věruš\Dokumenty\dm turecko kniha.mcf
========== Files Created - No Company Name ==========
[2012.08.11 12:16:52 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.08.11 12:04:52 | 003,584,591 | ---- | C] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_120341.png
[2012.08.11 12:03:46 | 003,584,591 | ---- | C] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_120240.png
[2012.08.11 11:56:42 | 003,584,591 | ---- | C] () -- C:\Documents and Settings\Věruš\Plocha\IMG_11082012_115541.png
[2012.08.07 23:18:01 | 000,287,765 | ---- | C] () -- C:\Documents and Settings\Věruš\Plocha\stary foto.jpg
[2012.08.05 18:22:11 | 000,000,768 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\PokerStars.lnk
[2012.08.02 01:55:36 | 000,045,194 | ---- | C] () -- C:\Documents and Settings\Věruš\Data aplikací\room_v3.dat
[2012.07.31 20:12:57 | 000,000,853 | ---- | C] () -- C:\Documents and Settings\Věruš\Plocha\mpc-hc.lnk
[2012.07.13 17:50:23 | 000,063,842 | ---- | C] () -- C:\Documents and Settings\Věruš\Dokumenty\dm turecko kniha.mcf
[2012.07.09 17:11:14 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\lxbkcoin.dll
[2012.07.09 17:11:14 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxbkvs.dll
[2012.07.09 17:11:04 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\lxbkcnv4.dll
[2012.07.09 17:10:25 | 000,413,696 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkinpa.dll
[2012.07.09 17:10:25 | 000,323,584 | ---- | C] ( ) -- C:\WINDOWS\System32\LXBKhcp.dll
[2012.07.09 17:10:25 | 000,274,432 | ---- | C] () -- C:\WINDOWS\System32\LXBKinst.dll
[2012.07.09 17:10:24 | 001,224,704 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkserv.dll
[2012.07.09 17:10:24 | 000,991,232 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkusb1.dll
[2012.07.09 17:10:24 | 000,413,696 | ---- | C] () -- C:\WINDOWS\System32\lxbkutil.dll
[2012.07.09 17:10:24 | 000,397,312 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkiesc.dll
[2012.07.09 17:10:24 | 000,163,840 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkprox.dll
[2012.07.09 17:10:24 | 000,094,208 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkpplc.dll
[2012.07.09 17:10:23 | 000,696,320 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkhbn3.dll
[2012.07.09 17:10:23 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkpmui.dll
[2012.07.09 17:10:23 | 000,585,728 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbklmpm.dll
[2012.07.09 17:10:23 | 000,385,704 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkih.exe
[2012.07.09 17:10:23 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\lxbkinsr.dll
[2012.07.09 17:10:22 | 000,684,032 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkcomc.dll
[2012.07.09 17:10:22 | 000,537,256 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkcoms.exe
[2012.07.09 17:10:22 | 000,421,888 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkcomm.dll
[2012.07.09 17:10:21 | 000,381,608 | ---- | C] ( ) -- C:\WINDOWS\System32\lxbkcfg.exe
[2012.07.09 16:44:28 | 000,039,899 | ---- | C] () -- C:\WINDOWS\System32\rtsicis.ini
[2012.07.09 16:44:27 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\lxbkcnv5.dll
[2012.03.02 01:06:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2012.02.16 12:07:39 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.01.31 22:29:42 | 000,004,915 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\vwjsbrmd.jwx
[2012.01.13 04:00:26 | 000,272,174 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-725345543-179605362-839522115-1004-0.dat
[2011.12.07 02:21:30 | 000,271,346 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2011.12.06 20:15:31 | 000,034,308 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\mazuki.dll
[2011.11.11 22:55:37 | 003,528,576 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys
[2011.11.11 22:55:37 | 000,176,128 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2uvc.dll
[2011.11.11 22:55:37 | 000,028,544 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys
[2011.11.11 22:55:37 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2uvc.ini
[2011.11.11 22:26:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2011.09.04 19:24:43 | 000,000,080 | ---- | C] () -- C:\WINDOWS\SuperUtil.ini
[2011.09.04 19:10:06 | 000,261,120 | ---- | C] () -- C:\WINDOWS\System32\SuperMenuHook.dll
[2011.09.04 19:10:06 | 000,261,120 | ---- | C] () -- C:\WINDOWS\System32\baksm.dll
[2011.09.04 19:10:06 | 000,261,120 | ---- | C] () -- C:\WINDOWS\System32\baksm.dat
[2011.09.04 19:10:06 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\Shreder.dll
[2011.09.04 19:10:06 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\SuperRes.dll
[2011.09.04 19:10:06 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\vb6sock.dll
[2011.07.18 20:27:17 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ReminderNextRun
[2011.07.03 17:34:11 | 000,049,615 | ---- | C] () -- C:\Documents and Settings\Věruš\Steam_2011_07_03__15_34_11_187.mdmp
[2011.06.12 15:00:41 | 000,264,510 | ---- | C] () -- C:\Documents and Settings\Věruš\Steam_2011_06_12__13_00_41_015.mdmp
[2011.05.14 00:10:19 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.05.02 22:08:29 | 000,000,109 | ---- | C] () -- C:\WINDOWS\lexstat.ini
[2011.04.20 15:40:33 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2011.04.20 15:40:33 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2011.04.09 00:11:08 | 000,561,152 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011.04.09 00:11:08 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.12.30 14:10:13 | 000,237,568 | ---- | C] () -- C:\WINDOWS\tsnp2uvc.exe
[2010.12.30 14:10:13 | 000,180,224 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2uvc.dll
[2010.12.24 17:22:20 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Věruš\Data aplikací\PnkBstrK.sys
[2010.10.27 19:49:03 | 000,000,232 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010.09.28 18:18:55 | 000,547,840 | ---- | C] () -- C:\WINDOWS\mHotkey.exe
[2010.09.28 18:18:55 | 000,294,912 | ---- | C] () -- C:\WINDOWS\PIC.dll
[2010.09.28 18:18:55 | 000,024,576 | ---- | C] () -- C:\WINDOWS\HKNTDLL.dll
[2010.09.28 18:14:03 | 000,000,490 | ---- | C] () -- C:\WINDOWS\Instit.ini
[2010.05.29 11:24:54 | 000,086,528 | ---- | C] () -- C:\Documents and Settings\Věruš\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.28 18:23:47 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2010.05.27 19:15:10 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
========== LOP Check ==========
[2011.08.20 22:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2012.07.22 17:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Battle.net
[2012.03.14 01:33:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Bluetooth
[2010.05.30 15:44:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2012.07.13 22:01:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\firebird
[2012.08.05 00:27:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger
[2012.08.09 18:15:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GFI Software
[2011.07.06 23:30:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2011.01.05 18:50:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2012.07.31 23:29:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MGS
[2012.06.04 13:08:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2010.06.07 00:27:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Teleca
[2011.12.25 15:10:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2012.07.31 19:02:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\tmp
[2012.02.09 12:30:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TomTom
[2011.02.19 20:04:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2012.08.05 00:38:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Ad-Aware Antivirus
[2012.07.26 00:24:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\.minecraft
[2011.12.24 22:06:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\3v
[2011.07.02 23:50:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Ahnlab
[2011.12.25 15:08:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\AnvSoft
[2011.12.06 20:12:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Ashampoo
[2012.04.11 22:22:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Avnex
[2010.10.03 14:13:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\DAEMON Tools Lite
[2011.12.26 19:43:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\DDMSettings
[2012.07.13 21:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Exec
[2011.02.02 14:55:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Genimo
[2011.07.03 16:53:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\GetRightToGo
[2012.07.31 18:05:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ICQ
[2012.04.10 22:34:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Iminent
[2010.05.27 19:21:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\InterTrust
[2012.08.10 20:27:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Microgaming
[2010.12.23 19:44:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\mojosoft
[2010.11.14 19:05:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ooVoo Details
[2011.04.28 13:30:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Opera
[2012.06.10 11:08:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Oracle
[2011.09.16 18:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\PriceGong
[2012.03.08 17:31:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Promaxx
[2010.05.25 21:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\QIP
[2011.01.31 00:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\QipGuard
[2012.04.14 12:49:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Razor
[2011.11.11 01:08:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Rovio
[2012.01.09 21:00:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Sony
[2011.08.01 23:20:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Stereoscopic Player
[2011.07.31 19:32:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Stereoscopic Player CHIP Edition
[2010.06.07 00:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Teleca
[2012.02.09 12:30:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\TomTom
[2012.02.04 14:59:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Trine2
[2012.08.11 11:31:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\uTorrent
[2011.02.02 19:03:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\V-Games
[2012.03.14 00:23:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\WinBatch
[2010.06.29 21:13:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Zoner
========== Purity Check ==========
Re: kontrola logu - zamrzani pc
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2009.12.22 20:39:20 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2006.03.02 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006.03.02 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: ISAPNP.SYS >
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2006.03.02 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006.03.02 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2006.03.02 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: NVATA.SYS >
[2006.08.21 12:24:28 | 000,105,344 | R--- | M] (NVIDIA Corporation) MD5=4D6C6B46B3EDF6F2E219A86B61D104AE -- C:\WINDOWS\system32\drivers\nvata.sys
< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2006.03.02 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2006.03.02 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=D9F19E78F98834CB411D6AD3C68D181A -- C:\WINDOWS\system32\drivers\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2011.06.07 00:08:40 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006.03.02 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[13 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\system32\CatRoot\*.tmp files -> C:\WINDOWS\system32\CatRoot\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2012.07.26 00:24:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\.minecraft
[2011.12.24 22:06:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\3v
[2011.05.22 22:01:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Adobe
[2010.05.27 19:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Ahead
[2011.07.02 23:50:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Ahnlab
[2011.12.25 15:08:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\AnvSoft
[2010.05.31 13:35:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Apple Computer
[2011.08.02 20:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ArcSoft
[2011.12.06 20:12:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Ashampoo
[2010.05.25 18:00:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ATI
[2012.04.11 22:22:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Avnex
[2010.09.13 18:57:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Creative
[2010.05.28 00:59:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\CyberLink
[2010.10.03 14:13:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\DAEMON Tools Lite
[2011.12.26 19:43:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\DDMSettings
[2010.09.14 11:40:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\DivX
[2011.10.30 17:45:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\dvdcss
[2012.07.13 21:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Exec
[2011.02.02 14:55:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Genimo
[2011.07.03 16:53:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\GetRightToGo
[2012.07.10 12:59:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Google
[2012.07.31 18:05:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ICQ
[2010.05.25 17:25:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Identities
[2012.04.10 22:34:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Iminent
[2010.12.30 14:10:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\InstallShield
[2010.05.27 19:21:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\InterTrust
[2010.05.25 18:39:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Macromedia
[2011.02.18 22:12:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Media Player Classic
[2012.08.10 20:27:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Microgaming
[2012.04.16 14:09:47 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Věruš\Data aplikací\Microsoft
[2010.12.23 19:44:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\mojosoft
[2010.09.20 16:03:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla
[2011.08.02 20:43:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\NVIDIA 3D Vision Video Player
[2010.11.14 19:05:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ooVoo Details
[2011.04.28 13:30:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Opera
[2012.06.10 11:08:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Oracle
[2011.09.16 18:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\PriceGong
[2012.03.08 17:31:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Promaxx
[2010.05.25 21:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\QIP
[2011.01.31 00:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\QipGuard
[2012.04.14 12:49:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Razor
[2011.11.11 01:08:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Rovio
[2012.08.11 12:32:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Skype
[2011.06.11 12:29:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\skypePM
[2012.01.09 21:00:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Sony
[2010.06.07 00:32:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Sony Ericsson
[2011.08.01 23:20:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Stereoscopic Player
[2011.07.31 19:32:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Stereoscopic Player CHIP Edition
[2010.05.27 12:05:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Sun
[2010.06.07 00:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Teleca
[2012.02.09 12:30:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\TomTom
[2012.02.04 14:59:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Trine2
[2012.08.11 11:31:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\uTorrent
[2011.02.02 19:03:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\V-Games
[2012.03.14 00:23:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\WinBatch
[2010.05.25 18:39:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\WinRAR
[2010.06.29 21:13:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Zoner
< %APPDATA%\*.exe /s >
[2011.12.24 22:17:46 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Microsoft\Installer\{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}\ARPPRODUCTICON.exe
[2010.05.25 17:54:46 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Microsoft\Installer\{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}\ARPPRODUCTICON.exe
[2010.08.20 00:46:28 | 001,312,120 | ---- | M] (EA Digital Illusions CE AB) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\battlefieldheroespatcher@ea.com\platform\WINNT_x86-msvc\plugins\BFHUpdater.exe
[2011.04.28 13:20:32 | 164,285,658 | ---- | M] (Sidhe Interactive ) -- C:\Documents and Settings\Věruš\Data aplikací\QIP\Profiles\356101558\RcvdFiles\DarkElf_319068171\GamesS - Shatter.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.05.30 15:45:20 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2010.05.25 19:00:57 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2010.05.25 19:00:57 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2010.05.25 19:00:57 | 000,475,136 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.08.11 11:35:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\system32\nmp.log
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...
< >
< type c:\boot.ini >> test.txt /c >
No captured output from command...
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.08.11 12:16:52 | 000,000,512 | ---- | M] () MD5=AE37601BF626933897399910925C0E99 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2011.09.04 14:51:04 | 077,906,343 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\Lavasoft-Ad-Aware-Pro-Internet-Security-2010-v8.1.2-CZ+crack.rar
[2011.12.25 15:16:16 | 000,001,269 | ---- | M] () -- \Documents and Settings\Věruš\Recent\Any Video Converter Professional 3.1.8 + Crack.lnk
[2011.09.04 14:51:04 | 000,000,947 | ---- | M] () -- \Documents and Settings\Věruš\Recent\Lavasoft-Ad-Aware-Pro-Internet-Security-2010-v8.1.2-CZ+crack.lnk
[2012.07.17 18:21:36 | 000,000,647 | ---- | M] () -- \Documents and Settings\Věruš\Recent\Worms.Reloaded.v1.0.0.476.multi8.cracked.READ.NFO-THETA.lnk
[2011.03.03 02:41:24 | 000,056,723 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_AC_Down_Atk.nif
[2011.03.03 02:41:27 | 000,010,612 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_Attack.nif
[2011.03.03 02:41:29 | 000,017,062 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_Attack_OP.nif
[2011.03.03 02:41:25 | 000,114,106 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_Die.nif
[2011.03.03 02:41:28 | 000,153,620 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_DrainSP_Gr.nif
[2011.03.03 02:41:25 | 000,034,422 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_DrainSP_OP.nif
[2011.03.03 02:41:29 | 000,044,796 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_Normal_Atk.nif
[2011.03.03 02:41:24 | 000,495,256 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_Normal_Wide.nif
[2011.03.03 02:41:29 | 000,065,577 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerLooter_Curse_Wide.nif
[2008.11.25 08:12:04 | 000,211,201 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\fireCracker.nif
[2008.02.26 01:18:22 | 000,211,201 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\fireCracker01.nif
[2008.02.26 01:18:22 | 000,211,201 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\fireCracker02.nif
[2008.02.26 01:18:22 | 000,211,201 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\fireCracker03.nif
[2008.11.11 10:00:48 | 000,233,945 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\fireCracker_Heart.nif
[2008.05.15 01:48:36 | 000,233,945 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\HFirecracker00.nif
[2011.03.03 02:41:29 | 000,014,860 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\Sta_CrackerACDownLoof.nif
[2011.03.03 02:41:29 | 000,014,278 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\Sta_CrackerDiseaseLoof.nif
[2011.06.21 14:44:42 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurBoots.dds
[2011.06.21 14:44:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurPants.dds
[2011.06.21 14:44:46 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurShirt.dds
[2011.06.21 14:44:50 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurShirt_BR.dds
[2011.06.21 14:44:48 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurShirt_CH.dds
[2011.06.21 14:44:44 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurShirt_SH.dds
[2011.06.21 14:44:46 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerGlenirBoots.dds
[2011.06.21 14:44:50 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerGlenirPants.dds
[2011.06.21 14:44:44 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerGlenirPants_TH.dds
[2011.06.21 14:44:40 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerGlenirShirt.dds
[2011.06.21 14:44:46 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerGlenirShirt_SH.dds
[2011.06.21 14:44:52 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurBoots.dds
[2011.06.21 14:44:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurPants.dds
[2011.06.21 14:44:56 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurShirt.dds
[2011.06.21 14:44:58 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurShirt_BR.dds
[2011.06.21 14:44:54 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurShirt_SH.dds
[2011.06.21 14:44:56 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurShirt_UA.dds
[2011.06.21 14:44:56 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerGlenirBoots.dds
[2011.06.21 14:44:58 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerGlenirPants.dds
[2011.06.21 14:44:50 | 000,043,832 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerGlenirShirt.dds
[2011.06.21 14:44:52 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerGlenirShirt_CH.dds
[2011.06.21 14:44:56 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerGlenirShirt_SH.dds
[2011.03.03 02:33:19 | 000,002,782 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar.kfm
[2011.03.03 02:33:19 | 000,634,582 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar.nif
[2011.03.03 02:33:19 | 000,031,240 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_AC_Down_Atk.kf
[2011.03.03 02:33:19 | 000,026,243 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Attack.kf
[2011.03.03 02:33:19 | 000,031,348 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Critical.kf
[2011.03.03 02:33:19 | 000,018,961 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Damage.kf
[2011.03.03 02:33:19 | 000,073,601 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Die.kf
[2011.03.03 02:33:19 | 000,041,551 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_DrainSP.kf
[2011.03.03 02:33:19 | 000,042,597 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Normal_Atk.kf
[2011.03.03 02:33:19 | 000,036,010 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Normal_Wide.kf
[2011.03.03 02:33:19 | 000,022,950 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Run.kf
[2011.03.03 02:33:19 | 000,090,396 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Stand.kf
[2011.03.03 02:33:19 | 000,024,953 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Walk.kf
[2011.06.21 14:41:18 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerAscalonArmor.dds
[2011.06.21 14:41:16 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerAscalonArmor_SH.dds
[2011.06.21 14:41:16 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerAscalonBoots.dds
[2011.06.21 14:41:18 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerAscalonPants.dds
[2011.06.21 14:41:20 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerAscalonPants_BELT.dds
[2011.06.21 14:41:20 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerMarbesArmor.dds
[2011.06.21 14:41:20 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerMarbesBoots.dds
[2011.06.21 14:41:22 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerMarbesPants.dds
[2011.06.21 14:41:22 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerMarbesPants_BELT.dds
[2011.06.21 14:41:26 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerAscalonArmor.dds
[2011.06.21 14:41:24 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerAscalonArmor_SH.dds
[2011.06.21 14:41:24 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerAscalonBoots.dds
[2011.06.21 14:41:26 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerAscalonPants.dds
[2011.06.21 14:41:28 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerAscalonPants_BELT.dds
[2011.06.21 14:41:28 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerMarbesArmor.dds
[2011.06.21 14:41:28 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerMarbesBoots.dds
[2011.06.21 14:41:30 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerMarbesPants.dds
[2011.06.21 14:43:22 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerAscalonArmor_BR.dds
[2011.06.21 14:43:20 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerAscalonArmor_CH.dds
[2011.06.21 14:43:22 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerCchulainnShirt_BR.dds
[2011.06.21 14:43:20 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerCchulainnShirt_SH.DDS
[2011.06.21 14:43:22 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerGlenirShirt_BR.dds
[2011.06.21 14:43:26 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerMarbesArmor_BR.dds
[2011.06.21 14:43:24 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerMarbesArmor_SH.dds
[2011.06.21 14:43:24 | 000,005,616 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerThanatosArmor_BR.dds
[2011.06.21 14:43:24 | 000,002,872 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerThanatosArmor_M.DDS
[2011.06.21 14:43:20 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerThanatosArmor_UA.DDS
[2011.06.21 14:43:18 | 000,002,872 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerVelundShirt_BACK.DDS
[2011.06.21 14:42:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasArmor.DDS
[2011.06.21 14:42:40 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasArmor_BR.dds
[2011.06.21 14:42:44 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasArmor_SH.DDS
[2011.06.21 14:42:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasBoots.dds
[2011.06.21 14:42:46 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasPants.DDS
[2011.06.21 14:42:44 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasPants_BELT.DDS
[2011.06.21 14:42:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerDantalionArmor.DDS
[2011.06.21 14:42:42 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerDantalionBoots.DDS
[2011.06.21 14:42:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerDantalionPants.DDS
[2011.06.21 14:42:52 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasArmor.DDS
[2011.06.21 14:42:50 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasArmor_BR.dds
[2011.06.21 14:42:54 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasArmor_SH.dds
[2011.06.21 14:42:52 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasBoots.dds
[2011.06.21 14:42:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasPants.dds
[2011.06.21 14:42:54 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasPants_BELT.DDS
[2011.06.21 14:42:52 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerDantalionArmor.DDS
[2011.06.21 14:42:50 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerDantalionArmor_BR.DDS
[2011.06.21 14:42:52 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerDantalionBoots.DDS
[2011.06.21 14:42:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerDantalionPants.DDS
[2011.03.03 02:31:52 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerHoralArmor.dds
[2011.03.03 02:31:54 | 000,002,872 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerHoralArmor_BR.dds
[2011.03.03 02:31:52 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerHoralBoots.dds
[2011.03.03 02:31:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerHoralPants.dds
[2011.03.03 02:31:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerThanatosArmor.DDS
[2011.03.03 02:31:54 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerThanatosBoots.DDS
[2011.03.03 02:31:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerThanatosPants.DDS
[2011.03.03 02:32:02 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerHoralArmor.dds
[2011.03.03 02:32:02 | 000,002,872 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerHoralArmor_BR.dds
[2011.03.03 02:32:02 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerHoralBoots.dds
[2011.03.03 02:32:02 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerHoralPants.dds
[2011.03.03 02:32:02 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerThanatosArmor.DDS
[2011.03.03 02:32:02 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerThanatosBoots.DDS
[2011.03.03 02:32:02 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerThanatosPants.DDS
[2011.06.21 14:42:34 | 000,030,550 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCarb_crackBip01_skill5.kf
[2011.06.21 14:42:34 | 000,019,672 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCrab_crackBip01_skill1.kf
[2011.06.21 14:42:34 | 000,021,237 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCrab_crackBip01_skill2.kf
[2011.06.21 14:42:34 | 000,021,612 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCrab_crackBip01_skill3.kf
[2011.06.21 14:42:34 | 000,021,614 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCrab_crackBip01_skill3_2.kf
[2010.06.10 11:24:50 | 000,030,498 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCrab_crackBip01_skill3_cast.kf
[2011.06.21 14:42:34 | 000,021,505 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_attack.kf
[2009.01.09 09:01:54 | 000,035,658 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_critical.kf
[2011.06.21 14:42:34 | 000,021,247 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_damage.kf
[2011.06.21 14:42:34 | 000,015,372 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_dash.kf
[2011.06.21 14:42:34 | 000,046,173 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_die.kf
[2011.06.21 14:42:34 | 000,023,703 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_knockback00.kf
[2011.06.21 14:42:34 | 000,015,077 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_knockback01.kf
[2011.06.21 14:42:34 | 000,017,015 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_Knockback02.kf
[2011.06.21 14:42:34 | 000,017,958 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_run.kf
[2011.06.21 14:42:34 | 000,025,914 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_stand.kf
[2011.06.21 14:42:34 | 000,021,031 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_walk.kf
[2011.06.03 01:40:59 | 000,024,044 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\M_KingCrab01\M_KingCrab01_crackBip01_Action.kf
[2011.06.03 01:40:59 | 000,020,737 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\M_KingCrab01\M_KingCrab01_crackBip01_Back.kf
[2011.06.03 01:40:59 | 000,017,732 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\M_KingCrab01\M_KingCrab01_crackBip01_Run.kf
[2011.06.03 01:40:59 | 000,025,914 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\M_KingCrab01\M_KingCrab01_crackBip01_Stand.kf
[2011.06.03 01:40:59 | 000,020,737 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\M_KingCrab01\M_KingCrab01_crackBip01_Walk.kf
[2011.06.21 14:40:46 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerCchulainnBoots.DDS
[2011.06.21 14:40:48 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerCchulainnPants.DDS
[2011.06.21 14:40:42 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerCchulainnShirt.dds
[2011.06.21 14:40:48 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerVelundBoots.DDS
[2011.06.21 14:40:42 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerVelundPants.DDS
[2011.06.21 14:40:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerVelundShirt.DDS
[2011.06.21 14:40:56 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerCchulainnBoots.dds
[2011.06.21 14:40:58 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerCchulainnPants.DDS
[2011.06.21 14:40:50 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerCchulainnShirt.DDS
[2011.06.21 14:40:58 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerVelundBoots.DDS
[2011.06.21 14:40:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerVelundPants.dds
[2011.06.21 14:40:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerVelundShirt.DDS
[2011.03.03 02:37:18 | 000,000,120 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\B_Cracker\B_Cracker.conf
[2011.03.03 02:37:18 | 003,441,303 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\B_Cracker\B_Cracker.nif
[2011.03.03 02:37:18 | 000,131,080 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\B_Cracker\B_Cracker.shbd
[2011.03.03 02:37:18 | 000,003,105 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\B_Cracker\B_Cracker.shmd
[2008.02.26 01:50:50 | 000,196,664 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\EldGbl01\EldGbl01_desert crack1 grass_a.bmp
[2008.02.26 01:50:50 | 000,196,664 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\EldGbl01\EldGbl01_desert crack2 grass_a.bmp
[2008.02.26 01:50:50 | 000,196,664 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\EldGbl01\EldGbl01_desert crack2_a.bmp
[2011.03.03 02:42:46 | 000,003,747 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmenu\game\MobPortrait\B_CrackerHumar.png
[2011.03.03 02:43:09 | 000,637,953 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmenu\loading\B_Cracker.png
[2011.03.03 02:42:57 | 000,174,904 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmenu\minimap\B_Cracker.dds
[2011.03.03 02:40:26 | 000,101,858 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_AC_Down_Atk.wav
[2011.03.03 02:40:28 | 000,034,384 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Attack.wav
[2011.03.03 02:40:41 | 000,020,316 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Damage01.wav
[2011.03.03 02:40:27 | 000,029,666 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Damage02.wav
[2011.03.03 02:40:22 | 000,112,750 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Die01.wav
[2011.03.03 02:40:28 | 000,058,816 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Die02.wav
[2011.03.03 02:40:28 | 000,143,840 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_DrainSP.wav
[2011.03.03 02:40:25 | 000,053,876 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Normal_Atk.wav
[2011.03.03 02:40:36 | 000,116,630 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Normal_Wide.wav
[2011.03.03 02:40:25 | 000,018,464 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Run.wav
[2011.03.03 02:40:29 | 000,077,250 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Stand.wav
[2011.03.03 02:40:34 | 000,033,018 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Walk.wav
[2009.02.09 05:23:56 | 000,194,966 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\HFirecracker00.wav
[2011.06.21 14:47:18 | 000,003,524 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressystem\Action\B_CrackerHumar.dat
< *keygen* /s >
< *loader* /s >
[2012.02.29 08:49:32 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.02.29 08:49:32 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2011.07.03 16:53:01 | 000,000,000 | ---- | M] () -- \Documents and Settings\Věruš\Data aplikací\GetRightToGo\Brothersoftdownloader_for_F1_2009_Countdown.data
[2011.07.03 16:52:35 | 000,367,956 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\Brothersoftdownloader_for_F1_2009_Countdown.exe
[2012.07.09 10:14:49 | 003,146,824 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe
[2011.09.12 23:13:41 | 001,996,944 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\FiestaDownloader-10.0.0382(1).exe
[2011.09.12 23:23:11 | 002,084,904 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\FiestaOnline_Joker_EN_Downloader.exe
[2010.06.22 15:41:14 | 000,000,051 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\TomTom\HOME\Backup\XL\Backup01\InternalMemory\bootloaderversion.txt
[2012.08.11 11:39:39 | 000,000,753 | ---- | M] () -- \Documents and Settings\Věruš\Local Settings\Temporary Internet Files\Content.IE5\1RGO202C\AdLoader[1].htm
[2012.08.11 11:39:39 | 000,105,903 | ---- | M] () -- \Documents and Settings\Věruš\Local Settings\Temporary Internet Files\Content.IE5\BHNKAJA0\AdLoader-427d9fd2a91e2f2c023aefe9f69a01d0.min[1].js
[2010.09.21 19:43:18 | 000,000,576 | ---- | M] () -- \Documents and Settings\Věruš\Recent\krvavy-snih-by-davus-of-bongo-uploaders.lnk
[2011.11.26 13:39:10 | 000,086,016 | ---- | M] () -- \Program Files\Boiling Point - Cesta do pekel\VELoader.dll
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2010.12.14 10:54:22 | 000,166,400 | ---- | M] () -- \Program Files\dm\dm paradies foto 3\CWImageLoader0.dll
[2011.07.06 23:29:05 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.07.06 23:29:05 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.07.06 23:29:05 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.07.06 23:29:24 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\icq_profile\preloader.html
[2011.07.06 23:29:25 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\profile_forms\preloader.html
[2011.07.06 23:29:26 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\profile_lightboxs\preloader.html
[2006.01.30 16:01:18 | 000,495,616 | ---- | M] () -- \Program Files\Sony Ericsson\Mobile2\Sync Station\NotesPimAdaptorLoader.dll
[2011.06.08 12:52:38 | 000,001,702 | ---- | M] () -- \Program Files\Sony Ericsson\Update Engine\licenses\loaderbinarylegal.txt
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2008.01.31 13:44:50 | 000,106,496 | ---- | M] () -- \Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\PhysXLoader.dll
[2011.07.02 19:32:15 | 000,057,856 | ---- | M] () -- \Program Files\Ultima Online DP2\Razor\Loader.dll
[2003.09.26 08:15:26 | 000,169,384 | ---- | M] () -- \Program Files\Valve\cstrike\models\qloader.mdl
[2003.09.26 14:19:52 | 000,352,548 | ---- | M] () -- \Program Files\Valve\valve\models\loader.mdl
[2003.09.26 14:24:16 | 000,012,764 | ---- | M] () -- \Program Files\Valve\valve\sound\ambience\loader_hydra1.wav
[2003.09.26 14:24:16 | 000,012,164 | ---- | M] () -- \Program Files\Valve\valve\sound\ambience\loader_step1.wav
[2010.02.10 18:10:14 | 000,045,056 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2010.05.30 18:33:44 | 000,082,784 | ---- | M] () -- \WINDOWS\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 20:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 20:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
< *minodlogin* /s >
< *tnod* /s >
[1997.12.06 01:07:30 | 000,000,142 | ---- | M] () -- \Program Files\SuperLogix\Super Utilities\script\_TreeView\ftv2lastnode.gif
[1998.01.13 23:57:20 | 000,000,125 | ---- | M] () -- \Program Files\SuperLogix\Super Utilities\script\_TreeView\ftv2mlastnode.gif
[1998.01.13 23:59:04 | 000,000,130 | ---- | M] () -- \Program Files\SuperLogix\Super Utilities\script\_TreeView\ftv2plastnode.gif
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2011.06.28 23:09:52 | 000,057,344 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Sony Ericsson\Update Engine\configuration\org.eclipse.osgi\bundles\7\1\.cp\lib\serialio.dll
[2012.05.20 23:13:12 | 000,000,108 | ---- | M] () -- \Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Picasa2\cache\cacheindex_serial.pmp
[2011.12.25 20:32:34 | 000,000,639 | ---- | M] () -- \Documents and Settings\Věruš\Recent\serial.lnk
[2011.11.11 21:49:35 | 000,001,315 | ---- | M] () -- \Documents and Settings\Věruš\Recent\superovladac-serial.lnk
[2000.04.07 14:51:54 | 000,143,360 | ---- | M] () -- \PC NaviGator + Sony Route Planner Europe -2in1- (Europe+Greece) {+++BEST+++} [h33t][migel]\PC Navigator v6.4.21\Setup\GPS_DRIVERS\CF_Driver\WinNT4\Install_Serial.exe
[2012.04.11 01:15:28 | 000,434,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.10411.0\System.Runtime.Serialization.dll
[2012.05.11 00:38:57 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.10411.0\System.Runtime.Serialization.ni.dll
[2012.08.05 18:21:52 | 000,005,687 | ---- | M] () -- \Program Files\PokerStars\gx\tokenserial.jpg
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.06.08 12:51:08 | 000,026,761 | ---- | M] () -- \Program Files\Sony Ericsson\Update Engine\plugins\com.serialio.win32.x86_2.10.2.0.jar
[2011.06.08 12:51:08 | 000,049,507 | ---- | M] () -- \Program Files\Sony Ericsson\Update Engine\plugins\com.serialio_2.11.6.14.jar
[2011.06.08 12:53:08 | 000,002,237 | ---- | M] () -- \Program Files\Sony Ericsson\Update Engine\plugins\com.sonyericsson.cs.serialcommunication_2.11.6.14.jar
[2006.03.02 14:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2012.06.13 21:26:42 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.06.12 05:15:50 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.05.10 01:05:24 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\505e12638acd6fdb22e1fd2d4c6fc232\System.Runtime.Serialization.ni.dll
[2012.05.10 12:59:48 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\a644ec04e18202b60f9d828bc207972b\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.05.10 13:00:50 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\6a37764b2df9b3f9c7775701027ef779\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.05.10 13:01:08 | 002,637,312 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\9bfda0add366eea12ea0402e60d01e84\System.Runtime.Serialization.ni.dll
[2012.03.01 17:14:08 | 000,013,972 | ---- | M] () -- \WINDOWS\inf\SocketSerialBT.PNF
[2012.06.05 19:32:55 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.06.13 21:23:42 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.06.05 19:32:54 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2012.06.13 21:23:40 | 001,026,936 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 001,026,936 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2010.06.15 02:33:16 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 02:33:16 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2008.04.14 04:17:25 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 04:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 04:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:661DFA1C
< End of report >
< >
< >
< MD5 for: AGP440.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2009.12.22 20:39:20 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2006.03.02 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006.03.02 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2006.03.02 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: ISAPNP.SYS >
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2010.05.25 19:15:06 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2006.03.02 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006.03.02 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2006.03.02 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: NVATA.SYS >
[2006.08.21 12:24:28 | 000,105,344 | R--- | M] (NVIDIA Corporation) MD5=4D6C6B46B3EDF6F2E219A86B61D104AE -- C:\WINDOWS\system32\drivers\nvata.sys
< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2006.03.02 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2006.03.02 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=D9F19E78F98834CB411D6AD3C68D181A -- C:\WINDOWS\system32\drivers\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2011.06.07 00:08:40 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006.03.02 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[13 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\system32\CatRoot\*.tmp files -> C:\WINDOWS\system32\CatRoot\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2012.07.26 00:24:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\.minecraft
[2011.12.24 22:06:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\3v
[2011.05.22 22:01:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Adobe
[2010.05.27 19:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Ahead
[2011.07.02 23:50:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Ahnlab
[2011.12.25 15:08:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\AnvSoft
[2010.05.31 13:35:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Apple Computer
[2011.08.02 20:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ArcSoft
[2011.12.06 20:12:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Ashampoo
[2010.05.25 18:00:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ATI
[2012.04.11 22:22:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Avnex
[2010.09.13 18:57:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Creative
[2010.05.28 00:59:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\CyberLink
[2010.10.03 14:13:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\DAEMON Tools Lite
[2011.12.26 19:43:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\DDMSettings
[2010.09.14 11:40:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\DivX
[2011.10.30 17:45:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\dvdcss
[2012.07.13 21:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Exec
[2011.02.02 14:55:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Genimo
[2011.07.03 16:53:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\GetRightToGo
[2012.07.10 12:59:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Google
[2012.07.31 18:05:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ICQ
[2010.05.25 17:25:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Identities
[2012.04.10 22:34:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Iminent
[2010.12.30 14:10:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\InstallShield
[2010.05.27 19:21:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\InterTrust
[2010.05.25 18:39:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Macromedia
[2011.02.18 22:12:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Media Player Classic
[2012.08.10 20:27:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Microgaming
[2012.04.16 14:09:47 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Věruš\Data aplikací\Microsoft
[2010.12.23 19:44:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\mojosoft
[2010.09.20 16:03:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla
[2011.08.02 20:43:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\NVIDIA 3D Vision Video Player
[2010.11.14 19:05:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\ooVoo Details
[2011.04.28 13:30:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Opera
[2012.06.10 11:08:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Oracle
[2011.09.16 18:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\PriceGong
[2012.03.08 17:31:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Promaxx
[2010.05.25 21:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\QIP
[2011.01.31 00:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\QipGuard
[2012.04.14 12:49:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Razor
[2011.11.11 01:08:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Rovio
[2012.08.11 12:32:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Skype
[2011.06.11 12:29:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\skypePM
[2012.01.09 21:00:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Sony
[2010.06.07 00:32:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Sony Ericsson
[2011.08.01 23:20:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Stereoscopic Player
[2011.07.31 19:32:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Stereoscopic Player CHIP Edition
[2010.05.27 12:05:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Sun
[2010.06.07 00:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Teleca
[2012.02.09 12:30:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\TomTom
[2012.02.04 14:59:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Trine2
[2012.08.11 11:31:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\uTorrent
[2011.02.02 19:03:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\V-Games
[2012.03.14 00:23:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\WinBatch
[2010.05.25 18:39:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\WinRAR
[2010.06.29 21:13:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Věruš\Data aplikací\Zoner
< %APPDATA%\*.exe /s >
[2011.12.24 22:17:46 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Microsoft\Installer\{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}\ARPPRODUCTICON.exe
[2010.05.25 17:54:46 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Microsoft\Installer\{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}\ARPPRODUCTICON.exe
[2010.08.20 00:46:28 | 001,312,120 | ---- | M] (EA Digital Illusions CE AB) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\battlefieldheroespatcher@ea.com\platform\WINNT_x86-msvc\plugins\BFHUpdater.exe
[2011.04.28 13:20:32 | 164,285,658 | ---- | M] (Sidhe Interactive ) -- C:\Documents and Settings\Věruš\Data aplikací\QIP\Profiles\356101558\RcvdFiles\DarkElf_319068171\GamesS - Shatter.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.05.30 15:45:20 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2010.05.25 19:00:57 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2010.05.25 19:00:57 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2010.05.25 19:00:57 | 000,475,136 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.08.11 11:35:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\system32\nmp.log
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...
< >
< type c:\boot.ini >> test.txt /c >
No captured output from command...
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.08.11 12:16:52 | 000,000,512 | ---- | M] () MD5=AE37601BF626933897399910925C0E99 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2011.09.04 14:51:04 | 077,906,343 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\Lavasoft-Ad-Aware-Pro-Internet-Security-2010-v8.1.2-CZ+crack.rar
[2011.12.25 15:16:16 | 000,001,269 | ---- | M] () -- \Documents and Settings\Věruš\Recent\Any Video Converter Professional 3.1.8 + Crack.lnk
[2011.09.04 14:51:04 | 000,000,947 | ---- | M] () -- \Documents and Settings\Věruš\Recent\Lavasoft-Ad-Aware-Pro-Internet-Security-2010-v8.1.2-CZ+crack.lnk
[2012.07.17 18:21:36 | 000,000,647 | ---- | M] () -- \Documents and Settings\Věruš\Recent\Worms.Reloaded.v1.0.0.476.multi8.cracked.READ.NFO-THETA.lnk
[2011.03.03 02:41:24 | 000,056,723 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_AC_Down_Atk.nif
[2011.03.03 02:41:27 | 000,010,612 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_Attack.nif
[2011.03.03 02:41:29 | 000,017,062 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_Attack_OP.nif
[2011.03.03 02:41:25 | 000,114,106 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_Die.nif
[2011.03.03 02:41:28 | 000,153,620 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_DrainSP_Gr.nif
[2011.03.03 02:41:25 | 000,034,422 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_DrainSP_OP.nif
[2011.03.03 02:41:29 | 000,044,796 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_Normal_Atk.nif
[2011.03.03 02:41:24 | 000,495,256 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerHumar_Normal_Wide.nif
[2011.03.03 02:41:29 | 000,065,577 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\B_CrackerLooter_Curse_Wide.nif
[2008.11.25 08:12:04 | 000,211,201 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\fireCracker.nif
[2008.02.26 01:18:22 | 000,211,201 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\fireCracker01.nif
[2008.02.26 01:18:22 | 000,211,201 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\fireCracker02.nif
[2008.02.26 01:18:22 | 000,211,201 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\fireCracker03.nif
[2008.11.11 10:00:48 | 000,233,945 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\fireCracker_Heart.nif
[2008.05.15 01:48:36 | 000,233,945 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\HFirecracker00.nif
[2011.03.03 02:41:29 | 000,014,860 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\Sta_CrackerACDownLoof.nif
[2011.03.03 02:41:29 | 000,014,278 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reseffect\Sta_CrackerDiseaseLoof.nif
[2011.06.21 14:44:42 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurBoots.dds
[2011.06.21 14:44:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurPants.dds
[2011.06.21 14:44:46 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurShirt.dds
[2011.06.21 14:44:50 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurShirt_BR.dds
[2011.06.21 14:44:48 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurShirt_CH.dds
[2011.06.21 14:44:44 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerAshurShirt_SH.dds
[2011.06.21 14:44:46 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerGlenirBoots.dds
[2011.06.21 14:44:50 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerGlenirPants.dds
[2011.06.21 14:44:44 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerGlenirPants_TH.dds
[2011.06.21 14:44:40 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerGlenirShirt.dds
[2011.06.21 14:44:46 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-f\CrackerGlenirShirt_SH.dds
[2011.06.21 14:44:52 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurBoots.dds
[2011.06.21 14:44:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurPants.dds
[2011.06.21 14:44:56 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurShirt.dds
[2011.06.21 14:44:58 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurShirt_BR.dds
[2011.06.21 14:44:54 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurShirt_SH.dds
[2011.06.21 14:44:56 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerAshurShirt_UA.dds
[2011.06.21 14:44:56 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerGlenirBoots.dds
[2011.06.21 14:44:58 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerGlenirPants.dds
[2011.06.21 14:44:50 | 000,043,832 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerGlenirShirt.dds
[2011.06.21 14:44:52 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerGlenirShirt_CH.dds
[2011.06.21 14:44:56 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Archer-m\CrackerGlenirShirt_SH.dds
[2011.03.03 02:33:19 | 000,002,782 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar.kfm
[2011.03.03 02:33:19 | 000,634,582 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar.nif
[2011.03.03 02:33:19 | 000,031,240 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_AC_Down_Atk.kf
[2011.03.03 02:33:19 | 000,026,243 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Attack.kf
[2011.03.03 02:33:19 | 000,031,348 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Critical.kf
[2011.03.03 02:33:19 | 000,018,961 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Damage.kf
[2011.03.03 02:33:19 | 000,073,601 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Die.kf
[2011.03.03 02:33:19 | 000,041,551 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_DrainSP.kf
[2011.03.03 02:33:19 | 000,042,597 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Normal_Atk.kf
[2011.03.03 02:33:19 | 000,036,010 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Normal_Wide.kf
[2011.03.03 02:33:19 | 000,022,950 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Run.kf
[2011.03.03 02:33:19 | 000,090,396 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Stand.kf
[2011.03.03 02:33:19 | 000,024,953 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\B_CrackerHumar\B_CrackerHumar_Root_Walk.kf
[2011.06.21 14:41:18 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerAscalonArmor.dds
[2011.06.21 14:41:16 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerAscalonArmor_SH.dds
[2011.06.21 14:41:16 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerAscalonBoots.dds
[2011.06.21 14:41:18 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerAscalonPants.dds
[2011.06.21 14:41:20 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerAscalonPants_BELT.dds
[2011.06.21 14:41:20 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerMarbesArmor.dds
[2011.06.21 14:41:20 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerMarbesBoots.dds
[2011.06.21 14:41:22 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerMarbesPants.dds
[2011.06.21 14:41:22 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-f\CrackerMarbesPants_BELT.dds
[2011.06.21 14:41:26 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerAscalonArmor.dds
[2011.06.21 14:41:24 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerAscalonArmor_SH.dds
[2011.06.21 14:41:24 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerAscalonBoots.dds
[2011.06.21 14:41:26 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerAscalonPants.dds
[2011.06.21 14:41:28 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerAscalonPants_BELT.dds
[2011.06.21 14:41:28 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerMarbesArmor.dds
[2011.06.21 14:41:28 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerMarbesBoots.dds
[2011.06.21 14:41:30 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Cleric-m\CrackerMarbesPants.dds
[2011.06.21 14:43:22 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerAscalonArmor_BR.dds
[2011.06.21 14:43:20 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerAscalonArmor_CH.dds
[2011.06.21 14:43:22 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerCchulainnShirt_BR.dds
[2011.06.21 14:43:20 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerCchulainnShirt_SH.DDS
[2011.06.21 14:43:22 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerGlenirShirt_BR.dds
[2011.06.21 14:43:26 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerMarbesArmor_BR.dds
[2011.06.21 14:43:24 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerMarbesArmor_SH.dds
[2011.06.21 14:43:24 | 000,005,616 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerThanatosArmor_BR.dds
[2011.06.21 14:43:24 | 000,002,872 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerThanatosArmor_M.DDS
[2011.06.21 14:43:20 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerThanatosArmor_UA.DDS
[2011.06.21 14:43:18 | 000,002,872 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Common\_C_CrackerVelundShirt_BACK.DDS
[2011.06.21 14:42:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasArmor.DDS
[2011.06.21 14:42:40 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasArmor_BR.dds
[2011.06.21 14:42:44 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasArmor_SH.DDS
[2011.06.21 14:42:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasBoots.dds
[2011.06.21 14:42:46 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasPants.DDS
[2011.06.21 14:42:44 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerAndrasPants_BELT.DDS
[2011.06.21 14:42:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerDantalionArmor.DDS
[2011.06.21 14:42:42 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerDantalionBoots.DDS
[2011.06.21 14:42:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-f\CrackerDantalionPants.DDS
[2011.06.21 14:42:52 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasArmor.DDS
[2011.06.21 14:42:50 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasArmor_BR.dds
[2011.06.21 14:42:54 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasArmor_SH.dds
[2011.06.21 14:42:52 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasBoots.dds
[2011.06.21 14:42:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasPants.dds
[2011.06.21 14:42:54 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerAndrasPants_BELT.DDS
[2011.06.21 14:42:52 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerDantalionArmor.DDS
[2011.06.21 14:42:50 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerDantalionArmor_BR.DDS
[2011.06.21 14:42:52 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerDantalionBoots.DDS
[2011.06.21 14:42:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Fighter-m\CrackerDantalionPants.DDS
[2011.03.03 02:31:52 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerHoralArmor.dds
[2011.03.03 02:31:54 | 000,002,872 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerHoralArmor_BR.dds
[2011.03.03 02:31:52 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerHoralBoots.dds
[2011.03.03 02:31:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerHoralPants.dds
[2011.03.03 02:31:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerThanatosArmor.DDS
[2011.03.03 02:31:54 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerThanatosBoots.DDS
[2011.03.03 02:31:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-f\CrackerThanatosPants.DDS
[2011.03.03 02:32:02 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerHoralArmor.dds
[2011.03.03 02:32:02 | 000,002,872 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerHoralArmor_BR.dds
[2011.03.03 02:32:02 | 000,011,064 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerHoralBoots.dds
[2011.03.03 02:32:02 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerHoralPants.dds
[2011.03.03 02:32:02 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerThanatosArmor.DDS
[2011.03.03 02:32:02 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerThanatosBoots.DDS
[2011.03.03 02:32:02 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Joker-m\CrackerThanatosPants.DDS
[2011.06.21 14:42:34 | 000,030,550 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCarb_crackBip01_skill5.kf
[2011.06.21 14:42:34 | 000,019,672 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCrab_crackBip01_skill1.kf
[2011.06.21 14:42:34 | 000,021,237 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCrab_crackBip01_skill2.kf
[2011.06.21 14:42:34 | 000,021,612 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCrab_crackBip01_skill3.kf
[2011.06.21 14:42:34 | 000,021,614 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCrab_crackBip01_skill3_2.kf
[2010.06.10 11:24:50 | 000,030,498 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\EmperorCrab_crackBip01_skill3_cast.kf
[2011.06.21 14:42:34 | 000,021,505 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_attack.kf
[2009.01.09 09:01:54 | 000,035,658 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_critical.kf
[2011.06.21 14:42:34 | 000,021,247 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_damage.kf
[2011.06.21 14:42:34 | 000,015,372 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_dash.kf
[2011.06.21 14:42:34 | 000,046,173 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_die.kf
[2011.06.21 14:42:34 | 000,023,703 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_knockback00.kf
[2011.06.21 14:42:34 | 000,015,077 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_knockback01.kf
[2011.06.21 14:42:34 | 000,017,015 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_Knockback02.kf
[2011.06.21 14:42:34 | 000,017,958 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_run.kf
[2011.06.21 14:42:34 | 000,025,914 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_stand.kf
[2011.06.21 14:42:34 | 000,021,031 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\KingCrab\KingCrab_crackBip01_walk.kf
[2011.06.03 01:40:59 | 000,024,044 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\M_KingCrab01\M_KingCrab01_crackBip01_Action.kf
[2011.06.03 01:40:59 | 000,020,737 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\M_KingCrab01\M_KingCrab01_crackBip01_Back.kf
[2011.06.03 01:40:59 | 000,017,732 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\M_KingCrab01\M_KingCrab01_crackBip01_Run.kf
[2011.06.03 01:40:59 | 000,025,914 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\M_KingCrab01\M_KingCrab01_crackBip01_Stand.kf
[2011.06.03 01:40:59 | 000,020,737 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\M_KingCrab01\M_KingCrab01_crackBip01_Walk.kf
[2011.06.21 14:40:46 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerCchulainnBoots.DDS
[2011.06.21 14:40:48 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerCchulainnPants.DDS
[2011.06.21 14:40:42 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerCchulainnShirt.dds
[2011.06.21 14:40:48 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerVelundBoots.DDS
[2011.06.21 14:40:42 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerVelundPants.DDS
[2011.06.21 14:40:44 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-f\CrackerVelundShirt.DDS
[2011.06.21 14:40:56 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerCchulainnBoots.dds
[2011.06.21 14:40:58 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerCchulainnPants.DDS
[2011.06.21 14:40:50 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerCchulainnShirt.DDS
[2011.06.21 14:40:58 | 000,022,000 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerVelundBoots.DDS
[2011.06.21 14:40:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerVelundPants.dds
[2011.06.21 14:40:54 | 000,087,536 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\reschar\Mage-m\CrackerVelundShirt.DDS
[2011.03.03 02:37:18 | 000,000,120 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\B_Cracker\B_Cracker.conf
[2011.03.03 02:37:18 | 003,441,303 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\B_Cracker\B_Cracker.nif
[2011.03.03 02:37:18 | 000,131,080 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\B_Cracker\B_Cracker.shbd
[2011.03.03 02:37:18 | 000,003,105 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\B_Cracker\B_Cracker.shmd
[2008.02.26 01:50:50 | 000,196,664 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\EldGbl01\EldGbl01_desert crack1 grass_a.bmp
[2008.02.26 01:50:50 | 000,196,664 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\EldGbl01\EldGbl01_desert crack2 grass_a.bmp
[2008.02.26 01:50:50 | 000,196,664 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmap\field\EldGbl01\EldGbl01_desert crack2_a.bmp
[2011.03.03 02:42:46 | 000,003,747 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmenu\game\MobPortrait\B_CrackerHumar.png
[2011.03.03 02:43:09 | 000,637,953 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmenu\loading\B_Cracker.png
[2011.03.03 02:42:57 | 000,174,904 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\resmenu\minimap\B_Cracker.dds
[2011.03.03 02:40:26 | 000,101,858 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_AC_Down_Atk.wav
[2011.03.03 02:40:28 | 000,034,384 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Attack.wav
[2011.03.03 02:40:41 | 000,020,316 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Damage01.wav
[2011.03.03 02:40:27 | 000,029,666 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Damage02.wav
[2011.03.03 02:40:22 | 000,112,750 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Die01.wav
[2011.03.03 02:40:28 | 000,058,816 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Die02.wav
[2011.03.03 02:40:28 | 000,143,840 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_DrainSP.wav
[2011.03.03 02:40:25 | 000,053,876 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Normal_Atk.wav
[2011.03.03 02:40:36 | 000,116,630 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Normal_Wide.wav
[2011.03.03 02:40:25 | 000,018,464 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Run.wav
[2011.03.03 02:40:29 | 000,077,250 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Stand.wav
[2011.03.03 02:40:34 | 000,033,018 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\B_CrackerHumar_Walk.wav
[2009.02.09 05:23:56 | 000,194,966 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressound\HFirecracker00.wav
[2011.06.21 14:47:18 | 000,003,524 | ---- | M] () -- \Program Files\gamigo Games\Fiesta Online(EU_English)\ressystem\Action\B_CrackerHumar.dat
< *keygen* /s >
< *loader* /s >
[2012.02.29 08:49:32 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.02.29 08:49:32 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2011.07.03 16:53:01 | 000,000,000 | ---- | M] () -- \Documents and Settings\Věruš\Data aplikací\GetRightToGo\Brothersoftdownloader_for_F1_2009_Countdown.data
[2011.07.03 16:52:35 | 000,367,956 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\Brothersoftdownloader_for_F1_2009_Countdown.exe
[2012.07.09 10:14:49 | 003,146,824 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\crossfire_downloader.exe
[2011.09.12 23:13:41 | 001,996,944 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\FiestaDownloader-10.0.0382(1).exe
[2011.09.12 23:23:11 | 002,084,904 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\FiestaOnline_Joker_EN_Downloader.exe
[2010.06.22 15:41:14 | 000,000,051 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\TomTom\HOME\Backup\XL\Backup01\InternalMemory\bootloaderversion.txt
[2012.08.11 11:39:39 | 000,000,753 | ---- | M] () -- \Documents and Settings\Věruš\Local Settings\Temporary Internet Files\Content.IE5\1RGO202C\AdLoader[1].htm
[2012.08.11 11:39:39 | 000,105,903 | ---- | M] () -- \Documents and Settings\Věruš\Local Settings\Temporary Internet Files\Content.IE5\BHNKAJA0\AdLoader-427d9fd2a91e2f2c023aefe9f69a01d0.min[1].js
[2010.09.21 19:43:18 | 000,000,576 | ---- | M] () -- \Documents and Settings\Věruš\Recent\krvavy-snih-by-davus-of-bongo-uploaders.lnk
[2011.11.26 13:39:10 | 000,086,016 | ---- | M] () -- \Program Files\Boiling Point - Cesta do pekel\VELoader.dll
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7DEBUG\coloader.tlb
[2010.12.14 10:54:22 | 000,166,400 | ---- | M] () -- \Program Files\dm\dm paradies foto 3\CWImageLoader0.dll
[2011.07.06 23:29:05 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.07.06 23:29:05 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.07.06 23:29:05 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.07.06 23:29:24 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\icq_profile\preloader.html
[2011.07.06 23:29:25 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\profile_forms\preloader.html
[2011.07.06 23:29:26 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\profile_lightboxs\preloader.html
[2006.01.30 16:01:18 | 000,495,616 | ---- | M] () -- \Program Files\Sony Ericsson\Mobile2\Sync Station\NotesPimAdaptorLoader.dll
[2011.06.08 12:52:38 | 000,001,702 | ---- | M] () -- \Program Files\Sony Ericsson\Update Engine\licenses\loaderbinarylegal.txt
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2008.01.31 13:44:50 | 000,106,496 | ---- | M] () -- \Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\PhysXLoader.dll
[2011.07.02 19:32:15 | 000,057,856 | ---- | M] () -- \Program Files\Ultima Online DP2\Razor\Loader.dll
[2003.09.26 08:15:26 | 000,169,384 | ---- | M] () -- \Program Files\Valve\cstrike\models\qloader.mdl
[2003.09.26 14:19:52 | 000,352,548 | ---- | M] () -- \Program Files\Valve\valve\models\loader.mdl
[2003.09.26 14:24:16 | 000,012,764 | ---- | M] () -- \Program Files\Valve\valve\sound\ambience\loader_hydra1.wav
[2003.09.26 14:24:16 | 000,012,164 | ---- | M] () -- \Program Files\Valve\valve\sound\ambience\loader_step1.wav
[2010.02.10 18:10:14 | 000,045,056 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2010.05.30 18:33:44 | 000,082,784 | ---- | M] () -- \WINDOWS\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 20:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 20:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 05:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
< *minodlogin* /s >
< *tnod* /s >
[1997.12.06 01:07:30 | 000,000,142 | ---- | M] () -- \Program Files\SuperLogix\Super Utilities\script\_TreeView\ftv2lastnode.gif
[1998.01.13 23:57:20 | 000,000,125 | ---- | M] () -- \Program Files\SuperLogix\Super Utilities\script\_TreeView\ftv2mlastnode.gif
[1998.01.13 23:59:04 | 000,000,130 | ---- | M] () -- \Program Files\SuperLogix\Super Utilities\script\_TreeView\ftv2plastnode.gif
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2011.06.28 23:09:52 | 000,057,344 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Sony Ericsson\Update Engine\configuration\org.eclipse.osgi\bundles\7\1\.cp\lib\serialio.dll
[2012.05.20 23:13:12 | 000,000,108 | ---- | M] () -- \Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Picasa2\cache\cacheindex_serial.pmp
[2011.12.25 20:32:34 | 000,000,639 | ---- | M] () -- \Documents and Settings\Věruš\Recent\serial.lnk
[2011.11.11 21:49:35 | 000,001,315 | ---- | M] () -- \Documents and Settings\Věruš\Recent\superovladac-serial.lnk
[2000.04.07 14:51:54 | 000,143,360 | ---- | M] () -- \PC NaviGator + Sony Route Planner Europe -2in1- (Europe+Greece) {+++BEST+++} [h33t][migel]\PC Navigator v6.4.21\Setup\GPS_DRIVERS\CF_Driver\WinNT4\Install_Serial.exe
[2012.04.11 01:15:28 | 000,434,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.10411.0\System.Runtime.Serialization.dll
[2012.05.11 00:38:57 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.10411.0\System.Runtime.Serialization.ni.dll
[2012.08.05 18:21:52 | 000,005,687 | ---- | M] () -- \Program Files\PokerStars\gx\tokenserial.jpg
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.06.08 12:51:08 | 000,026,761 | ---- | M] () -- \Program Files\Sony Ericsson\Update Engine\plugins\com.serialio.win32.x86_2.10.2.0.jar
[2011.06.08 12:51:08 | 000,049,507 | ---- | M] () -- \Program Files\Sony Ericsson\Update Engine\plugins\com.serialio_2.11.6.14.jar
[2011.06.08 12:53:08 | 000,002,237 | ---- | M] () -- \Program Files\Sony Ericsson\Update Engine\plugins\com.sonyericsson.cs.serialcommunication_2.11.6.14.jar
[2006.03.02 14:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2012.06.13 21:26:42 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.06.12 05:15:50 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.05.10 01:05:24 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\505e12638acd6fdb22e1fd2d4c6fc232\System.Runtime.Serialization.ni.dll
[2012.05.10 12:59:48 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\a644ec04e18202b60f9d828bc207972b\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.05.10 13:00:50 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\6a37764b2df9b3f9c7775701027ef779\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.05.10 13:01:08 | 002,637,312 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\9bfda0add366eea12ea0402e60d01e84\System.Runtime.Serialization.ni.dll
[2012.03.01 17:14:08 | 000,013,972 | ---- | M] () -- \WINDOWS\inf\SocketSerialBT.PNF
[2012.06.05 19:32:55 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.06.13 21:23:42 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.06.05 19:32:54 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2012.06.13 21:23:40 | 001,026,936 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 001,026,936 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2010.06.15 02:33:16 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 02:33:16 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2008.04.14 04:17:25 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 04:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2006.03.02 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 04:21:08 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:661DFA1C
< End of report >
Re: kontrola logu - zamrzani pc
Jinak nemůžu ještě moc posoudit to sekání, zatím to nezamrzá, ale když něco stáhnu a jdu otevřít tu složku tak se to zasekává. Ještě uvidím.
Re: kontrola logu - zamrzani pc
OK, pockam jeste na vysledky z MBAM a podle toho sem hodim dalsi postup
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: kontrola logu - zamrzani pc
Výsledky:
Internet Explorer 8.0.6001.18702
Věruš :: VERA [administrátor]
Ochrana: Povolena
11.8.2012 13:26:44
mbam-log-2012-08-11 (15-15-19).txt
Typ: Úplná kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 360340
Uplynulý čas: 1 hodin, 46 minut, 17 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 5
C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\GotClip_Setup.exe (PUP.Adware.Gotclip.ScamLotto) -> Žádná instrukce nebyla provedena.
C:\Program Files\Z8Games\CrossFire\XTrap\XTrap.xt (Trojan.Agent.PS) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{CF7AA74B-6F71-40ED-B904-0AEE78149419}\RP756\A0108918.exe (Packer.ModifiedUPX) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{CF7AA74B-6F71-40ED-B904-0AEE78149419}\RP743\A0104429.exe (Rogue.PornCleanser) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{CF7AA74B-6F71-40ED-B904-0AEE78149419}\RP669\A0097650.exe (Trojan.Agent) -> Žádná instrukce nebyla provedena.
(konec)
Internet Explorer 8.0.6001.18702
Věruš :: VERA [administrátor]
Ochrana: Povolena
11.8.2012 13:26:44
mbam-log-2012-08-11 (15-15-19).txt
Typ: Úplná kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 360340
Uplynulý čas: 1 hodin, 46 minut, 17 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 5
C:\Documents and Settings\Věruš\Dokumenty\Stažené soubory\GotClip_Setup.exe (PUP.Adware.Gotclip.ScamLotto) -> Žádná instrukce nebyla provedena.
C:\Program Files\Z8Games\CrossFire\XTrap\XTrap.xt (Trojan.Agent.PS) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{CF7AA74B-6F71-40ED-B904-0AEE78149419}\RP756\A0108918.exe (Packer.ModifiedUPX) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{CF7AA74B-6F71-40ED-B904-0AEE78149419}\RP743\A0104429.exe (Rogue.PornCleanser) -> Žádná instrukce nebyla provedena.
C:\System Volume Information\_restore{CF7AA74B-6F71-40ED-B904-0AEE78149419}\RP669\A0097650.exe (Trojan.Agent) -> Žádná instrukce nebyla provedena.
(konec)
Re: kontrola logu - zamrzani pc
MBAM zatim nevypinejte, at pak nemusite delat novy skenToto znate? A pouzivate? C:\Program Files\Z8Games\CrossFire\XTrap\XTrap.xt
Jestli to pouzivate, otestujte ten soubor na virustotal, pripadne jotti http://forum.viry.cz/viewtopic.php?f=29&t=5846 a nahlaste vysledek, pripadne zkopirujte odkaz
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: kontrola logu - zamrzani pc
Abyste pak nemusela cekat, nez dorazim k pc, tak tady je dalsi postup.
Nalezy MBAMu nechte odstranit (o tom jednom souboru se rozhodnete podle vysledku z virustotal, pripadne jestli ho nepouzivate, smazte ho rovnou taky).
Tady prikazy pro OTL
Znovu spustte OTL
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.
Nalezy MBAMu nechte odstranit (o tom jednom souboru se rozhodnete podle vysledku z virustotal, pripadne jestli ho nepouzivate, smazte ho rovnou taky). Tady prikazy pro OTL
Znovu spustte OTLDo spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
:otl
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\..\SearchScopes,DefaultScope = {95289393-33EA-4F8D-B952-483415B9C955}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=wbst&s={searchTerms}&f=4&hl={language}&src=chrm
IE - HKLM\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {95289393-33EA-4F8D-B952-483415B9C955}
IE - HKU\.DEFAULT\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\.DEFAULT\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {95289393-33EA-4F8D-B952-483415B9C955}
IE - HKU\S-1-5-18\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-18\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
IE - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\SearchScopes\{95289393-33EA-4F8D-B952-483415B9C955}: "URL" = http://search.qip.ru/?query={searchTerms}
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaultthis.engineName: "XfireXO Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2304157&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://start.icq.com/"
FF - prefs.js..keyword.URL: "http://start.facemoods.com/?a=wbst&s={searchTerms}&f=4&hl={language}&src=chrm"
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Věruš\Local Settings\Data aplikací\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - prefs.js..extensions.enabledItems: {5e5ab302-7f65-44cd-8211-c1d4caaccea3}:2.7.1.3
FF - prefs.js..extensions.enabledItems: {32a1fd71-835e-4b11-8e54-886fda0b4c89}:1.1
FF - prefs.js..extensions.enabledItems: {7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.7.1.3
[2010.07.12 15:25:57 | 000,000,000 | ---D | M] (QipAuthorizer) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}
[2010.06.12 12:34:20 | 000,000,000 | ---D | M] (XfireXO Toolbar) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2010.08.02 16:50:00 | 000,000,000 | ---D | M] (Zynga Toolbar) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
[2011.07.06 23:30:51 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.01.10 20:25:40 | 000,000,000 | ---D | M] (DVDVideoSoftTB Toolbar) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2011.03.10 14:58:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\extensions\ffxtlbr@Facemoods.com
[2011.01.31 00:16:05 | 000,000,000 | ---D | M] (QipAuthorizer) -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\v9xuf90a.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}
[2010.06.11 02:08:24 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\conduit.xml
[2010.05.30 15:45:24 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\daemon-search.xml
[2011.03.30 15:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\icqplugin.xml
[2010.07.12 16:20:56 | 000,002,062 | ---- | M] () -- C:\Documents and Settings\Věruš\Data aplikací\Mozilla\Firefox\Profiles\ksu3r35n.default\searchplugins\qip-search.xml
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{32A1FD71-835E-4B11-8E54-886FDA0B4C89}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\{7B13EC3E-999A-4B70-B9CB-2617B8323822}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VÄ›RUš\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\KSU3R35N.DEFAULT\EXTENSIONS\FFXTLBR@FACEMOODS.COM
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
O3 - HKU\S-1-5-21-725345543-179605362-839522115-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
[2012.08.05 00:38:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\Ad-Aware Antivirus
[2012.08.05 00:36:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Věruš\Local Settings\Data aplikací\adaware
[2011.09.04 14:51:04 | 077,906,343 | ---- | M] () -- \Documents and Settings\Věruš\Dokumenty\Stažené soubory\Lavasoft-Ad-Aware-Pro-Internet-Security-2010-v8.1.2-CZ+crack.rar
[2011.09.04 14:51:04 | 000,000,947 | ---- | M] () -- \Documents and Settings\Věruš\Recent\Lavasoft-Ad-Aware-Pro-Internet-Security-2010-v8.1.2-CZ+crack.lnk
[13 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\system32\CatRoot\*.tmp files -> C:\WINDOWS\system32\CatRoot\*.tmp -> ]
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:661DFA1C
Po restartu se objevi novy log, ten sem dejte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: kontrola logu - zamrzani pc
Tak jsem projela ten soubor z Crossfire - on to hraje můj synovec tady
A na virustotal vyjelo
https://www.virustotal.com/file/55d663a ... 344705386/
a na Joti bylo 0 z 20 programu
A na virustotal vyjelo
https://www.virustotal.com/file/55d663a ... 344705386/
a na Joti bylo 0 z 20 programu
Přispějete na provoz fóra?