Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

kontrola logu - pomalé otváranie aplikacii a spomalený pc

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
AndreaP
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 13 srp 2012 11:18

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#106 Příspěvek od AndreaP »

OTL logfile created on: 17.8.2012 0:37:58 - Run 2
OTL by OldTimer - Version 3.2.57.0 Folder = C:\Documents and Settings\Andrea\My Documents\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000041B | Country: Slovakia | Language: SKY | Date Format: d.M.yyyy

445,91 Mb Total Physical Memory | 35,58 Mb Available Physical Memory | 7,98% Memory free
1,03 Gb Paging File | 0,21 Gb Available in Paging File | 20,29% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 127,99 Gb Total Space | 88,52 Gb Free Space | 69,16% Space Free | Partition Type: NTFS

Computer Name: AP-80NVCGATWOLV | User Name: Andrea | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012.08.17 00:31:25 | 000,596,992 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Andrea\My Documents\Downloads\OTL(1).exe
PRC - [2012.07.29 17:07:15 | 001,692,192 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\Codecs Pack\2.2.529.166\{16cdff19-861d-48e3-a751-d99a27784753}\codecmngr.exe
PRC - [2012.07.14 02:17:11 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.07.06 02:26:46 | 002,551,128 | ---- | M] (Pokki) -- C:\Documents and Settings\Andrea\Local Settings\Application Data\Pokki\v0.259\pokki.exe
PRC - [2012.03.07 15:40:34 | 000,913,144 | ---- | M] (ESET) -- C:\Program Files\Eset\ESET Smart Security\ekrn.exe
PRC - [2012.03.07 15:40:28 | 003,117,344 | ---- | M] (ESET) -- C:\Program Files\Eset\ESET Smart Security\egui.exe
PRC - [2010.03.04 22:38:00 | 000,071,096 | ---- | M] () -- C:\Documents and Settings\Andrea\My Documents\PROGRAMY\CDBurnerXP\NMSAccessU.exe
PRC - [2008.04.14 02:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.07.12 11:58:02 | 001,397,760 | ---- | M] (Nero AG) -- C:\Program Files\Ahead\InCD\InCD.exe
PRC - [2005.07.08 17:24:46 | 000,871,424 | ---- | M] (Nero AG) -- C:\Program Files\Ahead\InCD\InCDsrv.exe


========== Modules (No Company Name) ==========

MOD - [2012.07.29 17:07:15 | 001,692,192 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\Codecs Pack\2.2.529.166\{16cdff19-861d-48e3-a751-d99a27784753}\codecmngr.exe
MOD - [2012.07.29 17:07:13 | 002,039,840 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\Codecs Pack\2.2.529.166\{16cdff19-861d-48e3-a751-d99a27784753}\codecmngr.dll
MOD - [2012.07.14 02:17:14 | 002,003,424 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.07.06 02:26:26 | 001,012,056 | ---- | M] () -- C:\Documents and Settings\Andrea\Local Settings\Application Data\Pokki\ocdeskband_0.dll
MOD - [2012.06.17 10:26:28 | 000,184,846 | ---- | M] () -- C:\Documents and Settings\Andrea\Local Settings\Application Data\Pokki\v0.259\avformat-53.dll
MOD - [2012.06.17 10:26:26 | 000,062,464 | ---- | M] () -- C:\Documents and Settings\Andrea\Local Settings\Application Data\Pokki\v0.259\chrome.dll
MOD - [2012.06.17 10:26:24 | 001,093,646 | ---- | M] () -- C:\Documents and Settings\Andrea\Local Settings\Application Data\Pokki\v0.259\avcodec-53.dll
MOD - [2012.06.17 10:26:24 | 000,117,262 | ---- | M] () -- C:\Documents and Settings\Andrea\Local Settings\Application Data\Pokki\v0.259\avutil-51.dll
MOD - [2010.03.04 22:38:00 | 000,071,096 | ---- | M] () -- C:\Documents and Settings\Andrea\My Documents\PROGRAMY\CDBurnerXP\NMSAccessU.exe
MOD - [2008.10.11 23:18:46 | 000,319,488 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2008.09.16 21:18:06 | 000,132,608 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2006.08.31 18:46:32 | 000,176,235 | ---- | M] () -- C:\WINDOWS\system32\Primomonnt.dll


========== Win32 Services (SafeList) ==========

SRV - [2012.07.29 17:07:15 | 001,692,192 | ---- | M] () [Auto | Running] -- C:\Documents and Settings\All Users\Application Data\Codecs Pack\2.2.529.166\{16cdff19-861d-48e3-a751-d99a27784753}\codecmngr.exe -- (Codecs Pack)
SRV - [2012.07.14 02:17:12 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.03.07 15:40:34 | 000,913,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\Eset\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2010.03.04 22:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Documents and Settings\Andrea\My Documents\PROGRAMY\CDBurnerXP\NMSAccessU.exe -- (NMSAccess)
SRV - [2008.11.11 09:38:06 | 000,620,544 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2005.07.08 17:24:46 | 000,871,424 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Ahead\InCD\InCDsrv.exe -- (InCDsrv)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\ZS211.sys -- (ZSMC211)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\pcouffin.sys -- (pcouffin)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{8650BCC9-DE40-4C74-AC31-F8AD17A0FA68}\MpKsldb491116.sys -- (MpKsldb491116)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\123.exe\catchme.sys -- (catchme)
DRV - [2012.07.02 15:15:34 | 000,051,072 | ---- | M] (Identcode Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ANGELNT.SYS -- (Angelnt)
DRV - [2012.06.03 10:44:46 | 000,005,504 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2012.03.14 08:40:04 | 000,148,504 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2012.03.14 08:40:04 | 000,061,936 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2012.03.14 08:40:04 | 000,040,336 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2012.03.14 08:40:02 | 000,160,816 | ---- | M] (ESET) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2012.03.14 08:40:02 | 000,120,152 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2011.12.08 06:22:26 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2011.12.08 06:22:26 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadbus.sys -- (ssadbus)
DRV - [2011.12.08 06:22:26 | 000,114,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadserd.sys -- (ssadserd)
DRV - [2011.12.08 06:22:26 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadadb.sys -- (androidusb)
DRV - [2011.12.08 06:22:26 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV - [2011.07.07 16:13:46 | 000,015,896 | ---- | M] (HandSet Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\massfilter_hs.sys -- (massfilter_hs)
DRV - [2011.03.28 15:34:42 | 000,113,432 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ghsmdm.sys -- (ghsmdm)
DRV - [2009.12.22 04:31:26 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2008.12.25 17:43:46 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2008.12.25 17:43:45 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2006.10.30 20:19:58 | 000,088,960 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2006.07.12 11:58:02 | 000,028,672 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\InCDrm.sys -- (incdrm)
DRV - [2006.06.28 10:25:24 | 004,304,384 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService)
DRV - [2006.06.16 16:09:48 | 001,611,776 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006.03.13 16:50:08 | 000,085,696 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300obex.sys -- (w300obex)
DRV - [2006.03.13 16:50:06 | 000,087,824 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300mgmt.sys -- (w300mgmt)
DRV - [2006.03.13 16:50:02 | 000,096,352 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300mdm.sys -- (w300mdm)
DRV - [2006.03.13 16:50:00 | 000,009,264 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300mdfl.sys -- (w300mdfl)
DRV - [2005.12.28 12:46:40 | 000,060,800 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300bus.sys -- (w300bus)
DRV - [2005.07.08 17:17:56 | 000,008,704 | ---- | M] (Nero AG) [Recognizer | System | Unknown] -- C:\WINDOWS\System32\drivers\InCDrec.sys -- (InCDrec)
DRV - [2005.07.08 17:17:54 | 000,099,584 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\System32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2005.07.08 17:17:36 | 000,029,696 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDpass.sys -- (InCDPass)
DRV - [2004.08.03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139)
DRV - [2003.01.10 10:56:34 | 000,030,921 | ---- | M] (Service & Quality Technology.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SQCaptur.sys -- (DCamUSBSQTECH)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes\{D5D47440-0750-463D-BAEF-A47D02414806}: "URL" = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?sr ... earchTerms}


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://search.babylon.com/?affID=114022 ... 19d13f899c
IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?clien ... 8B7EA02B88
IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}: "URL" = http://search.babylon.com/?babsrc=SP_ss ... ffID=17981
IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2801948
IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{D5D47440-0750-463D-BAEF-A47D02414806}: "URL" = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?sr ... earchTerms}
IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "SweetIM Search"
FF - prefs.js..browser.search.defaultthis.engineName: "PHPNukeEN Customized Web Search"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT20867 ... hSource=13"
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... ource=2&q="
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: "SweetIM Search"
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT20867 ... hSource=13"


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@joj.sk/TV_JOJ_Media_Player: C:\Program Files\TV JOJ Media Player\npplugin_netscape.dll (MAC TV s.r.o.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll File not found
FF - HKCU\Software\MozillaPlugins\@joj.sk/TV_JOJ_Media_Player: C:\Program Files\TV JOJ Media Player\npplugin_netscape.dll (MAC TV s.r.o.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.08.03 19:38:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.08.03 18:43:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012.08.03 21:25:47 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8}: C:\Documents and Settings\All Users\Application Data\Codecs Pack\2.2.529.166\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension [2012.07.29 17:07:23 | 000,000,000 | ---D | M]

[2009.01.09 21:44:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andrea\Application Data\Mozilla\Extensions
[2012.08.14 18:43:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions
[2007.07.23 21:11:36 | 000,000,000 | ---D | M] (Metal Lion - Vista) -- C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{1AF3FC34-0725-4485-A939-6B40EB7CA96A}
[2010.12.29 14:52:41 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012.07.25 14:17:12 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012.08.13 19:54:52 | 000,001,765 | ---- | M] () -- C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\searchplugins\atlas.xml
[2012.07.29 15:59:45 | 000,002,349 | ---- | M] () -- C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\searchplugins\bProtect.xml
[2012.08.03 19:38:57 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.07.14 02:17:47 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2007.12.17 19:16:14 | 000,065,536 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npkimi.dll
[2010.03.26 08:34:16 | 000,001,425 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\Cetrumcz_igeared.xml
[2012.07.14 02:16:36 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage: http://home.sweetim.com/?crg=3.1010000& ... 19D13F899C}
CHR - default_search_provider: SweetIM Search (Enabled)
CHR - default_search_provider: search_url = http://search.sweetim.com/search.asp?sr ... 19D13F899C}
CHR - default_search_provider: suggest_url =
CHR - homepage: http://home.sweetim.com/?crg=3.1010000& ... 19D13F899C}
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\Application\21.0.1180.75\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\Application\21.0.1180.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\Application\21.0.1180.75\pdf.dll
CHR - plugin: Babylon ToolBar (Enabled) = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll
CHR - plugin: Conduit Chrome Plugin (Enabled) = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\plugins/ConduitChromeApiPlugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Imikimi.com Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npkimi.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: QuickTime Plug-in 6.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 6.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 6.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 6.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 6.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 6.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll
CHR - plugin: TV JOJ Media Player \2,0,0,100 (Enabled) = C:\Program Files\TV JOJ Media Player\npplugin_netscape.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Savings Sidekick = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.19.14_0\crossrider
CHR - Extension: Savings Sidekick = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.19.14_0\
CHR - Extension: Babylon Toolbar = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\
CHR - Extension: NCH EN = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: VideoFileDownload = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\kincjchfokkeneeofpeefomkikfkiedl\1.0\
CHR - Extension: BitTorrentBar = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mhfdcmehmjcclgopdodkjdicohagipid\2.3.15.10_0\
CHR - Extension: Savings Sidekick = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.19.14_0\crossrider
CHR - Extension: Savings Sidekick = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.19.14_0\
CHR - Extension: Babylon Toolbar = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\
CHR - Extension: NCH EN = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of
CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\
CHR - Extension: VideoFileDownload = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\kincjchfokkeneeofpeefomkikfkiedl\1.0\
CHR - Extension: BitTorrentBar = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mhfdcmehmjcclgopdodkjdicohagipid\2.3.15.10_0\

O1 HOSTS File: ([2012.08.14 18:22:12 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {2EECD738-5844-4a99-B4B6-146BF802613B} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - {D0F4A166-B8D4-48b8-9D63-80849FE137CB} - No CLSID value found.
O3 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\Toolbar\ShellBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O3 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe (Nero AG)
O4 - HKU\S-1-5-21-746137067-1292428093-725345543-1003..\Run: [Pokki] C:\Documents and Settings\Andrea\Local Settings\Application Data\Pokki\v0.259\pokki.exe (Pokki)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O15 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..Trusted Domains: ([]msn in My Computer)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5BA47E5A-A734-4D61-8CF5-35C0F8AA9D11}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\Documents and Settings\Andrea\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Andrea\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.06.01 20:51:48 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012.08.16 18:58:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Andrea\Recent
[2012.08.14 21:30:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Start Menu\Programs\Pokki
[2012.08.14 21:30:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Local Settings\Application Data\Pokki
[2012.08.14 21:28:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CrystalDiskInfo
[2012.08.14 21:28:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Application Data\OpenCandy
[2012.08.14 21:28:26 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskInfo
[2012.08.14 19:08:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Application Data\Malwarebytes
[2012.08.14 19:04:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2012.08.14 18:20:44 | 000,000,000 | ---D | C] -- C:\_OTM
[2012.08.14 10:37:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\NECO SK a.s
[2012.08.14 08:49:48 | 000,000,000 | ---D | C] -- C:\!SYSTEM
[2012.08.13 22:08:00 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.08.13 22:07:06 | 000,000,000 | ---D | C] -- C:\rsit
[2012.08.13 21:55:27 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012.08.13 15:21:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2012.08.12 20:01:31 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012.08.12 19:43:54 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012.08.12 19:43:54 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012.08.12 19:43:54 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012.08.12 19:43:54 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012.08.12 19:42:57 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.08.12 19:42:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Andrea\My Documents\My Pictures
[2012.08.12 19:42:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Andrea\Start Menu\Programs\Administrative Tools
[2012.08.12 19:41:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2012.08.06 23:41:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Andrea\My Documents\My Music
[2012.08.06 12:45:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Application Data\Canneverbe Limited
[2012.08.06 12:45:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
[2012.08.03 21:31:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Application Data\ESET
[2012.08.03 21:29:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\ESET
[2012.08.03 21:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ESET
[2012.08.03 21:24:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ESET
[2012.08.03 18:54:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Local Settings\Application Data\Sun
[2012.08.03 18:43:20 | 000,000,000 | ---D | C] -- C:\Program Files\Oracle
[2012.08.03 18:43:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Application Data\Oracle
[2012.08.03 18:43:03 | 000,772,544 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll
[2012.08.03 18:43:03 | 000,227,760 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012.08.03 18:42:45 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.08.03 18:42:45 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.08.03 17:57:34 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012.08.03 17:46:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Desktop\Mozilla Firefox 14.0.1 Final
[2012.08.03 17:46:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\MyTorrents
[2012.08.03 17:45:14 | 000,000,000 | ---D | C] -- C:\Program Files\OpenApp
[2012.08.03 17:42:50 | 000,000,000 | ---D | C] -- C:\Program Files\smartdl
[2012.08.01 11:02:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\samsung
[2012.07.30 22:45:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\PROGRAMY
[2012.07.30 22:24:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\KATKA
[2012.07.30 22:24:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\KRALIK
[2012.07.30 22:23:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\X LIGHT
[2012.07.30 22:23:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\BULKO
[2012.07.30 22:22:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\BETAK, Betakova
[2012.07.30 22:22:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\Senior
[2012.07.30 22:13:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\účtovné
[2012.07.30 22:03:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\FOTO II
[2012.07.29 20:37:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Local Settings\Application Data\NCH_EN
[2012.07.29 20:36:46 | 000,000,000 | ---D | C] -- C:\Program Files\NCH_EN
[2012.07.29 20:32:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Video Related Programs
[2012.07.29 20:29:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite
[2012.07.29 20:29:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Audio Related Programs
[2012.07.29 20:29:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NCH Software
[2012.07.29 20:29:11 | 000,000,000 | ---D | C] -- C:\Program Files\NCH Software
[2012.07.29 20:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Application Data\NCH Software
[2012.07.29 20:12:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ashampoo
[2012.07.29 20:12:15 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo
[2012.07.29 20:10:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\My Documents\Stažené soubory
[2012.07.29 17:13:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\IBUpdaterService
[2012.07.29 17:10:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ffdshow
[2012.07.29 17:10:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Local Settings\Application Data\Savings Sidekick
[2012.07.29 17:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\ffdshow
[2012.07.29 17:09:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\searchplugins
[2012.07.29 17:08:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Start Menu\Programs\Haali Media Splitter
[2012.07.29 17:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Haali
[2012.07.29 17:07:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Start Menu\Programs\ffdshow
[2012.07.29 17:07:47 | 000,000,000 | ---D | C] -- C:\Program Files\Savings Sidekick
[2012.07.29 17:07:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Codecs Pack
[2012.07.29 16:48:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Local Settings\Application Data\CRE
[2012.07.29 16:47:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Local Settings\Application Data\BitTorrentBar
[2012.07.29 16:46:49 | 000,000,000 | ---D | C] -- C:\Program Files\BitTorrentBar
[2012.07.29 16:46:34 | 000,000,000 | ---D | C] -- C:\Program Files\BitTorrent
[2012.07.29 16:46:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Local Settings\Application Data\BitTorrent
[2012.07.29 16:46:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Application Data\BitTorrent
[2012.07.29 15:59:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\Start Menu\Programs\GotClip
[2012.07.29 15:59:13 | 000,000,000 | ---D | C] -- C:\Program Files\GotClip
[2012.07.19 13:38:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andrea\.android
[2012.07.19 13:38:31 | 000,138,264 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\zghsnet.sys
[2012.07.19 13:38:31 | 000,113,688 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\zghsvousb.sys
[2012.07.19 13:38:31 | 000,113,688 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\zghstrace.sys
[2012.07.19 13:38:31 | 000,113,688 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\zghsnmea.sys
[2012.07.19 13:38:31 | 000,113,688 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\zghsmdm.sys
[2012.07.19 13:38:31 | 000,113,688 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\zghsdiagmdm.sys
[2012.07.19 13:38:30 | 000,113,688 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\zghsdiag.sys
[2012.07.19 13:38:30 | 000,113,688 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\zghsat.sys
[2012.07.19 13:38:30 | 000,113,432 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ghsnmea.sys
[2012.07.19 13:38:30 | 000,113,432 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ghsmdm.sys
[2012.07.19 13:38:30 | 000,113,432 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ghsdiag.sys
[2012.07.19 13:38:30 | 000,032,408 | ---- | C] (Google Inc) -- C:\WINDOWS\System32\drivers\ghsandroid.sys
[2012.07.19 13:38:30 | 000,015,896 | ---- | C] (HandSet Incorporated) -- C:\WINDOWS\System32\drivers\massfilter_hs.sys
[2012.07.19 13:38:29 | 000,032,408 | ---- | C] (Google Inc) -- C:\WINDOWS\System32\drivers\androidusb.sys
[2012.07.19 13:37:50 | 000,102,936 | ---- | C] (Google, inc) -- C:\WINDOWS\AdbWinApi.dll
[2012.07.19 13:37:48 | 000,000,000 | ---D | C] -- C:\Program Files\Handset USB Driver
[2011.04.11 19:13:43 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Andrea\Application Data\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2012.08.17 00:24:07 | 000,001,304 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2012.08.17 00:13:15 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.08.17 00:11:54 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.08.16 12:12:47 | 000,270,699 | ---- | M] () -- C:\mzdy0003_0006.zip
[2012.08.16 12:12:43 | 002,723,840 | ---- | M] () -- C:\mzdy0003.mdb
[2012.08.15 22:08:11 | 000,270,725 | ---- | M] () -- C:\mzdy0003_0005.zip
[2012.08.15 21:00:22 | 000,257,422 | ---- | M] () -- C:\mzdy0009_0002.zip
[2012.08.15 19:23:28 | 000,269,392 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.08.14 22:45:59 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.08.14 18:22:12 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2012.08.14 11:37:32 | 000,270,826 | ---- | M] () -- C:\mzdy0003_0004.zip
[2012.08.14 08:48:31 | 000,256,283 | ---- | M] () -- C:\mzdy0009.zip
[2012.08.13 23:07:30 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012.08.13 14:35:20 | 000,001,117 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2012.08.13 11:54:01 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2012.08.13 11:48:42 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2012.08.12 20:01:39 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012.08.09 20:48:15 | 000,002,293 | ---- | M] () -- C:\Documents and Settings\Andrea\Desktop\Google Chrome.lnk
[2012.08.09 20:48:15 | 000,002,271 | ---- | M] () -- C:\Documents and Settings\Andrea\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012.08.06 15:15:49 | 000,000,433 | ---- | M] () -- C:\WINDOWS\is-MU3M6.lst
[2012.08.06 15:15:48 | 001,544,704 | ---- | M] () -- C:\WINDOWS\is-MU3M6.exe
[2012.08.06 15:15:48 | 000,025,451 | ---- | M] () -- C:\WINDOWS\is-MU3M6.msg
[2012.08.06 15:15:47 | 000,001,795 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CDBurnerXP.lnk
[2012.08.06 11:55:12 | 000,000,097 | ---- | M] () -- C:\WINDOWS\vypalovac.ini
[2012.08.03 19:39:08 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Andrea\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012.08.03 19:39:08 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2012.08.03 18:42:24 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.08.03 18:42:23 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.08.03 11:20:37 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012.08.03 11:20:35 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012.08.01 19:13:16 | 000,184,700 | ---- | M] () -- C:\torrent.exe
[2012.07.29 20:38:21 | 000,000,009 | ---- | M] () -- C:\END
[2012.07.29 20:12:35 | 000,000,874 | ---- | M] () -- C:\Documents and Settings\Andrea\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo Burning Studio 6 FREE.lnk
[2012.07.29 17:22:05 | 000,000,668 | ---- | M] () -- C:\Documents and Settings\Andrea\Application Data\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk
[2012.07.29 17:16:53 | 000,000,608 | ---- | M] () -- C:\user.js
[2012.07.19 18:55:13 | 000,140,625 | ---- | M] () -- C:\WINDOWS\hpoins14.dat
[2012.07.19 13:40:26 | 000,444,600 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.07.19 13:40:26 | 000,072,476 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

========== Files Created - No Company Name ==========

[2012.08.16 12:12:47 | 000,270,699 | ---- | C] () -- C:\mzdy0003_0006.zip
[2012.08.15 22:08:11 | 000,270,725 | ---- | C] () -- C:\mzdy0003_0005.zip
[2012.08.15 21:00:22 | 000,257,422 | ---- | C] () -- C:\mzdy0009_0002.zip
[2012.08.14 22:45:59 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.08.14 21:30:53 | 000,001,225 | ---- | C] () -- C:\Documents and Settings\Andrea\Start Menu\Programs\Pokki.lnk
[2012.08.14 11:37:32 | 000,270,826 | ---- | C] () -- C:\mzdy0003_0004.zip
[2012.08.14 08:49:43 | 002,723,840 | ---- | C] () -- C:\mzdy0003.mdb
[2012.08.14 08:48:31 | 000,256,283 | ---- | C] () -- C:\mzdy0009.zip
[2012.08.12 20:01:39 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2012.08.12 20:01:36 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2012.08.12 19:43:54 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012.08.12 19:43:54 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.08.12 19:43:54 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012.08.12 19:43:54 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012.08.12 19:43:54 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012.08.06 15:15:49 | 000,000,433 | ---- | C] () -- C:\WINDOWS\is-MU3M6.lst
[2012.08.06 15:15:48 | 001,544,704 | ---- | C] () -- C:\WINDOWS\is-MU3M6.exe
[2012.08.06 15:15:48 | 000,025,451 | ---- | C] () -- C:\WINDOWS\is-MU3M6.msg
[2012.08.06 12:44:44 | 000,001,795 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CDBurnerXP.lnk
[2012.08.06 12:44:40 | 000,001,735 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\CDBurnerXP.lnk
[2012.08.06 11:51:15 | 000,000,097 | ---- | C] () -- C:\WINDOWS\vypalovac.ini
[2012.08.03 17:57:37 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Andrea\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012.08.03 17:57:37 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2012.08.03 17:57:37 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2012.08.01 19:13:16 | 000,184,700 | ---- | C] () -- C:\torrent.exe
[2012.07.29 20:38:14 | 000,000,009 | ---- | C] () -- C:\END
[2012.07.29 20:32:16 | 000,000,777 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Prism Video File Converter.lnk
[2012.07.29 20:31:36 | 000,000,805 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Express Rip.lnk
[2012.07.29 20:30:52 | 000,001,677 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\WavePad Sound Editor.lnk
[2012.07.29 20:29:27 | 000,001,721 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Express Burn.lnk
[2012.07.29 20:12:35 | 000,000,874 | ---- | C] () -- C:\Documents and Settings\Andrea\Application Data\Microsoft\Internet Explorer\Quick Launch\Ashampoo Burning Studio 6 FREE.lnk
[2012.07.29 17:09:59 | 000,079,360 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2012.07.29 16:46:44 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\Andrea\Application Data\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk
[2012.07.29 16:01:28 | 000,000,608 | ---- | C] () -- C:\user.js
[2012.07.19 13:37:49 | 000,584,584 | ---- | C] () -- C:\WINDOWS\adb.exe
[2012.05.16 15:47:19 | 000,418,776 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2012.02.15 15:57:11 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.01.31 01:15:42 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
[2012.01.31 01:15:42 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
[2012.01.31 01:15:42 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
[2012.01.31 01:15:42 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
[2011.07.09 16:36:43 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2011.05.18 10:31:47 | 000,000,237 | ---- | C] () -- C:\Documents and Settings\Andrea\Application Data\burnaware.ini
[2011.04.11 21:03:50 | 000,000,305 | ---- | C] () -- C:\WINDOWS\007DVDCopy.INI
[2011.04.11 19:14:02 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\systeminfo3.dll
[2011.04.11 19:13:43 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Andrea\Application Data\pcouffin.cat
[2011.04.11 19:13:43 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Andrea\Application Data\pcouffin.inf
[2011.04.01 21:21:53 | 000,000,864 | ---- | C] () -- C:\Documents and Settings\Andrea\Local Settings\Application Data\SRDownloader.nast
[2011.03.02 16:05:25 | 000,000,085 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2011.01.27 14:48:16 | 000,000,805 | ---- | C] () -- C:\WINDOWS\eporadca_1012.ini
[2011.01.20 14:37:51 | 000,401,408 | ---- | C] ( ) -- C:\WINDOWS\System32\lexlog.dll
[2010.10.19 17:52:21 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010.10.19 17:52:21 | 000,036,640 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010.10.19 17:52:06 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Andrea\Application Data\$_hpcst$.hpc
[2010.03.10 16:10:32 | 000,000,873 | ---- | C] () -- C:\Documents and Settings\Andrea\.recently-used.xbel
[2008.10.12 18:38:16 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2008.04.24 18:25:24 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2007.06.13 19:36:06 | 000,007,168 | ---- | C] () -- C:\Documents and Settings\Andrea\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007.06.01 22:04:46 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe

========== LOP Check ==========

[2007.10.20 11:00:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Activision
[2011.06.12 20:38:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ashampoo
[2012.07.13 18:08:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2011.09.19 10:31:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2010.05.09 12:36:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Barbie Fashion Show
[2012.08.06 12:45:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
[2012.07.29 17:07:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Codecs Pack
[2011.04.11 23:36:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011.04.11 23:41:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2009.06.20 10:39:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Disney Interactive Studios
[2012.08.03 21:24:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
[2012.07.29 17:13:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IBUpdaterService
[2009.06.12 10:16:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ICQ
[2012.08.06 09:26:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\KASTNER software
[2011.09.18 11:53:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2008.08.18 14:23:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MSScanAppDataDir
[2008.12.25 17:44:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\My Horse and Me
[2010.10.19 17:58:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2012.03.31 18:52:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Samsung
[2010.12.20 19:37:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Socusoft
[2012.02.07 17:08:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SSScanAppDataDir
[2012.08.06 12:31:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SweetIM
[2011.04.11 20:13:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\vsosdk
[2007.06.01 22:29:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2009.02.10 17:29:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{D9C99627-949D-458E-883C-40AB097FE49F}
[2011.06.12 20:39:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\Ashampoo
[2012.07.29 16:01:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\BabylonToolbar
[2012.08.16 18:58:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\BitTorrent
[2012.07.13 18:20:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\BSplayer
[2007.06.09 21:18:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\BSplayer Pro
[2012.08.06 12:45:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\Canneverbe Limited
[2010.02.12 15:18:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2008.10.12 19:07:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\ConvertTemp
[2011.04.11 23:58:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\DAEMON Tools Lite
[2012.08.03 21:31:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\ESET
[2010.03.10 16:10:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\gtk-2.0
[2007.12.27 23:17:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\ICQ
[2007.06.09 20:17:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\ICQ Toolbar
[2007.06.01 22:08:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\InterTrust
[2012.08.06 09:26:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\Kastner software
[2012.08.14 21:28:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\OpenCandy
[2012.08.03 18:43:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\Oracle
[2010.10.19 17:58:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\PC Suite
[2010.10.19 17:03:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\PLANStudio Setup
[2012.03.31 19:07:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\Samsung
[2010.12.20 19:29:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\Sony
[2007.08.27 23:16:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\Teleca
[2008.10.21 20:11:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\Temporary
[2008.10.15 15:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\TransRender
[2008.03.11 13:22:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\TV JOJ Media Player
[2011.04.12 09:04:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\Vso

========== Purity Check ==========



========== Custom Scans ==========

< :commands >

< [EMPTYTEMP] >

< [EMPTYFLASH] >

< [Purity] >

< >

< :services >

< MpKsldb491116 >

< >

< :files >

< %windir%\system32\*.tmp.dll /s >

< %windir%\system32\SET*.tmp /s >

< %windir%\*.tmp >

< >

< :otl >

< IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847} >

< IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?sr ... earchTerms} >

< IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found >

< IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found >

< IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://search.babylon.com/?affID=114022 ... 19d13f899c >
Invalid Switch: ?affID=114022 ... 19d13f899c

< IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\URLSearchHook: - No CLSID value found >

< IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847} >

< IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_EU&apn_ptnrs=S3&apn_dtid=YYYYYYYYSK&apn_uid=63dc9641-301f-4c6a-8c6e-7ec6a202faa7&apn_sauid=151CD65D-4212-4D27-AB39-0F8B7EA02B88 >

< IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}: "URL" = http://search.babylon.com/?babsrc=SP_ss ... ffID=17981 >

< IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms} >

< IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2801948 >

< IE - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?sr ... earchTerms} >

< FF - prefs.js..browser.search.defaultenginename: "SweetIM Search" >

< FF - prefs.js..browser.search.defaultthis.engineName: "PHPNukeEN Customized Web Search" >

< FF - prefs.js..browser.search.selectedEngine: "ICQ Search" >

< FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT20867 ... hSource=13" >

< FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... ource=2&q=" >

< FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: "SweetIM Search" >

< FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: "" >

< FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "ICQ Search" >

< FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT20867 ... hSource=13" >

< FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) >
Invalid Switch: Google Update;version=3: C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

< FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) >
Invalid Switch: Google Update;version=9: C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

< [2012.07.25 14:17:12 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} >

< CHR - homepage: http://home.sweetim.com/?crg=3.1010000& ... 19D13F899C} >
Invalid Switch: ?crg=3.1010000&st=12&barid={F6433E2A-7B63-11E1-A64E-0019D13F899C}

< CHR - default_search_provider: SweetIM Search (Enabled) >

< CHR - default_search_provider: search_url = http://search.sweetim.com/search.asp?sr ... 0&st=12&q={searchTerms}&barid={F6433E2A-7B63-11E1-A64E-0019D13F899C} >
Invalid Switch: search.asp?sr ... 0&st=12&q={searchTerms}&barid={F6433E2A-7B63-11E1-A64E-0019D13F899C}

< CHR - homepage: http://home.sweetim.com/?crg=3.1010000& ... 19D13F899C} >
Invalid Switch: ?crg=3.1010000&st=12&barid={F6433E2A-7B63-11E1-A64E-0019D13F899C}

< CHR - plugin: Babylon ToolBar (Enabled) = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll >

< CHR - plugin: Conduit Chrome Plugin (Enabled) = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\plugins/ConduitChromeApiPlugin.dll >
Invalid Switch: ConduitChromeApiPlugin.dll

< CHR - Extension: Babylon Toolbar = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\ >

< CHR - Extension: NCH EN = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\ >

< CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of >

< CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\ >

< CHR - Extension: Babylon Toolbar = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\ >

< CHR - Extension: NCH EN = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\ >

< CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of >

< CHR - Extension: SweetIM for Facebook = C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\ >

< O2 - BHO: (no name) - {2EECD738-5844-4a99-B4B6-146BF802613B} - No CLSID value found. >

< O3 - HKLM\..\Toolbar: (no name) - {D0F4A166-B8D4-48b8-9D63-80849FE137CB} - No CLSID value found. >

< O3 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. >

< O3 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\Toolbar\ShellBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found. >

< O3 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. >

< O3 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. >

< O3 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found. >

< O15 - HKU\S-1-5-21-746137067-1292428093-725345543-1003\..Trusted Domains: ([]msn in My Computer) >

< [2012.07.29 16:01:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\BabylonToolbar >

< [2007.06.09 20:17:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Andrea\Application Data\ICQ Toolbar >

< [19 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] >

< [25 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\0222400fcf7c78fcaf38fd057cc8f073\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\0222400fcf7c78fcaf38fd057cc8f073\*.tmp -> ] >

< [1 C:\WINDOWS\twain_32\*.tmp files -> C:\WINDOWS\twain_32\*.tmp -> ] >

< [2009.09.18 12:56:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\McAfee >

< @Alternate Data Stream - 6144 bytes -> C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT >

< End of report >
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#107 Příspěvek od Márty84 »

Tohle neni ono. Vy jste asi spustila novy sken :?:

Kdyz jste tam zkopirovala ten text, klikla jste na Opravit? Pripadne pokud to mate anglicky, tak run fix?
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
AndreaP
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 13 srp 2012 11:18

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#108 Příspěvek od AndreaP »

no veru som dala nový skan.
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#109 Příspěvek od Márty84 »

Tak repete :D
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
AndreaP
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 13 srp 2012 11:18

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#110 Příspěvek od AndreaP »

Asi som uz prepracovana, jasne, uz napravujem chybu
Nahoru
AndreaP
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 13 srp 2012 11:18

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#111 Příspěvek od AndreaP »

O.k. Opravili a restartuje
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#112 Příspěvek od Márty84 »

Fajn, az uvidim log, tak zkusime uklidit a uvidime, jak se bude pocitac chovat :?:
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
AndreaP
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 13 srp 2012 11:18

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#113 Příspěvek od AndreaP »

Len sa akosi nevie vypat
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#114 Příspěvek od Márty84 »

Asi jeste pracuje, tedy doufam, ze je to tim :)
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
AndreaP
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 13 srp 2012 11:18

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#115 Příspěvek od AndreaP »

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Andrea
->Temp folder emptied: 31906311 bytes
->Temporary Internet Files folder emptied: 33220 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 81590594 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 802 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 7508 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 15847527 bytes

Total Files Cleaned = 123,00 mb


[EMPTYFLASH]

User: All Users

User: Andrea
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

========== SERVICES/DRIVERS ==========
Service MpKsldb491116 stopped successfully!
Service MpKsldb491116 deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C360-6118-11DC-9C72-001320C79847}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{A3BC75A2-1F87-4686-AA43-5347D756017C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}\ not found.
HKU\S-1-5-21-746137067-1292428093-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\bProtector Start Page| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ not found.
Registry key HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}\ not found.
Registry key HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}\ not found.
Registry key HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C360-6118-11DC-9C72-001320C79847}\ not found.
Prefs.js: "SweetIM Search" removed from browser.search.defaultenginename
Prefs.js: "PHPNukeEN Customized Web Search" removed from browser.search.defaultthis.engineName
Prefs.js: "ICQ Search" removed from browser.search.selectedEngine
Prefs.js: "http://search.conduit.com/?ctid=CT20867 ... hSource=13" removed from browser.startup.homepage
Prefs.js: "http://search.conduit.com/ResultsExt.as ... ource=2&q=" removed from keyword.URL
Prefs.js: "SweetIM Search" removed from sweetim.toolbar.previous.browser.search.defaultenginename
Prefs.js: "" removed from sweetim.toolbar.previous.browser.search.defaulturl
Prefs.js: "ICQ Search" removed from sweetim.toolbar.previous.browser.search.selectedEngine
Prefs.js: "http://search.conduit.com/?ctid=CT20867 ... hSource=13" removed from browser.startup.homepage
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll moved successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll not found.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\Mozilla\Firefox\Profiles\97t7ufki.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
Use Chrome's Settings page to change the HomePage.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to change the HomePage.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\plugins/ConduitChromeApiPlugin.dll moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0 folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\plugins folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Options folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\rssItem folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\popup folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\icons\useful_components folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\icons\urlGadget folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\icons folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\base64\searchBox folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\base64\rssItem folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\base64\ifarme folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\base64\icons folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\base64\dyamincMenu folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media\base64 folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Media folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\utils\interface folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\utils folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\usage folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\translation folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\toolbarsManager folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\toolbarInfo folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\settings folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\serviceMap folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\login folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\jsonData folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\feed folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\cookieMonster folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\ContextMenuService folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\aliasReplace folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\alerts folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services\404 folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\services folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\popup\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\popup\controller folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\popup folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\lib folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\xmlMenu\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\xmlMenu\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\xmlMenu\controller folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\xmlMenu folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\urlGadget\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\urlGadget\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\urlGadget\controller folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\urlGadget folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\multiRssItem\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\multiRssItem\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\multiRssItem\controller folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\multiRssItem folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\menuPanel\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\menuPanel\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\menuPanel\controller folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\menuPanel folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\gadgets\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\gadgets\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\gadgets folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\factories\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\factories\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\factories folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\dynamicMenu\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\dynamicMenu\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\dynamicMenu\controller folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\dynamicMenu\consts folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\dynamicMenu folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\contextMenu\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\contextMenu\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\contextMenu\controller folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\contextMenu folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\container folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\components\view\InjectScript folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\components\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\components\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\components\controller folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\components folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items\about folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\items folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\css folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\controller folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\compatibility folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\API\Toolbar folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\API\Component\view folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\API\Component\model folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\API\Component\controller folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\API\Component folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js\API folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\js folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0\Css folder moved successfully.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0 folder moved successfully.
File C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of not found.
C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0 folder moved successfully.
File C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0 not found.
File C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn\2.3.15.10_0 not found.
File C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0\Copy of not found.
File C:\Documents and Settings\Andrea\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.0.0.0_0 not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
Registry delete failed. HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D0F4A166-B8D4-48b8-9D63-80849FE137CB} scheduled to be deleted on reboot.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D0F4A166-B8D4-48b8-9D63-80849FE137CB}\ not found.
Registry value HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
Registry value HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
Registry value HKEY_USERS\S-1-5-21-746137067-1292428093-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\\ deleted successfully.
C:\Documents and Settings\Andrea\Application Data\BabylonToolbar\BabylonToolbar folder moved successfully.
C:\Documents and Settings\Andrea\Application Data\ICQ Toolbar folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP21FC.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP236.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2597.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP27D.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2B2.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2BD.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3FD.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP436.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP49A.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4E0.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4E8.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP514.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP582.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP597.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP62E.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP788.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP7B2.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPD56.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE26.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI1028.tmp deleted successfully.
C:\WINDOWS\Installer\MSI202.tmp deleted successfully.
C:\WINDOWS\Installer\MSI291.tmp deleted successfully.
C:\WINDOWS\Installer\MSI29D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI29E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2A2.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2A3.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2AB.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2AC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2B4.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2BC.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2BD.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2BF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2CE.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2F6.tmp deleted successfully.
C:\WINDOWS\Installer\MSI2FD.tmp deleted successfully.
C:\WINDOWS\Installer\MSI312.tmp deleted successfully.
C:\WINDOWS\Installer\MSI321.tmp deleted successfully.
C:\WINDOWS\Installer\MSI33D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI33E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI39D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3A8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI419.tmp deleted successfully.
C:\WINDOWS\Installer\MSI41A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI42D.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\0222400fcf7c78fcaf38fd057cc8f073\BIT18.tmp deleted successfully.
C:\WINDOWS\twain_32\hpqgnds2.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\SecurityScanner\McUICnt folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\SecurityScanner folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\PartnerCustom\SSScheduler folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\PartnerCustom\McUICnt folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\PartnerCustom\McCHSvc folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\PartnerCustom folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\McUICnt\McUICnt folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\McUICnt folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\Common\McUICnt folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\Common\McCHSvc folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS\Common folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee\MCLOGS folder moved successfully.
C:\Documents and Settings\All Users\Application Data\McAfee folder moved successfully.
ADS C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT deleted successfully.

OTL by OldTimer - Version 3.2.57.0 log created on 08172012_102019

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D0F4A166-B8D4-48b8-9D63-80849FE137CB} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D0F4A166-B8D4-48b8-9D63-80849FE137CB}\ not found.
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#116 Příspěvek od Márty84 »

:arrow: Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat.

:arrow:
vyosek píše::arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

:arrow: Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat

:arrow: Stahnete Ccleaner http://www.stahuj.centrum.cz/utility_a_ ... /ccleaner/ a spustte.
Pri instalaci pozor na toolbar, jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete :)
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

:arrow: Defragmentujte disk
Stahnete napriklad program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci :)



Pak napiste, jak je na tom pc.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
AndreaP
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 13 srp 2012 11:18

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#117 Příspěvek od AndreaP »

No zbohom, ja som to všetko dávala hneď odstraňovat, všetky tie programy co som sem sťahovala
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#118 Příspěvek od Márty84 »

To nevadi, ty programky uklidi i zbytky, ktere jste urcite neodstranila. Pokud tam nemate ani ten CF, prejdete rovnou na T-Cleaner
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
AndreaP
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 13 srp 2012 11:18

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#119 Příspěvek od AndreaP »

Uz pracujem na poslednej analyze
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: kontrola logu - pomalé otváranie aplikacii a spomalený p

#120 Příspěvek od Márty84 »

OK, ta bude i nejdelsi, muze trvat i nekolik hodin
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“