Zpomalený počítač ( Notebook )

[Wosatko]

Dobrý den,
zachvíly začíná škola,a mě se víc a víc zpomaluje notebook
Prosím o důležitou pomoc.


Logfile of random's system information tool 1.09 (written by random/random)
Run by hp at 2012-08-25 09:10:34
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 26 GB (34%) free of 76 GB
Total RAM: 2039 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:11:08, on 25.8.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16448)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Windows\system32\taskhost.exe
C:\Users\hp\Desktop\RSIT.exe
C:\Program Files\trend micro\hp.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://isearch.avg.com/?cid={6435D3BD- ... 2012-08-11 14:45:46&v=12.2.0.5&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: uTorrentControl2 - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [ROC_roc_ssl_v12] "C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
O4 - HKCU\..\Run: [ShowBatteryBar] "C:\Program Files\BatteryBar\ShowBatteryBar.exe" show
O4 - HKCU\..\Run: [Google Update] "C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Clownfish] "C:\Program Files\Clownfish\Clownfish.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: hamachi.lnk = C:\Program Files\Hamachi\hamachi.exe
O4 - Startup: Need for Speed™ Undercover Registration.lnk = C:\Program Files\EA GAMES\Need for Speed Undercover\Support\EAregister.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.0\ViProtocol.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: vToolbarUpdater12.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe

--
End of file - 7767 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1293529971-3576900606-3597958483-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1293529971-3576900606-3597958483-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{687578b9-7132-4a7a-80e4-30ee31099e03}]
uTorrentControl2 Toolbar - C:\Program Files\uTorrentControl2\prxtbuTo0.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-08-09 453104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll [2012-08-11 2045024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-08-09 157680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{687578b9-7132-4a7a-80e4-30ee31099e03} - uTorrentControl2 Toolbar - C:\Program Files\uTorrentControl2\prxtbuTo0.dll [2011-05-09 176936]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll [2012-08-11 2045024]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-03-26 931200]
"TaskTray"= []
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-11-11 287800]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-06-22 56128]
""= []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27 919008]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-23 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-23 173592]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-23 150552]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
"vProt"=C:\Program Files\AVG Secure Search\vprot.exe [2012-08-11 1162848]
"ROC_roc_ssl_v12"=C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe [2012-08-11 1020512]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ShowBatteryBar"=C:\Program Files\BatteryBar\ShowBatteryBar.exe [2009-05-28 90624]
"Google Update"=C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-24 116648]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-06-05 17344176]
"KPeerNexonEU"=C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe [2012-07-24 438272]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2012-08-05 1022352]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"Steam"=C:\Program Files\Steam\steam.exe [2012-08-04 1353080]
"AdobeBridge"= []
"Clownfish"=C:\Program Files\Clownfish\Clownfish.exe [2012-07-23 1105144]

C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
hamachi.lnk - C:\Program Files\Hamachi\hamachi.exe
Need for Speed™ Undercover Registration.lnk - C:\Program Files\EA GAMES\Need for Speed Undercover\Support\EAregister.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-23 218112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
wlnotify.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"VIDC.CFHD"=cfhd.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-08-24 13:47:46 ----D---- C:\Users\hp\AppData\Roaming\.techniclauncher
2012-08-21 20:53:17 ----D---- C:\Program Files\HammerMT2
2012-08-20 12:17:57 ----D---- C:\Program Files\Sentinell
2012-08-20 12:06:42 ----D---- C:\Users\hp\AppData\Roaming\Sentinell
2012-08-17 17:25:05 ----D---- C:\Program Files\Counter-Strike 1.6
2012-08-17 17:12:46 ----D---- C:\Program Files\Activision
2012-08-15 21:59:14 ----A---- C:\Windows\system32\drivers\bthport.sys
2012-08-15 21:58:31 ----A---- C:\Windows\system32\mshtmled.dll
2012-08-15 21:58:30 ----A---- C:\Windows\system32\ieui.dll
2012-08-15 21:58:30 ----A---- C:\Windows\system32\iertutil.dll
2012-08-15 21:58:29 ----A---- C:\Windows\system32\jsproxy.dll
2012-08-15 21:58:29 ----A---- C:\Windows\system32\ieUnatt.exe
2012-08-15 21:58:28 ----A---- C:\Windows\system32\wininet.dll
2012-08-15 21:58:28 ----A---- C:\Windows\system32\jscript9.dll
2012-08-15 21:58:28 ----A---- C:\Windows\system32\jscript.dll
2012-08-15 21:58:27 ----A---- C:\Windows\system32\url.dll
2012-08-15 21:58:25 ----A---- C:\Windows\system32\urlmon.dll
2012-08-15 21:58:21 ----A---- C:\Windows\system32\mshtml.dll
2012-08-15 21:58:21 ----A---- C:\Windows\system32\ieframe.dll
2012-08-15 19:20:13 ----A---- C:\Windows\system32\srcore.dll
2012-08-15 19:20:10 ----A---- C:\Windows\system32\win32k.sys
2012-08-15 19:20:09 ----A---- C:\Windows\system32\win32spl.dll
2012-08-15 19:20:08 ----A---- C:\Windows\system32\spoolsv.exe
2012-08-15 19:20:05 ----A---- C:\Windows\system32\netapi32.dll
2012-08-15 19:20:05 ----A---- C:\Windows\system32\browser.dll
2012-08-15 19:20:05 ----A---- C:\Windows\system32\browcli.dll
2012-08-15 19:20:03 ----A---- C:\Windows\system32\localspl.dll
2012-08-15 18:32:27 ----D---- C:\Program Files\Clownfish
2012-08-14 21:41:07 ----D---- C:\Users\hp\AppData\Roaming\TS3Client
2012-08-14 21:39:58 ----D---- C:\Program Files\TeamSpeak 3 Client
2012-08-13 14:37:43 ----A---- C:\Users\hp\AppData\Roaming\PnkBstrK.sys
2012-08-12 14:00:00 ----D---- C:\Program Files\Cenega
2012-08-11 18:37:21 ----A---- C:\Windows\system32\PnkBstrA.exe
2012-08-11 18:36:51 ----A---- C:\Windows\system32\drivers\PnkBstrK.sys
2012-08-11 18:36:44 ----A---- C:\Windows\system32\PnkBstrB.exe
2012-08-11 18:35:32 ----D---- C:\Users\hp\AppData\Roaming\Leadertech
2012-08-11 18:23:20 ----A---- C:\Windows\system32\XAudio2_0.dll
2012-08-11 18:23:20 ----A---- C:\Windows\system32\xactengine3_0.dll
2012-08-11 18:23:19 ----A---- C:\Windows\system32\xactengine2_10.dll
2012-08-11 18:23:19 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2012-08-11 18:23:19 ----A---- C:\Windows\system32\D3DX9_37.dll
2012-08-11 18:23:19 ----A---- C:\Windows\system32\d3dx10_37.dll
2012-08-11 18:23:19 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2012-08-11 18:23:18 ----A---- C:\Windows\system32\d3dx10_36.dll
2012-08-11 18:23:18 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2012-08-11 18:23:17 ----A---- C:\Windows\system32\xactengine2_9.dll
2012-08-11 18:23:17 ----A---- C:\Windows\system32\d3dx9_36.dll
2012-08-11 18:23:14 ----A---- C:\Windows\system32\xactengine2_8.dll
2012-08-11 18:23:14 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2012-08-11 14:59:42 ----D---- C:\Program Files\Common Files\Solveig Multimedia
2012-08-11 14:59:40 ----D---- C:\Program Files\HyperCam 3
2012-08-11 14:45:59 ----D---- C:\ProgramData\AVG Secure Search
2012-08-11 14:45:42 ----A---- C:\Windows\system32\drivers\avgtpx86.sys
2012-08-11 14:45:37 ----D---- C:\Program Files\Common Files\AVG Secure Search
2012-08-11 14:45:35 ----D---- C:\Program Files\AVG Secure Search
2012-08-11 14:43:31 ----HD---- C:\ProgramData\Common Files
2012-08-11 14:25:03 ----D---- C:\Users\hp\AppData\Roaming\Audacity
2012-08-11 14:24:25 ----D---- C:\Program Files\Audacity
2012-08-09 07:40:26 ----D---- C:\ProgramData\Sun
2012-08-09 07:40:24 ----D---- C:\Program Files\Common Files\Java
2012-08-09 07:40:18 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-08-09 07:40:18 ----A---- C:\Windows\system32\javaws.exe
2012-08-09 07:40:18 ----A---- C:\Windows\system32\deployJava1.dll
2012-08-09 07:40:03 ----A---- C:\Windows\system32\javaw.exe
2012-08-09 07:40:03 ----A---- C:\Windows\system32\java.exe
2012-08-09 07:39:40 ----D---- C:\Program Files\Java
2012-08-09 07:35:44 ----D---- C:\Users\hp\AppData\Roaming\.minecraft
2012-08-05 15:27:05 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2012-08-05 15:08:52 ----D---- C:\Program Files\Common Files\Adobe AIR
2012-08-04 21:14:35 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-08-03 12:16:22 ----A---- C:\Windows\system32\drivers\VBoxDrv.sys
2012-08-03 12:16:14 ----A---- C:\Windows\system32\drivers\VBoxUSBMon.sys
2012-08-03 12:16:01 ----D---- C:\Program Files\Oracle
2012-08-03 12:07:03 ----D---- C:\Windows\system32\appmgmt
2012-08-02 17:26:25 ----D---- C:\UT2004
2012-08-01 15:07:34 ----D---- C:\Program Files\trend micro
2012-08-01 15:07:33 ----D---- C:\rsit
2012-07-30 11:43:08 ----D---- C:\Program Files\UltraMixer3-NEW
2012-07-30 11:24:07 ----D---- C:\Users\hp\AppData\Roaming\UltraMixer
2012-07-30 11:22:49 ----D---- C:\Program Files\UltraMixer
2012-07-30 10:45:58 ----D---- C:\Program Files\Common Files\InstallShield
2012-07-28 15:42:11 ----A---- C:\Windows\system32\xactengine2_7.dll
2012-07-28 15:42:08 ----A---- C:\Windows\system32\xactengine2_6.dll
2012-07-28 15:42:08 ----A---- C:\Windows\system32\xactengine2_5.dll
2012-07-28 15:42:06 ----A---- C:\Windows\system32\xactengine2_4.dll
2012-07-28 15:42:06 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-07-28 15:42:05 ----A---- C:\Windows\system32\xactengine2_3.dll
2012-07-28 15:42:04 ----A---- C:\Windows\system32\xactengine2_2.dll
2012-07-28 15:42:04 ----A---- C:\Windows\system32\xactengine2_1.dll
2012-07-28 15:41:54 ----A---- C:\Windows\system32\xactengine2_0.dll
2012-07-28 15:41:54 ----A---- C:\Windows\system32\x3daudio1_0.dll
2012-07-28 15:41:52 ----A---- C:\Windows\system32\d3dx9_27.dll
2012-07-28 15:41:51 ----A---- C:\Windows\system32\d3dx9_26.dll
2012-07-28 15:31:30 ----SHD---- C:\Windows\ftpcache
2012-07-28 14:14:42 ----A---- C:\Windows\system32\d3dx10_35.dll
2012-07-28 14:14:42 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2012-07-28 14:14:41 ----A---- C:\Windows\system32\xinput1_3.dll
2012-07-28 14:14:41 ----A---- C:\Windows\system32\d3dx9_35.dll
2012-07-28 14:14:41 ----A---- C:\Windows\system32\d3dx9_34.dll
2012-07-28 14:14:41 ----A---- C:\Windows\system32\d3dx10_34.dll
2012-07-28 14:14:41 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2012-07-28 14:14:40 ----A---- C:\Windows\system32\d3dx9_33.dll
2012-07-28 14:14:40 ----A---- C:\Windows\system32\d3dx10_33.dll
2012-07-28 14:14:40 ----A---- C:\Windows\system32\d3dx10.dll
2012-07-28 14:14:40 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2012-07-28 14:14:39 ----A---- C:\Windows\system32\xinput1_2.dll
2012-07-28 14:14:39 ----A---- C:\Windows\system32\xinput1_1.dll
2012-07-28 14:14:39 ----A---- C:\Windows\system32\d3dx9_32.dll
2012-07-28 14:14:39 ----A---- C:\Windows\system32\d3dx9_31.dll
2012-07-28 14:14:39 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-07-28 14:14:38 ----A---- C:\Windows\system32\d3dx9_29.dll
2012-07-28 14:14:38 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-07-28 14:13:36 ----D---- C:\Windows\system32\AGEIA
2012-07-28 14:13:31 ----D---- C:\Program Files\AGEIA Technologies
2012-07-28 14:13:13 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2012-07-28 11:39:05 ----D---- C:\Windows\Minidump
2012-07-28 09:26:48 ----D---- C:\Program Files\WinSCP
2012-07-28 00:12:28 ----RASH---- C:\MSDOS.SYS
2012-07-28 00:12:28 ----RASH---- C:\IO.SYS
2012-07-27 14:12:51 ----A---- C:\Windows\system32\CmdLineExt.dll
2012-07-27 14:00:03 ----D---- C:\Program Files\Rockstar Games
2012-07-27 13:10:14 ----D---- C:\Program Files\Metin2
2012-07-26 19:52:25 ----D---- C:\Program Files\Common Files\Adobe
2012-07-26 19:52:25 ----D---- C:\Program Files\Adobe
2012-07-26 19:51:21 ----D---- C:\ProgramData\Adobe
2012-07-26 19:46:13 ----D---- C:\Program Files\Common Files\Steam
2012-07-26 19:46:04 ----D---- C:\Program Files\Steam
2012-07-26 19:34:32 ----D---- C:\Program Files\Games By GG releases

======List of files/folders modified in the last 1 month======

2012-08-25 09:08:18 ----D---- C:\Windows\Temp
2012-08-25 09:07:14 ----D---- C:\Nexon
2012-08-25 09:07:02 ----D---- C:\Program Files\EA GAMES
2012-08-25 09:03:20 ----D---- C:\Users\hp\AppData\Roaming\Skype
2012-08-25 09:02:29 ----D---- C:\Users\hp\AppData\Roaming\uTorrent
2012-08-25 08:48:18 ----D---- C:\Windows\system32\config
2012-08-25 08:37:29 ----SHD---- C:\System Volume Information
2012-08-25 08:32:35 ----D---- C:\Windows\System32
2012-08-25 08:32:35 ----D---- C:\Windows\inf
2012-08-25 08:32:35 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-08-25 08:27:15 ----D---- C:\Users\hp\AppData\Roaming\Hamachi
2012-08-24 18:48:44 ----D---- C:\Windows\Prefetch
2012-08-22 13:24:41 ----RSD---- C:\Windows\Fonts
2012-08-22 09:18:27 ----RSD---- C:\Windows\assembly
2012-08-21 20:53:17 ----RD---- C:\Program Files
2012-08-21 15:06:07 ----D---- C:\Windows\Microsoft.NET
2012-08-21 08:23:11 ----SHD---- C:\Windows\Installer
2012-08-20 13:26:45 ----D---- C:\Windows
2012-08-20 12:20:37 ----D---- C:\Windows\system32\Tasks
2012-08-20 12:20:33 ----D---- C:\Windows\Tasks
2012-08-18 14:28:02 ----D---- C:\Windows\system32\wdi
2012-08-17 17:18:06 ----HD---- C:\Program Files\InstallShield Installation Information
2012-08-17 17:02:54 ----SD---- C:\ProgramData\Microsoft
2012-08-16 22:27:54 ----D---- C:\Windows\winsxs
2012-08-16 22:27:39 ----D---- C:\Program Files\Common Files\microsoft shared
2012-08-16 08:50:15 ----D---- C:\Windows\system32\migration
2012-08-16 08:50:15 ----D---- C:\Program Files\Internet Explorer
2012-08-16 08:50:13 ----D---- C:\Windows\system32\DriverStore
2012-08-16 08:50:12 ----D---- C:\Windows\system32\drivers
2012-08-15 22:00:52 ----A---- C:\Windows\system32\MRT.exe
2012-08-15 21:59:19 ----D---- C:\Windows\system32\catroot2
2012-08-15 21:59:19 ----D---- C:\Windows\system32\catroot
2012-08-15 10:56:31 ----D---- C:\Windows\system32\drivers\UMDF
2012-08-14 13:42:04 ----D---- C:\Program Files\uTorrentControl2
2012-08-12 14:24:01 ----D---- C:\Users\hp\AppData\Roaming\Adobe
2012-08-12 12:47:39 ----D---- C:\Windows\system32\NDF
2012-08-11 19:44:27 ----D---- C:\Windows\system32\LogFiles
2012-08-11 14:59:42 ----D---- C:\Program Files\Common Files
2012-08-11 14:45:59 ----HD---- C:\ProgramData
2012-08-09 19:38:51 ----D---- C:\Windows\LiveKernelReports
2012-08-04 09:26:19 ----SD---- C:\Users\hp\AppData\Roaming\Microsoft
2012-08-03 12:16:22 ----DC---- C:\Windows\system32\DRVSTORE
2012-07-30 15:56:04 ----D---- C:\Windows\Logs
2012-07-26 19:53:36 ----D---- C:\Users\hp\AppData\Roaming\DAEMON Tools Lite

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-06-12 470848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-03-20 171064]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2012-08-11 27496]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-07-24 242240]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2012-06-05 158552]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2012-06-05 91992]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2009-07-14 96768]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-14 1035776]
R3 ATSwpWDF;AuthenTec TruePrint USB WBF WDF Driver; C:\Windows\System32\Drivers\ATSwpWDF.sys [2009-08-21 625152]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2012-06-01 375336]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 GTIPCI21;GTIPCI21; C:\Windows\system32\DRIVERS\gtipci21.sys [2006-09-14 88192]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2012-07-25 25280]
R3 HBtnKey;HP Hotkey Device; C:\Windows\system32\DRIVERS\cpqbttn.sys [2010-02-25 15544]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-04-29 15872]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-14 4231168]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 SMSCIRDA;SMSC Infrared Device Driver; C:\Windows\system32\DRIVERS\SMSCirda.sys [2007-04-25 31232]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2007-05-02 290816]
R3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2012-06-05 104792]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2012-06-05 116056]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 EagleXNt;EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys []
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-20 74112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-06-22 13632]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-03-26 11552]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-08-13 75136]
R2 PnkBstrB;PnkBstrB; C:\Windows\system32\PnkBstrB.exe [2012-08-13 189248]
R2 TeamViewer7;TeamViewer 7; C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe [2012-07-16 2673064]
R2 vToolbarUpdater12.2.0;vToolbarUpdater12.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe [2012-08-11 927840]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-01-12 227896]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-06-05 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-15 250056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-03-26 214952]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2012-08-01 529232]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-07-22 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Wosatko]

Dodám,že když zapnu program Skype,tak ten mi zabírá víc jak 60% neustále A poté se nedá pracovat s ničím,pokud ho mám zaplý Prosím o pomoc.

[Wosatko]

Poradí někdo prosimvás ?

[Wosatko]

Omlouvám se za spam,ale včera jste již odpověděly asi všem,a jak můj topic šel dolů,tak jste ho asi přehlédly,prosím o pomoc,tento notebook budu mít od září do školy

[vyosek]

Zdravim

Odinstalujte AVG Secure Search

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
• Zaskrtnete okenko Pro vsechny uzivatele
• Zaskrtnete okenko Kontrola na havet "LOP"
• Zaskrtnete okenko Kontrola na havet "Purity"
• Stari souboru zmente z 30 dnu na 7 dnu
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  CREATERESTOREPOINT
  
  netsvcs
  drivers32
  savembr:0
  
  /md5start
  atapi.sys
  autochk.exe
  cdrom.sys
  explorer.exe
  hal.dll
  scecli.dll
  services.exe
  svchost.exe
  tcpip.sys
  userinit.exe
  winlogon.exe
  /md5stop
  
  %systemroot%*.* /U /s
  %SYSTEMDRIVE%\*.exe
  %ALLUSERSPROFILE%\Application Data\*.
  %ALLUSERSPROFILE%\Application Data\*.exe /s
  %APPDATA%\*.
  %APPDATA%\*.exe /s
  %systemroot%\*. /mp /s
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\Tasks\*.job
  %systemroot%\system32\drivers\*.sys /lockedfiles
  %systemroot%\System32\config\*.sav
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\system32\drivers\*.sys /3
  %systemroot%\system32\*.* /3
  %SYSTEMDRIVE%\*.exe
  
  HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
  
  %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
  %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
  %PROGRAMFILES%\Opera\opera.exe /md5
  %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
  
  %SystemDrive%\PhysicalMBR.bin /md5 
  
  *crack* /s
  *keygen* /s
  *loader* /s

• Kliknete na tlacitko Prohledat
• Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
• Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku[

[/list]

[Wosatko]

Už se to prohledává,poté Vám sem ihned hodím ty logy + nevíte,co je s tím skypem ? Hází furt víc jak 70% CPU,a pak nemůžu skoro nic dělat..

[Wosatko]

Zde máte ty logy v raru jsou oba txt pro přehlednější manulaci či jak se tomu nadává

[vyosek]

logy mi sem prosim vlozte rozdelene do vice prispevku - to je pro me prehlednejsi

[Wosatko]

OTL logfile created on: 27.8.2012 17:03:44 - Run 1
OTL by OldTimer - Version 3.2.59.1 Folder = C:\Users\hp\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,99 Gb Total Physical Memory | 0,22 Gb Available Physical Memory | 11,24% Memory free
3,98 Gb Paging File | 1,67 Gb Available in Paging File | 41,82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74,43 Gb Total Space | 23,30 Gb Free Space | 31,30% Space Free | Partition Type: NTFS
Drive D: | 2,88 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: HP-PC | User Name: hp | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.08.27 17:01:29 | 000,598,528 | ---- | M] (OldTimer Tools) -- C:\Users\hp\Desktop\OTL.exe
PRC - [2012.08.25 09:42:22 | 000,874,896 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2012.08.25 09:42:22 | 000,800,656 | ---- | M] (Opera Software) -- C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
PRC - [2012.08.11 14:45:41 | 000,927,840 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe
PRC - [2012.08.11 14:45:37 | 001,162,848 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2012.08.05 08:25:01 | 001,022,352 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2012.08.04 08:58:47 | 001,353,080 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe
PRC - [2012.07.27 22:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.07.24 21:13:22 | 001,064,960 | ---- | M] () -- C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe
PRC - [2012.07.16 16:31:32 | 002,673,064 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
PRC - [2012.06.22 18:17:20 | 000,284,480 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2012.06.22 18:17:14 | 000,013,632 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2012.03.26 17:08:12 | 000,931,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2012.03.26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2011.03.15 17:59:32 | 000,312,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
PRC - [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010.11.20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.11.11 14:00:54 | 000,076,856 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
PRC - [2005.01.14 09:32:38 | 000,053,248 | ---- | M] () -- C:\Windows\System32\PAStiSvc.exe


========== Modules (No Company Name) ==========

MOD - [2012.08.25 13:31:59 | 009,813,704 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_4_402_265.dll
MOD - [2012.08.25 09:42:25 | 000,316,928 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstoggdec.dll
MOD - [2012.08.25 09:42:25 | 000,276,480 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwebmdec.dll
MOD - [2012.08.25 09:42:25 | 000,168,448 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
MOD - [2012.08.25 09:42:25 | 000,078,336 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwavparse.dll
MOD - [2012.08.25 09:42:25 | 000,076,800 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstdirectsound.dll
MOD - [2012.08.25 09:42:25 | 000,068,608 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstdecodebin2.dll
MOD - [2012.08.25 09:42:25 | 000,064,000 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstautodetect.dll
MOD - [2012.08.25 09:42:25 | 000,046,592 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstwaveform.dll
MOD - [2012.08.25 09:42:25 | 000,045,568 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gsttypefindfunctions.dll
MOD - [2012.08.25 09:42:24 | 000,783,360 | ---- | M] () -- C:\Program Files\Opera\gstreamer\gstreamer.dll
MOD - [2012.08.25 09:42:24 | 000,099,840 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstcoreplugins.dll
MOD - [2012.08.25 09:42:24 | 000,098,816 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstaudioresample.dll
MOD - [2012.08.25 09:42:24 | 000,098,816 | ---- | M] () -- C:\Program Files\Opera\gstreamer\plugins\gstaudioconvert.dll
MOD - [2012.08.24 07:38:40 | 020,317,008 | ---- | M] () -- C:\Program Files\Steam\bin\libcef.dll
MOD - [2012.08.24 07:38:34 | 001,099,616 | ---- | M] () -- C:\Program Files\Steam\bin\avcodec-53.dll
MOD - [2012.08.24 07:38:34 | 000,902,480 | ---- | M] () -- C:\Program Files\Steam\bin\chromehtml.dll
MOD - [2012.08.24 07:38:34 | 000,190,816 | ---- | M] () -- C:\Program Files\Steam\bin\avformat-53.dll
MOD - [2012.08.24 07:38:34 | 000,123,232 | ---- | M] () -- C:\Program Files\Steam\bin\avutil-51.dll
MOD - [2012.08.20 19:26:27 | 001,051,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\9b2f17fb61b7197f2a04108f5d1a1cc6\System.Management.ni.dll
MOD - [2012.08.20 19:26:15 | 001,840,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\761fd1afc17f11bf6d49c3a7d16465ca\System.Web.Services.ni.dll
MOD - [2012.08.20 19:26:04 | 011,833,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\a501b7960f6c6e2e39162b83f3303aaa\System.Web.ni.dll
MOD - [2012.08.20 19:25:54 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll
MOD - [2012.08.20 19:25:53 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll
MOD - [2012.08.20 19:25:53 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\139bd78360fafb85a8818046d0603811\IAStorCommon.ni.dll
MOD - [2012.08.20 19:25:49 | 000,489,472 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\86c67f63ed9f761c4bf61c5d09a9d35b\IAStorUtil.ni.dll
MOD - [2012.08.20 19:25:45 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll
MOD - [2012.08.20 19:25:35 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll
MOD - [2012.08.20 19:25:06 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll
MOD - [2012.08.20 19:25:01 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll
MOD - [2012.08.20 19:24:57 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
MOD - [2012.08.20 19:24:50 | 000,025,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\2ec98ab0193d64e95b7d09d094deed97\Accessibility.ni.dll
MOD - [2012.08.20 19:24:46 | 011,492,864 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
MOD - [2012.08.11 14:45:42 | 000,132,704 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.0\SiteSafety.dll
MOD - [2012.08.11 14:45:37 | 001,162,848 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
MOD - [2012.07.24 21:13:22 | 001,064,960 | ---- | M] () -- C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe
MOD - [2010.11.13 03:54:19 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009.07.14 10:43:29 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_cs_b77a5c561934e089\System.Runtime.Remoting.resources.dll
MOD - [2009.07.14 10:43:19 | 000,159,744 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml.resources\2.0.0.0_cs_b77a5c561934e089\System.Xml.resources.dll


========== Services (SafeList) ==========

SRV - [2012.08.25 13:32:02 | 000,250,568 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.08.11 14:45:41 | 000,927,840 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe -- (vToolbarUpdater12.2.0)
SRV - [2012.08.01 18:11:25 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012.07.27 22:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.07.22 11:05:46 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2012.07.16 16:31:32 | 002,673,064 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)
SRV - [2012.06.22 18:17:14 | 000,013,632 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2012.06.05 15:17:44 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.03.26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012.03.26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.07.14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2005.01.14 09:32:38 | 000,053,248 | ---- | M] () [Auto | Running] -- C:\Windows\System32\PAStiSvc.exe -- (STI Simulator)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | System | Stopped] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FB3B5910-2418-4D0E-A9CE-5BD92FD491B5}\MpKsla6a5a991.sys -- (MpKsla6a5a991)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - [2012.08.11 14:45:42 | 000,027,496 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2012.07.25 08:07:56 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2012.07.24 23:58:24 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2012.06.05 16:33:00 | 000,158,552 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\VBoxDrv.sys -- (VBoxDrv)
DRV - [2012.06.05 16:33:00 | 000,116,056 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - [2012.06.05 16:33:00 | 000,104,792 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2012.06.05 16:33:00 | 000,091,992 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\VBoxUSBMon.sys -- (VBoxUSBMon)
DRV - [2012.03.20 20:44:12 | 000,074,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011.05.13 18:57:42 | 000,025,656 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hpdskflt.sys -- (hpdskflt)
DRV - [2011.05.13 18:57:20 | 000,035,896 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010.02.25 00:02:30 | 000,015,544 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPQBTTN.sys -- (HBtnKey)
DRV - [2009.08.21 13:59:46 | 000,625,152 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2009.07.14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009.07.14 01:12:52 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2009.07.14 00:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009.07.14 00:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32)
DRV - [2009.04.29 07:46:54 | 000,015,872 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2007.05.02 03:52:00 | 000,290,816 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tifm21.sys -- (tifm21)
DRV - [2007.04.25 13:32:42 | 000,031,232 | ---- | M] (SMSC) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smscirda.sys -- (SMSCIRDA)
DRV - [2006.09.14 17:55:00 | 000,088,192 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\gtipci21.sys -- (GTIPCI21)
DRV - [2005.04.08 10:46:18 | 000,162,176 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pfc027.sys -- (PAC207)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000\..\URLSearchHook: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg.com/search?cid={643 ... 2012-08-11 14:45:46&v=12.2.0.5&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.0: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\12.2.0.5\ [2012.08.11 14:45:59 | 000,000,000 | ---D | M]

[2012.07.24 23:36:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\hp\AppData\Roaming\Mozilla\Firefox\extensions
[2012.07.24 23:37:00 | 000,000,000 | ---D | M] (uTorrentControl2) -- C:\Users\hp\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}

========== Chrome ==========

CHR - homepage: http://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.83\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.83\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.83\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.83\pdf.dll
CHR - plugin: Conduit Chrome Plugin (Enabled) = C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc\2.3.15.10_0\plugins/ConduitChromeApiPlugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.0\\npsitesafety.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U5 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.50.6 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - plugin: Nexon Game Controller (Enabled) = C:\ProgramData\NexonEU\NGM\npNxGameeu.dll
CHR - Extension: AVG Secure Search = C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdgpjclefcppbhifgmbncakhhphkggdb\12.2.0.5_0\
CHR - Extension: uTorrentControl2 = C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc\2.3.15.10_0\

O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (uTorrentControl2 Toolbar) - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (uTorrentControl2 Toolbar) - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll ()
O3 - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000\..\Toolbar\WebBrowser: (uTorrentControl2 Toolbar) - {687578B9-7132-4A7A-80E4-30EE31099E03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [ROC_roc_ssl_v12] C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe ()
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [TaskTray] File not found
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000..\Run: [Clownfish] C:\Program Files\Clownfish\Clownfish.exe (Bogdan Sharkov)
O4 - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe (NEXON Inc.)
O4 - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000..\Run: [ShowBatteryBar] C:\Program Files\BatteryBar\ShowBatteryBar.exe ()
O4 - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000..\Run: [Steam] C:\Program Files\Steam\steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hamachi.lnk = C:\Program Files\Hamachi\hamachi.exe (LogMeIn Inc.)
O4 - Startup: C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Need for Speed™ Undercover Registration.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-1293529971-3576900606-3597958483-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2B3F8723-43A8-4902-B7C3-BD85765E423F}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.0\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006.07.09 23:43:50 | 000,086,016 | R--- | M] () - D:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2006.07.09 23:45:02 | 000,000,047 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{869726e6-d387-11e1-bcda-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{869726e6-d387-11e1-bcda-806e6f6e6963}\Shell\AutoRun\command - "" = D:\autorun.exe -- [2006.07.09 23:43:50 | 000,086,016 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: VIDC.CFHD - C:\Windows\System32\cfhd.dll (CineForm Inc.)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - C:\Windows\System32\frapsvid.dll (Beepa P/L)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2012.08.27 17:01:22 | 000,598,528 | ---- | C] (OldTimer Tools) -- C:\Users\hp\Desktop\OTL.exe
[2012.08.26 16:15:35 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Roaming\Solveig Multimedia
[2012.08.26 16:13:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HyperCam 3
[2012.08.26 16:13:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Solveig Multimedia
[2012.08.26 16:13:18 | 000,000,000 | ---D | C] -- C:\Program Files\HyperCam 3
[2012.08.26 15:04:52 | 000,000,000 | ---D | C] -- C:\Users\hp\Desktop\Respect-Strike.eu
[2012.08.26 13:31:21 | 000,000,000 | ---D | C] -- C:\Users\hp\Desktop\Battlefield Vietnam
[2012.08.25 13:36:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012.08.25 13:34:25 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2012.08.25 13:22:09 | 000,000,000 | ---D | C] -- C:\Windows\PixArt
[2012.08.25 09:42:34 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Local\Opera
[2012.08.25 09:42:33 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Roaming\Opera
[2012.08.25 09:42:21 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2012.08.24 18:14:57 | 000,000,000 | ---D | C] -- C:\Users\hp\Desktop\RS PLUGINY !!!! Server
[2012.08.24 13:47:46 | 000,000,000 | ---D | C] -- C:\Users\hp\AppData\Roaming\.techniclauncher
[2012.08.23 23:10:19 | 000,000,000 | ---D | C] -- C:\Users\hp\Desktop\DWN-Des
[2012.08.22 18:07:43 | 000,000,000 | ---D | C] -- C:\Users\hp\Desktop\Nová složka (3)
[2012.08.22 17:17:51 | 000,000,000 | ---D | C] -- C:\Users\hp\Desktop\rs_vip_tT
[2012.08.22 13:00:17 | 000,000,000 | ---D | C] -- C:\Users\hp\Desktop\DarkMinecraft
[2012.08.22 12:07:24 | 000,000,000 | ---D | C] -- C:\Users\hp\Desktop\Nová složka
[2012.08.22 10:33:05 | 000,483,328 | ---- | C] (Simon Tatham) -- C:\Users\hp\Desktop\putty.exe
[2012.08.22 09:20:42 | 000,000,000 | ---D | C] -- C:\Users\hp\Documents\NFS Most Wanted
[2012.08.21 20:57:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HammerMT2
[2012.08.21 20:53:17 | 000,000,000 | ---D | C] -- C:\Program Files\HammerMT2
[2012.08.21 20:36:06 | 000,000,000 | ---D | C] -- C:\Users\hp\Desktop\compilador v2
[2012.08.21 08:13:51 | 000,000,000 | ---D | C] -- C:\Users\hp\Desktop\Azuria-Client

========== Files - Modified Within 7 Days ==========

[2012.08.27 17:07:50 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.08.27 17:01:29 | 000,598,528 | ---- | M] (OldTimer Tools) -- C:\Users\hp\Desktop\OTL.exe
[2012.08.27 16:56:01 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.08.27 16:46:05 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.08.27 16:42:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.08.27 13:58:44 | 000,018,667 | ---- | M] () -- C:\Users\hp\Desktop\27082012213.jpg
[2012.08.27 13:51:44 | 000,059,011 | ---- | M] () -- C:\Users\hp\Desktop\503b3d0b403422.55160997.jpg
[2012.08.27 13:46:02 | 000,000,928 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.08.27 11:48:38 | 000,014,448 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.08.27 11:48:38 | 000,014,448 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.08.27 11:47:29 | 000,668,544 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2012.08.27 11:47:29 | 000,654,248 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.08.27 11:47:29 | 000,141,108 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2012.08.27 11:47:29 | 000,122,080 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.08.27 11:40:56 | 1603,870,720 | -HS- | M] () -- C:\hiberfil.sys
[2012.08.26 18:34:04 | 216,547,130 | ---- | M] () -- C:\Users\hp\Desktop\Matematicke-fyzikalni-a-chemicke-tabulky.pdf
[2012.08.26 16:32:48 | 235,305,392 | ---- | M] () -- C:\Users\hp\Desktop\Last-World_1.0.0.1.rar
[2012.08.26 16:16:50 | 000,004,608 | ---- | M] () -- C:\Users\hp\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.08.26 16:13:44 | 000,001,005 | ---- | M] () -- C:\Users\hp\Desktop\HyperCam 3.lnk
[2012.08.26 16:10:13 | 000,411,871 | ---- | M] () -- C:\Users\hp\Desktop\SolveigMM_HyperCam_3_4_1206_04.exe
[2012.08.26 15:53:55 | 000,000,600 | ---- | M] () -- C:\Users\hp\AppData\Roaming\winscp.rnd
[2012.08.26 15:44:31 | 001,551,057 | ---- | M] () -- C:\Users\hp\Desktop\bg2.jpg
[2012.08.25 14:07:40 | 000,034,681 | ---- | M] () -- C:\Users\hp\Desktop\abstract-blue-php-fusion-theme.jpg
[2012.08.25 14:06:11 | 000,470,137 | ---- | M] () -- C:\Users\hp\Desktop\rozcestnik.rar
[2012.08.25 14:05:50 | 000,152,978 | ---- | M] () -- C:\Users\hp\Desktop\theme44.png
[2012.08.25 13:51:51 | 000,002,290 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012.08.25 13:32:01 | 000,696,520 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012.08.25 13:32:00 | 000,073,416 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012.08.25 13:24:43 | 000,057,632 | ---- | M] () -- C:\StiImg.dat
[2012.08.25 09:42:26 | 000,001,779 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2012.08.24 16:39:00 | 000,399,452 | ---- | M] () -- C:\Users\hp\Desktop\backweapons.mdl
[2012.08.23 23:21:56 | 000,000,132 | ---- | M] () -- C:\Users\hp\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2012.08.23 21:21:00 | 000,044,275 | ---- | M] () -- C:\Users\hp\Desktop\logo.png
[2012.08.23 10:34:02 | 000,000,195 | ---- | M] () -- C:\Users\hp\Desktop\wmp (1).asx
[2012.08.23 07:03:43 | 003,623,224 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012.08.22 20:16:30 | 000,000,600 | ---- | M] () -- C:\Users\hp\AppData\Local\PUTTY.RND
[2012.08.22 11:42:26 | 000,016,505 | -H-- | M] () -- C:\Users\hp\Desktop\VIP.sma.bak
[2012.08.22 10:33:01 | 000,483,328 | ---- | M] (Simon Tatham) -- C:\Users\hp\Desktop\putty.exe
[2012.08.21 20:57:15 | 000,000,981 | ---- | M] () -- C:\Users\Public\Desktop\HammerMT2.lnk

========== Files Created - No Company Name ==========

[2012.08.27 17:07:50 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.08.27 16:00:26 | 000,018,667 | ---- | C] () -- C:\Users\hp\Desktop\27082012213.jpg
[2012.08.27 13:51:44 | 000,059,011 | ---- | C] () -- C:\Users\hp\Desktop\503b3d0b403422.55160997.jpg
[2012.08.26 18:18:34 | 216,547,130 | ---- | C] () -- C:\Users\hp\Desktop\Matematicke-fyzikalni-a-chemicke-tabulky.pdf
[2012.08.26 16:30:47 | 235,305,392 | ---- | C] () -- C:\Users\hp\Desktop\Last-World_1.0.0.1.rar
[2012.08.26 16:15:36 | 000,004,608 | ---- | C] () -- C:\Users\hp\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.08.26 16:13:44 | 000,001,005 | ---- | C] () -- C:\Users\hp\Desktop\HyperCam 3.lnk
[2012.08.26 16:10:05 | 000,411,871 | ---- | C] () -- C:\Users\hp\Desktop\SolveigMM_HyperCam_3_4_1206_04.exe
[2012.08.26 15:44:26 | 001,551,057 | ---- | C] () -- C:\Users\hp\Desktop\bg2.jpg
[2012.08.26 09:49:33 | 000,053,248 | ---- | C] () -- C:\Windows\System32\PAStiSvc.exe
[2012.08.25 14:07:40 | 000,034,681 | ---- | C] () -- C:\Users\hp\Desktop\abstract-blue-php-fusion-theme.jpg
[2012.08.25 14:06:08 | 000,470,137 | ---- | C] () -- C:\Users\hp\Desktop\rozcestnik.rar
[2012.08.25 14:05:47 | 000,152,978 | ---- | C] () -- C:\Users\hp\Desktop\theme44.png
[2012.08.25 13:36:27 | 000,002,290 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012.08.25 13:35:08 | 000,000,932 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.08.25 13:35:06 | 000,000,928 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.08.25 13:24:39 | 000,057,632 | ---- | C] () -- C:\StiImg.dat
[2012.08.25 09:42:26 | 000,001,791 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2012.08.25 09:42:26 | 000,001,779 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2012.08.24 16:39:00 | 000,399,452 | ---- | C] () -- C:\Users\hp\Desktop\backweapons.mdl
[2012.08.23 21:21:00 | 000,044,275 | ---- | C] () -- C:\Users\hp\Desktop\logo.png
[2012.08.23 12:12:24 | 000,036,461 | ---- | C] () -- C:\Users\hp\Desktop\header.png
[2012.08.23 10:34:06 | 000,000,195 | ---- | C] () -- C:\Users\hp\Desktop\wmp (1).asx
[2012.08.22 12:12:34 | 000,000,600 | ---- | C] () -- C:\Users\hp\AppData\Local\PUTTY.RND
[2012.08.22 12:09:16 | 000,016,505 | -H-- | C] () -- C:\Users\hp\Desktop\VIP.sma.bak
[2012.08.21 20:57:15 | 000,000,981 | ---- | C] () -- C:\Users\Public\Desktop\HammerMT2.lnk
[2012.08.13 14:37:43 | 000,138,056 | ---- | C] () -- C:\Users\hp\AppData\Roaming\PnkBstrK.sys
[2012.08.11 23:36:00 | 000,000,132 | ---- | C] () -- C:\Users\hp\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2012.08.11 18:37:21 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2012.08.11 18:36:51 | 000,138,056 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012.08.11 18:36:44 | 000,189,248 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2012.08.05 15:44:16 | 000,000,132 | ---- | C] () -- C:\Users\hp\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2012.07.28 09:26:50 | 000,000,600 | ---- | C] () -- C:\Users\hp\AppData\Roaming\winscp.rnd
[2012.07.25 11:22:41 | 001,589,248 | ---- | C] () -- C:\Windows\System32\libmysql_d.dll
[2012.07.24 22:10:35 | 000,000,000 | ---- | C] () -- C:\Users\hp\Metin2FileExtractor.exe
[2012.07.23 07:33:15 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe

========== LOP Check ==========

[2009.07.14 06:53:46 | 000,022,558 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========

< >

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 01:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 07:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011.02.26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.20 14:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 14:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
[2009.07.14 03:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll

< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.07.14 03:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009.07.14 03:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

< MD5 for: TCPIP.SYS >
[2011.04.25 06:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=0158D5E9982E9D6A90DFC802F618E130 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011.04.25 06:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009.07.14 03:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2010.11.20 14:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2012.03.30 12:29:05 | 001,287,024 | ---- | M] (Microsoft Corporation) MD5=55E9965552741F3850CB22CBBA9671ED -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16986_none_b2f57423c7b8dea8\tcpip.sys
[2010.04.09 09:16:33 | 001,289,096 | ---- | M] (Microsoft Corporation) MD5=5D6A83E928F22AF5AC9868B162FFAD0D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20687_none_b38009a0e0d5a32d\tcpip.sys
[2010.04.09 09:24:54 | 001,285,000 | ---- | M] (Microsoft Corporation) MD5=63170B9EE1D0EF0032F0408605671D1A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16569_none_b30e0d41c7a5fe2f\tcpip.sys
[2011.04.25 08:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2012.03.30 12:23:11 | 001,291,632 | ---- | M] (Microsoft Corporation) MD5=7FA2E0F8B072BD04B77B421480B6CC22 -- C:\Windows\System32\drivers\tcpip.sys
[2012.03.30 12:23:11 | 001,291,632 | ---- | M] (Microsoft Corporation) MD5=7FA2E0F8B072BD04B77B421480B6CC22 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_b52e5147c4a202d7\tcpip.sys
[2011.04.25 06:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2012.03.30 11:04:23 | 001,306,480 | ---- | M] (Microsoft Corporation) MD5=88FCDB9923EFECA207B3CEBD24407126 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_b583df0adde66104\tcpip.sys
[2012.03.30 12:08:19 | 001,303,408 | ---- | M] (Microsoft Corporation) MD5=E47C2844A1605A44178F4281E4D58B3D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21178_none_b38bb990e0ccc871\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009.10.28 08:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009.10.28 07:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010.11.20 14:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010.11.20 14:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009.07.14 03:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

< >

< %systemroot%*.* /U /s >
[7 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ea2235b804b2b97b854dd31310c71d8e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ea2235b804b2b97b854dd31310c71d8e\*.tmp -> ]
[28 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012.08.26 17:26:05 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\.minecraft
[2012.08.24 15:00:57 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\.techniclauncher
[2012.08.12 14:24:01 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Adobe
[2012.08.11 16:45:39 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Audacity
[2012.07.22 12:48:57 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\BatteryBar
[2012.07.26 19:53:36 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\DAEMON Tools Lite
[2012.07.22 09:38:04 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\GHISLER
[2012.08.27 11:42:22 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Hamachi
[2012.07.22 11:37:01 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\hpqLog
[2012.07.22 09:17:57 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Identities
[2012.07.22 12:52:11 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Intel Corporation
[2012.08.11 18:35:32 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Leadertech
[2012.07.24 20:47:35 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Macromedia
[2009.07.14 11:20:15 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Media Center Programs
[2012.08.04 09:26:19 | 000,000,000 | --SD | M] -- C:\Users\hp\AppData\Roaming\Microsoft
[2012.07.24 23:36:56 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Mozilla
[2012.08.25 09:42:33 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Opera
[2012.07.25 19:28:41 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Publish Providers
[2012.08.20 12:20:38 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Sentinell
[2012.08.27 17:27:57 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Skype
[2012.08.26 16:15:35 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Solveig Multimedia
[2012.07.25 19:28:27 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\Sony
[2012.07.25 14:50:19 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\TeamViewer
[2012.08.19 18:49:44 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\TS3Client
[2012.08.01 21:02:30 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\UltraMixer
[2012.08.27 17:27:21 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\uTorrent
[2012.07.25 00:11:17 | 000,000,000 | ---D | M] -- C:\Users\hp\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2012.05.28 09:35:48 | 000,270,848 | ---- | M] (Teckda) -- C:\Users\hp\AppData\Roaming\.minecraft\Minecraft Cracked.exe
[2012.05.28 09:35:42 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Users\hp\AppData\Roaming\.minecraft\Minecraft Updater.exe
[2012.05.28 09:32:46 | 000,232,159 | ---- | M] () -- C:\Users\hp\AppData\Roaming\.minecraft\Minecraft.exe
[2012.05.28 09:33:52 | 000,300,564 | ---- | M] () -- C:\Users\hp\AppData\Roaming\.minecraft\Uninstall.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2012.08.27 16:56:01 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2012.08.27 13:46:02 | 000,000,928 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.08.27 16:46:05 | 000,000,932 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.08.27 11:48:38 | 000,014,448 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.08.27 11:48:38 | 000,014,448 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.08.25 13:32:01 | 000,696,520 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\FlashPlayerApp.exe
[2012.08.25 13:32:00 | 000,073,416 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\FlashPlayerCPLApp.cpl
[2012.08.27 11:47:29 | 000,141,108 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2012.08.27 11:47:29 | 000,122,080 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2012.08.27 11:47:29 | 000,668,544 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2012.08.27 11:47:29 | 000,654,248 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2012.08.27 11:47:29 | 001,583,082 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ShowBatteryBar" = "C:\Program Files\BatteryBar\ShowBatteryBar.exe" show -- [2009.05.28 23:02:28 | 000,090,624 | ---- | M] ()
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2012.06.05 15:23:04 | 017,344,176 | R--- | M] (Skype Technologies S.A.)
"KPeerNexonEU" = C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe -- [2012.07.24 21:13:22 | 000,438,272 | ---- | M] (NEXON Inc.)
"uTorrent" = "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED -- [2012.08.05 08:25:01 | 001,022,352 | ---- | M] (BitTorrent, Inc.)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2012.04.11 11:54:22 | 003,672,384 | ---- | M] (DT Soft Ltd)
"Steam" = "C:\Program Files\Steam\steam.exe" -silent -- [2012.08.04 08:58:47 | 001,353,080 | ---- | M] (Valve Corporation)
"AdobeBridge" =
"Clownfish" = "C:\Program Files\Clownfish\Clownfish.exe" -- [2012.07.23 09:11:32 | 001,105,144 | ---- | M] (Bogdan Sharkov)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2012.06.29 03:00:47 | 000,748,664 | ---- | M] (Microsoft Corporation) MD5=93569D46D79F9756ED077156496AFE23 -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2012.08.25 09:42:22 | 000,874,896 | ---- | M] (Opera Software) MD5=F594C0FB9F48829ADE080D07716739F1 -- C:\Program Files\Opera\opera.exe

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2012.08.18 00:28:57 | 001,229,848 | ---- | M] (Google Inc.) MD5=2339760B238226DAD9ED03F939D92323 -- C:\Program Files\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.08.27 17:07:50 | 000,000,512 | ---- | M] () MD5=DE48E4F229EB6433E5CB8D2A92B1859B -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2003.12.05 14:52:40 | 000,000,796 | ---- | M] () -- \Program Files\Rockstar Games\GTA San Andreas\data\Decision\Craig\crack1.ped
[2012.05.28 09:35:48 | 000,270,848 | ---- | M] () -- \Users\hp\AppData\Roaming\.minecraft\Minecraft Cracked.exe
[2012.07.28 14:43:15 | 000,032,648 | ---- | M] () -- \Users\hp\AppData\Roaming\uTorrent\Call of Duty4-Razor1911+Keygen and Crack.torrent
[2012.07.31 15:11:50 | 000,020,518 | ---- | M] () -- \Users\hp\AppData\Roaming\uTorrent\GTA SAN ANDREAS + CRACK + SA-MP.torrent

< *keygen* /s >
[2012.07.28 14:43:15 | 000,032,648 | ---- | M] () -- \Users\hp\AppData\Roaming\uTorrent\Call of Duty4-Razor1911+Keygen and Crack.torrent

< *loader* /s >
[2012.07.24 21:13:21 | 003,375,104 | ---- | M] () -- \Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader.exe
[2012.07.24 21:13:22 | 001,064,960 | ---- | M] () -- \Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe
[2011.03.02 21:35:42 | 005,299,048 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\Photodownloader.exe
[2011.03.02 18:57:10 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\de_de\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\en_us\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\es_es\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\it_it\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\no_no\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2011.03.02 18:57:14 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2011.03.02 18:57:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2004.12.28 18:40:02 | 000,169,384 | ---- | M] () -- \Program Files\Counter-Strike 1.6\cstrike\models\qloader.mdl
[2003.09.15 14:55:50 | 000,352,548 | ---- | M] () -- \Program Files\Counter-Strike 1.6\valve\models\loader.mdl
[2003.09.15 14:56:04 | 000,012,764 | ---- | M] () -- \Program Files\Counter-Strike 1.6\valve\sound\ambience\loader_hydra1.wav
[2003.09.15 14:56:04 | 000,012,164 | ---- | M] () -- \Program Files\Counter-Strike 1.6\valve\sound\ambience\loader_step1.wav
[2012.08.11 14:45:59 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\12.2.0.5\modules\skin\ajax-loader.gif
[2012.08.11 14:45:59 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\12.2.0.5\modules\skin\loader.gif
[2012.05.15 09:59:24 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012.05.15 09:59:24 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012.08.11 14:45:59 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\12.2.0.5\modules\skin\ajax-loader.gif
[2012.08.11 14:45:59 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\12.2.0.5\modules\skin\loader.gif
[2012.05.15 09:59:24 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012.05.15 09:59:24 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012.08.25 19:08:49 | 000,000,673 | ---- | M] () -- \Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc\2.3.15.10_0\Media\ajax-loader.gif
[2012.07.24 23:59:08 | 000,057,728 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2012.07.24 23:59:08 | 000,057,728 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2012.07.24 23:59:08 | 000,057,728 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2012.07.24 23:59:09 | 000,057,728 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin3\dt_dadget_loader.png
[2012.07.24 23:59:09 | 000,057,728 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin4\dt_dadget_loader.png
[2012.07.24 23:59:10 | 000,061,770 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin5\dt_dadget_loader.png
[2012.07.24 23:59:10 | 000,061,770 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin6\dt_dadget_loader.png
[2012.08.27 11:43:29 | 000,105,903 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4AKMDYJW\AdLoader-427d9fd2a91e2f2c023aefe9f69a01d0.min[1].js
[2012.08.26 10:04:48 | 000,000,753 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FONMJ0DU\AdLoader[1].htm
[2012.08.27 11:43:27 | 000,000,753 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NLIVMFD2\AdLoader[1].htm
[2012.08.26 10:04:49 | 000,105,903 | ---- | M] () -- \Users\hp\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZWZLJPQ3\AdLoader-427d9fd2a91e2f2c023aefe9f69a01d0.min[1].js
[2012.08.26 17:07:12 | 000,170,691 | ---- | M] () -- \Users\hp\AppData\Local\Opera\Opera\temporary_downloads\ModLoader-1.3.1.---by-Gf.zip
[2012.08.26 17:11:25 | 000,178,311 | ---- | M] () -- \Users\hp\AppData\Local\Opera\Opera\temporary_downloads\ModLoader.zip
[2012.08.11 14:45:59 | 000,006,494 | ---- | M] () -- \Users\hp\AppData\Local\Temp\avg@toolbar\modules\skin\ajax-loader.gif
[2012.08.11 14:45:59 | 000,000,729 | ---- | M] () -- \Users\hp\AppData\Local\Temp\avg@toolbar\modules\skin\loader.gif
[2012.08.21 00:26:14 | 000,050,656 | ---- | M] () -- \Users\hp\AppData\Local\Temp\Rar$DRa0.529\ModLoader.class
[2012.08.26 17:26:05 | 000,001,023 | ---- | M] () -- \Users\hp\AppData\Roaming\.minecraft\ModLoader.txt
[2012.08.26 17:22:03 | 000,000,878 | ---- | M] () -- \Users\hp\AppData\Roaming\.minecraft\config\ModLoader.cfg
[2012.08.21 00:26:14 | 000,050,656 | ---- | M] () -- \Users\hp\AppData\Roaming\.minecraft\mods\ModLoader.class
[2012.07.17 14:18:16 | 000,009,051 | ---- | M] () -- \Users\hp\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.07.17 14:18:16 | 000,016,119 | ---- | M] () -- \Users\hp\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.07.17 14:18:16 | 000,018,434 | ---- | M] () -- \Users\hp\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012.07.17 14:18:16 | 000,009,283 | ---- | M] () -- \Users\hp\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012.07.17 14:18:16 | 000,001,898 | ---- | M] () -- \Users\hp\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2012.08.26 17:07:13 | 000,001,158 | ---- | M] () -- \Users\hp\AppData\Roaming\Microsoft\Windows\Recent\ModLoader-1.3.1.---by-Gf.lnk
[2012.08.26 17:11:26 | 000,001,083 | ---- | M] () -- \Users\hp\AppData\Roaming\Microsoft\Windows\Recent\ModLoader.lnk
[2012.07.16 23:40:38 | 000,000,847 | ---- | M] () -- \Users\hp\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\chrome\CT3072253\content\tb\al\ac\img\ajax-loader.gif
[2012.07.16 23:40:38 | 000,001,135 | ---- | M] () -- \Users\hp\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\chrome\CT3072253\content\tb\al\ac\img\loader-icon.png
[2012.07.16 23:40:38 | 000,003,208 | ---- | M] () -- \Users\hp\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\chrome\CT3072253\content\tb\al\ui\gf\img\loader.gif
[2012.07.16 23:40:38 | 000,001,849 | ---- | M] () -- \Users\hp\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\chrome\CT3072253\content\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2010.03.21 12:09:23 | 000,169,384 | ---- | M] () -- \Users\hp\Desktop\Nová složka (3)\models\qloader.mdl
[2010.03.21 00:00:00 | 000,169,384 | ---- | M] () -- \Users\hp\Desktop\RS PLUGINY !!!! Server\models\qloader.mdl
[2012.07.24 21:13:13 | 000,446,464 | ---- | M] () -- \Windows\NEXON_EU_DownloaderUpdater.exe
[2009.07.14 14:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2007.09.13 09:45:50 | 000,070,944 | ---- | M] () -- \Windows\System32\PhysXLoader.dll
[2012.08.27 11:44:35 | 000,003,528 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Uploader
[2009.07.14 06:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2009.07.14 10:43:57 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 10:43:57 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2009.07.14 10:43:57 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2012.07.24 03:22:58 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2012.07.24 03:22:58 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winload.exe_75835076
[2012.07.24 03:22:59 | 000,442,720 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winresume.exe_85cd1215
[2009.07.14 04:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 04:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009.07.14 10:42:11 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 03:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.08.19 09:38:48 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed.manifest
[2009.08.19 09:21:21 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20509_none_5be12f8ee6d3987e.manifest
[2010.11.20 05:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009.07.14 03:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:19:58 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:12:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll

< End of report >

[Wosatko]

OTL Extras logfile created on: 27.8.2012 17:03:44 - Run 1
OTL by OldTimer - Version 3.2.59.1 Folder = C:\Users\hp\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,99 Gb Total Physical Memory | 0,22 Gb Available Physical Memory | 11,24% Memory free
3,98 Gb Paging File | 1,67 Gb Available in Paging File | 41,82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74,43 Gb Total Space | 23,30 Gb Free Space | 31,30% Space Free | Partition Type: NTFS
Drive D: | 2,88 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: HP-PC | User Name: hp | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)

[HKEY_USERS\S-1-5-21-1293529971-3576900606-3597958483-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00095C94-CE6E-4F65-A1EC-08FA726D0170}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{105FDCE9-6CFB-4EE3-A7CB-8922F9E012F4}" = lport=138 | protocol=17 | dir=in | app=system |
"{1A840925-DE6A-491B-B116-A61AF1B955C6}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{1EBC3C16-EA7E-4EC4-8406-472A3F6F7A2B}" = lport=137 | protocol=17 | dir=in | app=system |
"{201016FC-59E0-455F-9670-292AE5A9455F}" = rport=137 | protocol=17 | dir=out | app=system |
"{21347770-2241-4F21-8DDD-A10A6881E234}" = lport=445 | protocol=6 | dir=in | app=system |
"{271CC2FC-53B1-425A-9221-6CC0A1F8FFB8}" = lport=139 | protocol=6 | dir=in | app=system |
"{2A784880-3FBA-45E4-B5F0-5DF66BFC148D}" = lport=139 | protocol=6 | dir=in | app=system |
"{2B53474D-7687-4600-A49D-519D695BDA2D}" = rport=138 | protocol=17 | dir=out | app=system |
"{389243A4-2216-4335-89F0-518C9940F61F}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{42640290-4413-4597-BEA8-745E241ECA0E}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{45396C06-AF6A-40D9-928E-C1C1C725E7CD}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{47BB3003-8097-40C4-974D-FC3483B3101E}" = lport=445 | protocol=6 | dir=in | app=system |
"{4A43B0BC-6154-4E6C-9F2B-8460B334C094}" = rport=139 | protocol=6 | dir=out | app=system |
"{4B8465EE-674F-4713-BBCA-F491C4720CEC}" = rport=10243 | protocol=6 | dir=out | app=system |
"{4E73483F-B27E-4C35-A6ED-08B8F162CB85}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5040BEFE-82AD-4233-8108-1B7A0AF55075}" = lport=137 | protocol=17 | dir=in | app=system |
"{520365C4-B02F-4455-AD69-A495B9D3D64B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{545FD847-90C6-4465-A0B0-82C48E2F474C}" = rport=137 | protocol=17 | dir=out | app=system |
"{592570D0-017F-4863-A8B3-F7A961A3750B}" = rport=445 | protocol=6 | dir=out | app=system |
"{5BA80266-9097-43A6-A991-FEEB18BB8A35}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{5C33372B-8DF8-4A5B-ADAB-40DDC23622C6}" = rport=138 | protocol=17 | dir=out | app=system |
"{5F09E0EA-76C7-4561-9576-42733A038F23}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{61D05F2E-F322-405F-88FD-04F1796B5E98}" = rport=138 | protocol=17 | dir=out | app=system |
"{636F9847-0C37-4D8F-8BB7-9C90641A9A19}" = lport=138 | protocol=17 | dir=in | app=system |
"{68226E4F-D4B7-4BC2-A46D-5C6CD84860A6}" = lport=139 | protocol=6 | dir=in | app=system |
"{6C5BB832-5E60-4C9C-AF7D-7B1BD02195B2}" = rport=139 | protocol=6 | dir=out | app=system |
"{6C884519-6E6D-41DC-BA5A-6926C54DB9CD}" = rport=445 | protocol=6 | dir=out | app=system |
"{6C8E6597-1B37-457E-90C8-EBBB5501AEF6}" = rport=445 | protocol=6 | dir=out | app=system |
"{6D25BCA0-6EA7-4E3F-A533-6B9130E6E9D2}" = lport=2869 | protocol=6 | dir=in | app=system |
"{6EDB3C92-1233-4976-98B7-778A8BD0CEBE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{6F70FF72-FFD2-4855-915A-CB8C8A530564}" = lport=445 | protocol=6 | dir=in | app=system |
"{7B7E4949-E57F-42BC-8A39-338AAECB5C42}" = lport=137 | protocol=17 | dir=in | app=system |
"{86AD2E16-4C74-4898-9D6B-DB81963F638C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{90AD4E13-FC41-4358-BE47-E835C33D660D}" = lport=138 | protocol=17 | dir=in | app=system |
"{93C8A8B7-1D53-4E4A-8697-B523C254767B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9ABFE858-EEBD-40D8-8C4D-81EF788CE120}" = lport=10243 | protocol=6 | dir=in | app=system |
"{A0E193D6-3C9F-4551-A223-1B6684FE9109}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A5D8D7E6-999E-4E06-A73F-E98627FACAC5}" = rport=137 | protocol=17 | dir=out | app=system |
"{A8B52893-22BB-469F-BBF0-6AEAA8F7505D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{A949AE1A-504B-42BC-8856-D294BC0D6F49}" = rport=138 | protocol=17 | dir=out | app=system |
"{A9FD1699-1F5D-4173-836F-CEFA5BCA5C39}" = lport=139 | protocol=6 | dir=in | app=system |
"{ADDEA0E7-81D4-497C-9970-0F5CC55B2123}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{AF222D26-69C6-4A91-BF23-64A543342A3F}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{B52ED313-8F82-4C73-9AB0-93A4BD69C231}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C1ABAD14-432B-4A78-A9D7-D60035F9742D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{C53639ED-EA1B-4A09-B07A-EB1043445A53}" = rport=139 | protocol=6 | dir=out | app=system |
"{C585BACF-4EF0-4CB9-8675-1E1F0A12DFC6}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C73052EA-7FFA-4DEF-9D4A-36515E717EB1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D0481A20-CFD3-421C-9A44-8BEAFE5587D0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D5722C6C-9202-451D-940B-16D63913171C}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DBD797CB-38E0-48BA-BF3B-AAEBAB8329E3}" = lport=137 | protocol=17 | dir=in | app=system |
"{DF5659AC-B759-443B-BB36-8E647078E669}" = rport=139 | protocol=6 | dir=out | app=system |
"{E18D7638-98C8-4F8E-A220-9A4293D23F47}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E26700A7-52F4-47FB-A51C-C6625B8CC3D1}" = lport=138 | protocol=17 | dir=in | app=system |
"{E3916EC8-CCF2-4AD6-9592-A9AD515B38E2}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E8FB62E2-24BD-4E88-8557-6AAEB3EB069A}" = rport=445 | protocol=6 | dir=out | app=system |
"{ECAC5703-D4A5-4D3D-8F23-CC8B1851A40C}" = rport=137 | protocol=17 | dir=out | app=system |
"{ECEE948A-DEFE-491B-8077-20633A5C4FE4}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F5008D81-D71A-4174-B404-EDA92BAC7063}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F96B605F-5A57-4339-A14B-63E13938E6DC}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{FC07AC25-F71F-4210-8115-22FA1CEB8007}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{FC9DD1E0-AE9A-4616-9E1E-EA48798C24AD}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FE266DCE-9892-46A9-A54B-46B916BA1917}" = lport=445 | protocol=6 | dir=in | app=system |
"{FE36E342-34BD-4DE5-A160-018869FBE130}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01FB4FBC-AFCD-4436-9FE9-81A750E42EFA}" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"{0510F641-02D7-48B5-98F7-867050343286}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{08C6DF55-CCFB-47F3-A8E0-C9A5709DD7DC}" = protocol=17 | dir=in | app=c:\users\hp\downloads\tsuyoshi2 client\metin2client.bin |
"{0FA1E3C8-932B-4825-B9E7-D3407EEA6DBD}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{11421209-F86A-462F-B4D9-A0837AEBF064}" = protocol=17 | dir=in | app=c:\nexon\combat arms eu\nmservice.exe |
"{12623EB4-362C-4454-9830-C487BC366C0D}" = protocol=17 | dir=in | app=c:\users\hp\desktop\metin2desgarre v 4.0\metin2.bin |
"{158E1B79-E27A-47DD-9A86-F9C8B37C626E}" = protocol=17 | dir=in | app=c:\program files\counter-strike 1.6\hl.exe |
"{1EA863C9-A2A2-4748-8A05-43CC3C04FA25}" = protocol=6 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe |
"{2018FE50-3879-4D00-8721-079C61C7CD16}" = protocol=17 | dir=in | app=c:\users\hp\desktop\nová složka\mc.exe |
"{2384D5E5-C6AC-4E4E-A5F2-1A22E68F7DB9}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{2AE31B9D-7987-4C99-B132-18DE7A808520}" = protocol=6 | dir=in | app=c:\program files\sentinell\sentinell\metin2client.bin |
"{2E054C9E-EFC3-4C3A-8066-24CFC565CD4F}" = protocol=17 | dir=in | app=c:\program files\sentinell\sentinell\metin2client.bin |
"{2F9AFDF7-6A82-4A51-9B52-5AA81639BBAD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{32AC5815-052F-4962-BA0F-8A8594378C64}" = protocol=6 | dir=in | app=c:\users\hp\downloads\nathia2 client\nathia2.exe |
"{32C49F73-F1C1-49AF-9F4D-53A18CEC9249}" = protocol=17 | dir=in | app=c:\users\hp\desktop\arean2\metin2client.bin |
"{34514A56-1CAF-4072-B486-CFF9756AE9F0}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{3468D066-A073-4C66-9993-0652DDA4EB3F}" = protocol=6 | dir=in | app=c:\nexon\combat arms eu\nmservice.exe |
"{3495B78A-A1D5-435B-88CF-FA6C8BBB3955}" = protocol=6 | dir=in | app=c:\users\hp\desktop\arean2\metin2client.bin |
"{353A3060-A238-4449-9925-27889EDC6C61}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{3762F225-2562-4A34-A91B-50078BDC9B1A}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{39685849-35AB-432B-A83B-B4771636DC27}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{3EA4A53E-660E-4C5E-9AAF-D7F4FC22BC8B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{433F9766-55EB-412E-8C87-CAD2C651DC97}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{43D68105-3E47-4A18-916B-7F393DC993D3}" = protocol=6 | dir=out | app=system |
"{4939BB2A-6303-4986-8FE1-E5AED3F794D1}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version7\teamviewer.exe |
"{4D0D8C9C-D479-4CE0-A59A-ECF2023C7691}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{4D1F05E7-C93C-457F-A09C-91C96854F165}" = protocol=6 | dir=in | app=c:\program files\counter-strike 1.6\hl.exe |
"{4ED64A2E-D33E-4F04-BC04-237730BD4AA4}" = protocol=17 | dir=in | app=c:\nexon\combat arms eu\nmservice.exe |
"{5170AAE9-D737-455D-A41D-49EEF702F8FD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{5249A750-C11B-47F7-A86B-93DA6A510F8A}" = protocol=17 | dir=in | app=c:\users\hp\desktop\azuria-client\azuria-clientstarter.exe |
"{52EAFBB6-661F-4538-A506-FB12D3E3104B}" = protocol=6 | dir=in | app=c:\users\hp\desktop\tsuyoshi2 client\metin2client.bin |
"{558F4CEE-462D-4A41-B0CB-DBC6DF700257}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{56284F15-7EC0-49B6-BBEA-51DC7D3B397E}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version7\teamviewer_service.exe |
"{57EDF882-D448-4C16-BCAC-E1FBC3E75449}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{5B4A5D05-90DF-4CFB-96F8-6EC5157FB44B}" = protocol=17 | dir=in | app=c:\users\hp\desktop\nathia2 client\nathia2.exe |
"{5BBDF05B-C506-4FCA-B8EA-CBEC14E280FE}" = protocol=6 | dir=in | app=c:\users\hp\desktop\wild way v5\start.exe |
"{62D1761B-2D61-4942-875B-BDC9D90EF064}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version7\teamviewer_service.exe |
"{686548A1-008C-4361-BC4B-DB41F72B484C}" = protocol=6 | dir=in | app=c:\users\hp\desktop\nathia2 client\nathia2.exe |
"{749EE662-2193-4E5F-BBC6-EB3D78582EF4}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{76AA8BDB-B90A-47CE-8DC8-4A9FACD26620}" = protocol=17 | dir=in | app=c:\users\hp\desktop\tsuyoshi2 client\metin2client.bin |
"{7B8C60F5-F957-4594-B812-3D6591FFAD14}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7E589CD9-C016-45B8-8030-73424AB41B1C}" = protocol=6 | dir=in | app=c:\users\hp\desktop\portmap.exe |
"{8600E545-5B13-4753-A996-2DF67380F71D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8B8E01B4-8C0A-4A48-AD44-618527A52CCF}" = protocol=6 | dir=in | app=c:\users\hp\desktop\metin2desgarre v 4.0\metin2.bin |
"{8C084461-1CDD-4ED3-A8C1-43E6434C0F3F}" = protocol=17 | dir=in | app=c:\users\hp\desktop\wild way v5\start.exe |
"{90421952-EA6B-452C-9D16-09459E6AAD54}" = protocol=6 | dir=in | app=c:\users\hp\downloads\metin2desgarre v 4.0\metin2.bin |
"{9432DC3A-C697-45DA-90FB-3CD663A8597B}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{971D1F51-B33B-4E69-AAA6-5D8E5EA24524}" = protocol=6 | dir=in | app=c:\program files\opera\pluginwrapper\opera_plugin_wrapper.exe |
"{979EFB0E-310E-4A70-914E-84345963BECE}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{9C633EBB-1226-4678-8434-79BB61866F1D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9C824672-3029-4A4A-B704-44095749F438}" = protocol=6 | dir=in | app=c:\program files\hammermt2\mss321.dll |
"{9EB17C20-4C6A-4FF9-8604-985FA67F9F21}" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"{A2E1D252-2B22-4D2B-9BC7-76D1FB66A54E}" = protocol=17 | dir=in | app=c:\users\hp\desktop\sindicate\client.bin |
"{A45FAAE0-E09E-4CD9-B2EC-5E99FE682D0E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A4B52425-8333-453D-999F-5BEAAD86820B}" = protocol=17 | dir=in | app=c:\users\hp\downloads\metin2desgarre v 4.0\metin2.bin |
"{A82AD6F2-7419-4BE5-ACF9-2FA1B18C985E}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{A8CE7F5F-7BE1-4193-80C7-C73CDDA327D0}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{AC6AE818-9F56-4AFE-93BE-F951FF2D9540}" = protocol=6 | dir=in | app=c:\nexon\combat arms eu\nmservice.exe |
"{ACF3DE08-F92C-4803-BCDE-AAF488D5C565}" = protocol=58 | dir=in | app=system |
"{AD920E09-B8D7-4456-AEA5-916078BC3576}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AE47C624-DC16-4FAB-8045-A9F11A0B73F9}" = protocol=6 | dir=in | app=c:\users\hp\desktop\nová složka\mc.exe |
"{B3898EF9-8F0D-4B34-BC8C-C334FE1764D9}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B3F4669B-7EAF-4BC0-BE93-320BAABB63D9}" = protocol=6 | dir=in | app=c:\users\hp\downloads\tsuyoshi2 client\metin2client.bin |
"{B479D557-4408-4B3E-BB11-E2DA09D8415D}" = protocol=6 | dir=in | app=e:\left4dead.exe |
"{B6FE896E-715B-49E7-89AC-7258CA4889B3}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{B96C9718-5BEB-4AA3-BAF1-78DA37709433}" = protocol=17 | dir=in | app=c:\users\hp\downloads\nathia2 client\nathia2.exe |
"{BFC1AB36-C897-40DF-9EA1-8B2DFF742AAF}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\joshcampo@msn.com\counter-strike\hl.exe |
"{BFD306EE-A0C1-4D12-8A21-51D7E7E1EAB9}" = protocol=17 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe |
"{BFE1F9FB-B266-4290-A61D-7E6B0892703A}" = protocol=17 | dir=in | app=c:\users\hp\desktop\portmap.exe |
"{CEF4F7ED-BD3E-4F2B-B8FA-BA5F6387D9F9}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{D1274A13-219A-4531-B24E-EBC08BD1D7B7}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{D31147DE-0DE1-49AB-BCC4-90AD9C1FB034}" = protocol=17 | dir=in | app=c:\program files\hammermt2\mss321.dll |
"{D49A7D16-33FC-4041-B051-8B4575DC5D16}" = protocol=17 | dir=in | app=c:\program files\opera\pluginwrapper\opera_plugin_wrapper.exe |
"{D5284467-BF7E-4A39-85FC-BA670ADF60A8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{D5648867-1FB1-4471-913F-6B83E52A7182}" = protocol=6 | dir=in | app=c:\users\hp\desktop\sindicate\client.bin |
"{D7DDA83D-F3C7-415E-9462-D6B02A165709}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D85DB3DA-A19C-4DBB-8B8D-D3B62F6AA6A7}" = protocol=6 | dir=in | app=c:\users\hp\desktop\azuria-client\azuria-clientstarter.exe |
"{E14B34B6-AC4F-48CF-B6A1-5B188C53A45A}" = protocol=17 | dir=in | app=e:\left4dead.exe |
"{E322F349-5E92-49BC-9DFC-B9F08A3AA64B}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version7\teamviewer.exe |
"{E35D231A-B19B-454B-8330-8CAAB00C16BD}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E429EDAC-F631-48D4-A2DC-4F40E58878FB}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{E9268945-C651-4B9D-8012-1FE48626B524}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{ED5685B1-63A9-4F85-9AD9-6B814F4237A6}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{EFDE0E20-1A8E-4D89-9E63-3F1FCEE6B1DC}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{F1E54DFF-89B0-4189-89E3-037F6C5C2E6D}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{F8F4F564-F150-47BB-8AFA-2EA527F04058}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\joshcampo@msn.com\counter-strike\hl.exe |
"{FCAB5171-459A-4887-89EA-D94F34471B16}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{FFDC0CF0-151F-4A79-8F56-E8EE7D9DE5E0}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{FFE2B53C-CC1C-466D-90A4-5D370F602061}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{1401DD84-DF02-4594-A316-5C1FB3532195}C:\program files\counter-strike 1.6\hl.exe" = protocol=6 | dir=in | app=c:\program files\counter-strike 1.6\hl.exe |
"TCP Query User{1F010B18-92B5-4440-8BB5-32510B3C744A}C:\users\hp\desktop\nathia2 client\nathia2.exe" = protocol=6 | dir=in | app=c:\users\hp\desktop\nathia2 client\nathia2.exe |
"TCP Query User{20F521C1-B255-48E8-B4D6-0C750D09877C}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=6 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe |
"TCP Query User{264270F3-53DF-41FF-8442-CD5E3FFBD123}C:\users\hp\desktop\azuria-client\azuria-clientstarter.exe" = protocol=6 | dir=in | app=c:\users\hp\desktop\azuria-client\azuria-clientstarter.exe |
"TCP Query User{31B262DF-38B7-4BB4-BD4B-512701DFE9AE}E:\left4dead.exe" = protocol=6 | dir=in | app=e:\left4dead.exe |
"TCP Query User{3B2CA39A-8785-48A1-B015-68592AEF3453}C:\users\hp\downloads\tsuyoshi2 client\metin2client.bin" = protocol=6 | dir=in | app=c:\users\hp\downloads\tsuyoshi2 client\metin2client.bin |
"TCP Query User{3FC3BA3C-3318-4280-908F-4275F05D6D50}C:\users\hp\desktop\battlefield vietnam\bfvietnam.exe" = protocol=6 | dir=in | app=c:\users\hp\desktop\battlefield vietnam\bfvietnam.exe |
"TCP Query User{547824C0-B2FD-49A6-BD7E-26EF11FAC636}C:\program files\unreal tournament 3\binaries\ut3.exe" = protocol=6 | dir=in | app=c:\program files\unreal tournament 3\binaries\ut3.exe |
"TCP Query User{632D4556-AB43-4738-9EC3-6E6A8DC79566}C:\users\hp\desktop\arean2\metin2client.bin" = protocol=6 | dir=in | app=c:\users\hp\desktop\arean2\metin2client.bin |
"TCP Query User{68EAF890-A867-46B8-AE19-10C77241EBDB}C:\users\hp\desktop\wild way v5\start.exe" = protocol=6 | dir=in | app=c:\users\hp\desktop\wild way v5\start.exe |
"TCP Query User{73AE01BC-C6AA-4FF2-972D-6D592AFC8828}C:\program files\hammermt2\mss321.dll" = protocol=6 | dir=in | app=c:\program files\hammermt2\mss321.dll |
"TCP Query User{8241EECE-A1DB-4BDC-87EF-3DF586B2C386}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"TCP Query User{833CD6AB-330B-4B8B-BBD0-2E9C7B2891C9}C:\users\hp\desktop\tsuyoshi2 client\metin2client.bin" = protocol=6 | dir=in | app=c:\users\hp\desktop\tsuyoshi2 client\metin2client.bin |
"TCP Query User{9BFBE6B7-60B3-491F-8E4F-6FD38D2B2FDA}C:\users\hp\downloads\metin2desgarre v 4.0\metin2.bin" = protocol=6 | dir=in | app=c:\users\hp\downloads\metin2desgarre v 4.0\metin2.bin |
"TCP Query User{9F860C7D-DC8C-41D2-911F-5C2C9C539023}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=6 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe |
"TCP Query User{A90F9626-A76B-4804-8B95-3F66EDB0927C}C:\program files\sentinell\sentinell\metin2client.bin" = protocol=6 | dir=in | app=c:\program files\sentinell\sentinell\metin2client.bin |
"TCP Query User{BD40A7D5-1F7A-44BA-8CB5-0E13CB78ABCD}C:\users\hp\desktop\portmap.exe" = protocol=6 | dir=in | app=c:\users\hp\desktop\portmap.exe |
"TCP Query User{CF3C7205-9D24-4EBC-9BA8-B382BA3EA467}C:\users\hp\desktop\metin2desgarre v 4.0\metin2.bin" = protocol=6 | dir=in | app=c:\users\hp\desktop\metin2desgarre v 4.0\metin2.bin |
"TCP Query User{E079B05C-27A8-47BF-9780-0EC8EF5DC4F4}C:\users\hp\desktop\sindicate\client.bin" = protocol=6 | dir=in | app=c:\users\hp\desktop\sindicate\client.bin |
"TCP Query User{EF3C6A26-C366-4B35-A23E-CB350992C4F7}C:\users\hp\downloads\nathia2 client\nathia2.exe" = protocol=6 | dir=in | app=c:\users\hp\downloads\nathia2 client\nathia2.exe |
"TCP Query User{F16A1039-7506-4B1B-9583-B00D75792779}C:\users\hp\desktop\nová složka\mc.exe" = protocol=6 | dir=in | app=c:\users\hp\desktop\nová složka\mc.exe |
"UDP Query User{02810BB6-3F2A-49AE-8BD2-4BB2FBD92E6F}C:\users\hp\desktop\portmap.exe" = protocol=17 | dir=in | app=c:\users\hp\desktop\portmap.exe |
"UDP Query User{1E44D9CA-F761-43CA-95CF-464EC043500C}C:\program files\sentinell\sentinell\metin2client.bin" = protocol=17 | dir=in | app=c:\program files\sentinell\sentinell\metin2client.bin |
"UDP Query User{2E949BE6-88DB-4E30-9532-E9EFAF1E116D}C:\program files\hammermt2\mss321.dll" = protocol=17 | dir=in | app=c:\program files\hammermt2\mss321.dll |
"UDP Query User{57812871-5438-4BFA-830D-B33889468548}C:\users\hp\desktop\azuria-client\azuria-clientstarter.exe" = protocol=17 | dir=in | app=c:\users\hp\desktop\azuria-client\azuria-clientstarter.exe |
"UDP Query User{6986C6FB-B4B5-4B6C-9FB1-F0519A1CBC24}C:\users\hp\downloads\metin2desgarre v 4.0\metin2.bin" = protocol=17 | dir=in | app=c:\users\hp\downloads\metin2desgarre v 4.0\metin2.bin |
"UDP Query User{85B00CC2-F56F-471C-8DA3-A511296D65A0}C:\program files\unreal tournament 3\binaries\ut3.exe" = protocol=17 | dir=in | app=c:\program files\unreal tournament 3\binaries\ut3.exe |
"UDP Query User{899E85A7-5B15-4CC1-A1C2-05E96D9BC6F6}C:\users\hp\desktop\arean2\metin2client.bin" = protocol=17 | dir=in | app=c:\users\hp\desktop\arean2\metin2client.bin |
"UDP Query User{8C3C9491-81EA-4B1B-8D82-594268AE4B0E}E:\left4dead.exe" = protocol=17 | dir=in | app=e:\left4dead.exe |
"UDP Query User{940B8051-890E-43B0-AA71-147B71ECDA2B}C:\users\hp\desktop\nathia2 client\nathia2.exe" = protocol=17 | dir=in | app=c:\users\hp\desktop\nathia2 client\nathia2.exe |
"UDP Query User{97A95187-99C2-4FF3-93E0-007A727AC714}C:\users\hp\desktop\metin2desgarre v 4.0\metin2.bin" = protocol=17 | dir=in | app=c:\users\hp\desktop\metin2desgarre v 4.0\metin2.bin |
"UDP Query User{97CBD428-663B-4AC7-AF7E-30B19B3C0F54}C:\users\hp\desktop\tsuyoshi2 client\metin2client.bin" = protocol=17 | dir=in | app=c:\users\hp\desktop\tsuyoshi2 client\metin2client.bin |
"UDP Query User{A858BDF0-31D0-41CB-976B-C3571F603C44}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=17 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe |
"UDP Query User{B539030E-F116-4042-A955-C2FE95619D2F}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=17 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe |
"UDP Query User{BCDBD7B5-F713-4B88-A69E-958AB9E0B6CA}C:\users\hp\desktop\battlefield vietnam\bfvietnam.exe" = protocol=17 | dir=in | app=c:\users\hp\desktop\battlefield vietnam\bfvietnam.exe |
"UDP Query User{BEC6AF8E-6531-458A-9494-2776F165716B}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"UDP Query User{D5873F6D-F3B8-44A7-B15A-E2C50D8F481E}C:\users\hp\downloads\tsuyoshi2 client\metin2client.bin" = protocol=17 | dir=in | app=c:\users\hp\downloads\tsuyoshi2 client\metin2client.bin |
"UDP Query User{DB198F44-B179-4000-B051-A273187777E2}C:\users\hp\desktop\wild way v5\start.exe" = protocol=17 | dir=in | app=c:\users\hp\desktop\wild way v5\start.exe |
"UDP Query User{DDB6F1EE-944D-46AC-8C91-C7928C76BACE}C:\users\hp\desktop\nová složka\mc.exe" = protocol=17 | dir=in | app=c:\users\hp\desktop\nová složka\mc.exe |
"UDP Query User{EF81AD9B-7033-4469-A4FD-28B3384D1E13}C:\users\hp\downloads\nathia2 client\nathia2.exe" = protocol=17 | dir=in | app=c:\users\hp\downloads\nathia2 client\nathia2.exe |
"UDP Query User{F17FDA5B-DF76-4E6D-9BF1-BC082144C610}C:\users\hp\desktop\sindicate\client.bin" = protocol=17 | dir=in | app=c:\users\hp\desktop\sindicate\client.bin |
"UDP Query User{F1C7D8D5-9768-4E97-A3F2-043B494B4459}C:\program files\counter-strike 1.6\hl.exe" = protocol=17 | dir=in | app=c:\program files\counter-strike 1.6\hl.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"[TEDDY] Only Chams" = [TEDDY] Only Chams
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{06E85E74-9945-4282-B683-4278169CC3E7}" = Sentinell
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F842B77-56EA-4AAF-8295-81A022350B5E}" = Microsoft Security Client
"{26A24AE4-039D-4CA4-87B4-2F83217005FF}" = Java(TM) 7 Update 5
"{289AC7E0-0AEE-4a7b-913C-709D9803D23E}" = Nexon Game Manager
"{32E2F180-247C-4077-B06A-20F9868568E1}_is1" = UltraMixer 3.0.0
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons
"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{45235788-142C-44BE-8A4D-DDE9A84492E5}" = AGEIA PhysX v7.09.13
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{47AA42FD-0450-4CB4-ADAF-B6E770AA7B2F}" = Sony Media Manager 2.2
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{7BD4AD00-BD4B-4AD3-A0EE-06408CC975E0}" = AuthenTec TrueSuite
"{8795CBED-55E2-4693-9F14-84EC446935BE}" = SpeechRedist
"{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Czech
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{BE1826A9-7EEE-492A-B3BC-DEF3DFAE37EE}" = TIPCI
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D3F9003B-7D17-4317-B61B-0694FF5333F8}" = Oracle VM VirtualBox 4.1.18
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D6CE0974-B12C-40D7-A569-DED4F4F3BEF0}_is1" = HammerMT2 version 1.2
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{EC6BAAC5-F5E0-48D4-B4B6-7C654DD54086}" = Sony Vegas 7.0b
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.9
"{F1D7AC58-554A-4A58-B784-B61558B1449A}" = QLBCASL
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Audacity_is1" = Audacity 2.0
"AVG Secure Search" = AVG Security Toolbar
"BatteryBar" = BatteryBar (remove only)
"Clownfish" = Clownfish for Skype
"Counter-Strike 1.6" = Counter-Strike 1.6
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.61
"DAEMON Tools Lite" = DAEMON Tools Lite
"Driver Genius Professional Edition_is1" = Driver Genius Professional Edition
"Fraps" = Fraps (remove only)
"Google Chrome" = Google Chrome
"Hamachi" = Hamachi 1.0.2.5
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HyperCam 3" = HyperCam 3
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"InstallShield_{BE1826A9-7EEE-492A-B3BC-DEF3DFAE37EE}" = Texas Instruments PCIxx21/x515/xx12 drivers.
"Metin2_is1" = Metin2
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"Opera 12.01.1532" = Opera 12.01
"PremiumSoft Navicat for MySQL_is1" = PremiumSoft Navicat 10.1 for MySQL
"PunkBusterSvc" = PunkBuster Services
"Steam App 10" = Counter-Strike
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 7" = TeamViewer 7
"Totalcmd" = Total Commander (Remove or Repair)
"uTorrent" = µTorrent
"uTorrentControl2 Toolbar" = uTorrentControl2 Toolbar
"WinRAR archiver" = WinRAR 4.20 (32-bit)
"winscp3_is1" = WinSCP 4.3.9

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1293529971-3576900606-3597958483-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 23.8.2012 15:08:58 | Computer Name = hp-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Skype.exe, verze: 5.9.0.123, časové razítko:
0x4fce1530 Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód
výjimky: 0xc0000005 Posun chyby: 0x96691168 ID chybujícího procesu: 0xc48 Čas spuštění
chybující aplikace: 0x01cd80ecc19e192b Cesta k chybující aplikaci: C:\Program Files\Skype\Phone\Skype.exe
Cesta
k chybujícímu modulu: unknown ID zprávy: fd577e62-ed55-11e1-9dbe-001a6bb36e2b

Error - 24.8.2012 1:47:50 | Computer Name = hp-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 24.8.2012 15:47:25 | Computer Name = hp-PC | Source = Application Hang | ID = 1002
Description = Program javaw.exe verze 7.0.50.6 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
4ac Čas spuštění: 01cd82309cd1c1ad Čas ukončení: 0 Cesta k aplikaci: C:\Windows\system32\javaw.exe

ID
hlášení: 7f69b3c7-ee24-11e1-8d40-001a6bb36e2b

Error - 24.8.2012 17:13:44 | Computer Name = hp-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 25.8.2012 12:58:40 | Computer Name = hp-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 25.8.2012 13:53:25 | Computer Name = hp-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 26.8.2012 7:25:11 | Computer Name = hp-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 26.8.2012 8:26:47 | Computer Name = hp-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 26.8.2012 12:40:50 | Computer Name = hp-PC | Source = Application Hang | ID = 1002
Description = Program NOTEPAD.EXE verze 6.1.7600.16385 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: 12f8 Čas spuštění: 01cd83a97ebb0328 Čas ukončení: 8 Cesta k aplikaci: C:\Windows\system32\NOTEPAD.EXE

ID
hlášení: c4089edf-ef9c-11e1-9dac-001a6bb36e2b

Error - 27.8.2012 6:24:38 | Computer Name = hp-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =

[ System Events ]
Error - 19.8.2012 6:17:02 | Computer Name = hp-PC | Source = Server | ID = 2505
Description = Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{2B3F8723-43A8-4902-B7C3-BD85765E423F},
protože jiný počítač v síti má stejný název. Server nelze spustit.

Error - 19.8.2012 13:38:30 | Computer Name = hp-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (19:37:09, ?19.?8.?2012) bylo neočekávané.

Error - 20.8.2012 7:23:13 | Computer Name = hp-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (13:21:22, ?20.?8.?2012) bylo neočekávané.

Error - 21.8.2012 9:46:44 | Computer Name = hp-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (15:21:59, ?21.?8.?2012) bylo neočekávané.

Error - 21.8.2012 14:22:02 | Computer Name = hp-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (20:20:38, ?21.?8.?2012) bylo neočekávané.

Error - 23.8.2012 1:03:54 | Computer Name = hp-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (22:08:32, ?22.?8.?2012) bylo neočekávané.

Error - 26.8.2012 3:49:14 | Computer Name = hp-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (23:42:32, ?25.?8.?2012) bylo neočekávané.

Error - 26.8.2012 7:31:31 | Computer Name = hp-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error - 27.8.2012 5:40:58 | Computer Name = hp-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (21:49:48, ?26.?8.?2012) bylo neočekávané.

Error - 27.8.2012 10:41:58 | Computer Name = hp-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby Schedule bylo dosaženo časového
limitu (60000 ms).


< End of report >

[vyosek]

Jen se zeptam, pouzivate legalni W7 nebo jsou cracknute\stahnute predaktivovane nekde z netu apod

[Wosatko]

To si nejsem jist,nainstaloval mi to tam opravář

[Wosatko]

ale budou asi z netu stažené 100%

[vyosek]

Opravare bych s prominutim kopnul do p*dele

Nota bene jestli si nechal za licenci zaplatit

Nelegalnimi systemy se tu nezabyvame

[Wosatko]

No tak volal jsem mu dnes a říkal,že jsou to windowsy,který on koupil...