Prosím o kontrolu logu, děkuji

[ultrakb]

Až jsem se jako laik zhrozil dělím na dva...

OTL logfile created on: 28.9.2012 21:41:36 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Petr\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1013,03 Mb Total Physical Memory | 430,36 Mb Available Physical Memory | 42,48% Memory free
2,38 Gb Paging File | 1,82 Gb Available in Paging File | 76,48% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 138,05 Gb Total Space | 22,04 Gb Free Space | 15,97% Space Free | Partition Type: NTFS

Computer Name: EMACHINE-CF7226 | User Name: Petr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012.09.28 21:39:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
PRC - [2012.09.08 08:48:34 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.09.02 23:16:36 | 001,149,368 | ---- | M] (Crystal Dew World) -- C:\Program Files\CrystalDiskInfo\DiskInfo.exe
PRC - [2012.06.05 09:39:42 | 000,289,544 | ---- | M] () -- C:\Program Files\Zrychleni Pocitace\PCSUService.exe
PRC - [2012.03.26 17:08:12 | 000,931,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2012.03.26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2012.03.11 23:13:21 | 001,983,232 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Firewall\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2012.03.11 23:13:00 | 006,749,512 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Firewall\COMODO\COMODO Internet Security\cfp.exe
PRC - [2011.05.26 05:43:20 | 000,154,424 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe
PRC - [2010.04.08 06:18:40 | 000,312,400 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\dsiwmis.exe
PRC - [2010.01.28 16:27:36 | 000,243,232 | ---- | M] (Acer Group) -- C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
PRC - [2009.06.04 19:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
PRC - [2009.06.04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
PRC - [2008.04.14 14:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE


========== Modules (No Company Name) ==========

MOD - [2012.09.10 18:11:56 | 009,813,704 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll
MOD - [2012.09.08 08:46:59 | 002,244,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.06.05 09:39:42 | 000,289,544 | ---- | M] () -- C:\Program Files\Zrychleni Pocitace\PCSUService.exe
MOD - [2012.01.16 22:06:32 | 000,577,621 | ---- | M] () -- C:\Program Files\Zrychleni Pocitace\Sqlite3.dll
MOD - [2008.04.14 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2004.11.09 18:10:50 | 000,311,296 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2004.11.02 17:57:08 | 000,121,344 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll


========== Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (MSDTC)
SRV - [2012.09.08 08:48:30 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.06.05 09:39:42 | 000,289,544 | ---- | M] () [Auto | Running] -- C:\Program Files\Zrychleni Pocitace\PCSUService.exe -- (PCSUService)
SRV - [2012.03.26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2012.03.11 23:13:21 | 001,983,232 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Firewall\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2011.05.26 05:43:20 | 000,154,424 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe -- (CLPSLS)
SRV - [2010.04.08 06:18:40 | 000,312,400 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2010.01.28 16:27:36 | 000,243,232 | ---- | M] (Acer Group) [Auto | Running] -- C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe -- (Updater Service)
SRV - [2009.06.04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (aqkq43x6)
DRV - [2012.03.11 23:13:46 | 000,097,760 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\inspect.sys -- (Inspect)
DRV - [2012.03.11 23:13:45 | 000,031,704 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\System32\DRIVERS\cmdhlp.sys -- (cmdHlp)
DRV - [2012.03.11 23:13:44 | 000,494,968 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\System32\DRIVERS\cmdguard.sys -- (cmdGuard)
DRV - [2011.04.17 13:57:23 | 000,431,672 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.05.14 10:49:02 | 003,221,120 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\S6000KNT.sys -- (S6000KNT)
DRV - [2010.04.12 10:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2010.04.01 11:23:32 | 002,703,032 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DRIVERS\bcmwl5.sys -- (BCM43XX)
DRV - [2010.03.12 23:41:22 | 005,867,040 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2010.03.04 11:53:16 | 000,060,456 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DRIVERS\l1c51x86.sys -- (L1c)
DRV - [2009.11.18 01:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009.11.18 01:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009.02.24 18:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\mcdbus.sys -- (mcdbus)
DRV - [2000.01.01 02:00:00 | 000,082,384 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\EUCR6SK.SYS -- (EUCR)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... orm=IE8SRC
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=i ... 1I7ACEW_cs
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={38F2 ... 2012-07-05 11:23:27&v=11.1.0.12&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2645238
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{BD3C8305-2EAF-4F56-9663-8B7405057DD6}: "URL" = http://websearch.ask.com/redirect?clien ... 018CDACFAF
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.defaultthis.engineName: "DVDVideoSoftTB Customized Web Search"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Seznam"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledAddons: cs@dictionaries.addons.mozilla.org:1.0.2
FF - prefs.js..extensions.enabledAddons: de-DE@dictionaries.addons.mozilla.org:2.0.2
FF - prefs.js..extensions.enabledAddons: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20120910
FF - prefs.js..keyword.URL: "http://isearch.avg.com/search?cid=%7Bc5 ... &sap=ku&q="
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.9: C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: File not found
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Petr\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011.10.05 15:42:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.09.08 08:48:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.09.10 15:39:46 | 000,000,000 | ---D | M]

[2011.03.27 10:11:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Extensions
[2012.09.26 22:08:02 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\azc6wgiz.default\extensions
[2012.09.26 22:08:01 | 000,000,000 | ---D | M] (WOT) -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\azc6wgiz.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2011.06.12 07:00:53 | 000,000,000 | ---D | M] (ÄŚeskĂ© slovnĂ­ky pro kontrolu pravopisu) -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\azc6wgiz.default\extensions\cs@dictionaries.addons.mozilla.org
[2011.06.12 07:00:53 | 000,000,000 | ---D | M] (German Dictionary) -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\azc6wgiz.default\extensions\de-DE@dictionaries.addons.mozilla.org
[2012.09.08 08:43:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\AZC6WGIZ.DEFAULT\EXTENSIONS\{A0D7CCB3-214D-498B-B4AA-0E8FDA9A7BF7}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\AZC6WGIZ.DEFAULT\EXTENSIONS\CS@DICTIONARIES.ADDONS.MOZILLA.ORG
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\PETR\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\AZC6WGIZ.DEFAULT\EXTENSIONS\DE-DE@DICTIONARIES.ADDONS.MOZILLA.ORG
[2011.01.26 07:18:12 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2012.09.08 08:48:35 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.07.05 11:23:13 | 000,003,750 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012.06.30 16:46:38 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.06.30 16:46:38 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.06.30 16:46:38 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.06.30 16:46:38 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.06.30 16:46:38 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2012.09.28 11:55:50 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O3 - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
O4 - HKLM..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Firewall\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006..\Run: [PCSpeedUp] C:\Program Files\Zrychleni Pocitace\PCSUNotifier.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 475
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 475
O7 - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm File not found
O8 - Extra context menu item: WikiKomentáře Google... - Reg Error: Value error. File not found
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resour ... se6886.cab (Reg Error: Key error.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 0474702744 (MUWebControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4289970B-8781-46BA-8EFE-292DA39CFA5E}: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4289970B-8781-46BA-8EFE-292DA39CFA5E}: NameServer = 8.26.56.26,156.154.70.22
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F29436D6-9FB3-4E02-8819-4C6128E1D037}: NameServer = 8.26.56.26,156.154.70.22
O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) - C:\WINDOWS\system32\guard32.dll (COMODO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

CREATERESTOREPOINT
System Restore Service not available.

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2012.09.28 21:39:38 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
[2012.09.28 21:17:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Zrychleni Pocitace
[2012.09.28 21:17:39 | 000,000,000 | ---D | C] -- C:\Program Files\Zrychleni Pocitace
[2012.09.28 21:16:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CrystalDiskInfo
[2012.09.28 21:16:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Data aplikací\OpenCandy
[2012.09.28 21:16:31 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskInfo
[2012.09.28 15:35:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Petr\Recent
[2012.09.28 11:48:37 | 010,524,080 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Petr\Plocha\mbam-setup-1.65.0.1400.exe
[2012.09.28 11:43:13 | 000,522,240 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTM.exe
[2012.09.27 16:13:54 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.09.24 18:15:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Data aplikací\wargaming.net
[2012.09.22 14:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\rundll16.exe
[2012.09.22 14:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\logo1_.exe
[2012.09.16 11:27:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\The Creative Assembly
[2012.09.08 08:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012.09.05 16:22:09 | 000,000,000 | ---D | C] -- C:\Program Files\GameSpy Arcade
[2011.03.05 18:52:43 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Petr\Data aplikací\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2012.09.28 21:45:06 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.09.28 21:39:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
[2012.09.28 21:25:59 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\PC SpeedUp Service Deactivator.job
[2012.09.28 21:17:43 | 000,000,774 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Zrychleni Pocitace.lnk
[2012.09.28 21:16:49 | 000,001,645 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\CrystalDiskInfo.lnk
[2012.09.28 20:05:03 | 000,000,396 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2012.09.28 19:54:54 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.09.28 19:54:52 | 1062,309,888 | -HS- | M] () -- C:\hiberfil.sys
[2012.09.28 15:59:28 | 000,111,616 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\kubíčkovi.dot
[2012.09.28 15:08:03 | 000,142,848 | ---- | M] () -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.09.28 14:40:31 | 000,001,582 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Defraggler.lnk
[2012.09.28 14:30:16 | 000,298,848 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.09.28 11:55:50 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2012.09.28 11:48:22 | 010,524,080 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Petr\Plocha\mbam-setup-1.65.0.1400.exe
[2012.09.28 11:42:39 | 000,522,240 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTM.exe
[2012.09.27 17:27:11 | 000,065,536 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\25328308.dot
[2012.09.26 18:00:58 | 000,003,951 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\is.jpeg
[2012.09.26 17:59:28 | 000,052,046 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\sss.jpg
[2012.09.22 14:00:43 | 000,000,056 | ---- | M] () -- C:\WINDOWS\Lic.xxx
[2012.09.21 06:33:38 | 000,696,240 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012.09.21 06:33:37 | 000,073,136 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012.09.18 15:34:03 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.09.16 11:27:52 | 000,002,060 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Medieval - Total War - Gold Edition.lnk

========== Files Created - No Company Name ==========

[2012.09.28 21:45:06 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.09.28 21:17:44 | 000,000,342 | ---- | C] () -- C:\WINDOWS\tasks\PC SpeedUp Service Deactivator.job
[2012.09.28 21:17:43 | 000,000,774 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Zrychleni Pocitace.lnk
[2012.09.28 21:16:49 | 000,001,645 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\CrystalDiskInfo.lnk
[2012.09.28 14:40:31 | 000,001,582 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Defraggler.lnk
[2012.09.28 08:14:43 | 000,111,616 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\kubíčkovi.dot
[2012.09.28 08:09:18 | 000,065,536 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\25328308.dot
[2012.09.26 18:00:57 | 000,003,951 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\is.jpeg
[2012.09.26 17:59:27 | 000,052,046 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\sss.jpg
[2012.09.16 11:27:52 | 000,002,060 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Medieval - Total War - Gold Edition.lnk
[2012.06.24 10:54:36 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2012.05.28 20:26:38 | 000,000,047 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2012.02.16 06:48:44 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.10.24 11:37:30 | 000,177,152 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2011.05.18 16:20:11 | 000,000,596 | ---- | C] () -- C:\Documents and Settings\Petr\Data aplikací\AutoGK.ini
[2011.05.09 10:06:39 | 000,000,064 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\sandra.ldb
[2011.04.27 17:05:07 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2011.04.27 17:05:07 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2011.03.27 10:10:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011.03.05 18:53:22 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\Petr\Data aplikací\vso_ts_preview.xml
[2011.03.05 18:52:43 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Petr\Data aplikací\inst.exe
[2011.03.05 18:52:43 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Petr\Data aplikací\pcouffin.cat
[2011.03.05 18:52:43 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Petr\Data aplikací\pcouffin.inf
[2011.02.14 18:21:56 | 000,000,043 | ---- | C] () -- C:\WINDOWS\System32\imon1.dat
[2011.01.29 06:10:23 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2011.01.23 16:02:21 | 000,142,848 | ---- | C] () -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.01.23 14:37:47 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2011.01.17 17:20:46 | 000,076,288 | ---- | C] () -- C:\WINDOWS\System32\S6000DIF.dll
[2011.01.17 17:20:46 | 000,015,190 | ---- | C] () -- C:\WINDOWS\S6000Twn.ini
[2011.01.17 17:16:19 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\fusioncache.dat

========== ZeroAccess Check ==========

[2010.05.04 04:05:20 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 14:00:00 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 12:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 14:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2011.04.22 06:14:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Applian
[2012.07.05 11:23:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVG Secure Search
[2011.01.20 20:51:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
[2012.07.05 11:18:52 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2011.04.17 13:57:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.05.04 05:39:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\eMachines
[2011.08.28 07:31:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Fighters
[2012.06.24 21:01:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2012.07.09 17:18:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MicroWorld
[2012.06.22 18:35:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ParetoLogic
[2012.06.16 12:59:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Partner
[2012.05.28 20:31:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PrevxCSI
[2011.07.01 12:42:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WildTangent
[2011.08.28 07:31:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Fighters
[2011.10.05 15:44:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DDMSettings
[2012.06.16 12:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DriverCure
[2012.02.04 09:35:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DVDVideoSoft
[2012.02.04 09:35:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DVDVideoSoftIEHelpers
[2012.06.02 13:47:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\GHISLER
[2012.06.24 21:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\IObit
[2012.08.04 11:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Liteon
[2012.09.28 21:16:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\OpenCandy
[2012.06.16 12:17:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ParetoLogic
[2012.06.01 14:24:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Pointstone
[2011.06.30 17:51:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Sports Interactive
[2012.07.16 22:10:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Vso
[2012.09.24 18:15:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\wargaming.net
[2011.09.20 10:29:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Windows Desktop Search
[2011.09.25 09:00:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Windows Search

========== Purity Check ==========



========== Custom Scans ==========

< >
[2010.05.04 04:04:00 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2010.05.04 13:38:14 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2012.06.06 18:23:57 | 000,000,396 | -H-- | C] () -- C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
[2012.09.28 21:17:44 | 000,000,342 | ---- | C] () -- C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job

< >

< MD5 for: AGP440.SYS >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\i386\sp3.cab:AGP440.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\dllcache\agp440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\AGP440.SYS

< MD5 for: ATAPI.SYS >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\i386\sp3.cab:atapi.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008.04.14 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\i386\AUTOCHK.EXE
[2008.04.14 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2008.04.14 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\dllcache\autochk.exe

< MD5 for: CDROM.SYS >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\i386\sp3.cab:cdrom.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 14:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\$NtUninstallKB932716-v2$\cdrom.sys
[2008.05.02 12:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\Driver Cache\i386\cdrom.sys
[2008.05.02 12:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\dllcache\cdrom.sys
[2008.05.02 12:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\drivers\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2008.04.14 14:00:00 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
[2008.04.14 14:00:00 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\dllcache\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008.04.14 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 14:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 14:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\system32\dllcache\explorer.exe

< MD5 for: HAL.DLL >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\i386\sp3.cab:hal.dll
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\SlimWare Utilities Inc\SlimDrivers\Backups\20120705T092037328125\acpiapic_mp\hal.dll
[2008.04.14 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\SlimWare Utilities Inc\SlimDrivers\Backups\20120705T092417046875\acpiapic_mp\hal.dll
[2008.04.14 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\SlimWare Utilities Inc\SlimDrivers\Backups\20120705T105040250000\acpiapic_mp\hal.dll
[2008.04.14 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\hal.dll

< MD5 for: CHANGER.SYS >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\i386\sp3.cab:Changer.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys

< MD5 for: IASTOR.SYS >
[2009.06.04 18:54:36 | 000,408,600 | ---- | M] (Intel Corporation) MD5=1D004CB1DA6323B1F55CAEF7F94B61D9 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver64\IaStor.sys
[2009.06.04 18:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\SlimWare Utilities Inc\SlimDrivers\Backups\20120705T092037328125\pci\ven_8086&dev_27c1&cc_0106\iaStor.sys
[2009.06.04 18:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\SlimWare Utilities Inc\SlimDrivers\Backups\20120705T092417046875\pci\ven_8086&dev_27c1&cc_0106\iaStor.sys
[2009.06.04 18:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\SlimWare Utilities Inc\SlimDrivers\Backups\20120705T105040250000\pci\ven_8086&dev_27c1&cc_0106\iaStor.sys
[2009.06.04 18:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver\IaStor.sys
[2009.06.04 12:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\WINDOWS\OemDir\iaStor.sys
[2009.06.04 18:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\WINDOWS\system32\drivers\iaStor.sys
[2009.06.04 18:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\WINDOWS\system32\DRVSTORE\iaAHCI_A9394F3D35C80DCC4A81BA0CEEA79EB027D1AA6E\iaStor.sys
[2009.06.04 12:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\iaStor.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\i386\sp3.cab:isapnp.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 14:00:00 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\dllcache\isapnp.sys
[2008.04.14 14:00:00 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
[2008.04.14 14:00:00 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\isapnp.sys

< MD5 for: LSASS.EXE >
[2008.04.14 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\dllcache\lsass.exe
[2008.04.14 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.14 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008.04.14 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

< MD5 for: NETLOGON.DLL >
[2008.04.14 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2008.04.14 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2008.04.14 14:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2008.04.14 14:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\dllcache\smss.exe
[2008.04.14 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
[2008.04.14 14:00:00 | 000,481,792 | ---- | M] (Microsoft Corporation) MD5=F209B5C79A87A9521DC0BD88B039EEE3 -- C:\i386\SYSTEM32\SMSS.EXE

< MD5 for: SVCHOST.EXE >
[2008.04.14 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2008.04.14 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.14 14:00:00 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 14:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\dllcache\userinit.exe
[2008.04.14 14:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe

< MD5 for: WINLOGON.EXE >
[2008.04.14 14:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008.04.14 14:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2008.04.14 14:00:00 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2008.04.14 14:00:00 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[4 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\bd9c7b539a9872b06610b24392bafeaa\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\bd9c7b539a9872b06610b24392bafeaa\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011.03.28 17:20:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Adobe
[2011.10.05 15:44:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DDMSettings
[2011.02.26 13:19:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DivX
[2012.06.16 12:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DriverCure
[2012.07.11 16:04:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\dvdcss
[2012.02.04 09:35:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DVDVideoSoft
[2012.02.04 09:35:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DVDVideoSoftIEHelpers
[2012.06.02 13:47:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\GHISLER
[2011.03.31 06:44:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Google
[2010.05.04 04:04:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Identities
[2010.05.04 05:19:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\InstallShield
[2012.06.24 21:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\IObit
[2012.08.04 11:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Liteon
[2010.05.04 05:56:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Macromedia
[2012.06.08 10:12:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Malwarebytes
[2012.08.15 10:48:13 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Petr\Data aplikací\Microsoft
[2011.03.27 10:11:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Mozilla
[2012.09.28 21:16:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\OpenCandy
[2012.06.16 12:17:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ParetoLogic
[2012.06.01 14:24:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Pointstone
[2012.05.25 18:33:22 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\Petr\Data aplikací\SecuROM
[2011.06.30 17:51:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Sports Interactive
[2012.04.21 08:57:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\vlc
[2012.07.16 22:10:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Vso
[2012.09.24 18:15:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\wargaming.net
[2011.09.20 10:29:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Windows Desktop Search
[2011.09.25 09:00:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Windows Search

< %APPDATA%\*.exe /s >
[2011.03.05 18:52:43 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\inst.exe
[2012.09.28 21:17:29 | 002,686,376 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\OpenCandy\EBFE2C951B544EA98E2987E47574E32E\pcspeedup_p7v1.exe
[2012.07.18 00:53:12 | 002,682,336 | ---- | M] (Speedchecker Limited ) -- C:\Documents and Settings\Petr\Data aplikací\OpenCandy\EBFE2C951B544EA98E2987E47574E32E\PCSU_SL_3.1.2.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2011.04.17 13:57:23 | 000,431,672 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2010.05.04 05:55:11 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2010.05.04 05:55:11 | 001,069,056 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2010.05.04 05:55:10 | 000,471,040 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.09.28 14:30:16 | 000,298,848 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 14:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation)
"PCSpeedUp" = C:\Program Files\Zrychleni Pocitace\PCSUNotifier.exe -- [2012.06.05 09:39:44 | 000,188,680 | ---- | M] ()

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >
[boot loader]
timeout=3
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.09.28 21:45:06 | 000,000,512 | ---- | M] () MD5=1C20EE640785DC6DD111EB875892510E -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2009.02.03 20:08:54 | 009,317,165 | ---- | M] () -- \ZALOHA\richie\Install\All To Mp3 Converter 2.15 +Crack.zip
[2008.11.17 10:56:36 | 035,144,410 | ---- | M] () -- \ZALOHA\richie\Install\DVD lab-pro 2.5+Crack.rar
[2011.06.05 17:58:08 | 1048,576,000 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\mafia2\mafia-ii-cz-crack-data-disk-kubyck-part1.rar
[2011.06.06 17:23:48 | 1048,576,000 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\mafia2\mafia-ii-cz-crack-data-disk-kubyck-part2.rar
[2011.06.06 18:02:40 | 1048,576,000 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\mafia2\mafia-ii-cz-crack-data-disk-kubyck-part3.rar
[2011.06.06 18:31:35 | 1048,576,000 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\mafia2\mafia-ii-cz-crack-data-disk-kubyck-part4.rar
[2011.06.07 06:20:03 | 1048,576,000 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\mafia2\mafia-ii-cz-crack-data-disk-kubyck-part5.rar
[2011.06.07 17:14:23 | 1048,576,000 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\mafia2\mafia-ii-cz-crack-data-disk-kubyck-part6.rar
[2011.06.07 17:31:13 | 492,077,637 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\mafia2\mafia-ii-cz-crack-data-disk-kubyck-part7.rar
[2008.10.11 15:23:04 | 000,697,825 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\Stronghold Crusader\Str_C_verze_1.1crack.rar
[2006.12.20 20:42:50 | 002,754,748 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\Warcraft 3 Complete Game\the frozen throne\Warcraft 3 Crack Nocd Reign Of Chaos & The Frozen Throne By.rar
[2006.12.22 01:16:30 | 002,010,471 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\Warcraft 3 Complete Game\the frozen throne\Warcraft 3 The Frozen Throne v1.07 Crack NO-CD.zip
[2007.02.10 16:13:46 | 001,085,407 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\Warcraft 3 Complete Game\the frozen throne\frozen - baze WORKS\Warcraft3 Frozen Throne Patch 1.20C Nocd Crack.rar

< *keygen* /s >
[2008.05.04 16:20:00 | 014,667,482 | ---- | M] () -- \ZALOHA\richie\Install\ImTOO 3GP Video Converter v.3.1.32 Build 0601 + KeyGen_DnGnMsTr.rar
[2008.05.18 00:30:04 | 000,000,076 | ---- | M] () -- \ZALOHA\richie\Install\MWAV\navod keygen.txt
[2003.08.06 19:50:08 | 000,004,014 | ---- | M] () -- \ZALOHA\richie\Install\winrar 3.41\winrarv3.41finaltrialtofullcrackgreatelmo\keygen.nfo
[2006.07.09 16:39:20 | 000,057,344 | ---- | M] () -- \ZALOHA\richie\My Music\prodigy\experinece\ImTOO 3GP Video Converter v.3.1.32 Build 0601 + KeyGen_DnGnMsTr\keygen.exe

< *loader* /s >
[2011.06.20 14:07:00 | 000,009,767 | ---- | M] () -- \Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\azc6wgiz.default\conduitCommon\modules\3.5.0.12\ExternalLibraryLoader.jsm
[2011.08.15 13:20:54 | 000,010,145 | ---- | M] () -- \Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\azc6wgiz.default\conduitCommon\modules\3.6.0.10\ExternalLibraryLoader.jsm
[2011.09.27 14:25:46 | 000,010,144 | ---- | M] () -- \Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\azc6wgiz.default\conduitCommon\modules\3.7.0.6\ExternalLibraryLoader.jsm
[2011.11.07 12:59:32 | 000,010,144 | ---- | M] () -- \Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\azc6wgiz.default\conduitCommon\modules\3.8.0.8\ExternalLibraryLoader.jsm
[2008.04.14 14:00:00 | 000,017,421 | ---- | M] () -- \i386\DMLOADER.DL_
[2008.04.14 14:00:00 | 000,115,367 | ---- | M] () -- \i386\OSLOADER.EX_
[2008.04.14 14:00:00 | 000,133,029 | ---- | M] () -- \i386\OSLOADER.NT_
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2011.01.10 15:06:24 | 000,299,408 | ---- | M] () -- \Program Files\Windows Live Safety Center\wlscUploader.exe
[2010.05.04 05:30:36 | 000,082,784 | ---- | M] () -- \WINDOWS\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2008.04.14 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2012.06.05 11:26:42 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2008.04.14 14:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dllcache\dmloader.dll
[2012.05.03 12:45:42 | 000,009,622 | ---- | M] () -- \WINDOWS\system32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2004.01.20 09:58:54 | 000,780,321 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\Warcraft 3 Complete Game\the frozen throne\w3xp300-3xx\PvPGN-Loader-w3_w3xp112-nocd.exe
[2004.01.20 09:56:24 | 000,003,873 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\Warcraft 3 Complete Game\the frozen throne\w3xp300-3xx\wc3_110_loader.rar

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >
[2012.09.28 22:18:03 | 000,000,342 | ---- | M] () -- \WINDOWS\Tasks\PC SpeedUp Service Deactivator.job

< *serial* /s >
[2004.08.17 15:44:16 | 000,030,301 | ---- | M] () -- \cmdcons\SERIAL.SY_
[2008.04.14 14:00:00 | 000,024,957 | ---- | M] () -- \i386\DPSERIAL.DL_
[2008.04.14 14:00:00 | 000,030,259 | ---- | M] () -- \i386\SERIAL.SY_
[2008.04.14 14:00:00 | 000,006,549 | ---- | M] () -- \i386\SERIALUI.DL_
[2012.03.29 06:01:00 | 000,413,696 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.1.10329.0\System.Runtime.Serialization.dll
[2012.05.16 19:13:14 | 001,186,816 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.1.10329.0\System.Runtime.Serialization.ni.dll
[2010.04.08 00:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.05.04 04:06:14 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.05.04 04:06:53 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.09.13 06:54:14 | 000,011,776 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.06.13 16:35:34 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.09.13 06:54:34 | 000,090,112 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2011.01.24 18:39:37 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.05.16 20:02:24 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\505e12638acd6fdb22e1fd2d4c6fc232\System.Runtime.Serialization.ni.dll
[2011.01.26 09:43:03 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\8061a0f5c1c2ee0549e19224352f67fa\System.Runtime.Serialization.ni.dll
[2012.05.25 12:45:46 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\a644ec04e18202b60f9d828bc207972b\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011.01.26 09:44:42 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\dd7497aa089340600c8c5af8ab421ff7\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.05.25 12:56:19 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\5a4d233916a69d48fa12a9f7f103d893\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.05.25 12:56:01 | 002,647,040 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\8a9fac9cb825b5d2db0bdb867fff940e\System.Runtime.Serialization.ni.dll
[2012.05.25 15:06:16 | 000,009,216 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\4b540b784465ca3f0742990e5af444e3\System.Xml.Serialization.ni.dll
[2011.09.26 13:53:45 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.06.13 16:26:18 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2011.09.26 13:53:44 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2012.06.13 16:26:10 | 001,026,936 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.06.13 16:26:42 | 000,011,120 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2004.07.15 14:31:54 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2003.04.07 19:24:52 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v1.1.4322\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2008.09.10 17:46:28 | 000,011,776 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.04.08 00:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 001,026,936 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2010.06.15 02:33:16 | 000,017,840 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 02:33:16 | 000,099,208 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2008.04.14 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2008.04.14 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2008.04.14 14:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2008.04.14 14:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 14:00:00 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
[2009.07.06 09:59:38 | 000,397,507 | ---- | M] () -- \ZALOHA\richie\Install\mp3 splitter 3.0 serial number.rar
[2009.05.18 17:47:00 | 000,000,064 | ---- | M] () -- \ZALOHA\richie\Install\mp3 splitter 3.0 serial number.txt
[2008.11.08 12:19:31 | 000,000,780 | ---- | M] () -- \ZALOHA\richie\Install\vsodivxtodvd3.2.1.55 + serial\ConvertXtoDVD v.3.2.1.55 Serial.txt
[2008.11.08 11:24:46 | 000,000,031 | ---- | M] () -- \ZALOHA\richie\Install\vsodivxtodvd3.2.1.55 + serial\seriale [ConvertXToDVD.3.2.1.55b].vsoConvertXtoDVD3 SN buono.txt
[2006.12.18 16:26:30 | 000,000,030 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\Warcraft 3 Complete Game\the frozen throne\2 2 Warcraft 3 Frozen Throne - Serial.txt
[2006.12.18 16:26:26 | 000,000,091 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\Warcraft 3 Complete Game\the frozen throne\Mac-Warcraft-3-and-Frozen-Throne-serial.txt
[2006.12.18 16:52:46 | 000,000,107 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\Warcraft 3 Complete Game\the frozen throne\Serial de Warcraft 3 Reign of Chaos & The Frozen Trone.txt
[2006.12.03 17:01:00 | 000,000,030 | ---- | M] () -- \ZALOHA\richie\Install\wow-expert\Warcraft 3 Complete Game\WarCraft 3 Reign of Chaos\Warcraft 3 Serial Number (Works!).txt
[2010.06.15 07:27:04 | 000,019,968 | ---- | M] () -- \ZALOHA\richie\Install\zrychlení pc - čistka\serial slow pc fighter.doc

< *w7lxe* /s >

< End of report >

[ultrakb]

OTL Extras logfile created on: 28.9.2012 21:41:36 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Petr\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1013,03 Mb Total Physical Memory | 430,36 Mb Available Physical Memory | 42,48% Memory free
2,38 Gb Paging File | 1,82 Gb Available in Paging File | 76,48% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 138,05 Gb Total Space | 22,04 Gb Free Space | 15,97% Space Free | Partition Type: NTFS

Computer Name: EMACHINE-CF7226 | User Name: Petr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1292286586-2915903831-1203752577-1006\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" [2011.10.28 10:29:38 | 000,000,000 | ---D | M]
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"5985:TCP" = 5985:TCP:*:Disabled:Vzdálená správa systému Windows

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{068B46A0-8858-4CEB-80BC-A4AE787A05FC}" = Windows Live Sync
"{0F842B77-56EA-4AAF-8295-81A022350B5E}" = Microsoft Security Client
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{1D097338-B4FA-4F29-9C43-8D7A970A007E}" = Windows Live Fotogalerie
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{378E39C3-92F2-4241-AC90-FAF023007D6D}" = Klient Správy přístupových práv v systému Windows s aktualizací Service Pack 2
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E62B27C-342F-4B44-9331-CA4BC59A586F}" = Asistent pro přihlášení ke službě Windows Live
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{479A749B-1684-4881-8266-BF8DD22251E7}" = Windows Live Writer
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client CS-CZ Language Pack
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{62D1C755-74C9-4BA0-841B-B7D795DEA9C7}" = Video Web Camera
"{674756A1-D4E6-445C-959B-AD8D0C03FABC}" = SLOW-PCfighter
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6CDAFDDB-5931-4B91-9872-0567D80B1C46}_is1" = Xvid Converter 1.3
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{71E40B32-5173-4538-8996-5822DD18E8D4}" = Windows Live Messenger
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.2.1.55b
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = eMachines Recovery Management
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_HOMESTUDENTR_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_HOMESTUDENTR_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_HOMESTUDENTR_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_HOMESTUDENTR_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{934F0468-3ECE-4CAD-98B4-BD0BCD8D71B2}" = SlimDrivers
"{95120000-00AF-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Czech)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{99D7DE4C-2775-4B16-B155-7F09AE939E8E}" = Microsoft Works
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.5.2 MUI
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3F328E4-EB9F-4ABF-8FF3-5AD0472743D8}" = Windows Live Essentials
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{E5A10EF8-DBF3-4251-A9CA-423311DBBFC8}" = Windows Live Mail
"{EC905264-BCFE-423B-9C42-C3A106266790}" = Klient Správy přístupových práv v systému Windows SP2, zpětná kompatibilita
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = eMachines Updater
"{F01B7EF4-F487-4948-AA18-5332FE5495C9}" = Medieval - Total War - Gold Edition
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{FC9B811E-39BC-4813-9E29-B83CCF700010}" = WebCam
"{FD8E178D-8B4E-42DA-B434-EFF270329B1C}" = COMODO Internet Security
"6C25ABF0CC222C27D9904559CA1254316CC3DB06" = ENE USB Card Reader Driver
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Argente - Registry Cleaner_is1" = Argente - Registry Cleaner 3.0.0.1
"CCleaner" = CCleaner
"COMODO GeekBuddy" = COMODO GeekBuddy
"CrystalDiskInfo_is1" = CrystalDiskInfo 5.0.4
"Defraggler" = Defraggler
"DivX Setup.divx.com" = DivX Setup
"eMachines Screensaver" = eMachines ScreenSaver
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"Identity Card" = Identity Card
"ie8" = Windows Internet Explorer 8
"InstallShield_{F01B7EF4-F487-4948-AA18-5332FE5495C9}" = Medieval - Total War - Gold Edition
"LManager" = Launch Manager
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 12.0 (x86 cs)" = Mozilla Firefox 12.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"PCSU-SL_is1" = Zrychleni Pocitace - Kompletně odinstalovat
"PowerISO" = PowerISO
"Recuva" = Recuva
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player 1.1.9
"VobSub" = VobSub v2.23 (Remove Only)
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"XviD MPEG4 Video Codec" = XviD MPEG4 Video Codec (remove only)

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 10.8.2012 0:11:34 | Computer Name = EMACHINE-CF7226 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.

Error - 10.8.2012 0:11:35 | Computer Name = EMACHINE-CF7226 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.

Error - 10.8.2012 0:12:13 | Computer Name = EMACHINE-CF7226 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.

Error - 10.8.2012 0:12:14 | Computer Name = EMACHINE-CF7226 | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.

Error - 10.8.2012 15:23:05 | Computer Name = EMACHINE-CF7226 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x05799290.

Error - 13.8.2012 10:31:27 | Computer Name = EMACHINE-CF7226 | Source = Application Error | ID = 1000
Description = Chybující aplikace stronghold crusader.exe, verze 1.0.0.1, chybující
modul unknown, verze 0.0.0.0, adresa chyby 0x6f6e706f.

Error - 16.8.2012 9:25:31 | Computer Name = EMACHINE-CF7226 | Source = Windows Search Service | ID = 3006
Description = Sledování výkonu služby sběrače nebylo inicializováno, protože nejsou
načteny čítače nebo nebyl otevřen sdílený objekt paměti. Tato skutečnost má vliv
pouze na dostupnost čítačů výkonu. Restartujte počítač.

Error - 16.8.2012 9:25:32 | Computer Name = EMACHINE-CF7226 | Source = Windows Search Service | ID = 3007
Description = Sledování výkonu objektu sběrače nebylo inicializováno, protože nejsou
načteny čítače nebo nebyl otevřen sdílený objekt paměti. Tato skutečnost má vliv
pouze na dostupnost čítačů výkonu. Restartujte počítač. Kontext: aplikace , katalog
SystemIndex

Error - 16.8.2012 9:46:56 | Computer Name = EMACHINE-CF7226 | Source = Windows Search Service | ID = 3006
Description = Sledování výkonu služby sběrače nebylo inicializováno, protože nejsou
načteny čítače nebo nebyl otevřen sdílený objekt paměti. Tato skutečnost má vliv
pouze na dostupnost čítačů výkonu. Restartujte počítač.

Error - 16.8.2012 9:46:57 | Computer Name = EMACHINE-CF7226 | Source = Windows Search Service | ID = 3007
Description = Sledování výkonu objektu sběrače nebylo inicializováno, protože nejsou
načteny čítače nebo nebyl otevřen sdílený objekt paměti. Tato skutečnost má vliv
pouze na dostupnost čítačů výkonu. Restartujte počítač. Kontext: aplikace , katalog
SystemIndex

[ System Events ]
Error - 28.9.2012 5:55:45 | Computer Name = EMACHINE-CF7226 | Source = Service Control Manager | ID = 7034
Description = Služba COMODO livePCsupport Service byla neočekávaně ukončena. Tento
stav nastal již 1krát.

Error - 28.9.2012 5:55:45 | Computer Name = EMACHINE-CF7226 | Source = Service Control Manager | ID = 7031
Description = Služba Microsoft Antimalware Service byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 15000 milisekund: Restartovat
službu.

Error - 28.9.2012 5:55:45 | Computer Name = EMACHINE-CF7226 | Source = Service Control Manager | ID = 7034
Description = Služba Dritek WMI Service byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 28.9.2012 5:55:46 | Computer Name = EMACHINE-CF7226 | Source = Service Control Manager | ID = 7034
Description = Služba Updater Service byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 28.9.2012 5:55:46 | Computer Name = EMACHINE-CF7226 | Source = Service Control Manager | ID = 7034
Description = Služba Intel(R) Matrix Storage Event Monitor byla neočekávaně ukončena.
Tento stav nastal již 1krát.

Error - 28.9.2012 8:37:23 | Computer Name = EMACHINE-CF7226 | Source = Service Control Manager | ID = 7034
Description = Služba COMODO livePCsupport Service byla neočekávaně ukončena. Tento
stav nastal již 1krát.

Error - 28.9.2012 8:37:23 | Computer Name = EMACHINE-CF7226 | Source = Service Control Manager | ID = 7031
Description = Služba Microsoft Antimalware Service byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 15000 milisekund: Restartovat
službu.

Error - 28.9.2012 8:37:24 | Computer Name = EMACHINE-CF7226 | Source = Service Control Manager | ID = 7034
Description = Služba Dritek WMI Service byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 28.9.2012 8:37:24 | Computer Name = EMACHINE-CF7226 | Source = Service Control Manager | ID = 7034
Description = Služba Updater Service byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 28.9.2012 8:37:25 | Computer Name = EMACHINE-CF7226 | Source = Service Control Manager | ID = 7034
Description = Služba Intel(R) Matrix Storage Event Monitor byla neočekávaně ukončena.
Tento stav nastal již 1krát.


< End of report >

[Márty84]

Koukam, ze je tam novy prirustek - Zrychleni pocitace. Pryc s tim, dokaze to udelat neplechu.

Za ty cracky vas teda moc nepochvalim



Znovu spustte OTL
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]

:services
PCSUService

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:otl
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
IE - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\SearchScopes\{BD3C8305-2EAF-4F56-9663-8B7405057DD6}: "URL" = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_EU&apn_ptnrs=FV&apn_dtid=YYYYYYUGCZ&apn_uid=5F00D964-7FAA-42AB-83D2-4B34F28CD3BA&apn_sauid=B22FC3F4-1ED7-428D-9C6E-06018CDACFAF
FF - prefs.js..browser.search.defaultthis.engineName: "DVDVideoSoftTB Customized Web Search"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: File not found
O3 - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKU\S-1-5-21-1292286586-2915903831-1203752577-1006\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
[2012.09.28 21:17:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Zrychleni Pocitace
[2012.09.28 21:17:39 | 000,000,000 | ---D | C] -- C:\Program Files\Zrychleni Pocitace
[2012.09.28 11:48:37 | 010,524,080 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Petr\Plocha\mbam-setup-1.65.0.1400.exe
[2012.09.28 21:25:59 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\PC SpeedUp Service Deactivator.job
[2012.09.28 21:17:43 | 000,000,774 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Zrychleni Pocitace.lnk
[2012.06.24 21:01:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2012.06.24 21:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\IObit
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[4 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\bd9c7b539a9872b06610b24392bafeaa\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\bd9c7b539a9872b06610b24392bafeaa\*.tmp -> ]
[2012.09.28 21:17:29 | 002,686,376 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\OpenCandy\EBFE2C951B544EA98E2987E47574E32E\pcspeedup_p7v1.exe

:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PCSpeedUp"=-

Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.




Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu a spustte.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne delsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

[ultrakb]

Jen pro zajímavost
http://cima.security.comodo.com/report/ ... 95e9d2.htm

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 7894 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Petr
->Temp folder emptied: 2891530 bytes
->Temporary Internet Files folder emptied: 47373 bytes
->FireFox cache emptied: 60026796 bytes
->Flash cache emptied: 506 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 55260 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 60,00 mb


[EMPTYFLASH]

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: Petr
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== SERVICES/DRIVERS ==========
Service PCSUService stopped successfully!
Service PCSUService deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-1292286586-2915903831-1203752577-1006\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-1292286586-2915903831-1203752577-1006\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}\ not found.
Registry key HKEY_USERS\S-1-5-21-1292286586-2915903831-1203752577-1006\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_USERS\S-1-5-21-1292286586-2915903831-1203752577-1006\Software\Microsoft\Internet Explorer\SearchScopes\{BD3C8305-2EAF-4F56-9663-8B7405057DD6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BD3C8305-2EAF-4F56-9663-8B7405057DD6}\ not found.
Prefs.js: "DVDVideoSoftTB Customized Web Search" removed from browser.search.defaultthis.engineName
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: false removed from browser.search.suggest.enabled
Prefs.js: true removed from browser.search.useDBForOrder
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1292286586-2915903831-1203752577-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_USERS\S-1-5-21-1292286586-2915903831-1203752577-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107}\ not found.
Folder C:\Documents and Settings\All Users\Nabídka Start\Programy\Zrychleni Pocitace\ not found.
C:\Program Files\Zrychleni Pocitace folder moved successfully.
C:\Documents and Settings\Petr\Plocha\mbam-setup-1.65.0.1400.exe moved successfully.
C:\WINDOWS\tasks\PC SpeedUp Service Deactivator.job moved successfully.
File C:\Documents and Settings\Petr\Plocha\Zrychleni Pocitace.lnk not found.
C:\Documents and Settings\All Users\Data aplikací\IObit\Advanced SystemCare V5 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\IObit folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\IObit Uninstaller\Log folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\IObit Uninstaller folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare V5\Toolbox folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare V5\Log folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare V5\Boottime folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare V5\Backup folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare V5 folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare V4\Toolbox folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare V4\PMonitor folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare V4\Log folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare V4\Backup folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit\Advanced SystemCare folder moved successfully.
C:\Documents and Settings\Petr\Data aplikací\IObit folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1E8.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI13E.tmp deleted successfully.
C:\WINDOWS\Installer\MSI17D.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1E4.tmp deleted successfully.
C:\WINDOWS\Installer\MSI1E6.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\bd9c7b539a9872b06610b24392bafeaa\BIT1.tmp deleted successfully.
File C:\Documents and Settings\Petr\Data aplikací\OpenCandy\EBFE2C951B544EA98E2987E47574E32E\pcspeedup_p7v1.exe not found.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\PCSpeedUp not found.

OTL by OldTimer - Version 3.2.69.0 log created on 09292012_084432

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

A roguekiller

ogueKiller V8.1.0 [09/28/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Petr [Práva správce]
Mód : Kontrola -- Datum : 09/29/2012 08:52:04

¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[RESIDUE] NOTEPAD.EXE -- C:\WINDOWS\NOTEPAD.EXE -> ERROR [0x5]

¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{4289970B-8781-46BA-8EFE-292DA39CFA5E} : NameServer (8.26.56.26,156.154.70.22) -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{F29436D6-9FB3-4E02-8819-4C6128E1D037} : NameServer (8.26.56.26,156.154.70.22) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{4289970B-8781-46BA-8EFE-292DA39CFA5E} : NameServer (8.26.56.26,156.154.70.22) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{F29436D6-9FB3-4E02-8819-4C6128E1D037} : NameServer (8.26.56.26,156.154.70.22) -> NALEZENO
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ] HKLM\[...]\SystemRestore : DisableSR (1) -> NALEZENO
[HJ SMENU] HKLM\[...]\Advanced : Start_ShowRecentDocs (0) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

ÿþ1

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 1c20ee640785dc6dd111eb875892510e
[BSP] d52f6175396562ec6753d898950d9d6d : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 2048 | Size: 11264 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 23070720 | Size: 141361 Mo
Error reading LL1 MBR!
Error reading LL2 MBR!

Dokončeno : << RKreport[1].txt >>
RKreport[1].txt

[Márty84]

Jen pro zajímavost
http://cima.security.comodo.com/report/ ... 95e9d2.htm

Co presne jsem tam mel videt?



Znovu spustte RogueKiller (pokud jste ho jeste nezavrel, rovnou kliknete na napis Smazat).
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava. Objevi se dalsi log. I ten mi sem vlozte.

[ultrakb]

No, Comodo mi vyhodnotilo ten program jako škodlivou položku, ale proklikal jsem to. Copak já tomu rozumím?

ogueKiller V8.1.0 [09/28/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Petr [Práva správce]
Mód : Odebrat -- Datum : 09/29/2012 09:45:24

¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[RESIDUE] NOTEPAD.EXE -- C:\WINDOWS\NOTEPAD.EXE -> ERROR [0x5]

¤¤¤ ¤¤¤ Záznamy Registrů: : 7 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{4289970B-8781-46BA-8EFE-292DA39CFA5E} : NameServer (8.26.56.26,156.154.70.22) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{F29436D6-9FB3-4E02-8819-4C6128E1D037} : NameServer (8.26.56.26,156.154.70.22) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{4289970B-8781-46BA-8EFE-292DA39CFA5E} : NameServer (8.26.56.26,156.154.70.22) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{F29436D6-9FB3-4E02-8819-4C6128E1D037} : NameServer (8.26.56.26,156.154.70.22) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> ERROR [0x1]
[HJ] HKLM\[...]\SystemRestore : DisableSR (1) -> ERROR [0x5]
[HJ SMENU] HKLM\[...]\Advanced : Start_ShowRecentDocs (0) -> ERROR [0x5]

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

ÿþ1

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 1c20ee640785dc6dd111eb875892510e
[BSP] d52f6175396562ec6753d898950d9d6d : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 2048 | Size: 11264 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 23070720 | Size: 141361 Mo
Error reading LL1 MBR!
Error reading LL2 MBR!

Dokončeno : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt




RogueKiller V8.1.0 [09/28/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : Petr [Práva správce]
Mód : Oprava HOSTS -- Datum : 09/29/2012 09:45:59

¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[RESIDUE] NOTEPAD.EXE -- C:\WINDOWS\NOTEPAD.EXE -> ERROR [0x5]

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

ÿþ1

¤¤¤ Resetovaný HOSTS: ¤¤¤


Dokončeno : << RKreport[5].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt

[Márty84]

Aha Byl to samozrejme falesny polach. Antiviry nemaji rady programky, ktere tady pouzivame


Ted bych rad opravil ty IP, ale asi to tak necham. Pokud totiz mate nastaveno, ze se protokol TCP/IP nastavuje rucne, mohl by vam prestat fungovat internet a musel byste tam zadat udaje ze smlouvy s poskytovatelem. Jenze kdyz je tam nemuzete najit


Jeste se mi nelibi, re RK vyhazuje error u MBR, tak se jeste radeji podivame

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

• Kliknete na volbu Change parametrs
• V okne Additional Option zakliknete vsechny moznosti
• Kliknete na OK
• Utilite prikazte, at skenuje - klik na Start Scan
• Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
• Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
• Pokud mate vsude Skip, kliknete na Continue
• Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

[ultrakb]

Je mi to jasné

Žádné IP tam nejsou, tu zjistím jen v nastavení přípojení, já se k tomu nevyjadřuji, to je jako smlouva přes telefon - zákaznický list mám doma.

10:25:49.0281 2240 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
10:25:49.0484 2240 ============================================================
10:25:49.0484 2240 Current date / time: 2012/09/29 10:25:49.0484
10:25:49.0484 2240 SystemInfo:
10:25:49.0484 2240
10:25:49.0484 2240 OS Version: 5.1.2600 ServicePack: 3.0
10:25:49.0484 2240 Product type: Workstation
10:25:49.0484 2240 ComputerName: EMACHINE-CF7226
10:25:49.0484 2240 UserName: Petr
10:25:49.0484 2240 Windows directory: C:\WINDOWS
10:25:49.0484 2240 System windows directory: C:\WINDOWS
10:25:49.0484 2240 Processor architecture: Intel x86
10:25:49.0484 2240 Number of processors: 2
10:25:49.0484 2240 Page size: 0x1000
10:25:49.0484 2240 Boot type: Normal boot
10:25:49.0484 2240 ============================================================
10:25:51.0718 2240 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:25:51.0734 2240 ============================================================
10:25:51.0734 2240 \Device\Harddisk0\DR0:
10:25:51.0734 2240 MBR partitions:
10:25:51.0734 2240 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1600800, BlocksNum 0x11418800
10:25:51.0734 2240 ============================================================
10:25:51.0765 2240 C: <-> \Device\Harddisk0\DR0\Partition1
10:25:51.0765 2240 ============================================================
10:25:51.0765 2240 Initialize success
10:25:51.0765 2240 ============================================================
10:26:39.0890 1536 ============================================================
10:26:39.0890 1536 Scan started
10:26:39.0890 1536 Mode: Manual; SigCheck; TDLFS;
10:26:39.0890 1536 ============================================================
10:26:40.0000 1536 ================ Scan system memory ========================
10:26:40.0000 1536 System memory - ok
10:26:40.0000 1536 ================ Scan services =============================
10:26:40.0203 1536 Abiosdsk - ok
10:26:40.0234 1536 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
10:26:41.0390 1536 abp480n5 - ok
10:26:41.0484 1536 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:26:41.0750 1536 ACPI - ok
10:26:41.0765 1536 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
10:26:42.0046 1536 ACPIEC - ok
10:26:42.0093 1536 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
10:26:42.0359 1536 adpu160m - ok
10:26:42.0390 1536 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
10:26:42.0640 1536 aec - ok
10:26:42.0687 1536 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
10:26:42.0781 1536 AFD - ok
10:26:42.0812 1536 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
10:26:43.0078 1536 agp440 - ok
10:26:43.0125 1536 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
10:26:43.0390 1536 agpCPQ - ok
10:26:43.0421 1536 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
10:26:43.0562 1536 Aha154x - ok
10:26:43.0656 1536 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
10:26:43.0906 1536 aic78u2 - ok
10:26:43.0953 1536 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
10:26:44.0203 1536 aic78xx - ok
10:26:44.0265 1536 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
10:26:44.0515 1536 Alerter - ok
10:26:44.0546 1536 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
10:26:44.0671 1536 ALG - ok
10:26:44.0750 1536 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
10:26:44.0968 1536 AliIde - ok
10:26:45.0000 1536 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
10:26:45.0265 1536 alim1541 - ok
10:26:45.0390 1536 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys
10:26:45.0718 1536 Ambfilt - ok
10:26:45.0765 1536 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
10:26:46.0046 1536 amdagp - ok
10:26:46.0078 1536 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
10:26:46.0234 1536 amsint - ok
10:26:46.0265 1536 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
10:26:46.0515 1536 asc - ok
10:26:46.0546 1536 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
10:26:46.0687 1536 asc3350p - ok
10:26:46.0718 1536 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
10:26:46.0968 1536 asc3550 - ok
10:26:47.0093 1536 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
10:26:47.0171 1536 aspnet_state - ok
10:26:47.0203 1536 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:26:47.0453 1536 AsyncMac - ok
10:26:47.0546 1536 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
10:26:47.0796 1536 atapi - ok
10:26:47.0796 1536 Atdisk - ok
10:26:47.0828 1536 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:26:48.0093 1536 Atmarpc - ok
10:26:48.0171 1536 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
10:26:48.0453 1536 AudioSrv - ok
10:26:48.0484 1536 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
10:26:48.0750 1536 audstub - ok
10:26:48.0890 1536 [ C4DD93C82227D964897940C68391A577 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
10:26:49.0078 1536 BCM43XX - ok
10:26:49.0109 1536 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
10:26:49.0406 1536 Beep - ok
10:26:49.0453 1536 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
10:26:49.0843 1536 BITS - ok
10:26:49.0890 1536 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
10:26:50.0046 1536 Browser - ok
10:26:50.0109 1536 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
10:26:50.0343 1536 cbidf - ok
10:26:50.0359 1536 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
10:26:50.0593 1536 cbidf2k - ok
10:26:50.0625 1536 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
10:26:50.0890 1536 CCDECODE - ok
10:26:50.0921 1536 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
10:26:51.0031 1536 cd20xrnt - ok
10:26:51.0062 1536 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
10:26:51.0343 1536 Cdaudio - ok
10:26:51.0375 1536 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
10:26:51.0609 1536 Cdfs - ok
10:26:51.0671 1536 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:26:51.0796 1536 Cdrom - ok
10:26:51.0812 1536 Changer - ok
10:26:51.0843 1536 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
10:26:52.0093 1536 CiSvc - ok
10:26:52.0156 1536 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
10:26:52.0406 1536 ClipSrv - ok
10:26:52.0515 1536 [ BE869BF33A59A03E4D33D2436A83978B ] CLPSLS C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe
10:26:52.0562 1536 CLPSLS - ok
10:26:52.0609 1536 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:26:52.0750 1536 clr_optimization_v2.0.50727_32 - ok
10:26:52.0796 1536 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:26:52.0859 1536 clr_optimization_v4.0.30319_32 - ok
10:26:52.0875 1536 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
10:26:53.0156 1536 CmBatt - ok
10:26:53.0296 1536 [ 907324001AE25AC5959C91EAA34CABAE ] cmdAgent C:\Program Files\COMODO\COMODO Firewall\COMODO\COMODO Internet Security\cmdagent.exe
10:26:55.0265 1536 cmdAgent - ok
10:26:55.0390 1536 [ BEE235831F8E3F0BAACA18B39D285CF5 ] cmdGuard C:\WINDOWS\system32\DRIVERS\cmdguard.sys
10:26:55.0781 1536 cmdGuard - ok
10:26:55.0812 1536 [ DE548946F36CAB62FEC2E6AA0149A619 ] cmdHlp C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
10:26:56.0093 1536 cmdHlp - ok
10:26:56.0140 1536 [ 964D0F042ACA51D5644779EB9D9EE40F ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
10:26:56.0390 1536 CmdIde - ok
10:26:56.0406 1536 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
10:26:56.0656 1536 Compbatt - ok
10:26:56.0671 1536 COMSysApp - ok
10:26:56.0750 1536 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
10:26:56.0984 1536 Cpqarray - ok
10:26:57.0078 1536 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
10:26:57.0328 1536 CryptSvc - ok
10:26:57.0390 1536 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
10:26:57.0687 1536 dac2w2k - ok
10:26:57.0718 1536 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
10:26:57.0953 1536 dac960nt - ok
10:26:58.0000 1536 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
10:26:58.0125 1536 DcomLaunch - ok
10:26:58.0171 1536 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
10:26:58.0453 1536 Dhcp - ok
10:26:58.0484 1536 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
10:26:58.0718 1536 Disk - ok
10:26:58.0734 1536 dmadmin - ok
10:26:58.0796 1536 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
10:26:59.0093 1536 dmboot - ok
10:26:59.0156 1536 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
10:26:59.0390 1536 dmio - ok
10:26:59.0437 1536 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
10:26:59.0671 1536 dmload - ok
10:26:59.0765 1536 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
10:27:00.0031 1536 dmserver - ok
10:27:00.0046 1536 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
10:27:00.0281 1536 DMusic - ok
10:27:00.0375 1536 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
10:27:00.0531 1536 Dnscache - ok
10:27:00.0562 1536 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
10:27:00.0796 1536 Dot3svc - ok
10:27:00.0875 1536 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
10:27:01.0156 1536 dpti2o - ok
10:27:01.0171 1536 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
10:27:01.0421 1536 drmkaud - ok
10:27:01.0484 1536 [ E2B2853A0210D6EDAB2261870BD80C1A ] DsiWMIService C:\Program Files\Launch Manager\dsiwmis.exe
10:27:01.0812 1536 DsiWMIService - ok
10:27:01.0859 1536 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
10:27:02.0125 1536 EapHost - ok
10:27:02.0156 1536 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
10:27:02.0406 1536 ERSvc - ok
10:27:02.0468 1536 [ 5D17CD14496E4C84058F3AFA0210DF4E ] EUCR C:\WINDOWS\system32\DRIVERS\EUCR6SK.SYS
10:27:02.0515 1536 EUCR - ok
10:27:02.0562 1536 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
10:27:02.0640 1536 Eventlog - ok
10:27:02.0703 1536 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
10:27:02.0796 1536 EventSystem - ok
10:27:02.0828 1536 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
10:27:03.0093 1536 Fastfat - ok
10:27:03.0156 1536 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
10:27:03.0250 1536 FastUserSwitchingCompatibility - ok
10:27:03.0328 1536 [ 2CD14C70D1D81AF054AA5ED8024DCAE6 ] Fax C:\WINDOWS\system32\fxssvc.exe
10:27:03.0593 1536 Fax - ok
10:27:03.0671 1536 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
10:27:03.0984 1536 Fdc - ok
10:27:04.0046 1536 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
10:27:04.0375 1536 Fips - ok
10:27:04.0375 1536 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
10:27:04.0671 1536 Flpydisk - ok
10:27:04.0718 1536 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
10:27:04.0953 1536 FltMgr - ok
10:27:05.0046 1536 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
10:27:05.0093 1536 FontCache3.0.0.0 - ok
10:27:05.0109 1536 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:27:05.0359 1536 Fs_Rec - ok
10:27:05.0421 1536 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:27:05.0656 1536 Ftdisk - ok
10:27:05.0703 1536 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:27:05.0953 1536 Gpc - ok
10:27:06.0015 1536 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
10:27:06.0281 1536 HDAudBus - ok
10:27:06.0359 1536 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
10:27:06.0609 1536 helpsvc - ok
10:27:06.0671 1536 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
10:27:06.0906 1536 HidUsb - ok
10:27:06.0968 1536 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
10:27:07.0218 1536 hkmsvc - ok
10:27:07.0265 1536 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
10:27:07.0500 1536 hpn - ok
10:27:07.0578 1536 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
10:27:07.0687 1536 HTTP - ok
10:27:07.0734 1536 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
10:27:07.0984 1536 HTTPFilter - ok
10:27:08.0046 1536 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
10:27:08.0328 1536 i2omgmt - ok
10:27:08.0359 1536 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
10:27:08.0625 1536 i2omp - ok
10:27:08.0671 1536 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:27:08.0921 1536 i8042prt - ok
10:27:09.0015 1536 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
10:27:09.0125 1536 IAANTMON - ok
10:27:09.0234 1536 [ 601C76224D741FE70AFC4298C0A04213 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
10:27:09.0625 1536 ialm - ok
10:27:09.0671 1536 [ D483687EACE0C065EE772481A96E05F5 ] iaStor C:\WINDOWS\system32\drivers\iaStor.sys
10:27:09.0750 1536 iaStor - ok
10:27:09.0859 1536 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
10:27:09.0890 1536 IDriverT ( UnsignedFile.Multi.Generic ) - warning
10:27:09.0890 1536 IDriverT - detected UnsignedFile.Multi.Generic (1)
10:27:10.0000 1536 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:27:10.0109 1536 idsvc - ok
10:27:10.0171 1536 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
10:27:10.0484 1536 Imapi - ok
10:27:10.0578 1536 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
10:27:10.0828 1536 ImapiService - ok
10:27:10.0875 1536 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
10:27:11.0140 1536 ini910u - ok
10:27:11.0203 1536 [ F89849CF13805EF49DA64A8A63193AF7 ] Inspect C:\WINDOWS\system32\DRIVERS\inspect.sys
10:27:11.0343 1536 Inspect - ok
10:27:11.0562 1536 [ F574D00AB0319D8AB38FFF0739C8659B ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
10:27:12.0171 1536 IntcAzAudAddService - ok
10:27:12.0203 1536 [ 57D928E548B38502ABBA7A77A6EB7312 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
10:27:12.0437 1536 IntelIde - ok
10:27:12.0468 1536 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:27:12.0734 1536 intelppm - ok
10:27:12.0781 1536 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
10:27:13.0031 1536 Ip6Fw - ok
10:27:13.0046 1536 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:27:13.0312 1536 IpFilterDriver - ok
10:27:13.0343 1536 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:27:13.0578 1536 IpInIp - ok
10:27:13.0609 1536 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:27:13.0828 1536 IpNat - ok
10:27:13.0859 1536 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:27:14.0078 1536 IPSec - ok
10:27:14.0140 1536 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
10:27:14.0265 1536 IRENUM - ok
10:27:14.0343 1536 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:27:14.0578 1536 isapnp - ok
10:27:14.0609 1536 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:27:14.0828 1536 Kbdclass - ok
10:27:14.0875 1536 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
10:27:15.0125 1536 kbdhid - ok
10:27:15.0187 1536 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
10:27:15.0437 1536 kmixer - ok
10:27:15.0453 1536 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
10:27:15.0640 1536 KSecDD - ok
10:27:15.0687 1536 [ D99D73FB21394F2CBA4B6F34361F88FA ] L1c C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
10:27:15.0750 1536 L1c - ok
10:27:15.0781 1536 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
10:27:15.0875 1536 LanmanServer - ok
10:27:15.0937 1536 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
10:27:16.0078 1536 lanmanworkstation - ok
10:27:16.0093 1536 lbrtfdc - ok
10:27:16.0171 1536 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
10:27:16.0468 1536 LmHosts - ok
10:27:16.0578 1536 [ 8FD868E32459ECE2A1BB0169F513D31E ] mcdbus C:\WINDOWS\system32\DRIVERS\mcdbus.sys
10:27:16.0609 1536 mcdbus ( UnsignedFile.Multi.Generic ) - warning
10:27:16.0609 1536 mcdbus - detected UnsignedFile.Multi.Generic (1)
10:27:16.0671 1536 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
10:27:16.0921 1536 Messenger - ok
10:27:16.0984 1536 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
10:27:17.0234 1536 mnmdd - ok
10:27:17.0281 1536 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
10:27:17.0515 1536 mnmsrvc - ok
10:27:17.0578 1536 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
10:27:17.0812 1536 Modem - ok
10:27:17.0937 1536 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys
10:27:18.0078 1536 Monfilt - ok
10:27:18.0125 1536 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:27:18.0375 1536 Mouclass - ok
10:27:18.0421 1536 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
10:27:18.0703 1536 mouhid - ok
10:27:18.0765 1536 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
10:27:19.0000 1536 MountMgr - ok
10:27:19.0093 1536 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
10:27:19.0171 1536 MozillaMaintenance - ok
10:27:19.0203 1536 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
10:27:19.0265 1536 MpFilter - ok
10:27:19.0406 1536 [ A69630D039C38018689190234F866D77 ] MpKsl5d2d4726 c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{0DA9B6F9-30FC-4D65-9463-CF93F2A13901}\MpKsl5d2d4726.sys
10:27:19.0468 1536 MpKsl5d2d4726 - ok
10:27:19.0500 1536 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
10:27:19.0796 1536 mraid35x - ok
10:27:19.0859 1536 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:27:20.0109 1536 MRxDAV - ok
10:27:20.0156 1536 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:27:20.0281 1536 MRxSmb - ok
10:27:20.0328 1536 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
10:27:20.0593 1536 MSDTC - ok
10:27:20.0625 1536 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
10:27:20.0843 1536 Msfs - ok
10:27:20.0859 1536 MSIServer - ok
10:27:20.0906 1536 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:27:21.0140 1536 MSKSSRV - ok
10:27:21.0234 1536 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
10:27:21.0296 1536 MsMpSvc - ok
10:27:21.0328 1536 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:27:21.0578 1536 MSPCLOCK - ok
10:27:21.0687 1536 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
10:27:21.0906 1536 MSPQM - ok
10:27:21.0968 1536 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:27:22.0250 1536 mssmbios - ok
10:27:22.0281 1536 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
10:27:22.0500 1536 MSTEE - ok
10:27:22.0578 1536 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
10:27:22.0687 1536 Mup - ok
10:27:22.0718 1536 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
10:27:22.0968 1536 NABTSFEC - ok
10:27:23.0078 1536 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
10:27:23.0359 1536 napagent - ok
10:27:23.0421 1536 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
10:27:23.0640 1536 NDIS - ok
10:27:23.0671 1536 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
10:27:23.0890 1536 NdisIP - ok
10:27:23.0968 1536 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:27:24.0078 1536 NdisTapi - ok
10:27:24.0125 1536 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:27:24.0375 1536 Ndisuio - ok
10:27:24.0390 1536 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:27:24.0671 1536 NdisWan - ok
10:27:24.0718 1536 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
10:27:24.0796 1536 NDProxy - ok
10:27:24.0843 1536 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
10:27:25.0078 1536 NetBIOS - ok
10:27:25.0140 1536 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
10:27:25.0390 1536 NetBT - ok
10:27:25.0437 1536 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
10:27:25.0656 1536 NetDDE - ok
10:27:25.0671 1536 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
10:27:25.0890 1536 NetDDEdsdm - ok
10:27:25.0953 1536 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
10:27:26.0187 1536 Netlogon - ok
10:27:26.0250 1536 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
10:27:26.0484 1536 Netman - ok
10:27:26.0578 1536 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:27:26.0625 1536 NetTcpPortSharing - ok
10:27:26.0656 1536 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
10:27:26.0750 1536 Nla - ok
10:27:26.0796 1536 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
10:27:27.0046 1536 Npfs - ok
10:27:27.0109 1536 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
10:27:27.0390 1536 Ntfs - ok
10:27:27.0421 1536 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
10:27:27.0640 1536 NtLmSsp - ok
10:27:27.0703 1536 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
10:27:27.0968 1536 NtmsSvc - ok
10:27:28.0015 1536 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
10:27:28.0250 1536 Null - ok
10:27:28.0281 1536 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:27:28.0515 1536 NwlnkFlt - ok
10:27:28.0562 1536 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:27:28.0812 1536 NwlnkFwd - ok
10:27:28.0953 1536 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:27:29.0015 1536 odserv - ok
10:27:29.0062 1536 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:27:29.0125 1536 ose - ok
10:27:29.0187 1536 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\drivers\Parport.sys
10:27:29.0453 1536 Parport - ok
10:27:29.0562 1536 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
10:27:29.0812 1536 PartMgr - ok
10:27:29.0843 1536 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
10:27:30.0078 1536 ParVdm - ok
10:27:30.0093 1536 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
10:27:30.0312 1536 PCI - ok
10:27:30.0328 1536 PCIDump - ok
10:27:30.0359 1536 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
10:27:30.0578 1536 PCIIde - ok
10:27:30.0656 1536 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
10:27:30.0906 1536 Pcmcia - ok
10:27:30.0968 1536 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\WINDOWS\system32\Drivers\pcouffin.sys
10:27:30.0984 1536 pcouffin ( UnsignedFile.Multi.Generic ) - warning
10:27:30.0984 1536 pcouffin - detected UnsignedFile.Multi.Generic (1)
10:27:31.0000 1536 PDCOMP - ok
10:27:31.0015 1536 PDFRAME - ok
10:27:31.0031 1536 PDRELI - ok
10:27:31.0046 1536 PDRFRAME - ok
10:27:31.0078 1536 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
10:27:31.0296 1536 perc2 - ok
10:27:31.0328 1536 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
10:27:31.0578 1536 perc2hib - ok
10:27:31.0656 1536 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
10:27:31.0718 1536 PlugPlay - ok
10:27:31.0734 1536 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
10:27:31.0984 1536 PolicyAgent - ok
10:27:32.0031 1536 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:27:32.0250 1536 PptpMiniport - ok
10:27:32.0265 1536 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
10:27:32.0484 1536 ProtectedStorage - ok
10:27:32.0546 1536 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
10:27:32.0796 1536 PSched - ok
10:27:32.0812 1536 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:27:33.0046 1536 Ptilink - ok
10:27:33.0093 1536 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
10:27:33.0359 1536 ql1080 - ok
10:27:33.0390 1536 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
10:27:33.0609 1536 Ql10wnt - ok
10:27:33.0656 1536 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
10:27:33.0890 1536 ql12160 - ok
10:27:33.0953 1536 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
10:27:34.0187 1536 ql1240 - ok
10:27:34.0281 1536 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
10:27:34.0515 1536 ql1280 - ok
10:27:34.0546 1536 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:27:34.0781 1536 RasAcd - ok
10:27:34.0875 1536 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
10:27:35.0093 1536 RasAuto - ok
10:27:35.0156 1536 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:27:35.0375 1536 Rasl2tp - ok
10:27:35.0421 1536 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
10:27:35.0671 1536 RasMan - ok
10:27:35.0687 1536 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:27:35.0921 1536 RasPppoe - ok
10:27:35.0937 1536 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
10:27:36.0156 1536 Raspti - ok
10:27:36.0187 1536 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:27:36.0437 1536 Rdbss - ok
10:27:36.0453 1536 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:27:36.0703 1536 RDPCDD - ok
10:27:36.0765 1536 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
10:27:36.0984 1536 rdpdr - ok
10:27:37.0062 1536 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
10:27:37.0187 1536 RDPWD - ok
10:27:37.0234 1536 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
10:27:37.0468 1536 RDSessMgr - ok
10:27:37.0562 1536 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
10:27:37.0828 1536 redbook - ok
10:27:37.0875 1536 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
10:27:38.0109 1536 RemoteAccess - ok
10:27:38.0171 1536 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
10:27:38.0421 1536 RpcLocator - ok
10:27:38.0468 1536 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
10:27:38.0531 1536 RpcSs - ok
10:27:38.0593 1536 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
10:27:38.0828 1536 RSVP - ok
10:27:38.0984 1536 [ EFA699F02DF6C4C58EA0BD81BA1A23BD ] S6000KNT C:\WINDOWS\system32\Drivers\S6000KNT.sys
10:27:39.0250 1536 S6000KNT - ok
10:27:39.0343 1536 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
10:27:39.0656 1536 SamSs - ok
10:27:39.0734 1536 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
10:27:39.0968 1536 SCardSvr - ok
10:27:40.0000 1536 [ 20B2751CD4C8F3FD989739CA661B9F30 ] SCDEmu C:\WINDOWS\system32\drivers\SCDEmu.sys
10:27:40.0031 1536 SCDEmu ( UnsignedFile.Multi.Generic ) - warning
10:27:40.0031 1536 SCDEmu - detected UnsignedFile.Multi.Generic (1)
10:27:40.0078 1536 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
10:27:40.0343 1536 Schedule - ok
10:27:40.0390 1536 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:27:40.0515 1536 Secdrv - ok
10:27:40.0546 1536 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
10:27:40.0781 1536 seclogon - ok
10:27:40.0875 1536 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
10:27:41.0125 1536 SENS - ok
10:27:41.0156 1536 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
10:27:41.0421 1536 Serial - ok
10:27:41.0546 1536 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
10:27:41.0781 1536 Sfloppy - ok
10:27:41.0828 1536 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
10:27:42.0093 1536 SharedAccess - ok
10:27:42.0156 1536 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:27:42.0218 1536 ShellHWDetection - ok
10:27:42.0234 1536 Simbad - ok
10:27:42.0296 1536 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
10:27:42.0531 1536 sisagp - ok
10:27:42.0562 1536 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
10:27:42.0781 1536 SLIP - ok
10:27:42.0843 1536 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
10:27:43.0000 1536 Sparrow - ok
10:27:43.0031 1536 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
10:27:43.0250 1536 splitter - ok
10:27:43.0312 1536 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
10:27:43.0421 1536 Spooler - ok
10:27:43.0500 1536 [ 614DEEA4BDCEC3FD5A07BDC705723AD7 ] sptd C:\WINDOWS\System32\Drivers\sptd.sys
10:27:43.0500 1536 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: 614DEEA4BDCEC3FD5A07BDC705723AD7
10:27:43.0500 1536 sptd ( LockedFile.Multi.Generic ) - warning
10:27:43.0500 1536 sptd - detected LockedFile.Multi.Generic (1)
10:27:43.0515 1536 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
10:27:43.0656 1536 sr - ok
10:27:43.0781 1536 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
10:27:44.0000 1536 srservice - ok
10:27:44.0046 1536 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
10:27:44.0156 1536 Srv - ok
10:27:44.0187 1536 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
10:27:44.0343 1536 SSDPSRV - ok
10:27:44.0390 1536 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
10:27:44.0625 1536 stisvc - ok
10:27:44.0687 1536 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
10:27:44.0937 1536 streamip - ok
10:27:45.0000 1536 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
10:27:45.0234 1536 swenum - ok
10:27:45.0265 1536 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
10:27:45.0515 1536 swmidi - ok
10:27:45.0531 1536 SwPrv - ok
10:27:45.0578 1536 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
10:27:45.0828 1536 symc810 - ok
10:27:45.0859 1536 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
10:27:46.0109 1536 symc8xx - ok
10:27:46.0171 1536 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
10:27:46.0390 1536 sym_hi - ok
10:27:46.0421 1536 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
10:27:46.0640 1536 sym_u3 - ok
10:27:46.0671 1536 [ 5CDD124913E91C7F79B4D5CAE1C7C4DE ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
10:27:46.0734 1536 SynTP - ok
10:27:46.0765 1536 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
10:27:47.0000 1536 sysaudio - ok
10:27:47.0078 1536 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
10:27:47.0312 1536 SysmonLog - ok
10:27:47.0375 1536 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
10:27:47.0625 1536 TapiSrv - ok
10:27:47.0687 1536 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:27:47.0750 1536 Tcpip - ok
10:27:47.0828 1536 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
10:27:48.0046 1536 TDPIPE - ok
10:27:48.0093 1536 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
10:27:48.0312 1536 TDTCP - ok
10:27:48.0343 1536 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
10:27:48.0593 1536 TermDD - ok
10:27:48.0687 1536 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
10:27:48.0937 1536 TermService - ok
10:27:48.0968 1536 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
10:27:49.0015 1536 Themes - ok
10:27:49.0093 1536 [ FD4FD7D6FDA5C019ED86025D7BE1510F ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
10:27:49.0328 1536 TosIde - ok
10:27:49.0375 1536 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
10:27:49.0609 1536 TrkWks - ok
10:27:49.0656 1536 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
10:27:49.0890 1536 Udfs - ok
10:27:49.0953 1536 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
10:27:50.0093 1536 ultra - ok
10:27:50.0140 1536 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
10:27:50.0406 1536 Update - ok
10:27:50.0484 1536 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
10:27:50.0531 1536 Updater Service - ok
10:27:50.0593 1536 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
10:27:50.0734 1536 upnphost - ok
10:27:50.0781 1536 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
10:27:51.0015 1536 UPS - ok
10:27:51.0109 1536 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:27:51.0343 1536 usbccgp - ok
10:27:51.0390 1536 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:27:51.0640 1536 usbehci - ok
10:27:51.0656 1536 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:27:51.0890 1536 usbhub - ok
10:27:51.0968 1536 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:27:52.0203 1536 USBSTOR - ok
10:27:52.0250 1536 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:27:52.0468 1536 usbuhci - ok
10:27:52.0546 1536 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
10:27:52.0781 1536 usbvideo - ok
10:27:52.0843 1536 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
10:27:53.0078 1536 VgaSave - ok
10:27:53.0140 1536 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
10:27:53.0390 1536 viaagp - ok
10:27:53.0421 1536 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
10:27:53.0656 1536 ViaIde - ok
10:27:53.0687 1536 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
10:27:53.0921 1536 VolSnap - ok
10:27:53.0984 1536 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
10:27:54.0140 1536 VSS - ok
10:27:54.0171 1536 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
10:27:54.0406 1536 W32Time - ok
10:27:54.0453 1536 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:27:54.0687 1536 Wanarp - ok
10:27:54.0781 1536 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
10:27:54.0843 1536 Wdf01000 - ok
10:27:54.0875 1536 WDICA - ok
10:27:54.0906 1536 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
10:27:55.0156 1536 wdmaud - ok
10:27:55.0218 1536 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
10:27:55.0453 1536 WebClient - ok
10:27:55.0609 1536 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
10:27:55.0828 1536 winmgmt - ok
10:27:55.0906 1536 [ 4D34CEDD74BDBF2B6A935EAE3BF80543 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
10:27:56.0046 1536 WinRM - ok
10:27:56.0125 1536 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
10:27:56.0250 1536 WmdmPmSN - ok
10:27:56.0312 1536 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
10:27:56.0515 1536 WmiAcpi - ok
10:27:56.0593 1536 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
10:27:56.0828 1536 WmiApSrv - ok
10:27:56.0968 1536 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
10:27:57.0046 1536 WMPNetworkSvc - ok
10:27:57.0093 1536 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
10:27:57.0171 1536 WpdUsb - ok
10:27:57.0296 1536 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:27:57.0375 1536 WPFFontCache_v0400 - ok
10:27:57.0437 1536 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
10:27:57.0718 1536 WS2IFSL - ok
10:27:57.0765 1536 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
10:27:58.0062 1536 wscsvc - ok
10:27:58.0093 1536 WSearch - ok
10:27:58.0156 1536 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
10:27:58.0375 1536 WSTCODEC - ok
10:27:58.0421 1536 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
10:27:58.0656 1536 wuauserv - ok
10:27:58.0687 1536 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
10:27:58.0765 1536 WudfPf - ok
10:27:58.0812 1536 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
10:27:58.0859 1536 WudfRd - ok
10:27:58.0921 1536 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
10:27:58.0984 1536 WudfSvc - ok
10:27:59.0046 1536 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
10:27:59.0343 1536 WZCSVC - ok
10:27:59.0390 1536 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
10:27:59.0703 1536 xmlprov - ok
10:27:59.0734 1536 ================ Scan global ===============================
10:27:59.0796 1536 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
10:27:59.0828 1536 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
10:27:59.0843 1536 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
10:27:59.0890 1536 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
10:27:59.0890 1536 [Global] - ok
10:27:59.0890 1536 ================ Scan MBR ==================================
10:27:59.0906 1536 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
10:28:00.0781 1536 \Device\Harddisk0\DR0 - ok
10:28:00.0781 1536 ================ Scan VBR ==================================
10:28:00.0781 1536 [ 8F1AFEF890CB6BA9BCAF4B34FDE7D981 ] \Device\Harddisk0\DR0\Partition1
10:28:00.0796 1536 \Device\Harddisk0\DR0\Partition1 - ok
10:28:00.0796 1536 ============================================================
10:28:00.0796 1536 Scan finished
10:28:00.0796 1536 ============================================================
10:28:00.0921 1352 Detected object count: 5
10:28:00.0921 1352 Actual detected object count: 5
10:28:46.0984 1352 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
10:28:46.0984 1352 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:28:46.0984 1352 mcdbus ( UnsignedFile.Multi.Generic ) - skipped by user
10:28:46.0984 1352 mcdbus ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:28:46.0984 1352 pcouffin ( UnsignedFile.Multi.Generic ) - skipped by user
10:28:46.0984 1352 pcouffin ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:28:47.0000 1352 SCDEmu ( UnsignedFile.Multi.Generic ) - skipped by user
10:28:47.0000 1352 SCDEmu ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:28:47.0000 1352 sptd ( LockedFile.Multi.Generic ) - skipped by user
10:28:47.0000 1352 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

[Márty84]

No jo, nebudem to radeji komentovat Hlavne ze to funguje


Log je v poradku, takze jeste uklidime a bude to vsechno.

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.



Jinak hlidejte si ten disk. Nevim, co se CDI nelibilo, ale vypisuje podezrele sektory. Tak radeji poctive zalohujte, kdyby se to zaclo zhorsovat

[ultrakb]

Poslední dotaz:
Může se tedy stát, že mi to najednou vypne nebo jak tomu mám rozumět?

Jinak velice děkuji za ochotu a profesionální přístup!

[Márty84]

Může se tedy stát, že mi to najednou vypne nebo jak tomu mám rozumět?

Tohle se muze stat kdykoliv. Pocitac je svina nevyzpytatelna
Tim ze disk vykazuje nejake chyby, je ta sance o neco vetsi. Ale nemyslim si, ze by to bylo tak vazne, ze by hrozilo, ze to najednou bez varovani zkolabuje. Presto, vzdy je lepsi byt pripraven na tu nejhorsi variantu

Kazdopadne, kdyby se objevil nejaky naznak problemu, bylo by dobre udelat novy log CDI a podivat se, jestli se stav disku nezhorsuje.
Mozna ze by stacilo udelat windowsackou opravu disku pomoci chkdsk - navod:
Kliknete na START a pak na Spustit
V okenku co vyskoci bude radek, do ktereho napiste

Kód: Vybrat vše

cmd

Kliknete na OK
Vyskoci na vas dalsi okno. Do nej napiste

Kód: Vybrat vše

chkdsk c: /f /r

ty mezery tam jsou schvalne, taky je tam udelejte
Az to napisete, zmacknete Enter


Dalsi moznost je kompletni format disku.
No a nejhorsi varianta, vymena disku.


Nemate vubec zac

[ultrakb]

Vyzkouším zítra

Výměna disku na netbooku asi nehozí, díky moc

[Márty84]

Vyzkousejte a pak znovu spustte Crystal Disk Info a dejte sem log.

No i tam by to melo nejak jit. Doma teda nevim, ale v servisu... Otazkou je, jestli se to financne vyplati

[ultrakb]

Tak přikládám, vypadá to, že to je beze změny?

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.4 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Home Edition SP3 [5.1 Build 2600] (x86)
Date : 2012/09/30 8:06:18

-- Controller Map ----------------------------------------------------------
+ Intel(R) NM10 Express Chipset [ATA]
- Hitachi HTS545016B9A300
- ADFZW7RQ IDE Controller [SCSI]

-- Disk List ---------------------------------------------------------------
(1) Hitachi HTS545016B9A300 : 160,0 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) Hitachi HTS545016B9A300
----------------------------------------------------------------------------
Model : Hitachi HTS545016B9A300
Firmware : PBBOC60F
Serial Number : 100818PBPB04ECESBAHL
Disk Size : 160,0 GB (8,4/137,4/160,0)
Buffer Size : 7208 KB
Queue Depth : 32
# of Sectors : 312581808
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300
Power On Hours : 2517 hod.
Power On Count : 1020 krát
Temparature : 40 C (104 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 4080h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 201 201 _33 000E00000001 Čas na roztočení ploten
04 100 100 __0 000000000402 Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _95 _95 __0 0000000009D5 Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 0000000003FC Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000018 Počet vypnutí disku
C1 _93 _93 __0 0000000136CA Počet cyklů načítání/vymazání
C2 137 137 __0 002F000F0028 Teplota
C4 100 100 __0 000000000026 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 0000000000F9 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 3130 3038 3138 5042 5042 3034 4543 4553 4241 484C
020: 0003 3850 0004 5042 424F 4336 3046 4869 7461 6368
030: 6920 4854 5335 3435 3031 3642 3941 3330 3020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 0F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 005E 004C
080: 01FC 0028 746B 7F69 6163 7469 BC49 6163 407F 0020
090: 0021 4080 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 9EB0 12A1 0000 0000 0000 0000 0000 8848 5000 CCA5
110: FFE6 CE1B 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 0061 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 4001 0000
150: 8000 0000 424F 0000 0000 B8A9 E5E5 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 02C7 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 85A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 07 00 C9 C9 01
020: 00 00 00 0E 00 00 04 12 00 64 64 02 04 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 12 00 5F 5F D5 09 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 FC 03 00 00 00 00 00 BF 0A 00 64 64 00
080: 00 00 00 00 00 00 C0 32 00 64 64 18 00 00 00 00
090: 00 00 C1 12 00 5D 5D CA 36 01 00 00 00 00 C2 02
0A0: 00 89 89 28 00 0F 00 2F 00 00 C4 32 00 64 64 26
0B0: 00 00 00 00 00 00 C5 22 00 64 64 F9 00 00 00 00
0C0: 00 00 C6 08 00 64 64 00 00 00 00 00 00 00 C7 0A
0D0: 00 C8 C8 00 00 00 00 00 00 00 DF 0A 00 64 64 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 85 02 01 5B
170: 03 00 01 00 02 41 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 E3

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 3E 00 00 00 00 00 00 00 00 00 00 02 28
010: 00 00 00 00 00 00 00 00 00 00 03 21 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 28 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DF 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 89

[Márty84]

Bohuzel ano.

Timto jsme vycerpali moznosti a v pripade nejakeho zhorseni to muze opravit bud uplny format, nebo servis