Prosím o kontrolu

Zpráva

#16 Příspěvek od **vyosek** » 25 úno 2013 23:54

Nalezy smazte, objevi se log, ten rad uvidim

gerard · #17 Příspěvek od **gerard** » 26 úno 2013 08:53

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.02.24.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Radek :: GERARD [administrátor]

Ochrana: Povolena

24.2.2013 21:41:06
mbam-log-2013-02-24 (21-41-06).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 394356
Uplynulý čas: 4 hodin, 6 minut, 47 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Get Styles (Trojan.BHO) -> Přesun do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 4
C:\Documents and Settings\Radek\Dokumenty\Samsung\záloha před opravou\download\product key sygic gps android.rar.exe (Trojan.Dropper) -> Přesun do karantény a smazání se zdařilo.
C:\Documents and Settings\Radek\Plocha\Sony Vegas Pro 12.0 Build 367 x64 Portable\Sony Vegas Pro 12.0 Build 367 x64 Portable\MultiKeygen\Keygen.exe (RiskWare.Tool.HCK) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files\TVMOBiLi\bin\iTunesAlbumArtGenerator.exe (Spyware.Passwords.XGen) -> Přesun do karantény a smazání se zdařilo.
C:\Program Files\Get Styles\uninstall.exe (Trojan.BHO) -> Přesun do karantény a smazání se zdařilo.

(konec)

#18 Příspěvek od **vyosek** » 26 úno 2013 08:54

Poprosim o DDS http://forum.viry.cz/viewtopic.php?f=13&t=125171

gerard · #19 Příspěvek od **gerard** » 26 úno 2013 09:45

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 10.15.2
Run by Radek at 9:41:04 on 2013-02-26
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3001.2065 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Apoint2K\Apoint.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Atheros\ACU.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Apoint2K\HidFind.exe
C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\netsession_win.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\netsession_win.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\DOCUME~1\Radek\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\Windows Media Player\WMPNetwk.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\System32\wudfhost.exe
C:\WINDOWS\system32\DllHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.seznam.cz/
uProxyOverride = 127.0.0.1:9421;<local>
uURLSearchHooks: <No Name>: - LocalServer32 - <no file>
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: GdfrDUEn Class: {A3CF7606-E683-4375-A372-96B75DA0AEF7} - c:\program files\get styles\enlbrdr.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
uRun: [Akamai NetSession Interface] "c:\documents and settings\radek\local settings\data aplikací\akamai\netsession_win.exe"
uRun: [KiesPreload] c:\program files\samsung\kies\Kies.exe /preload
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [Google Update] "c:\documents and settings\radek\local settings\data aplikací\google\update\GoogleUpdate.exe" /c
mRun: [AzMixerSel] c:\program files\realtek\audio\installshield\AzMixerSel.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
mRun: [LManager] c:\progra~1\launch~1\LManager.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [PLFSetL] c:\windows\PLFSetL.exe
mRun: [ACU] "c:\program files\atheros\ACU.exe" -nogui
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.exe"
mRun: [SwitchBoard] c:\program files\common files\adobe\switchboard\SwitchBoard.exe
mRun: [AdobeCS5ServiceManager] "c:\program files\common files\adobe\cs5servicemanager\CS5ServiceManager.exe" -launchedbylogin
mRun: [NSU_agent] "c:\program files\nokia\nokia software updater\nsu3ui_agent.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [TrueImageMonitor.exe] "c:\program files\acronis\trueimagehome\TrueImageMonitor.exe"
mRun: [AcronisTibMounterMonitor] c:\program files\common files\acronis\tibmounter\TibMounterMonitor.exe
mRun: [Služba Acronis Scheduler2] "c:\program files\common files\acronis\schedule2\schedhlp.exe"
mRun: [KiesTrayAgent] c:\program files\samsung\kies\KiesTrayAgent.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\alluse~1\nabdka~1\programy\posput~1\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: Odeslat do zařízení &Bluetooth... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Odeslat do zařízení Bluetooth - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\verunka\nabídka start\programy\imvu\Run IMVU.lnk
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{E1B1D96D-D0E4-4E3B-8B87-F527A604F3C2} : DHCPNameServer = 192.168.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\radek\data aplikací\mozilla\firefox\profiles\ocyurw8o.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8 ... &gfns=1&q=
FF - plugin: c:\documents and settings\all users\data aplikacă\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\documents and settings\all users\data aplikacă\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\radek\data aplikacă\mozilla\firefox\profiles\ocyurw8o.default\extensions\2020player_ikea@2020technologies.com\plugins\NP_2020Player_IKEA.dll
FF - plugin: c:\documents and settings\radek\data aplikacă\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\radek\data aplikacă\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\radek\local settings\data aplikacă\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\nokia\nokia suite\npNokiaSuiteEnabler.dll
FF - plugin: c:\program files\smileycentral_1vei\installr\3.bin\NP1vEISb.dll
FF - plugin: c:\program files\total immersion\dfusionhomewebplugin\NPDFusionWebFirefox.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1166636.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1168638.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_5_502_135.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
.
============= SERVICES / DRIVERS ===============
.
R0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\drivers\fltsrv.sys [2013-1-4 93928]
R0 tib_mounter;Acronis TIB Mounter;c:\windows\system32\drivers\tib_mounter.sys [2013-1-4 689672]
R0 vididr;Acronis Virtual Disk;c:\windows\system32\drivers\vididr.sys [2013-1-4 139336]
R0 vidsflt;Acronis Disk Storage Filter;c:\windows\system32\drivers\vidsflt.sys [2013-1-4 99720]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-2-10 435032]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010-2-22 314456]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656]
R2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files\common files\acronis\cdp\afcdpsrv.exe [2013-1-4 3692536]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010-2-22 20568]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-2-22 44768]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\firebird\firebird_1_5\bin\fbguard.exe -s --> c:\program files\firebird\firebird_1_5\bin\fbguard.exe -s [?]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-2-24 682344]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-2-24 398184]
R2 syncagentsrv;Acronis Sync Agent Service;c:\program files\common files\acronis\syncagent\syncagentsrv.exe [2012-9-14 7024712]
R3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [2013-1-4 234752]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [2013-1-27 83168]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\firebird\firebird_1_5\bin\fbserver.exe -s --> c:\program files\firebird\firebird_1_5\bin\fbserver.exe -s [?]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-2-24 21104]
R3 PSched;Plánovač paketů technologie QoS;c:\windows\system32\drivers\psched.sys [2004-8-3 69120]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [2013-1-27 181344]
S0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [2009-9-24 19592]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
S3 AllShare;SAMSUNG AllShare Service;c:\program files\samsung\samsung pc share manager\WiselinkPro.exe [2010-7-16 6638080]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [2009-9-24 29192]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2013-1-28 20032]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2010-12-25 36608]
S3 iscFlash;iscFlash;\??\c:\docume~1\radek\locals~1\temp\7zs203.tmp\iscflash.sys --> c:\docume~1\radek\locals~1\temp\7zs203.tmp\iscflash.sys [?]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2009-6-17 25480]
S3 PRODIGY;PRODIGY;c:\windows\system32\drivers\prodigy.sys [2010-1-23 32377]
S3 SwitchBoard;SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2013-02-24 20:38:25 -------- d-----w- c:\documents and settings\radek\data aplikací\Malwarebytes
2013-02-24 20:38:16 -------- d-----w- c:\documents and settings\all users\data aplikací\Malwarebytes
2013-02-24 20:38:14 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-02-24 20:38:14 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-02-21 09:26:45 80896 -c--a-w- c:\windows\system32\dllcache\charmap.exe
2013-02-21 09:26:45 80896 ----a-w- c:\windows\system32\charmap.exe
2013-02-21 09:26:45 670720 -c--a-w- c:\windows\system32\dllcache\getuname.dll
2013-02-21 09:26:45 670720 ----a-w- c:\windows\system32\getuname.dll
2013-02-21 09:26:29 114688 -c--a-w- c:\windows\system32\dllcache\calc.exe
2013-02-21 09:26:29 114688 ----a-w- c:\windows\system32\calc.exe
2013-02-20 09:04:01 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-02-19 22:07:11 -------- d-----w- c:\windows\system32\wbem\repository\FS
2013-02-19 22:07:11 -------- d-----w- c:\windows\system32\wbem\Repository
2013-02-13 10:32:31 1409 ----a-w- c:\windows\system32\tmp7D469.FOT
2013-02-03 13:43:22 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007(5).dll
2013-02-03 13:43:22 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007(4).dll
2013-02-03 13:43:22 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007(3).dll
2013-02-03 13:43:22 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007(2).dll
2013-02-03 12:01:38 -------- d-----w- c:\documents and settings\all users\data aplikací\FileCure
2013-01-28 16:46:22 821824 ----a-w- c:\windows\system32\dgderapi.dll
2013-01-28 16:46:22 20032 ----a-w- c:\windows\system32\drivers\dgderdrv.sys
2013-01-27 22:12:36 181344 ----a-w- c:\windows\system32\drivers\ssudmdm.sys
2013-01-27 22:12:35 83168 ----a-w- c:\windows\system32\drivers\ssudbus.sys
2013-01-27 22:12:34 581192 ----a-w- c:\windows\system32\WinUSBCoInstaller.dll
2013-01-27 22:12:34 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2013-01-27 11:50:25 -------- d-----w- c:\documents and settings\radek\local settings\data aplikací\Wondershare
2013-01-27 11:50:23 -------- d-----w- c:\program files\common files\Wondershare
2013-01-27 11:50:08 -------- d-----w- c:\documents and settings\radek\data aplikací\Wondershare
2013-01-27 11:50:06 -------- d-----w- c:\program files\Wondershare
.
==================== Find3M ====================
.
2013-02-26 08:41:34 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2013-02-20 09:03:41 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-02-20 09:03:41 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-02-20 09:03:41 143872 ----a-w- c:\windows\system32\javacpl.cpl
2013-01-04 15:47:14 234752 ----a-w- c:\windows\system32\drivers\afcdp.sys
2013-01-04 15:47:02 806184 ----a-w- c:\windows\system32\drivers\tdrpman.sys
2013-01-04 15:46:56 689672 ----a-w- c:\windows\system32\drivers\tib_mounter.sys
2013-01-04 15:46:49 139336 ----a-w- c:\windows\system32\drivers\vididr.sys
2013-01-04 15:46:47 99720 ----a-w- c:\windows\system32\drivers\vidsflt.sys
2013-01-04 15:46:43 192904 ----a-w- c:\windows\system32\drivers\snapman.sys
2013-01-04 15:46:35 93928 ----a-w- c:\windows\system32\drivers\fltsrv.sys
2013-01-01 16:41:17 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-01-01 16:41:17 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-12-18 09:06:54 4659712 ----a-w- c:\windows\system32\Redemption.dll
2012-12-18 09:06:10 90112 ----a-w- c:\windows\MAMCityDownload.ocx
2012-12-18 09:06:10 330240 ----a-w- c:\windows\MASetupCaller.dll
2012-12-18 09:06:10 30568 ----a-w- c:\windows\MusiccityDownload.exe
2012-12-16 10:49:26 1409 ----a-w- c:\windows\system32\tmp27A95.FOT
2012-12-16 10:37:14 1409 ----a-w- c:\windows\system32\tmp56941.FOT
.
============= FINISH: 9:42:18,62 ===============

#20 Příspěvek od **vyosek** » 26 úno 2013 19:03

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

gerard · #21 Příspěvek od **gerard** » 26 úno 2013 21:16

OTL logfile created on: 26.2.2013 20:25:50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Radek\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,93 Gb Total Physical Memory | 1,97 Gb Available Physical Memory | 67,23% Memory free
4,77 Gb Paging File | 4,03 Gb Available in Paging File | 84,45% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298,08 Gb Total Space | 14,08 Gb Free Space | 4,72% Space Free | Partition Type: NTFS

Computer Name: GERARD | User Name: Radek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2013.02.26 20:21:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Radek\Plocha\OTL.exe
PRC - [2013.02.22 17:18:11 | 000,212,992 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Documents and Settings\Radek\Local Settings\temp\RtkBtMnt.exe
PRC - [2013.02.20 10:03:43 | 000,170,912 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2013.01.04 16:47:10 | 003,692,536 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
PRC - [2012.12.20 18:44:28 | 000,310,280 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
PRC - [2012.12.20 18:44:26 | 001,476,104 | ---- | M] (Samsung) -- C:\Program Files\Samsung\Kies\Kies.exe
PRC - [2012.10.11 02:04:29 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.10.09 09:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.) -- C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\netsession_win.exe
PRC - [2012.09.24 17:39:02 | 000,813,984 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2012.09.24 17:38:44 | 000,404,280 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2012.09.24 17:37:44 | 006,036,056 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
PRC - [2012.09.14 12:20:40 | 007,024,712 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
PRC - [2012.07.24 15:13:58 | 000,943,344 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
PRC - [2012.02.28 14:53:48 | 000,190,768 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe
PRC - [2011.11.28 19:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011.11.28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011.07.29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2009.10.06 01:05:06 | 001,532,000 | ---- | M] (The Firebird Project) -- C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
PRC - [2009.10.06 01:05:06 | 000,065,536 | ---- | M] (The Firebird Project) -- C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
PRC - [2009.03.23 16:41:06 | 000,603,488 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2008.09.02 05:22:02 | 000,450,648 | ---- | M] (Atheros Communications, Inc.) -- C:\Program Files\Atheros\ACU.exe
PRC - [2008.09.02 05:21:40 | 000,467,028 | ---- | M] (Atheros) -- C:\WINDOWS\system32\acs.exe
PRC - [2008.08.28 23:20:22 | 000,049,250 | R--- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\Apoint2K\Hidfind.exe
PRC - [2008.07.25 03:48:10 | 000,875,016 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.09.14 09:44:00 | 001,155,180 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
PRC - [2007.08.17 15:58:08 | 000,057,447 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe

========== Modules (No Company Name) ==========

MOD - [2013.02.25 21:05:02 | 002,063,360 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\13022501\algo.dll
MOD - [2013.01.01 17:41:17 | 014,586,296 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll
MOD - [2012.10.11 02:04:42 | 002,294,240 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.09.24 17:42:20 | 000,020,360 | ---- | M] () -- C:\Program Files\Acronis\TrueImageHome\ti_managers_proxy_stub.dll
MOD - [2012.09.24 17:15:18 | 013,865,728 | ---- | M] () -- C:\Program Files\Acronis\TrueImageHome\ti_managers.dll
MOD - [2012.09.24 17:11:54 | 000,436,104 | ---- | M] () -- C:\Program Files\Common Files\Acronis\Home\ulxmlrpcpp.dll
MOD - [2012.09.24 17:01:38 | 001,570,696 | ---- | M] () -- C:\Program Files\Common Files\Acronis\Home\icudt38.dll
MOD - [2012.07.24 14:48:28 | 000,012,160 | ---- | M] () -- C:\Program Files\Common Files\Acronis\TibMounter\icudt38.dll
MOD - [2012.02.28 14:53:48 | 000,190,768 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe
MOD - [2012.02.28 14:25:14 | 000,323,072 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_lib.dll
MOD - [2011.09.13 12:17:46 | 001,907,200 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\styles\OviCommonStyle.dll
MOD - [2011.09.13 12:17:04 | 000,593,408 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\WidgetLibrary.dll
MOD - [2011.08.31 08:57:58 | 000,021,504 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\imageformats\qsvg4.dll
MOD - [2011.08.31 08:33:54 | 000,280,576 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\QtSvg4.dll
MOD - [2011.08.31 08:31:24 | 008,288,256 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\qtgui4.dll
MOD - [2011.08.31 08:28:08 | 001,002,496 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\qtnetwork4.dll
MOD - [2011.08.31 08:27:42 | 000,357,888 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\qtxml4.dll
MOD - [2011.08.31 08:27:34 | 002,302,464 | ---- | M] () -- C:\Program Files\Nokia\Nokia Software Updater\qtcore4.dll
MOD - [2011.07.29 00:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011.07.29 00:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2010.04.11 17:48:06 | 000,327,680 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2010.03.15 10:28:24 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2009.03.23 16:40:06 | 002,854,976 | ---- | M] () -- C:\WINDOWS\system32\btwicons.dll
MOD - [2009.03.23 16:38:08 | 000,069,697 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
MOD - [2007.09.14 09:44:00 | 001,155,180 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
MOD - [2007.08.17 15:59:14 | 000,528,485 | ---- | M] () -- C:\WINDOWS\system32\BSShell.dll
MOD - [2007.08.17 15:58:08 | 000,057,447 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
MOD - [2007.08.17 15:57:54 | 000,077,923 | ---- | M] () -- C:\WINDOWS\system32\Bs2Res.dll
MOD - [2007.07.30 09:32:16 | 016,326,769 | ---- | M] () -- C:\WINDOWS\system32\BsLangInDepRes.dll
MOD - [2003.06.07 21:30:08 | 000,057,344 | ---- | M] () -- C:\Program Files\Launch Manager\PowerUtl.dll
MOD - [2001.10.28 17:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll
MOD - [2001.10.25 13:00:00 | 000,015,360 | ---- | M] () -- C:\WINDOWS\system32\tsd32.dll

========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2013.02.20 19:58:06 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.02.20 10:03:43 | 000,170,912 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2013.01.04 16:47:10 | 003,692,536 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2013.01.01 17:41:18 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.12.14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012.12.14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012.09.24 17:39:02 | 000,813,984 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2012.09.14 12:20:40 | 007,024,712 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe -- (syncagentsrv)
SRV - [2012.07.13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.04.22 12:51:04 | 000,720,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012.02.25 22:32:09 | 000,068,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service)
SRV - [2011.11.28 19:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010.07.16 17:23:30 | 006,638,080 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe -- (AllShare)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.10.06 01:05:06 | 001,532,000 | ---- | M] (The Firebird Project) [On_Demand | Running] -- C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe -- (FirebirdServerDefaultInstance)
SRV - [2009.10.06 01:05:06 | 000,065,536 | ---- | M] (The Firebird Project) [Auto | Running] -- C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe -- (FirebirdGuardianDefaultInstance)
SRV - [2008.09.02 05:21:40 | 000,467,028 | ---- | M] (Atheros) [Auto | Running] -- C:\WINDOWS\system32\acs.exe -- (ACS)
SRV - [2007.09.14 09:44:00 | 001,155,180 | ---- | M] () [Auto | Running] -- C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe -- (BlueSoleilCS)
SRV - [2007.08.17 15:58:08 | 000,057,447 | ---- | M] () [On_Demand | Running] -- C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe -- (BsHelpCS)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Radek\LOCALS~1\Temp\7zS203.tmp\iscflash.sys -- (iscFlash)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Radek\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2013.01.04 16:47:14 | 000,234,752 | ---- | M] (Acronis) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afcdp.sys -- (afcdp)
DRV - [2013.01.04 16:47:02 | 000,806,184 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\tdrpman.sys -- (tdrpman)
DRV - [2013.01.04 16:46:56 | 000,689,672 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\tib_mounter.sys -- (tib_mounter)
DRV - [2013.01.04 16:46:49 | 000,139,336 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\vididr.sys -- (vididr)
DRV - [2013.01.04 16:46:47 | 000,099,720 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\vidsflt.sys -- (vidsflt)
DRV - [2013.01.04 16:46:43 | 000,192,904 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman)
DRV - [2013.01.04 16:46:35 | 000,093,928 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\fltsrv.sys -- (fltsrv)
DRV - [2012.12.18 10:06:00 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - [2012.12.14 16:49:28 | 000,021,104 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012.09.20 05:35:36 | 000,181,344 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2012.09.20 05:35:36 | 000,083,168 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2012.04.22 12:51:38 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2012.01.09 16:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2012.01.09 16:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2012.01.09 16:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2012.01.09 16:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011.11.28 18:53:53 | 000,435,032 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.11.28 18:53:35 | 000,314,456 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.11.28 18:52:19 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.11.28 18:52:16 | 000,052,952 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.11.28 18:52:02 | 000,111,320 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.11.28 18:51:50 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.11.28 18:48:49 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010.06.14 01:32:54 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2010.05.20 19:38:56 | 000,483,200 | ---- | M] (ITETech ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AF15BDA.sys -- (AF15BDA)
DRV - [2010.05.10 19:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010.02.17 19:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2009.09.24 13:41:06 | 000,029,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btnetBus.sys -- (btnetBUs)
DRV - [2009.09.24 05:40:12 | 000,019,592 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\BtHidBus.sys -- (BtHidBus)
DRV - [2009.06.30 22:37:04 | 001,574,112 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416)
DRV - [2009.06.17 14:01:42 | 000,025,480 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV - [2009.03.20 05:19:54 | 000,991,136 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2009.02.19 01:46:56 | 000,534,312 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2009.01.10 03:38:36 | 000,190,512 | R--- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2008.10.31 13:19:14 | 000,047,272 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2008.07.25 01:37:10 | 000,156,816 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2008.06.14 01:11:16 | 004,754,944 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2008.04.13 19:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE)
DRV - [2008.03.19 22:26:24 | 000,175,104 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2008.03.11 02:18:42 | 000,057,384 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
DRV - [2008.02.08 08:46:36 | 000,057,408 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wsimd.sys -- (WSIMD)
DRV - [2008.02.05 01:57:44 | 000,037,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2007.10.01 14:59:46 | 001,769,984 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC)
DRV - [2007.06.24 21:56:54 | 000,038,920 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb)
DRV - [2007.06.24 21:56:34 | 000,034,312 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio)
DRV - [2007.03.05 20:59:04 | 000,018,320 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btnetdrv.sys -- (BT)
DRV - [2007.03.05 20:56:18 | 000,035,600 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\BTHidMgr.sys -- (BTHidMgr)
DRV - [2007.03.05 20:55:12 | 000,020,880 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\vbtenum.sys -- (BTHidEnum)
DRV - [2007.03.05 20:53:18 | 000,044,304 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr)
DRV - [2007.03.05 20:52:18 | 000,034,448 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VComm.sys -- (VComm)
DRV - [2006.11.02 07:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2006.08.29 15:56:20 | 000,032,377 | ---- | M] (B-phreaks) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\prodigy.sys -- (PRODIGY)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\..\URLSearchHook: - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: "false"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: 2020Player_IKEA@2020Technologies.com:5.0.7.0
FF - prefs.js..extensions.enabledAddons: {dc572301-7619-498c-a57d-39143191b318}:0.4.0.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.2.26
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.1
FF - prefs.js..extensions.enabledItems: {dc572301-7619-498c-a57d-39143191b318}:0.3.8.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&o ... &gfns=1&q="
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@ei.SmileyCentral_1v.com/Plugin: C:\Program Files\SmileyCentral_1vEI\Installr\3.bin\NP1vEISB.dll (SmileyCentral)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.15.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.1.13: C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.1.13: C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@t-immersion.com/DFusionHomeWebPlugIn: C:\Program Files\Total Immersion\DFusionHomeWebPlugIn\NPDFusionWebFirefox.dll (Total Immersion)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\Radek\Data aplikací\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Documents and Settings\Radek\Data aplikací\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\Radek\Data aplikací\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.01.02 10:46:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.10.13 11:57:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.09.30 10:40:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.3\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2013.02.20 19:57:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.3\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2013.02.20 19:57:55 | 000,000,000 | ---D | M]

[2011.05.04 16:53:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Radek\Data aplikací\Mozilla\Extensions
[2010.01.19 10:31:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Radek\Data aplikací\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2013.02.25 09:37:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Radek\Data aplikací\Mozilla\Firefox\Profiles\ocyurw8o.default\extensions
[2011.09.29 19:39:37 | 000,000,000 | ---D | M] (20-20 3D Viewer - IKEA) -- C:\Documents and Settings\Radek\Data aplikací\Mozilla\Firefox\Profiles\ocyurw8o.default\extensions\2020Player_IKEA@2020Technologies.com
[2013.02.25 09:37:08 | 000,754,446 | ---- | M] () (No name found) -- C:\Documents and Settings\Radek\Data aplikací\Mozilla\Firefox\Profiles\ocyurw8o.default\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi
[2012.10.13 11:57:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.10.13 11:57:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions
[2012.10.13 11:57:06 | 000,000,000 | ---D | M] (Seznam liĹˇtiÄŤka) -- C:\Program Files\Mozilla Firefox\distribution\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RADEK\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\OCYURW8O.DEFAULT\EXTENSIONS\{DC572301-7619-498C-A57D-39143191B318}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RADEK\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\OCYURW8O.DEFAULT\EXTENSIONS\2020PLAYER_IKEA@2020TECHNOLOGIES.COM
[2012.10.11 02:05:24 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2009.12.21 06:47:02 | 000,063,488 | ---- | M] (Nullsoft) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2012.10.11 05:47:24 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.10.11 05:47:24 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.10.11 05:47:24 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.10.11 05:47:24 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.10.11 05:47:24 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - homepage: http://www.seznam.cz/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms},
CHR - homepage: http://www.seznam.cz/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Radek\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Radek\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\20.0.1132.57\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Radek\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\20.0.1132.57\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Radek\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Documents and Settings\Radek\Data aplikac\u00ED\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Documents and Settings\Radek\Data aplikac\u00ED\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Data aplikac\u00ED\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Data aplikac\u00ED\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Radek\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: SmileyCentral Installer Plugin Stub (Enabled) = C:\Program Files\SmileyCentral_1vEI\Installr\3.bin\NP1vEISB.dll
CHR - plugin: D'Fusion @Home Web Plug-In (3.00.13209) (Enabled) = C:\Program Files\Total Immersion\DFusionHomeWebPlugIn\NPDFusionWebFirefox.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: FlipClock = C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\copjokjinhlflggeifkidlmodfepbpgl\4.1.1_0\
CHR - Extension: Hodiny = C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo\1.11_0\
CHR - Extension: Weather Window by WeatherBug = C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ihdkejbciahopmbagpnjmmkkdpfpaaak\1.0.12_0\
CHR - Extension: Kontrola e-mailu Google = C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: AT_DJTiesto = C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\okmcbgkkeagngnijeiighgblfljbekip\2_0\

O1 HOSTS File: ([2013.02.21 11:12:55 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (GdfrDUEn Class) - {A3CF7606-E683-4375-A372-96B75DA0AEF7} - C:\Program Files\Get Styles\enlbrdr.dll (TODO: <Company name>)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [AcronisTibMounterMonitor] C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [ACU] C:\Program Files\Atheros\ACU.exe (Atheros Communications, Inc.)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\InstallShield\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [NSU_agent] C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe ()
O4 - HKLM..\Run: [PLFSetL] C:\WINDOWS\PLFSetL.exe (sonix)
O4 - HKLM..\Run: [Služba Acronis Scheduler2] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKCU..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe (Samsung)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\System32\Macromed\Flash\FlashUtil32_11_5_502_135_Plugin.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Odeslat do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Odeslat do zařízení Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Verunka\Nabídka Start\Programy\IMVU\Run IMVU.lnk File not found
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E1B1D96D-D0E4-4E3B-8B87-F527A604F3C2}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop Components:0 () - file:///C:/DOCUME~1/Radek/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg
O24 - Desktop Components:1 (Aktuální domovská stránka) - About:Home
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.12.25 12:14:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2013.02.26 20:21:55 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Radek\Plocha\OTL.exe
[2013.02.24 21:38:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Radek\Data aplikací\Malwarebytes
[2013.02.24 21:38:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2013.02.24 21:38:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2013.02.24 21:38:14 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013.02.24 21:38:14 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013.02.23 16:54:49 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2013.02.21 10:26:45 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2013.02.21 10:26:45 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2013.02.21 10:26:45 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2013.02.21 10:26:45 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2013.02.21 10:26:29 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2013.02.21 10:26:29 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2013.02.20 19:57:51 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2013.02.20 10:04:08 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013.02.20 10:04:01 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013.02.20 10:04:01 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013.02.20 10:04:01 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013.02.19 23:06:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\CrashDump
[2013.02.19 22:55:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Radek\Plocha\GT-I9100
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\*.tmp files -> C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2013.02.26 20:35:18 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.02.26 20:21:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Radek\Plocha\OTL.exe
[2013.02.26 20:15:01 | 000,000,938 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013.02.26 19:57:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013.02.26 19:08:49 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2013.02.26 18:42:00 | 000,000,974 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-2049760794-725345543-1003Core.job
[2013.02.26 14:37:32 | 000,000,934 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013.02.26 14:37:31 | 000,000,860 | ---- | M] () -- C:\WINDOWS\System32\bscs.ini
[2013.02.26 14:37:27 | 000,000,282 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1007.job
[2013.02.26 14:37:27 | 000,000,282 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1004.job
[2013.02.26 14:37:27 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1003.job
[2013.02.26 14:37:27 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1005.job
[2013.02.26 14:36:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013.02.26 08:54:40 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013.02.26 02:00:01 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-GERARD-Radek.job
[2013.02.25 14:03:53 | 000,024,559 | ---- | M] () -- C:\Documents and Settings\Radek\Plocha\book.jpg
[2013.02.25 13:36:00 | 000,000,290 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1004.job
[2013.02.24 21:38:17 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2013.02.23 18:45:30 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\Radek\Plocha\Google Chrome.lnk
[2013.02.22 17:25:00 | 000,000,290 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1007.job
[2013.02.21 11:12:55 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013.02.21 10:28:43 | 000,498,218 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013.02.21 10:28:43 | 000,494,398 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2013.02.21 10:28:43 | 000,100,720 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2013.02.21 10:28:43 | 000,086,380 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013.02.21 10:26:56 | 000,004,566 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013.02.20 23:02:00 | 000,000,286 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1003.job
[2013.02.20 10:03:43 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll
[2013.02.20 10:03:42 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2013.02.20 10:03:41 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll
[2013.02.20 10:03:41 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll
[2013.02.20 10:03:41 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2013.02.20 10:03:41 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2013.02.20 10:03:41 | 000,143,872 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013.02.26 20:35:18 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.02.25 14:02:11 | 000,024,559 | ---- | C] () -- C:\Documents and Settings\Radek\Plocha\book.jpg
[2013.02.24 21:38:17 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2013.02.23 18:37:56 | 000,000,974 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-448539723-2049760794-725345543-1003Core.job
[2013.01.27 23:46:24 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2012.12.18 10:06:10 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe
[2012.10.12 14:32:50 | 000,000,218 | ---- | C] () -- C:\Documents and Settings\Radek\.recently-used.xbel
[2012.09.08 14:33:24 | 000,000,216 | ---- | C] () -- C:\WINDOWS\pdf2word.INI
[2012.06.02 10:26:31 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ViewNX.INI
[2012.06.02 10:08:24 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\All Users\Data aplikací\PKP_DLdw.DAT
[2012.06.02 10:08:24 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Radek\Data aplikací\filter
[2012.06.02 10:05:38 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\All Users\Data aplikací\PKP_DLdu.DAT
[2012.06.02 10:05:38 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Radek\Data aplikací\deskjet
[2011.12.30 15:40:44 | 002,140,344 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2011.09.30 10:05:38 | 002,256,271 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-448539723-2049760794-725345543-1003-0.dat
[2011.09.30 10:05:37 | 000,238,870 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2011.09.16 10:54:44 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
[2011.09.16 10:54:44 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
[2011.09.16 10:54:44 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
[2011.09.16 10:54:44 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
[2011.06.24 07:23:41 | 000,002,689 | ---- | C] () -- C:\Documents and Settings\Radek\Nový dokument 2.2011_06_24_08_23_41.0.svg
[2011.05.27 15:53:19 | 000,000,922 | ---- | C] () -- C:\Documents and Settings\Radek\text16094.png
[2011.05.04 16:51:17 | 000,000,031 | ---- | C] () -- C:\WINDOWS\tdlp32.ini
[2011.05.01 12:12:03 | 000,063,488 | ---- | C] () -- C:\WINDOWS\xobglu16.dll
[2011.05.01 12:12:03 | 000,023,552 | ---- | C] () -- C:\WINDOWS\xobglu32.dll
[2011.05.01 12:11:55 | 000,000,317 | ---- | C] () -- C:\WINDOWS\cncscore.ini
[2011.01.16 23:24:31 | 000,244,882 | ---- | C] () -- C:\Documents and Settings\Radek\Data aplikací\mdbu.bin
[2010.12.26 15:54:34 | 000,046,592 | ---- | C] () -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.12.25 22:46:01 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Radek\Data aplikací\$_hpcst$.hpc
[2010.09.02 10:43:40 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\Radek\.rnd
[2010.01.30 18:37:01 | 000,086,528 | ---- | C] () -- C:\Documents and Settings\Radek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.01.20 13:18:28 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Radek\PUTTY.RND

========== ZeroAccess Check ==========

[2010.08.23 21:40:31 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2010.04.16 17:08:13 | 001,510,400 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.02.09 11:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 04:22:05 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2011.10.10 18:08:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\360safe
[2011.10.10 18:01:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\360SD
[2013.01.04 22:10:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Acronis
[2010.02.22 21:26:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2011.05.13 18:35:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2012.04.03 20:20:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Big Fish Games
[2011.11.20 22:21:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Bitstream
[2010.05.20 19:40:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BlazeVideo
[2009.12.25 12:39:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Broadcom
[2010.06.23 20:30:19 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
[2011.10.10 18:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CPC
[2012.06.02 10:08:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EnterNHelp
[2013.02.03 13:01:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FileCure
[2011.01.16 22:48:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\HF Designer 2.7
[2013.02.23 16:19:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2012.06.09 11:56:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2011.05.19 11:32:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MyHeritage
[2012.06.09 12:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nokia
[2012.06.09 11:08:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NokiaInstallerCache
[2012.06.09 12:11:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\OviInstallerCache
[2010.01.19 21:20:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Suite
[2011.07.14 18:43:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PIXELA
[2010.05.20 19:44:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Plugins
[2009.12.25 12:40:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ralink
[2011.11.20 20:54:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2013.02.19 23:03:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Samsung
[2010.04.23 20:21:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SiComponents
[2013.01.21 10:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2011.10.10 17:59:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Storm
[2012.01.09 13:04:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2012.06.02 10:08:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ultima_T15
[2011.04.29 17:04:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Vivendi Universal Games
[2010.04.23 20:51:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\VOWSoft
[2012.10.18 16:01:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Zoner
[2012.03.22 18:43:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\.minecraft
[2011.10.10 18:02:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\360Desktop
[2011.10.10 18:02:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\360Notify
[2011.10.10 18:12:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\360safe
[2011.10.10 17:57:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\360se
[2013.01.04 17:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Acronis
[2010.09.18 22:02:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Apowersoft
[2011.10.10 17:55:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Application Data
[2011.05.13 18:35:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Ashampoo
[2013.01.20 19:41:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\avidemux
[2011.03.22 11:18:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\AXA
[2010.06.27 17:51:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Canon
[2011.12.06 20:17:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010.02.06 10:22:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\com.lightmaker.deagostini.ScrapBook.D45F7F2B1F9C3FBA2126914CB42B3E19064D325F.1
[2010.02.20 14:26:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Crayon Physics Deluxe
[2012.11.12 11:13:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\DDMSettings
[2010.06.05 09:40:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\InfraRecorder
[2011.05.04 17:49:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\inkscape
[2012.03.16 22:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\iSpy
[2010.12.29 21:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\KA10
[2010.01.20 13:20:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Mikrotik
[2011.05.19 11:25:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\MyHeritage
[2012.06.02 10:25:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Nikon
[2010.01.19 21:25:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Nokia
[2010.01.19 21:25:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Nokia Ovi Suite
[2012.06.04 15:06:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Oracle
[2011.08.13 13:02:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\PC Suite
[2012.05.28 09:17:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Publish Providers
[2010.02.03 12:00:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\richmosaic
[2013.02.19 23:01:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Samsung
[2011.04.26 16:29:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Simulace_2009
[2013.01.21 13:52:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Sony
[2012.05.28 18:43:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Sony Creative Software
[2011.11.24 22:52:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012.11.25 14:35:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\TeamViewer
[2012.05.08 17:34:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Temp
[2010.01.19 10:31:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Thunderbird
[2010.10.10 11:39:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Total Immersion
[2012.06.09 13:54:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\TuxPaint
[2010.05.14 21:07:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\URSoft
[2010.08.24 08:07:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\uTorrent
[2013.02.19 22:56:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Wondershare
[2012.10.18 16:01:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Zoner

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009.12.25 12:12:52 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2009.12.25 12:18:32 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2010.03.17 08:43:06 | 000,000,286 | ---- | C] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1003.job
[2010.03.18 18:33:59 | 000,000,290 | ---- | C] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1004.job
[2010.04.04 19:02:54 | 000,000,284 | ---- | C] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1005.job
[2010.04.04 19:02:56 | 000,000,276 | ---- | C] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1005.job
[2010.06.05 17:44:57 | 000,000,282 | ---- | C] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1004.job
[2011.05.10 16:12:38 | 000,000,934 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2011.05.10 16:12:39 | 000,000,938 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2011.06.24 13:39:00 | 000,000,290 | ---- | C] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1007.job
[2011.06.24 13:39:01 | 000,000,282 | ---- | C] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1007.job
[2011.11.20 21:14:40 | 000,000,342 | ---- | C] () -- C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-GERARD-Radek.job
[2011.12.01 09:55:06 | 000,000,278 | ---- | C] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1003.job
[2013.01.01 17:41:19 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2013.02.23 18:37:56 | 000,000,974 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-448539723-2049760794-725345543-1003Core.job

< >

< MD5 for: ATAPI.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2011.12.30 15:52:49 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2011.12.30 15:52:49 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.17 15:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\cmdcons\autochk.exe
[2004.08.17 15:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2011.12.30 15:52:49 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2011.12.30 15:52:49 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2011.12.30 15:52:49 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2011.12.30 15:52:49 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 19:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 19:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.03 22:59:14 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: SCECLI.DLL >
[2004.08.17 15:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.02.09 10:54:36 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=33081FED75032291EE0E008D5385E86F -- C:\WINDOWS\$hf_mig$\KB956572\SP2QFE\services.exe
[2009.02.09 12:18:56 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=3D107D45CCFDB266E91D84B52CD7F430 -- C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe
[2009.02.09 11:11:38 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=4F9F7B567970B524F31D9970A23F7C24 -- C:\WINDOWS\$NtServicePackUninstall$\services.exe
[2004.08.17 15:49:28 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=6E401E61F952FBBF708AFBECEFAFAE81 -- C:\WINDOWS\$NtUninstallKB956572_0$\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\$hf_mig$\KB956572\SP3GDR\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\ERDNT\cache\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\dllcache\services.exe
[2009.02.09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) MD5=9EF697AF07BB8DD82C3B02CA953A95B7 -- C:\WINDOWS\system32\services.exe
[2008.04.14 04:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\$NtUninstallKB956572$\services.exe
[2008.04.14 04:22:45 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=F0D2AE69035092BF22DAD6B50FAB85C2 -- C:\WINDOWS\ServicePackFiles\i386\services.exe

< MD5 for: SVCHOST.EXE >
[2012.12.14 16:49:28 | 000,216,424 | ---- | M] () MD5=22101A85B3CA2FE2BE05FE9A61A7A83D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.17 15:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.06.20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2004.08.03 23:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=6A2D53177C1EAC531308708E65782304 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.06.20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.17 15:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2012.12.14 16:49:28 | 000,216,424 | ---- | M] () MD5=22101A85B3CA2FE2BE05FE9A61A7A83D -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2005.01.02 01:57:07 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=427E6DED3A2369D3432A683EB489EE14 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]

gerard · #22 Příspěvek od **gerard** » 26 úno 2013 21:17

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012.03.22 18:43:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\.minecraft
[2011.10.10 18:02:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\360Desktop
[2011.10.10 18:02:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\360Notify
[2011.10.10 18:12:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\360safe
[2011.10.10 17:57:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\360se
[2013.01.04 17:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Acronis
[2013.01.08 11:14:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Adobe
[2011.11.24 22:52:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Adobe Mini Bridge CS5
[2010.09.18 22:02:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Apowersoft
[2011.10.10 17:55:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Application Data
[2011.05.13 18:35:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Ashampoo
[2013.01.20 19:41:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\avidemux
[2011.03.22 11:18:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\AXA
[2010.06.27 17:51:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Canon
[2011.12.06 20:17:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010.02.06 10:22:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\com.lightmaker.deagostini.ScrapBook.D45F7F2B1F9C3FBA2126914CB42B3E19064D325F.1
[2011.11.15 23:22:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Corel
[2010.02.20 14:26:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Crayon Physics Deluxe
[2012.11.12 11:13:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\DDMSettings
[2011.01.31 16:44:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\DivX
[2011.05.10 16:18:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Google
[2010.12.09 20:37:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Help
[2009.12.25 12:19:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Identities
[2010.06.05 09:40:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\InfraRecorder
[2011.05.04 17:49:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\inkscape
[2009.12.25 12:39:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\InstallShield
[2012.03.16 22:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\iSpy
[2010.12.29 21:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\KA10
[2012.02.26 15:46:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Macromedia
[2013.02.24 21:38:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Malwarebytes
[2012.08.13 11:12:56 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Radek\Data aplikací\Microsoft
[2010.01.20 13:20:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Mikrotik
[2013.02.26 19:53:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Mozilla
[2011.05.19 11:25:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\MyHeritage
[2011.05.13 18:27:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Nero
[2012.06.02 10:25:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Nikon
[2010.01.19 21:25:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Nokia
[2010.01.19 21:25:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Nokia Ovi Suite
[2012.06.04 15:06:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Oracle
[2011.08.13 13:02:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\PC Suite
[2012.03.27 21:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\PSpad
[2012.05.28 09:17:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Publish Providers
[2012.01.08 10:51:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Real
[2010.02.03 12:00:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\richmosaic
[2013.02.19 23:01:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Samsung
[2011.04.26 16:29:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Simulace_2009
[2013.02.26 20:25:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Skype
[2011.06.07 17:50:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\skypePM
[2013.01.21 13:52:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Sony
[2012.05.28 18:43:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Sony Creative Software
[2011.11.24 22:52:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010.01.13 13:36:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Sun
[2010.11.04 20:47:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\SUPERAntiSpyware.com
[2012.11.25 14:35:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\TeamViewer
[2012.05.08 17:34:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Temp
[2010.01.19 10:31:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Thunderbird
[2010.10.10 11:39:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Total Immersion
[2012.06.09 13:54:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\TuxPaint
[2010.05.14 21:07:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\URSoft
[2010.08.24 08:07:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\uTorrent
[2013.02.01 21:54:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\vlc
[2012.10.29 22:53:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Winamp
[2010.08.22 12:25:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\WinRAR
[2013.02.19 22:56:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Wondershare
[2012.10.18 16:01:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Radek\Data aplikací\Zoner

< %APPDATA%\*.exe /s >
[2010.02.06 10:21:10 | 000,038,784 | ---- | M] () -- C:\Documents and Settings\Radek\Data aplikací\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2010.07.21 17:58:49 | 000,015,872 | R--- | M] () -- C:\Documents and Settings\Radek\Data aplikací\Microsoft\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C9.exe
[2012.06.02 10:12:03 | 000,335,872 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Radek\Data aplikací\Microsoft\Installer\{237CD223-1B9D-47E8-A76C-E478B83CCEA2}\ARPPRODUCTICON.exe
[2012.06.02 10:11:01 | 000,057,344 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Radek\Data aplikací\Microsoft\Installer\{87441A59-5E64-4096-A170-14EFE67200C3}\ARPPRODUCTICON.exe
[2012.06.02 10:12:46 | 000,049,152 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Radek\Data aplikací\Microsoft\Installer\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}\ARPPRODUCTICON.exe
[2012.05.24 07:59:00 | 072,360,088 | ---- | M] () -- C:\Documents and Settings\Radek\Data aplikací\Nokia\Ovi Suite\Software Updater\NokiaOviSuite2Installer.exe
[2012.01.03 21:16:40 | 000,315,512 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Radek\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.01\rnupgagent.exe
[2011.12.15 21:15:10 | 026,922,432 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Radek\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.01\stub_data\RealPlayer.exe
[2011.11.27 09:55:11 | 000,713,472 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Radek\Data aplikací\Real\Update\UpgradeHelper\RealPlayer\9.01\stub_exe\RealPlayer.exe
[2012.10.27 15:37:18 | 000,060,888 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\FirmwareUpdateTemp\AGENT\AdminDelegator.exe
[2012.10.27 15:37:18 | 000,088,024 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\FirmwareUpdateTemp\AGENT\AgentInstaller.exe
[2012.10.27 15:37:19 | 000,077,264 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\FirmwareUpdateTemp\AGENT\AgentUpdate.exe
[2012.10.27 15:37:19 | 000,843,208 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\FirmwareUpdateTemp\AGENT\KiesPDLR.exe
[2012.10.11 01:33:52 | 000,966,072 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\Kies.exe
[2012.10.11 01:33:52 | 000,297,912 | ---- | M] () -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\KiesAgent.exe
[2012.10.09 01:17:54 | 000,580,096 | ---- | M] (Samsung Electronics) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\KiesAirMessage.exe
[2012.10.11 01:33:56 | 000,277,432 | ---- | M] () -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\KiesDriverInstaller.exe
[2012.10.11 01:33:54 | 000,309,688 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\KiesTrayAgent.exe
[2012.09.27 07:19:08 | 000,171,008 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\ConnectionManager.exe
[2012.09.27 07:21:52 | 000,325,120 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceDataService.exe
[2012.10.10 06:06:28 | 000,689,152 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceManager.exe
[2012.10.11 01:33:56 | 000,067,512 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\Kies_Tutorial.exe
[2012.10.11 01:34:04 | 000,063,416 | ---- | M] () -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\RegisterCOM.exe
[2012.10.27 15:37:18 | 000,060,888 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AdminDelegator.exe
[2012.10.27 15:37:18 | 000,088,024 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentInstaller.exe
[2012.10.27 15:37:19 | 000,077,264 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentUpdate.exe
[2012.10.27 15:37:19 | 000,843,208 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\KiesPDLR.exe
[2012.10.11 01:34:00 | 003,767,312 | ---- | M] (Freeware) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\External\MediaModules\MyFreeCodecPack.exe
[2012.10.11 01:34:02 | 000,596,920 | ---- | M] (ml) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\Updater\Kies.Update.exe
[2012.09.26 12:57:10 | 014,754,760 | ---- | M] (SAMSUNG Electronics Co., Ltd.) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\USB Driver\SAMSUNG_USB_Driver_for_Mobile_Phones.exe
[2013.01.10 10:02:08 | 001,475,952 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\Kies.exe
[2013.01.10 10:02:10 | 000,531,824 | ---- | M] () -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\KiesAgent.exe
[2012.12.18 02:10:18 | 000,578,560 | ---- | M] (Samsung Electronics) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\KiesAirMessage.exe
[2013.01.10 10:02:12 | 000,277,872 | ---- | M] () -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\KiesDriverInstaller.exe
[2013.01.10 10:02:12 | 000,310,128 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\KiesTrayAgent.exe
[2013.01.10 09:54:04 | 000,171,008 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\ConnectionManager.exe
[2013.01.10 09:56:46 | 000,332,800 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceDataService.exe
[2013.01.10 09:54:52 | 000,689,152 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceManager.exe
[2013.01.10 10:02:14 | 000,067,952 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\Kies_Tutorial.exe
[2013.01.10 10:02:20 | 000,065,904 | ---- | M] () -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\RegisterCOM.exe
[2012.12.18 02:07:40 | 000,060,888 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AdminDelegator.exe
[2012.12.18 02:07:40 | 000,088,024 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentInstaller.exe
[2012.12.18 02:07:40 | 000,077,264 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentUpdate.exe
[2013.01.10 10:02:16 | 000,844,144 | ---- | M] (Samsung) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\KiesPDLR.exe
[2013.01.10 10:02:18 | 003,768,216 | ---- | M] (Freeware) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\External\MediaModules\MyFreeCodecPack.exe
[2013.01.10 10:02:20 | 000,601,968 | ---- | M] (ml) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\Updater\Kies.Update.exe
[2012.10.24 09:36:00 | 014,754,704 | ---- | M] (SAMSUNG Electronics Co., Ltd.) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\USB Driver\SAMSUNG_USB_Driver_for_Mobile_Phones.exe
[2012.10.11 01:34:02 | 000,596,920 | ---- | M] (ml) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Temp\Kies.Update.exe
[2013.01.10 10:02:20 | 000,601,968 | ---- | M] (ml) -- C:\Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Updater\Kies.Update.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2013.02.26 20:57:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2013.02.26 02:00:01 | 000,000,342 | ---- | M] () -- C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-GERARD-Radek.job
[2013.02.26 14:37:32 | 000,000,934 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2013.02.26 20:15:01 | 000,000,938 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2013.02.26 18:42:00 | 000,000,974 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-448539723-2049760794-725345543-1003Core.job
[2013.02.26 14:37:27 | 000,000,278 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1003.job
[2013.02.26 14:37:27 | 000,000,282 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1004.job
[2013.02.26 14:37:27 | 000,000,276 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1005.job
[2013.02.26 14:37:27 | 000,000,282 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1007.job
[2013.02.20 23:02:00 | 000,000,286 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1003.job
[2013.02.25 13:36:00 | 000,000,290 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1004.job
[2013.02.17 18:52:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1005.job
[2013.02.22 17:25:00 | 000,000,290 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1007.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2009.12.25 06:00:36 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2009.12.25 06:00:36 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2009.12.25 06:00:36 | 000,483,328 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2013.02.26 14:37:31 | 000,000,860 | ---- | M] () -- C:\WINDOWS\system32\bscs.ini
[2013.02.26 08:54:40 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Akamai NetSession Interface" = "C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\netsession_win.exe" -- [2012.10.09 09:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.)
"KiesPreload" = C:\Program Files\Samsung\Kies\Kies.exe /preload -- [2012.12.20 18:44:26 | 001,476,104 | ---- | M] (Samsung)
"WMPNSCFG" = C:\Program Files\Windows Media Player\WMPNSCFG.exe -- [2007.01.05 19:57:50 | 000,204,288 | ---- | M] (Microsoft Corporation)
"Google Update" = "C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2011.06.01 10:00:37 | 000,136,176 | ---- | M] (Google Inc.)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2012.10.11 02:04:29 | 000,917,984 | ---- | M] (Mozilla Corporation) MD5=BC03475EC281AA1E685388896ACADE8D -- C:\Program Files\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2008.04.14 04:22:26 | 000,093,184 | -HS- | M] (Microsoft Corporation) MD5=414AFE6E8CCDE984E16D5ED08624CEC6 -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.02.26 20:35:18 | 000,000,512 | ---- | M] () MD5=2D86B91E66972271E8008C44EC44AC99 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2012.05.19 12:06:20 | 006,230,592 | ---- | M] () -- \Documents and Settings\Radek\Dokumenty\Samsung\záloha před opravou\bluetooth\sygic_navigator1126cracked.apk
[2007.04.25 05:50:00 | 000,980,580 | ---- | M] () -- \Documents and Settings\Radek\Dokumenty\tomtom\TomTom Mobile v6.02\TomTom Mobile v6.02 S60v3 SymbianOS9.1 Cracked-BiNPDA.sis
[2012.12.18 15:07:22 | 697,704,317 | ---- | M] () -- \Documents and Settings\Radek\Plocha\Traktor-2-Simulator-2011+Crack-by-Majo.rar
[2011.12.24 11:12:11 | 000,000,780 | ---- | M] () -- \Documents and Settings\Radek\Recent\the-sims-3-crack-funkcnĂ˝-100%-cz-verze.lnk
[2012.12.18 15:07:22 | 000,000,628 | ---- | M] () -- \Documents and Settings\Radek\Recent\Traktor-2-Simulator-2011+Crack-by-Majo.lnk
[2010.05.29 21:41:56 | 000,114,899 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py

< *keygen* /s >
[2011.11.28 18:50:22 | 000,313,344 | ---- | M] () -- \Documents and Settings\Radek\Plocha\Adobe-Photoshop-CS5-Keygen.exe
[2012.02.20 20:22:48 | 000,000,802 | ---- | M] () -- \Documents and Settings\Radek\Recent\AnvSoft-Flash-Slide-Show-Maker-4.72-+-Keygen-[h33t]-[Original].lnk

< *loader* /s >
[2012.01.08 10:50:20 | 000,007,715 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2012.01.08 10:50:21 | 000,000,319 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2012.02.15 13:28:30 | 000,072,638 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.gif
[2012.02.15 13:28:30 | 000,003,032 | ---- | M] () -- \Documents and Settings\All Users\Data aplikací\Skype\Apps\login\images\loader.png
[2013.01.27 18:27:58 | 000,000,131 | ---- | M] () -- \Documents and Settings\Radek\Data aplikací\Macromedia\Flash Player\#SharedObjects\YGS7G22T\gcdn.1001hry.cz\699bbd6eba34f4b3728a65c02cb87c31\9547.swf\truckloader2.sol
[2012.10.09 08:38:28 | 000,069,120 | ---- | M] () -- \Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Backup\Common\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2013.01.02 08:19:16 | 000,069,120 | ---- | M] () -- \Documents and Settings\Radek\Data aplikací\Samsung\Kies\UpdateTemp\Sub\Common\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2010.02.02 04:33:46 | 000,006,308 | ---- | M] () -- \Documents and Settings\Radek\Dokumenty\OpenOfficePortable\App\openoffice\Basis\program\pythonloader.py
[2010.02.19 06:10:04 | 000,011,264 | ---- | M] () -- \Documents and Settings\Radek\Dokumenty\OpenOfficePortable\App\openoffice\Basis\program\pythonloader.uno.dll
[2010.02.02 05:05:24 | 000,000,171 | ---- | M] () -- \Documents and Settings\Radek\Dokumenty\OpenOfficePortable\App\openoffice\Basis\program\pythonloader.uno.ini
[2010.02.19 06:10:08 | 000,013,824 | ---- | M] () -- \Documents and Settings\Radek\Dokumenty\OpenOfficePortable\App\openoffice\URE\bin\javaloader.uno.dll
[2009.09.25 21:59:52 | 000,003,686 | ---- | M] () -- \Documents and Settings\Radek\Dokumenty\OpenOfficePortable\App\openoffice\URE\java\unoloader.jar
[2012.03.26 08:50:37 | 000,010,819 | ---- | M] () -- \Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ihdkejbciahopmbagpnjmmkkdpfpaaak\1.0.12_0\images\ajax-loader.gif
[2012.02.26 14:18:23 | 000,184,851 | ---- | M] () -- \Documents and Settings\Radek\Local Settings\Data aplikací\Macromedia\Flash MX 2004\en\Configuration\Classes\aso\mx\controls\mx.controls.Loader.aso
File not found -- \Documents and Settings\Radek\Local Settings\Data aplikací\Xenocode\Sandbox\Macromedia Dreamweaver 8\8.0.0.2734\2010.01.29T14.13\Virtual\DELETED\@APPDATA@\Macromedia\Dreamweaver 8\Configuration\Temp\FlashElements\ImageViewer\mx.controls.Loader.asi.__deleted__
[2012.03.31 19:54:46 | 001,040,384 | ---- | M] () -- \Documents and Settings\Radek\Local Settings\Data aplikací\Xenocode\Sandbox\Macromedia Dreamweaver 8\8.0.0.2734\2010.01.29T14.13\Virtual\MODIFIED\@PROGRAMFILES@\Macromedia\Dreamweaver 8\Configuration\JSExtensions\swfloader.dll
[2010.02.02 04:33:46 | 000,006,308 | ---- | M] () -- \Documents and Settings\Radek\Plocha\Nová složka\OpenOfficePortable\App\openoffice\Basis\program\pythonloader.py
[2010.02.19 06:10:04 | 000,011,264 | ---- | M] () -- \Documents and Settings\Radek\Plocha\Nová složka\OpenOfficePortable\App\openoffice\Basis\program\pythonloader.uno.dll
[2010.02.02 05:05:24 | 000,000,171 | ---- | M] () -- \Documents and Settings\Radek\Plocha\Nová složka\OpenOfficePortable\App\openoffice\Basis\program\pythonloader.uno.ini
[2010.02.19 06:10:08 | 000,013,824 | ---- | M] () -- \Documents and Settings\Radek\Plocha\Nová složka\OpenOfficePortable\App\openoffice\URE\bin\javaloader.uno.dll
[2009.09.25 21:59:52 | 000,003,686 | ---- | M] () -- \Documents and Settings\Radek\Plocha\Nová složka\OpenOfficePortable\App\openoffice\URE\java\unoloader.jar
[2012.11.08 15:16:50 | 000,072,638 | ---- | M] () -- \Documents and Settings\Radek\Plocha\Nová složka\SkypePortable\App\Skype\login\images\loader.gif
[2012.11.08 15:16:50 | 000,003,032 | ---- | M] () -- \Documents and Settings\Radek\Plocha\Nová složka\SkypePortable\App\Skype\login\images\loader.png
[2012.11.08 15:16:50 | 000,009,772 | ---- | M] () -- \Documents and Settings\Radek\Plocha\Nová složka\SkypePortable\App\Skype\login\images\retina\loader@2x.png
[2011.06.09 23:52:42 | 005,299,048 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\Photodownloader.exe
[2010.03.09 01:38:58 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2010.03.09 01:38:58 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\de_de\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\en_us\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\es_es\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\it_it\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\no_no\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2008.07.30 10:06:58 | 000,072,192 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7Debug\coloader80.dll
[2008.07.29 03:43:16 | 000,004,096 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7Debug\coloader80.tlb
[2009.04.23 13:36:14 | 000,688,128 | ---- | M] () -- \Program Files\Common Files\Nikon\File Uploader\NkFileUploader.exe
[2009.04.23 13:35:48 | 000,011,776 | ---- | M] () -- \Program Files\Common Files\Nikon\File Uploader\NkFileUploaderLang.dll
[2012.03.01 19:23:20 | 000,112,128 | ---- | M] () -- \Program Files\Common Files\Nokia\Tss\ProductApiLoader\ta_productapiloader.dll
[2012.05.18 05:19:26 | 000,001,538 | ---- | M] () -- \Program Files\HF Designer 2.7\Loader.elf
[2012.09.20 14:49:28 | 000,778,904 | ---- | M] () -- \Program Files\HF Designer 2.7\Loader.exe
[2010.03.06 09:24:56 | 000,003,614 | ---- | M] () -- \Program Files\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2010.03.06 09:24:56 | 000,030,804 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2010.03.06 09:24:56 | 000,027,898 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2010.03.06 09:24:56 | 000,042,058 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2010.03.06 09:24:56 | 000,023,145 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2010.03.06 09:24:56 | 000,028,692 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2010.03.06 09:24:56 | 000,034,496 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2010.03.06 09:24:56 | 000,022,435 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2010.03.06 09:24:56 | 000,036,528 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2010.03.06 09:24:56 | 000,026,252 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2010.03.06 09:24:56 | 000,020,063 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2010.03.06 09:24:56 | 000,024,412 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2010.03.06 09:24:56 | 000,029,401 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2010.03.06 09:24:56 | 000,019,399 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2010.03.06 09:24:56 | 000,025,270 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2010.03.06 09:24:56 | 000,042,114 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2010.03.06 09:24:56 | 000,018,909 | ---- | M] () -- \Program Files\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2010.08.16 10:41:40 | 000,032,958 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ailoader.py
[2010.08.16 10:41:40 | 000,001,847 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\bziploader.py
[2010.08.16 10:41:40 | 000,057,685 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ccxloader.py
[2010.08.16 10:41:40 | 000,029,336 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrloader.py
[2010.08.16 10:41:40 | 000,001,341 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrziploader.py
[2010.08.16 10:41:40 | 000,028,643 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cgmloader.py
[2010.08.16 10:41:40 | 000,055,918 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cmxloader.py
[2010.08.16 10:41:40 | 000,038,308 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\dxfloader.py
[2010.08.16 10:41:40 | 000,001,949 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\gziploader.py
[2010.08.16 10:41:40 | 000,007,779 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\pltloader.py
[2010.08.16 10:41:40 | 000,017,301 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\sk1loader.py
[2010.08.16 10:41:40 | 000,015,416 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\skloader.py
[2010.08.16 10:41:40 | 000,015,832 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\stitchloader.py
[2010.08.16 10:41:40 | 000,038,937 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\svgloader.py
[2010.08.16 10:41:40 | 000,014,300 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\wmfloader.py
[2010.08.16 10:41:40 | 000,017,550 | ---- | M] () -- \Program Files\Inkscape\python\Lib\site-packages\sk1libs\filters\import\xfigloader.py
[2012.12.20 12:33:50 | 000,069,120 | ---- | M] () -- \Program Files\Samsung\Kies\Common\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2008.02.25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2008.07.01 03:07:08 | 000,003,103 | ---- | M] () -- \Program Files\TuxPaint\etc\gtk-2.0\gdk-pixbuf.loaders
[2008.07.01 03:07:12 | 000,012,800 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2008.07.01 03:07:12 | 000,015,360 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2008.07.01 03:07:12 | 000,022,528 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2008.07.01 03:07:12 | 000,013,312 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2008.07.01 03:07:12 | 000,015,360 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2008.07.01 03:07:12 | 000,010,752 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2008.07.01 03:07:12 | 000,015,872 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2008.07.01 03:07:12 | 000,012,288 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2008.07.01 03:07:12 | 000,008,704 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2008.07.01 03:07:12 | 000,013,824 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2008.07.01 03:07:12 | 000,013,312 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2008.07.01 03:07:12 | 000,007,680 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2008.07.01 03:07:12 | 000,010,752 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2008.07.01 03:07:12 | 000,025,088 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2008.07.01 03:07:12 | 000,007,168 | ---- | M] () -- \Program Files\TuxPaint\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2010.03.15 10:28:24 | 000,045,056 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2012.07.10 09:33:04 | 000,430,080 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSFacebookUploader.exe
[2010.04.29 14:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSPluginLoader.exe
[2012.06.05 12:35:30 | 000,442,368 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSFlickrUploader.exe
[2010.04.29 14:12:42 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSPluginLoader.exe
[2011.03.08 17:09:04 | 000,194,048 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPicasaUploader.exe
[2010.04.29 14:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPluginLoader.exe
[2012.07.13 11:59:04 | 000,102,824 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\8bfLoader.exe
[2012.07.13 11:59:16 | 000,016,808 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\WICLoader.exe
[2004.08.17 15:49:06 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2013.01.26 21:30:58 | 000,189,440 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\4eb2e324855c2b3bc40a21f1dbae2997\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.ni.dll
[2013.01.28 17:49:08 | 000,189,440 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\ce78691189b1c5f7407d75a90c3ee0ba\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.ni.dll
[2012.02.03 03:32:08 | 000,112,128 | R--- | M] () -- \WINDOWS\Installer\$PatchCache$\Managed\A8640317F35F8964C8903A93AEB3506E\3.0.655\ta_productapiloader..D321D6CC_DBBE_4AC3_8DBD_DFF82BB39BDC
[2008.04.14 04:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 19:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 19:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 04:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2012.10.04 09:12:02 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2012.10.17 18:32:58 | 000,009,622 | ---- | M] () -- \WINDOWS\system32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr

========== Alternate Data Streams ==========

@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:1CB3187E
@Alternate Data Stream - 6144 bytes -> C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:B3D74A13
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:1CE11B51

< End of report >

gerard · #23 Příspěvek od **gerard** » 26 úno 2013 21:19

OTL Extras logfile created on: 26.2.2013 20:25:50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Radek\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,93 Gb Total Physical Memory | 1,97 Gb Available Physical Memory | 67,23% Memory free
4,77 Gb Paging File | 4,03 Gb Available in Paging File | 84,45% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 298,08 Gb Total Space | 14,08 Gb Free Space | 4,72% Space Free | Partition Type: NTFS

Computer Name: GERARD | User Name: Radek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"ANTIVIRUSDISABLENOTIFY" = 1
"FIREWALLDISABLENOTIFY" = 1
"UPDATESDISABLENOTIFY" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe" = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil -- ()
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe" = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:*:Enabled:BlueSoleilCS -- ()
"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"C:\Program Files\Valve\Steam\SteamApps\radekvlach\half-life 2 deathmatch\hl2.exe" = C:\Program Files\Valve\Steam\SteamApps\radekvlach\half-life 2 deathmatch\hl2.exe:*:Enabled:hl2 -- ()
"C:\Program Files\Valve\Steam\SteamApps\radekvlach\source dedicated server\srcds.exe" = C:\Program Files\Valve\Steam\SteamApps\radekvlach\source dedicated server\srcds.exe:*:Enabled:srcds -- ()
"C:\Program Files\Real\RealPlayer\realplay.exe" = C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer -- (RealNetworks, Inc.)
"C:\Program Files\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe" = C:\Program Files\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe:*:Enabled:AllShare -- ()
"C:\Program Files\Samsung\SAMSUNG PC Share Manager\http_ss_win_pro.exe" = C:\Program Files\Samsung\SAMSUNG PC Share Manager\http_ss_win_pro.exe:*:Enabled:PCSM_http_ss_win_pro -- ()
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe" = C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth -- (Google)
"C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)
"C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe" = C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin -- (Google)
"C:\Program Files\Valve\Steam\SteamApps\radekvlach\half-life source\hl2.exe" = C:\Program Files\Valve\Steam\SteamApps\radekvlach\half-life source\hl2.exe:*:Enabled:Half-Life: Source -- ()
"C:\Documents and Settings\Radek\Plocha\Age-of-Empire\empires2.exe" = C:\Documents and Settings\Radek\Plocha\Age-of-Empire\empires2.exe:*:Disabled:Age of Empires II -- (Microsoft Corporation)
"C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\netsession_win.exe" = C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Client -- (Akamai Technologies, Inc.)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Program Files\TeamViewer\Version7\TeamViewer.exe" = C:\Program Files\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM)
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1111706F-666A-4037-7777-210328764D10}" = JavaFX 2.1.0
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP180" = Canon MP180
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{1791495E-F2BD-4BD6-9F6C-4C04ADB86D07}" = True Image 2013
"{1791495E-F2BD-4BD6-9F6C-4C04ADB86D07}Visible" = True Image 2013
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1E726A53-78E9-47DE-B3D9-4165CBC9ABBF}" = Bluesoleil 5.0.5.178
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{237CD223-1B9D-47E8-A76C-E478B83CCEA2}" = File Uploader
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 29
"{26A24AE4-039D-4CA4-87B4-2F83217015FF}" = Java 7 Update 15
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros for Acer Driver v7.6.1.162_Foxconn Installation Program
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{299C0434-4F4E-341F-A916-4E07AEB35E79}" = Microsoft Visual Studio Tools for Applications 2.0 Runtime
"{2A2E822B-3B0E-46C1-9E3B-ACD7D1E95139}" = SAMSUNG PC Share Manager
"{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}" = Canon Camera WIA Driver
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = Acer Crystal Eye Webcam Video Class Camera
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}" = GetDataBack for NTFS
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5BEBD7F0-5544-3B4C-8D15-7154AA35BEA2}" = Google Talk Plugin
"{5CA03ECF-B4A6-464B-9F5D-64D8B61B083F}" = Everio MediaBrowser
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{7130468A-F53F-4698-8C09-A339EA3B05E6}" = Nokia Software Updater
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{7964AE02-9127-42C0-A917-2CE4CD4EFE3B}" = Nokia Suite
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84814E6B-2581-46EC-926A-823BD1C670F6}" = Software Bluetooth WIDCOMM
"{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90F80405-6000-11D3-8CFE-0150048383C9}" = Nástroj pro odstranění skrytých dat
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}" = Acer Crystal Eye Webcam 2.0.9.2
"{A8BD5A60-E843-46DC-8271-ABF20756BE0F}" = Microsoft Sync Framework Runtime v1.0 (x86)
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Czech
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B00220C8-AD02-4DA8-BEF4-E0552A4AC1E2}_is1" = Panopticum Lens Pro 3.5 For Vegas
"{B9326D76-AD46-4D5C-BE8B-66E30D33E3D2}" = Hugo Game Shop
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5F0FD86-1E2B-4FE3-8996-B976FCA2E64F}" = Barbie(TM) Salon krásy CD-ROM
"{C8616041-2802-4DE2-B3BD-6285AAD65C2A}" = Nikon RAW Codec
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFDE8A91-D455-4E3D-8AD1-4FC09DBD85B5}" = FontFree3of9Setup
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}" = Acer Crystal Eye webcam Ver:1.1.57.409
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{D45EC259-4A19-4656-B588-C2C360DD18EA}" = Half-Life(R) 2
"{D6B07F93-920D-4EBC-85EE-37210461C569}_is1" = Einstein - program pro poradce
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DA5B2BDC-F654-4A88-A669-4D34BC7846A1}" = PC Connectivity Solution
"{DC785DB7-D389-48C3-B146-96FE99BF4E2B}" = Vegas Pro 9.0
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"All2WAV Recorder_is1" = All2WAV Recorder 3.20
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.81
"avast" = avast! Free Antivirus
"BlazeDTV 6.0_is1" = BlazeDTV 6.0
"CCleaner" = CCleaner
"Cool Edit Pro 2.1" = Cool Edit Pro 2.1
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"Crayon Physics Deluxe_is1" = Crayon Physics Deluxe - release 51
"D'Fusion @Home Web Plug-In" = Total Immersion D'Fusion @Home Web Plug-In
"DivX Setup" = DivX Setup
"FBDBServer_1_5_is1" = Firebird 1.5.6
"FormatFactory" = FormatFactory 3.0.1
"Free PDF to Word Converter_is1" = Free PDF to Word Converter 1.5
"HappyFoto-Designer_is1" = HF Designer 2.7
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"Inkscape" = Inkscape 0.48.1
"InstallShield_{2A2E822B-3B0E-46C1-9E3B-ACD7D1E95139}" = SAMSUNG PC Share Manager
"InstallShield_{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}" = Canon EOS Kiss_N REBEL_XT 350D WIA Driver
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"InstallShield_{C5F0FD86-1E2B-4FE3-8996-B976FCA2E64F}" = Barbie(TM) Salon krásy CD-ROM
"IrfanView" = IrfanView (remove only)
"Krtek_is1" = Hrajeme si s Krtkem
"LManager" = Launch Manager
"Machinarium" = Machinarium
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.70.0.1100
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"MozBackup" = MozBackup 1.4.10
"Mozilla Firefox 16.0.1 (x86 cs)" = Mozilla Firefox 16.0.1 (x86 cs)
"Mozilla Thunderbird 17.0.3 (x86 cs)" = Mozilla Thunderbird 17.0.3 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Nokia Suite" = Nokia Suite
"NVIDIA Drivers" = NVIDIA Drivers
"PluginPac" = DebugMode PluginPac (remove only)
"PPTView97" = Microsoft PowerPoint Viewer 97
"Pussinboots" = Puss in boots
"RealPlayer 15.0" = RealPlayer
"Rossmann Foto-Shop Software" = Rossmann Foto-Shop Software 4.9
"TeamViewer 7" = TeamViewer 7
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"Tux Paint_is1" = Tux Paint 0.9.20
"VLC media player" = VLC media player 2.0.4
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"winusb0100" = Microsoft WinUsb 1.0
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"ZonerPhotoStudio14_CZ_is1" = Zoner Photo Studio 14

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"Google Chrome" = Google Chrome
"Winamp Detect" = Winamp Application Detect

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 16.2.2013 3:51:46 | Computer Name = GERARD | Source = PerfNet | ID = 2005
Description = Nelze číst data o výkonu ze služby serveru. V tomto vzorku nebudou
vrácena žádná data o výkonu serveru. Vrácený chybový kód je v datech DWORD 0, IOSB.Status
je DWORD 1 a IOSB.Information je DWORD 2.

Error - 16.2.2013 3:51:46 | Computer Name = GERARD | Source = PerfNet | ID = 2006
Description = Nelze číst data o výkonu fronty ze služby serveru. V tomto vzorku nebudou
vrácena žádná data o výkonu fronty serveru. Vrácený chybový kód je v datech DWORD
0, IOSB.Status je DWORD 1 a IOSB.Information je DWORD 2.

Error - 16.2.2013 15:02:27 | Computer Name = GERARD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 17.2.2013 5:09:15 | Computer Name = GERARD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 17.2.2013 8:02:12 | Computer Name = GERARD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 18.2.2013 5:37:46 | Computer Name = GERARD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 19.2.2013 5:23:24 | Computer Name = GERARD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 19.2.2013 16:37:01 | Computer Name = GERARD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 21.2.2013 5:43:35 | Computer Name = GERARD | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace AvastUI.exe, verze 6.0.1367.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 26.2.2013 9:37:37 | Computer Name = GERARD | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

[ System Events ]
Error - 24.2.2013 14:56:13 | Computer Name = GERARD | Source = Service Control Manager | ID = 7001
Description = Služba Klient DNS závisí na službě Ovladač protokolu TCP/IP, která
neuspěla při spuštění v důsledku následující chyby: %%31

Error - 24.2.2013 14:56:13 | Computer Name = GERARD | Source = Service Control Manager | ID = 7001
Description = Služba Podpora rozhraní NetBIOS nad protokolem TCP/IP závisí na službě
AFD, která neuspěla při spuštění v důsledku následující chyby: %%31

Error - 24.2.2013 14:56:13 | Computer Name = GERARD | Source = Service Control Manager | ID = 7001
Description = Služba Služby IPSEC závisí na službě Ovladač IPSEC, která neuspěla
při spuštění v důsledku následující chyby: %%31

Error - 24.2.2013 14:56:13 | Computer Name = GERARD | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Aavmker4 AFD aswRdr aswSnx aswSP aswTdi Fips intelppm IPSec MRxSmb NetBIOS NetBT
RasAcd
Rdbss
SASDIFSV
SASKUTIL
Tcpip
WS2IFSL

Error - 24.2.2013 14:57:36 | Computer Name = GERARD | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 24.2.2013 15:03:23 | Computer Name = GERARD | Source = Service Control Manager | ID = 7022
Description = Služba avast! Antivirus přestala během spouštění reagovat.

Error - 24.2.2013 15:03:23 | Computer Name = GERARD | Source = Service Control Manager | ID = 7000
Description = Služba Nero BackItUp Scheduler 4.0 neuspěla při spuštění v důsledku
následující chyby: %%2

Error - 26.2.2013 3:55:19 | Computer Name = GERARD | Source = Service Control Manager | ID = 7000
Description = Služba Nero BackItUp Scheduler 4.0 neuspěla při spuštění v důsledku
následující chyby: %%2

Error - 26.2.2013 4:33:54 | Computer Name = GERARD | Source = WPDMTPDriver | ID = 80836
Description = MTP WPD Driver has failed to start. Error 0x8007001f.

Error - 26.2.2013 9:37:56 | Computer Name = GERARD | Source = Service Control Manager | ID = 7000
Description = Služba Nero BackItUp Scheduler 4.0 neuspěla při spuštění v důsledku
následující chyby: %%2

< End of report >

#24 Příspěvek od **vyosek** » 27 úno 2013 08:33

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Radek\LOCALS~1\Temp\7zS203.tmp\iscflash.sys -- (iscFlash)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Radek\LOCALS~1\Temp\catchme.sys -- (catchme)
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>
IE - HKCU\..\URLSearchHook: - No CLSID value found
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RADEK\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\OCYURW8O.DEFAULT\EXTENSIONS\{DC572301-7619-498C-A57D-39143191B318}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\RADEK\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\OCYURW8O.DEFAULT\EXTENSIONS\2020PLAYER_IKEA@2020TECHNOLOGIES.COM
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
[2010.12.26 15:54:34 | 000,046,592 | ---- | C] () -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.01.30 18:37:01 | 000,086,528 | ---- | C] () -- C:\Documents and Settings\Radek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2013.02.26 20:57:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2013.02.26 02:00:01 | 000,000,342 | ---- | M] () -- C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-GERARD-Radek.job
[2013.02.26 14:37:32 | 000,000,934 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2013.02.26 20:15:01 | 000,000,938 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2013.02.26 18:42:00 | 000,000,974 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-448539723-2049760794-725345543-1003Core.job
[2013.02.26 14:37:27 | 000,000,278 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1003.job
[2013.02.26 14:37:27 | 000,000,282 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1004.job
[2013.02.26 14:37:27 | 000,000,276 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1005.job
[2013.02.26 14:37:27 | 000,000,282 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1007.job
[2013.02.20 23:02:00 | 000,000,286 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1003.job
[2013.02.25 13:36:00 | 000,000,290 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1004.job
[2013.02.17 18:52:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1005.job
[2013.02.22 17:25:00 | 000,000,290 | ---- | M] () -- C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1007.job
@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:1CB3187E
@Alternate Data Stream - 6144 bytes -> C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:B3D74A13
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:1CE11B51

:services
Nero BackItUp Scheduler 4.0
iscFlash

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DivXUpdate"=-
"AdobeAAMUpdater-1.0"=-
"SwitchBoard"=-
"AdobeCS5ServiceManager"=-
"NSU_agent"=-
"Adobe ARM"=-
"KiesTrayAgent"=-
"SunJavaUpdateSched"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=-
"KiesPreload"=-
"WMPNSCFG"=-

:files
c:\Documents and Settings\Radek\Plocha\*crack*.*
c:\Documents and Settings\Radek\Recent\*crack*.*
c:\Documents and Settings\Radek\Plocha\*keygen*.*
c:\Documents and Settings\Radek\Recent\*keygen*.*
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[EMPTYJAVA]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

gerard · #25 Příspěvek od **gerard** » 27 úno 2013 18:09

Pc už 7 hodin počítá, můžu ho restartovat?

#26 Příspěvek od **vyosek** » 27 úno 2013 18:17

Pokud se seknul, tak jej restartujte a provedte opravu v nouzovem rezimu

gerard · #27 Příspěvek od **gerard** » 27 úno 2013 18:52

All processes killed
========== OTL ==========
Service WDICA stopped successfully!
Service WDICA deleted successfully!
Service PDRFRAME stopped successfully!
Service PDRFRAME deleted successfully!
Service PDRELI stopped successfully!
Service PDRELI deleted successfully!
Service PDFRAME stopped successfully!
Service PDFRAME deleted successfully!
Service PDCOMP stopped successfully!
Service PDCOMP deleted successfully!
Service PCIDump stopped successfully!
Service PCIDump deleted successfully!
Service lbrtfdc stopped successfully!
Service lbrtfdc deleted successfully!
Service iscFlash stopped successfully!
Service iscFlash deleted successfully!
File C:\DOCUME~1\Radek\LOCALS~1\Temp\7zS203.tmp\iscflash.sys not found.
Service i2omgmt stopped successfully!
Service i2omgmt deleted successfully!
Service Changer stopped successfully!
Service Changer deleted successfully!
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\DOCUME~1\Radek\LOCALS~1\Temp\catchme.sys not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface deleted successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\netsession_win.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\WINDOWS\002938_.tmp deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4B0.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP55F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPDA6.tmp\System.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPDA6.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPDD5.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI23A.tmp deleted successfully.
C:\WINDOWS\Installer\MSI39D.tmp deleted successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job moved successfully.
C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-GERARD-Radek.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-448539723-2049760794-725345543-1003Core.job moved successfully.
C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1003.job moved successfully.
C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1004.job moved successfully.
C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1005.job moved successfully.
C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-448539723-2049760794-725345543-1007.job moved successfully.
C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1003.job moved successfully.
C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1004.job moved successfully.
C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1005.job moved successfully.
C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-2049760794-725345543-1007.job moved successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:1CB3187E deleted successfully.
ADS C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:B3D74A13 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:1CE11B51 deleted successfully.
========== SERVICES/DRIVERS ==========
Service Nero BackItUp Scheduler 4.0 stopped successfully!
Service Nero BackItUp Scheduler 4.0 deleted successfully!
Error: No service named iscFlash was found to stop!
Service\Driver key iscFlash not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DivXUpdate deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeCS5ServiceManager deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NSU_agent deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KiesTrayAgent deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\KiesPreload deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\WMPNSCFG deleted successfully.
========== FILES ==========
c:\Documents and Settings\Radek\Plocha\Traktor-2-Simulator-2011+Crack-by-Majo.rar moved successfully.
c:\Documents and Settings\Radek\Recent\the-sims-3-crack-funkcnĂ˝-100%-cz-verze.lnk moved successfully.
c:\Documents and Settings\Radek\Recent\Traktor-2-Simulator-2011+Crack-by-Majo.lnk moved successfully.
c:\Documents and Settings\Radek\Plocha\Adobe-Photoshop-CS5-Keygen.exe moved successfully.
c:\Documents and Settings\Radek\Recent\AnvSoft-Flash-Slide-Show-Maker-4.72-+-Keygen-[h33t]-[Original].lnk moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Logs\dump folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Logs folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Languages folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles\driver\en\downloads%20and%20drivers\g475g575%20app folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles\driver\en\downloads%20and%20drivers\g475g575\xp folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles\driver\en\downloads%20and%20drivers\g475g575\win7%20update folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles\driver\en\downloads%20and%20drivers\g475g575\win7 folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles\driver\en\downloads%20and%20drivers\g475g575\bios\41cn19ww(v1.05) folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles\driver\en\downloads%20and%20drivers\g475g575\bios folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles\driver\en\downloads%20and%20drivers\g475g575 folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles\driver\en\downloads%20and%20drivers folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles\driver\en folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles\driver folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com\userfiles folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache\download.lenovo.com folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai\Cache folder moved successfully.
C:\Documents and Settings\Radek\Local Settings\Data aplikací\Akamai folder moved successfully.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41620 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41620 bytes

User: HDD_fotky

User: LocalService
->Temp folder emptied: 65716 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: Radek
->Temp folder emptied: 2611969 bytes
->Temporary Internet Files folder emptied: 5975046 bytes
->Java cache emptied: 10821094 bytes
->FireFox cache emptied: 1532726150 bytes
->Google Chrome cache emptied: 182748121 bytes
->Flash cache emptied: 967655 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 1643 bytes

Total Files Cleaned = 1 656,00 mb

[EMPTYFLASH]

User: Administrator
->Flash cache emptied: 0 bytes

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: HDD_fotky

User: LocalService

User: NetworkService

User: Radek
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

[EMPTYJAVA]

User: Administrator

User: All Users

User: Default User

User: HDD_fotky

User: LocalService

User: NetworkService

User: Radek
->Java cache emptied: 0 bytes

Total Java Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 02272013_184121

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

#28 Příspěvek od **vyosek** » 27 úno 2013 18:53

OK, jak se chova PC

gerard · #29 Příspěvek od **gerard** » 27 úno 2013 19:29

Vypadá OK, moc děkuji za Váš čas.

#30 Příspěvek od **vyosek** » 27 úno 2013 19:38

Tak jeste uklidime

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

VIRY.CZ

Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu