Nikdy jsem neviděl to co mi počítač ted začal dělat
každých cca deset vteřin mi to začne nezastavitelně psát písmeno "c" to je neuvěřitelný ...
OTL Extras logfile created on: 8.10.2013 20:19:27 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jiljl\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,75 Gb Total Physical Memory | 2,98 Gb Available Physical Memory | 79,54% Memory free
7,50 Gb Paging File | 6,84 Gb Available in Paging File | 91,24% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,79 Gb Total Space | 42,56 Gb Free Space | 18,28% Space Free | Partition Type: NTFS
Computer Name: JILJL-PC | User Name: jiljl | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{08A46E2C-5B96-46C3-8B29-2778878E5255}" = rport=10243 | protocol=6 | dir=out | app=system |
"{0BBBDD5D-9A9D-4372-B0B0-8BED0AB6F4F5}" = rport=445 | protocol=6 | dir=out | app=system |
"{210F092C-221C-42B7-9B81-846C2A3D589F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2A10B574-F83D-4098-8F22-45D9A56AE382}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{2FD1B4A2-26A9-488A-A046-74ECDFA9FD91}" = lport=445 | protocol=6 | dir=in | app=system |
"{31821362-A02C-4E02-9511-2411B4DBEF65}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{48CEDDEE-9AAE-4345-8560-90C2C8276223}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6E9EFB14-2FA0-42C7-B771-A45A7D8D791C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6EE1A3AC-EBF3-4EC4-AC68-6C615CAEBB5D}" = lport=137 | protocol=17 | dir=in | app=system |
"{77C1B5D6-4D0F-4DAB-BE3E-056FBEDF5FDE}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{802718BD-87E4-4C48-955D-66F7C31CE7B1}" = rport=139 | protocol=6 | dir=out | app=system |
"{81AC9095-F5C5-43FC-9D50-D529BC060F61}" = rport=137 | protocol=17 | dir=out | app=system |
"{8FB3B6C0-0629-4060-9EDB-C0CF02E46657}" = rport=138 | protocol=17 | dir=out | app=system |
"{9E4ED588-6F54-4183-91CF-A3B532EA84F1}" = lport=10243 | protocol=6 | dir=in | app=system |
"{AFCE9D82-0CF8-4F15-8BBA-99CDEB96A82F}" = lport=138 | protocol=17 | dir=in | app=system |
"{B0D24B03-6122-4C96-B91C-60925B447FED}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B2AFAA44-D119-4590-8336-848EBE21DEF4}" = lport=57928 | protocol=6 | dir=in | name=pando media booster |
"{BE28B181-8F1E-4366-99E0-F1EF6E0D8591}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C0C734CC-8698-4349-BF9A-F0639468C91E}" = lport=57928 | protocol=17 | dir=in | name=pando media booster |
"{C9C2726A-BEE6-48D8-9A6B-39DE50C4DE94}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D1036D8E-06B0-45EC-B4AC-AB10EC82FAE9}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DD307667-AC91-40CE-BBD8-3076F1C426D8}" = lport=139 | protocol=6 | dir=in | app=system |
"{E042AB25-2234-4C0D-A759-960AFFF0B2FF}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EA39B995-A6BD-4E98-B465-DA371CB2AEC8}" = lport=57928 | protocol=6 | dir=in | name=pando media booster |
"{FC8A4AF1-BAE6-4AC5-A104-14336BD160FD}" = lport=57928 | protocol=17 | dir=in | name=pando media booster |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01080483-33DE-44D7-9ADF-A93DC53FA3DB}" = protocol=6 | dir=in | app=c:\program files (x86)\atube\dtuser.exe |
"{03489376-B992-4DF4-9522-63756FA4AEED}" = protocol=6 | dir=in | app=c:\program files (x86)\thq\s.t.a.l.k.e.r. - shadow of chernobyl\bin\dedicated\xr_3da.exe |
"{05FA815D-0428-40CC-B375-739F983714EB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0643D064-C5AD-4C68-AF3D-661BCBD54CC6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{069C3BCC-61E3-490E-BF77-B7A23A2C80DB}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{0AB5D6A8-E8D0-4B33-89A4-DB0A7593837E}" = protocol=17 | dir=in | app=c:\program files (x86)\thq\s.t.a.l.k.e.r. - shadow of chernobyl\bin\xr_3da.exe |
"{0C82FAEB-51EF-4FF5-8B67-627161810961}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{12111BDA-F108-43D8-A3B3-4A6DD65ED3D9}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{179083E2-77E8-4B17-88CB-CABD392D2C8A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{181BC9B5-5B11-4F3C-8A43-6DFB32862FE8}" = protocol=17 | dir=in | app=c:\program files (x86)\atube\dtuser.exe |
"{1B438B52-B88A-44E9-882D-98BAE4D4D1CA}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{250F972D-9BB8-4B16-AF53-7706E0627936}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{2A3D72E5-FA8F-49E6-A11B-42CDD1952549}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{2C4DC61F-910B-4564-A2EC-0E2B058F44C2}" = protocol=6 | dir=in | app=c:\program files (x86)\firaxis games\sid meier's civilization 4\civilization4.exe |
"{2CA5795C-DF7D-465D-B6E0-C5274A2743B7}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{2D745621-3B57-43A5-8874-1A0017F44BA5}" = protocol=17 | dir=in | app=c:\program files (x86)\sweetim\communicator\sweetpacksupdatemanager.exe |
"{3138F685-9134-4369-83AC-40808FEEBDC5}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgdiagex.exe |
"{435A2947-29AA-4415-9C6D-8B7A92881F9A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4573C74C-D656-4E7F-BA57-8DF1D8CA8E1D}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{47F62FDD-DA48-4759-99E3-A4A241BC088D}" = protocol=6 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{4ACCE0AA-6EEB-42A0-BD60-34C27C20DABF}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{523707B9-FE6C-43E4-8B39-F91DE4B2D2CE}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{5559B828-5549-4F05-9F3B-F710044E118A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5F8970D9-592D-4DE6-9E03-C33ED4FE07AB}" = protocol=17 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{70533CB8-DB8F-46EF-8FF9-A88E5BAB65A3}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{70FC49C4-A749-47D3-A340-FA4946672093}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7170452D-67DC-4670-9BA9-6E13E1615E43}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{7A24E20D-E239-4A5D-A330-4C7977BA7656}" = protocol=6 | dir=in | app=c:\program files (x86)\sweetim\communicator\sweetpacksupdatemanager.exe |
"{7F73ADD6-22F2-466A-B7A8-748B87244A41}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgdiagex.exe |
"{800D6CF0-8041-4BC9-8E9E-96B6516C6DB5}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{873B069F-48CA-4AFE-98B6-45033E78590C}" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\battlefield 2\bf2.exe |
"{93A65C62-C524-4DCF-BA9F-38A3AFAABA6F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{952C7C13-736E-49AD-B1BA-B67F958BE835}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{95FADD08-6339-4AFA-995D-9A8DE1CEEAF2}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{99717B43-6F59-484C-B741-8109DD9FCD99}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{9F12CB73-3AC0-4A8C-B220-3D8DF31AEEF6}" = protocol=6 | dir=in | app=c:\program files (x86)\thq\s.t.a.l.k.e.r. - shadow of chernobyl\bin\xr_3da.exe |
"{A11E64B1-6956-44FE-830B-0E39AD008EE9}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgemca.exe |
"{A32B80A2-E457-4827-B739-84A5E2494DDA}" = protocol=6 | dir=out | app=system |
"{ADD916BB-CB75-4165-B8E0-954676472049}" = protocol=17 | dir=in | app=c:\program files (x86)\firaxis games\sid meier's civilization 4\civilization4.exe |
"{B5415F22-357F-4551-BC34-7D016616036F}" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\battlefield 2\bf2.exe |
"{B8D2092F-1A20-4DF4-8704-30DDBFB5A28F}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{C06D4EC5-BE19-435B-BDFA-01784AF4CBFE}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C74A4106-5170-41F3-AD64-492CA913EE9B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{C764FB3D-9E53-4BD7-B85E-957E06354095}" = protocol=17 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe |
"{CA854192-2901-4A43-B44F-8933D8FE1974}" = protocol=17 | dir=in | app=c:\program files (x86)\thq\s.t.a.l.k.e.r. - shadow of chernobyl\bin\dedicated\xr_3da.exe |
"{D04757BA-61EB-48FF-BD51-A3D5A4E18B2A}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{D0D0A9E7-99B1-4F50-BA08-18091D35EEB2}" = protocol=6 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe |
"{D3736929-A653-447B-A96D-18CF68732E23}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgemca.exe |
"{D4488641-DEFF-4664-83D7-8D992AF4BA8E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{DC04BD28-2358-4A24-8FC4-80F755536D5F}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{DDA4CF89-A17C-489A-857F-43B3DD822438}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgnsa.exe |
"{E3435922-475B-45D3-8D38-0CAB49F1D906}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{E8F56DAE-A085-492F-BB69-A079ACE345F6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F180D9B8-216F-4D1C-8506-BAA9720D916F}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgnsa.exe |
"{FB9CACB7-6811-42CB-A14C-C3109A1288B8}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"TCP Query User{1FF77BFD-583A-4644-84D6-264B9F9D81CA}C:\users\jiljl\desktop\aaaaaamp4\tinyumbrella-6.12.00.exe" = protocol=6 | dir=in | app=c:\users\jiljl\desktop\aaaaaamp4\tinyumbrella-6.12.00.exe |
"TCP Query User{88329389-3723-4EC6-8E87-F3B066C4D5E3}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty 2\cod2mp_s.exe |
"TCP Query User{8B99E30E-0596-4C58-ACFD-1EF7ECF472C1}C:\program files (x86)\warcraft iii\war3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\warcraft iii\war3.exe |
"TCP Query User{A31EF8E1-83E2-4B87-89FD-818CFBB5A3E6}C:\program files (x86)\steam\steamapps\split442\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\split442\counter-strike source\hl2.exe |
"TCP Query User{F569E9B3-AC0E-45E4-8678-ABB9FCD6A2F4}C:\users\jiljl\desktop\music\tinyumbrella-6.01.01.exe" = protocol=6 | dir=in | app=c:\users\jiljl\desktop\music\tinyumbrella-6.01.01.exe |
"UDP Query User{3A3935EC-D3A9-4702-94F8-60173BEFD8D0}C:\program files (x86)\warcraft iii\war3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\warcraft iii\war3.exe |
"UDP Query User{41C7771E-35BB-4523-9AF9-AFFD19982CAA}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty 2\cod2mp_s.exe |
"UDP Query User{8533BE68-87F8-4C06-A690-326CDA16A9C8}C:\program files (x86)\steam\steamapps\split442\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\split442\counter-strike source\hl2.exe |
"UDP Query User{8B2C0FE5-C48D-4AA3-9747-9FACAA23E76E}C:\users\jiljl\desktop\aaaaaamp4\tinyumbrella-6.12.00.exe" = protocol=17 | dir=in | app=c:\users\jiljl\desktop\aaaaaamp4\tinyumbrella-6.12.00.exe |
"UDP Query User{FF9A1A6B-0535-48CE-8BCB-6E3F149A8C52}C:\users\jiljl\desktop\music\tinyumbrella-6.01.01.exe" = protocol=17 | dir=in | app=c:\users\jiljl\desktop\music\tinyumbrella-6.01.01.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0225AD21-F3E2-4916-BFF3-65D3F9052582}" = iTunes
"{1012456A-D118-37E0-E837-34AA28602013}" = AMD Drag and Drop Transcoding
"{10C407FA-12AF-49C6-97EA-4E468204B813}" = AVG 2012
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{4F2B8F3E-70FA-AA71-4526-3BFDEDE502EF}" = AMD Fuel
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{52E5D8A7-B129-4A29-AD4B-EBB749DCC3A3}_is1" = GamePark klient 2.0.9.0
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{68CA3A47-3F7E-0E92-DC0D-5B0C02D9AFAD}" = ccc-utility64
"{6BB150E8-6CBB-5F8F-CAE7-BE21B2C92D31}" = AMD Accelerated Video Transcoding
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 2.052
"{914F7627-B645-9895-F723-BAEAAC865E75}" = AMD Catalyst Install Manager
"{DA3372D5-F228-5C71-3FAC-177D4AEE8659}" = AMD Media Foundation Decoders
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DFE4E6BB-70F0-4292-B7EB-7A3AD48EBB5C}" = AVG 2012
"AVG" = AVG 2012
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03D45A4B-D7F5-C03E-1650-885756303D13}" = CCC Help Norwegian
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}" = Battlefield 2(TM)
"{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}" = SweetPacks bundle uninstaller
"{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}" = BitGuard
"{16726771-C380-4280-BAF9-1223B3838786}" = Click2Save
"{1E0AF527-0B8E-4F8A-BA27-CB3C359998C6}" = OpenOffice.org 3.4.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216019FF}" = Java(TM) 6 Update 19
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
"{284E9E9A-D8BE-3588-D0BA-E9BB61970A1D}" = CCC Help Hungarian
"{30E18A93-982E-AF1B-D646-E8C5DAECA390}" = CCC Help French
"{4021F8B5-E8BB-D0F9-AF28-4970013FAE3D}" = AMD VISION Engine Control Center
"{4377F918-E6C9-4ECA-A7F5-754B310B7ED8}" = Sid Meier's Civilization 4
"{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}" = Apple Application Support
"{470D66DF-B597-124E-EDCE-8B966AA5F230}" = CCC Help Portuguese
"{483924A6-52C5-9169-0280-14272D5FBA70}" = CCC Help Chinese Standard
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{57AE1BE1-24E8-4169-D52C-ABE31BD91562}" = CCC Help Finnish
"{5B5745F7-23EF-9E5E-6689-512C9FA08222}" = CCC Help English
"{625031C9-E249-2A53-C282-C1E9872B211E}" = CCC Help Turkish
"{655E0B5A-7ADF-A052-587F-64F0E59B58E7}" = CCC Help Dutch
"{74437563-D720-0307-90FC-1C351B1041D7}" = Catalyst Control Center Localization All
"{789A4D10-821B-3FA5-52B0-F0FAEEDED9F4}" = CCC Help Czech
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7BA14A92-C229-5E00-3ADE-8D22F81B849E}" = CCC Help German
"{80A5B901-C7BD-D300-17BA-9E02F18EAB77}" = CCC Help Danish
"{82F505E6-5879-B30A-12B7-7795969D3BBB}" = CCC Help Polish
"{8476003F-6927-8393-C6F4-FAF47D61D00B}" = CCC Help Korean
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{89A2D79E-B3AD-A83A-795F-5645EFF922D3}" = CCC Help Greek
"{89C0F58F-9E5B-2B45-D9DF-7988A54BECA8}" = CCC Help Italian
"{8B91D776-792D-F02B-DE43-BF398549C729}" = CCC Help Spanish
"{8F272838-BDD6-B433-D650-25E231AEFA8A}" = Catalyst Control Center InstallProxy
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{95120000-003F-0409-0000-0000000FF1CE}" = Microsoft Office Excel Viewer
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{983BE967-28E9-5C78-8851-638DAC4AF66E}" = CCC Help Swedish
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A0C9DF2B-89B5-4483-8983-18A68200F1B4}" = SweetIM for Messenger 3.7
"{A3B42EE5-AEDA-47C9-9A3D-066445362E1D}" = S.T.A.L.K.E.R. - Shadow of Chernobyl [v1.0006]
"{A707240D-18D3-07F4-AE2E-6AE76C220192}" = CCC Help Japanese
"{A7AA93B6-6909-4073-B4EC-45CCDEFD4665}" = NHL® 08
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B95AC87D-630B-603F-3F12-AA22B3BBA69C}" = CCC Help Chinese Traditional
"{C13E90B0-4E1C-11DB-6784-0152EAA218BE}" = Call of Duty(R) 2 Patch 1.3
"{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1" = Uniblue DriverScanner
"{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}" = Internet Explorer Toolbar 4.6 by SweetPacks
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}" = Sid Meier's Civilization 4
"{DBECFA83-42DC-4585-A970-A764AB01A956}" = Call Of Duty(R) 2
"{E0303B6A-C675-4102-95DA-C013625BFA99}" = GTA San Andreas
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}" = Update Manager for SweetPacks 1.1
"{EB1C554C-5343-9A69-1B8C-666AF192CA19}" = CCC Help Russian
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F32D24DD-D787-10F9-D21E-BC3FAB3064CB}" = Catalyst Control Center Graphics Previews Common
"{F8D90583-7BB5-75A9-B23F-A353AD4674BC}" = CCC Help Thai
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"1ClickDownload" = FTDownloader
"AbiWord2" = AbiWord 2.8.6
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Shockwave Player" = Adobe Shockwave Player
"atube" = aTube Toolbar
"aTube Catcher" = aTube Catcher
"AVG Secure Search" = AVG Security Toolbar
"Bandicam" = Bandicam
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"BitTorrent" = BitTorrent
"BitTorrentControl_v12 Toolbar" = BitTorrentControl_v12 Toolbar
"csExcel_is1" = csExcel v.1.1.15
"DAEMON Tools Lite" = DAEMON Tools Lite
"Delta Chrome Toolbar" = Delta Chrome Toolbar
"Football Manager 2012_is1" = Football Manager 2012
"Game Booster_is1" = Game Booster 3
"GotClip" = GotClip Downloader
"InstallShield_{A3B42EE5-AEDA-47C9-9A3D-066445362E1D}" = S.T.A.L.K.E.R. - Shadow of Chernobyl [v1.0006]
"Picasa 3" = Picasa 3
"RegCure" = RegCure
"S.T.A.L.K.E.R. - Shadow of Chernobyl_is1" = S.T.A.L.K.E.R. - Shadow of Chernobyl [v1.0005]
"Steam App 240" = Counter-Strike: Source
"Totalcmd" = Total Commander (Remove or Repair)
"Warcraft III" = Warcraft III
"WebcamMax" = WebcamMax
"WinRAR archiver" = WinRAR 4.11 (32-bit)
"winscp3_is1" = WinSCP 5.1
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 8.10.2013 13:39:41 | Computer Name = jiljl-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: swreg.3XE, verze: 3.0.0.0, časové razítko:
0x2a425e19 Název chybujícího modulu: BitGuard.dll, verze: 2.6.1673.238, časové razítko:
0x5233288d Kód výjimky: 0xc0000005 Posun chyby: 0x001793a8 ID chybujícího procesu:
0x15f8 Čas spuštění chybující aplikace: 0x01cec44d5dcb9c0b Cesta k chybující aplikaci:
C:\ComboFix\swreg.3XE Cesta k chybujícímu modulu: c:\PROGRA~3\BitGuard\261673~1.238\{C16C1~1\BitGuard.dll
ID
zprávy: 9bbd2ed0-3040-11e3-97da-001eec58f6f3
Error - 8.10.2013 13:39:41 | Computer Name = jiljl-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: swreg.3XE, verze: 3.0.0.0, časové razítko:
0x2a425e19 Název chybujícího modulu: BitGuard.dll, verze: 2.6.1673.238, časové razítko:
0x5233288d Kód výjimky: 0xc0000005 Posun chyby: 0x001793a8 ID chybujícího procesu:
0x15f8 Čas spuštění chybující aplikace: 0x01cec44d5dcb9c0b Cesta k chybující aplikaci:
C:\ComboFix\swreg.3XE Cesta k chybujícímu modulu: c:\PROGRA~3\BitGuard\261673~1.238\{C16C1~1\BitGuard.dll
ID
zprávy: 9c53257a-3040-11e3-97da-001eec58f6f3
Error - 8.10.2013 13:46:06 | Computer Name = jiljl-PC | Source = WinMgmt | ID = 10
Description =
Error - 8.10.2013 13:46:44 | Computer Name = jiljl-PC | Source = VSS | ID = 18
Description =
Error - 8.10.2013 13:46:44 | Computer Name = jiljl-PC | Source = VSS | ID = 8193
Description =
Error - 8.10.2013 13:46:44 | Computer Name = jiljl-PC | Source = System Restore | ID = 8193
Description =
Error - 8.10.2013 13:58:07 | Computer Name = jiljl-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: NirCmd.3XE, verze: 2.3.5.189, časové razítko:
0x49ec5532 Název chybujícího modulu: BitGuard.dll, verze: 2.6.1673.238, časové razítko:
0x5233288d Kód výjimky: 0xc0000005 Posun chyby: 0x001793a8 ID chybujícího procesu:
0xfe8 Čas spuštění chybující aplikace: 0x01cec44fed840658 Cesta k chybující aplikaci:
C:\ComboFix\NirCmd.3XE Cesta k chybujícímu modulu: c:\PROGRA~3\BitGuard\261673~1.238\{C16C1~1\BitGuard.dll
ID
zprávy: 2f44b3f7-3043-11e3-9132-001eec58f6f3
Error - 8.10.2013 13:58:31 | Computer Name = jiljl-PC | Source = WinMgmt | ID = 10
Description =
Error - 8.10.2013 13:58:36 | Computer Name = jiljl-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: NirCmd.3XE, verze: 2.3.5.189, časové razítko:
0x49ec5532 Název chybujícího modulu: BitGuard.dll, verze: 2.6.1673.238, časové razítko:
0x5233288d Kód výjimky: 0xc0000005 Posun chyby: 0x001793a8 ID chybujícího procesu:
0xfe8 Čas spuštění chybující aplikace: 0x01cec44fed840658 Cesta k chybující aplikaci:
C:\ComboFix\NirCmd.3XE Cesta k chybujícímu modulu: c:\PROGRA~3\BitGuard\261673~1.238\{C16C1~1\BitGuard.dll
ID
zprávy: 40cd5fb3-3043-11e3-9132-001eec58f6f3
Error - 8.10.2013 13:58:45 | Computer Name = jiljl-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: NirCmd.3XE, verze: 2.3.5.189, časové razítko:
0x49ec5532 Název chybujícího modulu: BitGuard.dll, verze: 2.6.1673.238, časové razítko:
0x5233288d Kód výjimky: 0xc0000005 Posun chyby: 0x001793a8 ID chybujícího procesu:
0xdb4 Čas spuštění chybující aplikace: 0x01cec45007f90284 Cesta k chybující aplikaci:
C:\ComboFix\NirCmd.3XE Cesta k chybujícímu modulu: c:\PROGRA~3\BitGuard\261673~1.238\{C16C1~1\BitGuard.dll
ID
zprávy: 45e5d296-3043-11e3-9132-001eec58f6f3
[ System Events ]
Error - 16.2.2013 21:01:46 | Computer Name = jiljl-PC | Source = Service Control Manager | ID = 7023
Description = Služba Systémový čas byla ukončena s následující chybou: %%1115
Error - 18.2.2013 5:20:42 | Computer Name = jiljl-PC | Source = DCOM | ID = 10010
Description =
Error - 21.2.2013 5:31:24 | Computer Name = jiljl-PC | Source = DCOM | ID = 10010
Description =
Error - 22.2.2013 5:33:14 | Computer Name = jiljl-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby upnphost bylo dosaženo časového
limitu (30000 ms).
Error - 23.2.2013 6:20:39 | Computer Name = jiljl-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Steam Client Service bylo dosaženo
časového limitu (30000 ms).
Error - 23.2.2013 6:20:39 | Computer Name = jiljl-PC | Source = Service Control Manager | ID = 7000
Description = Služba Steam Client Service neuspěla při spuštění v důsledku následující
chyby: %%1053
Error - 26.2.2013 8:52:33 | Computer Name = jiljl-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Steam Client Service bylo dosaženo
časového limitu (30000 ms).
Error - 26.2.2013 8:52:33 | Computer Name = jiljl-PC | Source = Service Control Manager | ID = 7000
Description = Služba Steam Client Service neuspěla při spuštění v důsledku následující
chyby: %%1053
Error - 8.3.2013 15:25:41 | Computer Name = jiljl-PC | Source = ACPI | ID = 327693
Description = : Integrovaný řadič neodpověděl během zadaného časového limitu. Může
to znamenat chybu hardwaru nebo firmwaru integrovaného řadiče nebo že systém BIOS
přistupuje k integrovanému řadiči nesprávně. Měli byste zjistit, zda výrobce počítače
nemá k dispozici upgrade systému BIOS. V některých situacích může tato chyba způsobit,
že počítač nebude pracovat správně.
Error - 11.3.2013 11:10:52 | Computer Name = jiljl-PC | Source = DCOM | ID = 10010
Description =
< End of report >
OTL logfile created on: 8.10.2013 20:19:27 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jiljl\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,75 Gb Total Physical Memory | 2,98 Gb Available Physical Memory | 79,54% Memory free
7,50 Gb Paging File | 6,84 Gb Available in Paging File | 91,24% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,79 Gb Total Space | 42,56 Gb Free Space | 18,28% Space Free | Partition Type: NTFS
Computer Name: JILJL-PC | User Name: jiljl | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013.10.07 22:47:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jiljl\Desktop\OTL.exe
========== Modules (No Company Name) ==========
MOD - [2013.10.03 08:03:05 | 000,415,184 | ---- | M] () -- C:\Users\jiljl\AppData\Local\Google\Chrome\Application\30.0.1599.69\ppgooglenaclpluginchrome.dll
MOD - [2013.10.03 08:03:03 | 004,055,504 | ---- | M] () -- C:\Users\jiljl\AppData\Local\Google\Chrome\Application\30.0.1599.69\pdf.dll
MOD - [2013.10.03 08:02:09 | 001,604,560 | ---- | M] () -- C:\Users\jiljl\AppData\Local\Google\Chrome\Application\30.0.1599.69\ffmpegsumo.dll
========== Services (SafeList) ==========
SRV:
64bit: - [2012.07.04 08:20:54 | 000,238,080 | ---- | M] (AMD) [Auto | Stopped] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:
64bit: - [2012.07.04 01:36:06 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Stopped] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:
64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:
64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013.10.02 19:09:35 | 001,734,680 | ---- | M] (AVG Secure Search) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe -- (vToolbarUpdater17.0.12)
SRV - [2013.09.21 20:35:00 | 000,565,672 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013.09.16 12:29:40 | 003,273,088 | ---- | M] (Skype Technologies S.A.) [Auto | Stopped] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013.09.13 17:02:00 | 003,029,472 | ---- | M] () [Auto | Stopped] -- C:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe -- (BitGuard)
SRV - [2013.03.20 17:49:39 | 000,075,064 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012.11.02 04:51:18 | 005,174,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012.07.03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.02.14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:
64bit: - [2013.10.02 19:09:35 | 000,046,368 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:
64bit: - [2013.04.11 03:18:40 | 000,384,800 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:
64bit: - [2012.12.13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:
64bit: - [2012.12.10 04:28:34 | 000,127,328 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:
64bit: - [2012.11.08 04:49:24 | 000,307,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:
64bit: - [2012.09.30 19:08:00 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:
64bit: - [2012.08.21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:
64bit: - [2012.07.04 08:59:32 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:
64bit: - [2012.07.04 08:59:32 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:
64bit: - [2012.07.04 07:10:56 | 000,359,936 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:
64bit: - [2012.04.19 04:50:26 | 000,028,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:
64bit: - [2012.01.31 04:46:48 | 000,036,944 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:
64bit: - [2011.12.23 13:32:14 | 000,047,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:
64bit: - [2011.12.23 13:32:04 | 000,029,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\avgidsfiltera.sys -- (AVGIDSFilter)
DRV:
64bit: - [2010.11.21 05:24:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:
64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:
64bit: - [2010.11.21 05:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:
64bit: - [2010.11.21 05:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:
64bit: - [2010.11.21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:
64bit: - [2010.11.21 05:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:
64bit: - [2010.11.21 05:23:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:
64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:
64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:
64bit: - [2010.11.21 05:23:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:
64bit: - [2010.02.18 09:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:
64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:
64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:
64bit: - [2009.07.14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:
64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:
64bit: - [2009.06.20 04:09:57 | 001,394,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:
64bit: - [2009.06.10 23:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:
64bit: - [2009.06.10 23:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:
64bit: - [2009.06.10 23:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:
64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:
64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:
64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:
64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:
64bit: - [2008.02.27 19:36:28 | 000,174,496 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV - [2010.11.01 06:08:46 | 000,014,544 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys -- (WinRing0_1_2_0)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:
64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:
64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://home.sweetim.com/?st=6&barid={E5 ... 1EEC58F6F3}
IE - HKLM\..\URLSearchHook: {b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14} - C:\Program Files (x86)\BitTorrentControl_v12\prxtbBitT.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" =
http://search.conduit.com/ResultsExt.as ... =CT3225826
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" =
http://search.sweetim.com/search.asp?sr ... 1EEC58F6F3}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page =
http://www1.delta-search.com/?affID=119 ... 22693078F9
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://eu.ask.com/?l=dis&o=15430
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKCU\..\URLSearchHook: {b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14} - C:\Program Files (x86)\BitTorrentControl_v12\prxtbBitT.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {bfc39e47-d643-4dc2-aa1d-61377501c844} - C:\Program Files (x86)\atube\atubeX.dll ()
IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" =
http://search.babylon.com/?q={searchTer ... 22693078F9
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" =
http://websearch.ask.com/redirect?clien ... 6CBBF512DB
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" =
http://isearch.avg.com/search?cid={4B87 ... 2012-07-04 17:58:27&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" =
http://search.conduit.com/ResultsExt.as ... =CT3225826
IE - HKCU\..\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}: "URL" =
http://eu.ask.com/web?l=dis&o=APN10147& ... earchTerms}
IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" =
http://search.sweetim.com/search.asp?sr ... 1EEC58F6F3}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF:
64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.0.12\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\jiljl\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\jiljl\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\17.0.1.12 [2013.10.02 19:09:59 | 000,000,000 | ---D | M]
[2012.10.04 20:54:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jiljl\AppData\Roaming\Mozilla\Firefox\extensions
[2012.10.04 20:55:07 | 000,000,000 | ---D | M] (BitTorrentControl_v12) -- C:\Users\jiljl\AppData\Roaming\Mozilla\Firefox\extensions\{b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14}
[2013.04.22 21:04:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jiljl\AppData\Roaming\Mozilla\Firefox\Profiles\extensions
[2013.04.11 17:54:38 | 000,197,614 | ---- | M] () (No name found) -- C:\Users\jiljl\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\
ftdownloader3@ftdownloader.com.xpi
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - Extension: Ask Toolbar = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaapoecfpbnohmjikjhpijcnonhhhlh\7.17.0.0_1\
CHR - Extension: Click2Save = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aekapfandkfpbgnbllihiklgijbfldgk\2_0\
CHR - Extension: Dokumenty Google = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: FTdownloader V3.0 = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbffdhejhaoiflnpooogkckfdcmmjppn\3.0_0\
CHR - Extension: YouTube = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: BitTorrentControl_v12 = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\dknkjnkhedbanphkkpbpcgoblmkbfhlf\2.3.15.10_0\
CHR - Extension: Delta Toolbar = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3_0\
CHR - Extension: SweetIM for Facebook = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.1.0.1_0\
CHR - Extension: Skype Click to Call = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.12.0.13601_0\
CHR - Extension: AVG Secure Search = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.0.1.12_1\
CHR - Extension: Yontoo = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.3_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: SweetPacks Chrome Extension = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.0.0.1_0\
CHR - Extension: Gmail = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
CHR - Extension: Ask Toolbar = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaapoecfpbnohmjikjhpijcnonhhhlh\7.17.0.0_1\
CHR - Extension: Click2Save = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aekapfandkfpbgnbllihiklgijbfldgk\2_0\
CHR - Extension: Dokumenty Google = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: FTdownloader V3.0 = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbffdhejhaoiflnpooogkckfdcmmjppn\3.0_0\
CHR - Extension: YouTube = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: BitTorrentControl_v12 = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\dknkjnkhedbanphkkpbpcgoblmkbfhlf\2.3.15.10_0\
CHR - Extension: Delta Toolbar = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3_0\
CHR - Extension: SweetIM for Facebook = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.1.0.1_0\
CHR - Extension: Skype Click to Call = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.12.0.13601_0\
CHR - Extension: AVG Secure Search = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.0.1.12_1\
CHR - Extension: Yontoo = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.3_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: SweetPacks Chrome Extension = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.0.0.1_0\
CHR - Extension: Gmail = C:\Users\jiljl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
O1 HOSTS File: ([2013.10.08 19:57:55 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:
64bit: - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll (AVG Technologies CZ, s.r.o.)
O2:
64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Click2Save Class) - {468ACA9B-83CE-80E2-B9BE-E258195418F3} - C:\ProgramData\Click2Save\506ddd9c9b1d0.ocx ()
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.0.1.12\AVG Secure Search_toolbar.dll (AVG Secure Search)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (BitTorrentControl_v12 Toolbar) - {b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14} - C:\Program Files (x86)\BitTorrentControl_v12\prxtbBitT.dll (Conduit Ltd.)
O2 - BHO: (aTube Toolbar) - {bfc39e47-d643-4dc2-aa1d-61377501c844} - C:\Program Files (x86)\atube\atubeX.dll ()
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.0.1.12\AVG Secure Search_toolbar.dll (AVG Secure Search)
O3 - HKLM\..\Toolbar: (BitTorrentControl_v12 Toolbar) - {b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14} - C:\Program Files (x86)\BitTorrentControl_v12\prxtbBitT.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (aTube Toolbar) - {bfc39e47-d643-4dc2-aa1d-61377501c844} - C:\Program Files (x86)\atube\atubeX.dll ()
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (BitTorrentControl_v12 Toolbar) - {B6AC5E3C-5CEB-4E72-B451-F0E1BA983C14} - C:\Program Files (x86)\BitTorrentControl_v12\prxtbBitT.dll (Conduit Ltd.)
O4:
64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:
64bit: - HKLM..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [BitTorrent] C:\Program Files (x86)\BitTorrent\BitTorrent.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [DriverScanner] C:\Program Files (x86)\Uniblue\DriverScanner\launcher.exe (Uniblue Systems Limited)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - HKCU..\Run: [WebcamMaxAutoRun] C:\Program Files (x86)\WebcamMax\wcmmon.exe ()
O4 - HKCU..\Run: [Yontoo Desktop] C:\Users\jiljl\AppData\Roaming\Yontoo\YontooDesktop.exe (Yontoo LLC)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:
64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O9:
64bit: - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll (AVG Technologies CZ, s.r.o.)
O9:
64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:
64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.7.2)
O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_07)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4ED13E94-463E-4C11-9A29-1BE35C882A07}: DhcpNameServer = 192.168.1.1
O18:
64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:
64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:
64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:
64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.0.12\ViProtocol.dll (AVG Secure Search)
O20 - AppInit_DLLs: (c:\PROGRA~3\BitGuard\261673~1.238\{C16C1~1\BitGuard.dll) - c:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll ()
O20:
64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:
64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /sync /restart)
O35:
64bit: - HKLM\..comfile [open] -- "%1" %*
O35:
64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:
64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:
64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2013.10.08 19:58:00 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2013.10.08 19:55:34 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013.10.08 19:46:36 | 000,000,000 | ---D | C] -- C:\ComboFix
[2013.10.07 22:47:19 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\jiljl\Desktop\OTL.exe
[2013.10.07 22:25:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\trend micro
[2013.10.07 22:25:18 | 000,000,000 | ---D | C] -- C:\rsit
[2013.10.07 21:40:31 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013.10.07 21:40:31 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013.10.07 21:40:31 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013.10.07 21:39:36 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013.10.07 21:39:13 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013.09.13 19:31:23 | 000,000,000 | ---D | C] -- C:\Users\jiljl\AppData\Local\avgchrome
[2013.09.13 19:29:27 | 000,000,000 | ---D | C] -- C:\Users\jiljl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
[2013.09.13 19:29:13 | 000,000,000 | ---D | C] -- C:\ProgramData\BitGuard
========== Files - Modified Within 30 Days ==========
[2013.10.08 20:08:43 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.10.08 20:03:34 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.10.08 20:03:24 | 3018,657,792 | -HS- | M] () -- C:\hiberfil.sys
[2013.10.08 19:57:55 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013.10.08 19:57:39 | 000,000,340 | ---- | M] () -- C:\Windows\tasks\DriverScanner.job
[2013.10.08 19:57:38 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013.10.08 19:57:38 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
[2013.10.08 19:45:33 | 000,013,394 | ---- | M] () -- C:\Users\jiljl\Desktop\combofix.lnk
[2013.10.08 19:32:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3650232436-3763735969-2628014352-1000UA.job
[2013.10.07 23:38:41 | 000,003,584 | ---- | M] () -- C:\Users\jiljl\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.10.07 22:47:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jiljl\Desktop\OTL.exe
[2013.10.07 22:33:01 | 000,001,047 | ---- | M] () -- C:\Users\jiljl\Desktop\ComboFix – zástupce (2).lnk
[2013.10.07 21:46:09 | 000,013,394 | ---- | M] () -- C:\Users\jiljl\Desktop\dodo.lnk
[2013.10.07 17:00:00 | 000,000,414 | ---- | M] () -- C:\Windows\tasks\RegCure Program Check.job
[2013.10.07 16:13:00 | 139,224,819 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
[2013.10.05 19:32:46 | 000,022,480 | ---- | M] () -- C:\Users\jiljl\Desktop\Bez názvu.png
[2013.10.05 18:49:05 | 000,278,024 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\iavichjg.avm
[2013.10.05 18:07:48 | 000,156,147 | ---- | M] () -- C:\Users\jiljl\Desktop\1381608_650967888276241_790032285_n.jpg
[2013.10.05 17:45:59 | 000,002,368 | ---- | M] () -- C:\Users\jiljl\Desktop\Google Chrome.lnk
[2013.10.05 17:39:09 | 000,295,950 | ---- | M] () -- C:\Users\jiljl\Desktop\5504159-anorexie.jpg
[2013.10.05 17:27:15 | 000,043,159 | ---- | M] () -- C:\Users\jiljl\Desktop\40827_480552851984413_1803385485_n.jpg
[2013.10.05 06:51:20 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3650232436-3763735969-2628014352-1000Core.job
[2013.10.03 20:45:02 | 000,091,125 | ---- | M] () -- C:\Users\jiljl\Desktop\Bez hjhhhhk.png
[2013.10.03 15:07:16 | 000,004,201 | ---- | M] () -- C:\Users\jiljl\Desktop\mjijhiiojo.png
[2013.10.02 19:09:35 | 000,046,368 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
[2013.09.29 19:18:19 | 000,066,023 | ---- | M] () -- C:\Users\jiljl\Desktop\koubik.jpg
[2013.09.29 19:13:02 | 000,088,915 | ---- | M] () -- C:\Users\jiljl\Desktop\944424_636869129660781_1842637300_n.jpg
[2013.09.29 19:01:22 | 000,084,334 | ---- | M] () -- C:\Users\jiljl\Desktop\972353_560194210699842_1015604614_n.jpg
[2013.09.24 19:44:53 | 000,043,113 | ---- | M] () -- C:\Users\jiljl\Desktop\1237889_671550499531149_267895443_n.jpg
[2013.09.24 19:44:23 | 000,041,450 | ---- | M] () -- C:\Users\jiljl\Desktop\1240003_671550662864466_1275408336_n.jpg
[2013.09.23 19:57:10 | 000,020,963 | ---- | M] () -- C:\Users\jiljl\Desktop\SVO125583_kostra.jpg
[2013.09.22 13:13:59 | 000,013,817 | ---- | M] () -- C:\Users\jiljl\Desktop\Nový Textový dokument OpenDocument.odt
[2013.09.18 22:28:19 | 000,009,892 | ---- | M] () -- C:\Users\jiljl\Desktop\599661_1417779531776853_432690088_n.jpg
[2013.09.18 20:58:15 | 000,106,758 | ---- | M] () -- C:\Users\jiljl\Desktop\942757_668568369829362_1810775894_n.jpg
[2013.09.10 22:35:20 | 000,193,924 | ---- | M] () -- C:\Users\jiljl\Desktop\1185565_4662016207146_1380741238_n.jpg
[2013.09.10 20:12:44 | 000,000,491 | ---- | M] () -- C:\Users\jiljl\Desktop\aaaaaamp4.lnk
========== Files Created - No Company Name ==========
[2013.10.08 19:45:33 | 000,013,394 | ---- | C] () -- C:\Users\jiljl\Desktop\combofix.lnk
[2013.10.07 23:38:41 | 000,003,584 | ---- | C] () -- C:\Users\jiljl\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.10.07 22:54:23 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.10.07 22:33:01 | 000,001,047 | ---- | C] () -- C:\Users\jiljl\Desktop\ComboFix – zástupce (2).lnk
[2013.10.07 21:46:09 | 000,013,394 | ---- | C] () -- C:\Users\jiljl\Desktop\dodo.lnk
[2013.10.07 21:40:31 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013.10.07 21:40:31 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013.10.07 21:40:31 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013.10.07 21:40:31 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013.10.07 21:40:31 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013.10.05 18:04:31 | 000,156,147 | ---- | C] () -- C:\Users\jiljl\Desktop\1381608_650967888276241_790032285_n.jpg
[2013.10.05 17:27:15 | 000,043,159 | ---- | C] () -- C:\Users\jiljl\Desktop\40827_480552851984413_1803385485_n.jpg
[2013.10.05 17:24:12 | 000,295,950 | ---- | C] () -- C:\Users\jiljl\Desktop\5504159-anorexie.jpg
[2013.10.03 20:45:02 | 000,091,125 | ---- | C] () -- C:\Users\jiljl\Desktop\Bez hjhhhhk.png
[2013.10.03 15:07:16 | 000,004,201 | ---- | C] () -- C:\Users\jiljl\Desktop\mjijhiiojo.png
[2013.09.29 19:18:19 | 000,066,023 | ---- | C] () -- C:\Users\jiljl\Desktop\koubik.jpg
[2013.09.29 18:53:15 | 000,084,334 | ---- | C] () -- C:\Users\jiljl\Desktop\972353_560194210699842_1015604614_n.jpg
[2013.09.24 19:44:52 | 000,043,113 | ---- | C] () -- C:\Users\jiljl\Desktop\1237889_671550499531149_267895443_n.jpg
[2013.09.24 19:44:22 | 000,041,450 | ---- | C] () -- C:\Users\jiljl\Desktop\1240003_671550662864466_1275408336_n.jpg
[2013.09.23 19:57:09 | 000,020,963 | ---- | C] () -- C:\Users\jiljl\Desktop\SVO125583_kostra.jpg
[2013.09.22 12:27:07 | 000,013,817 | ---- | C] () -- C:\Users\jiljl\Desktop\Nový Textový dokument OpenDocument.odt
[2013.09.18 22:28:19 | 000,009,892 | ---- | C] () -- C:\Users\jiljl\Desktop\599661_1417779531776853_432690088_n.jpg
[2013.09.18 20:58:15 | 000,106,758 | ---- | C] () -- C:\Users\jiljl\Desktop\942757_668568369829362_1810775894_n.jpg
[2013.09.10 22:28:27 | 000,193,924 | ---- | C] () -- C:\Users\jiljl\Desktop\1185565_4662016207146_1380741238_n.jpg
[2013.04.24 20:40:17 | 000,114,176 | ---- | C] () -- C:\Users\jiljl\AppData\Roaming\BabMaint.exe
[2013.03.20 18:20:21 | 000,214,520 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2013.03.20 17:49:39 | 000,075,064 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012.11.19 09:33:32 | 000,065,656 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
[2012.11.19 09:33:30 | 000,022,640 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
[2012.11.18 00:06:02 | 004,446,016 | ---- | C] () -- C:\Users\jiljl\AppData\Local\Tempmusic.ogg
[2012.11.04 13:31:05 | 000,000,600 | ---- | C] () -- C:\Users\jiljl\AppData\Roaming\winscp.rnd
[2012.07.04 16:46:18 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012.07.04 07:34:16 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012.07.04 07:34:16 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012.04.18 19:39:10 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
========== ZeroAccess Check ==========
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2010.11.21 05:23:55 | 014,174,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2010.11.21 05:24:02 | 012,872,192 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
< End of report >
Jen se zeptam pouzivate legalni operacni system, nejvyssi licence Ultimate zrovna neni bezna. 
Přispějete na provoz fóra?