Vytížení CPU.

Zpráva

JaCub · #1 Příspěvek od **JaCub** » 17 lis 2014 09:41

Prosím o kontrolu ,
poslední dobou je dost vytížená CPU pamět i když nemám nic spuštěného nebo nanejvýš prohlížeč s jedním panelem na domovské stránce......, zdá se mi jako kdyby to bylo od doby poslední aktualizace neb instalování Adobe Shockwave Flash nebo něčeho podobného od ADOBE.Jako kdyby na pozadí něco pořád běželo co zatěžuje CPU. Po restartu PC se to neopakuje.....a běží jak má.
Děkuji za kontrolu.

Logfile of random's system information tool 1.09 (written by random/random)
Run by jacubcuba at 2014-11-17 09:17:24
Systém Microsoft Windows XP Professional Service Pack 3
System drive E: has 37 GB (64%) free of 57 GB
Total RAM: 2047 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:17:38, on 17.11.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\csrss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\Program Files\AVAST Software\Avast\AvastSvc.exe
E:\Documents and Settings\All Users\Data aplikací\WindowsMangerProtect\ProtectWindowsManager.exe
E:\WINDOWS\system32\spoolsv.exe
E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragService.exe
E:\Program Files\Java\jre7\bin\jqs.exe
E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\defragActivityMonitor.exe
E:\Program Files\Silvercrest MTS2218 driver\KMWDSrv.exe
E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
E:\WINDOWS\system32\nvsvc32.exe
E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\System32\alg.exe
E:\WINDOWS\System32\wbem\wmiprvse.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\wscntfy.exe
E:\WINDOWS\SOUNDMAN.EXE
F:\PLAY,RW,Copy JK\CyberLink\PowerDVD\PDVDServ.exe
E:\Program Files\Silvercrest MTS2218 driver\StartAutorun.exe
E:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
E:\Program Files\Silvercrest MTS2218 driver\KMConfig.exe
E:\Program Files\AVAST Software\Avast\AvastUI.exe
E:\WINDOWS\System32\svchost.exe
E:\Program Files\Silvercrest MTS2218 driver\KMProcess.exe
E:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
E:\WINDOWS\system32\RunDLL32.exe
E:\Program Files\Common Files\Java\Java Update\jusched.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Program Files\Seznam.cz\postak.exe
E:\WINDOWS\system32\rundll32.exe
E:\WINDOWS\System32\wbem\unsecapp.exe
E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragCtrl.exe
E:\Program Files\Logitech\SetPoint\SetPoint.exe
E:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
E:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
E:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
E:\Documents and Settings\jacubcuba\Plocha\RSIT.exe
E:\Program Files\trend micro\jacubcuba.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://istart.webssearches.com/web/?typ ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://istart.webssearches.com/web/?typ ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - E:\Program Files\Seznam.cz\core.3.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [RemoteControl] "F:\PLAY,RW,Copy JK\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [KMCONFIG] E:\Program Files\Silvercrest MTS2218 driver\StartAutorun.exe KMConfig.exe
O4 - HKLM\..\Run: [ISUSScheduler] "E:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AvastUI.exe] "E:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ISUSPM Startup] E:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [NvBackend] "E:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] E:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKLM\..\Run: [SunJavaUpdateSched] "E:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Seznam Postak] "E:\Program Files\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [uTorrent] "E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe" /MINIMIZED
O4 - Global Startup: Ashampoo Magical Defrag.lnk = E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragCtrl.exe
O4 - Global Startup: Logitech SetPoint.lnk = E:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = E:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Status Monitor.lnk = E:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://F:\FILM JK\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://F:\FILM JK\Free Download Manager\dlselected.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - E:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - E:\WINDOWS\System32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AshampooDefragService - - E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragService.exe
O23 - Service: avast! Antivirus - AVAST Software - E:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - E:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - E:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - E:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Keyboard And Mouse Communication Service (KMWDSERVICE) - UASSOFT.COM - E:\Program Files\Silvercrest MTS2218 driver\KMWDSrv.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - E:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - E:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia - E:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - E:\Program Files\Skype\Updater\Updater.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Fuyu LIMITED - E:\Documents and Settings\All Users\Data aplikací\WindowsMangerProtect\ProtectWindowsManager.exe

--
End of file - 8795 bytes

======Scheduled tasks folder======

E:\WINDOWS\tasks\Adobe Flash Player Updater.job
E:\WINDOWS\tasks\AppleSoftwareUpdate.job
E:\WINDOWS\tasks\avast! Emergency Update.job
E:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
E:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"

"wrc@avast.com"=E:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=E:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=E:\WINDOWS\system32\Adobe\Director\np32dsw_1213153.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=E:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=E:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=E:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=E:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=E:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=E:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=E:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

E:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

E:\Program Files\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt

E:\Program Files\Mozilla Firefox\plugins\
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
npwachk.dll
QuickTimePlugin.class

E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\
cs@dictionaries.addons.mozilla.org
CuteButtonsCrystalSVG@ChoGGi
{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}(2)
{0545b830-f0aa-4d7e-8820-50a4629a56fe}
{1018e4d6-728f-4b20-ad56-37578a4de76b}(2)
{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}(2)
{d37dc5d0-431d-44e5-8c91-49419370caa1}

E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\
amazonde-wh.xml
atlas-hledn.xml
atlas-mapy.xml
csfd.xml
cz-downloadchipeu.xml
ebay-durchsuchen.xml
google-play.xml
googletranslate.xml
idealode.xml
imdb-1.xml
imdb.xml
imdbcom.xml
mapycz.xml
search-firefox-addons.xml
seznam-avast.xml
sfd.xml
stahujcz.xml
thepiratebayorg.xml
tipmotocom---dly.xml
trovi-search.xml
yahoo-movies.xml
youtube.xml
zbocz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - E:\Program Files\Java\jre7\bin\ssv.dll [2014-11-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - E:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-11-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - E:\Program Files\Seznam.cz\core.3.dll [2011-05-25 1145888]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=E:\WINDOWS\SOUNDMAN.EXE [2006-03-02 577536]
"RemoteControl"=F:\PLAY,RW,Copy JK\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
"Kernel and Hardware Abstraction Layer"=E:\WINDOWS\KHALMNPR.EXE [2009-06-17 55824]
"KMCONFIG"=E:\Program Files\Silvercrest MTS2218 driver\StartAutorun.exe [2008-05-30 212992]
"ISUSScheduler"=E:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2005-02-16 81920]
"AvastUI.exe"=E:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-31 4085896]
"ISUSPM Startup"=E:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-14 221184]
"NvBackend"=E:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2014-10-04 2462536]
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit -login []
"NvCplDaemon"=E:\WINDOWS\system32\NvCpl.dll [2014-10-16 15729864]
"nwiz"=E:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2014-10-16 2593056]
"SunJavaUpdateSched"=E:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"fsm"= []
"Seznam Postak"=E:\Program Files\Seznam.cz\postak.exe [2011-05-25 491040]
""= []
"uTorrent"=E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe [2014-09-30 1419856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
E:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2010-08-20 33120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrMfcWnd]
E:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2008-02-19 1089536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenter3]
E:\Program Files\Brother\ControlCenter3\brctrcen.exe [2008-12-24 114688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch]
E:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [2007-10-11 46368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
E:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
E:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [2013-10-02 1090912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD]
E:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [2007-10-11 29984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDFPrint]
E:\Program Files\PDF24\pdf24.exe [2014-07-04 191528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PPort11reminder]
E:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [2007-08-31 328992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
E:\Program Files\QuickTime\qttask.exe [2007-10-19 286720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
E:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe [2014-09-30 1419856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Weto Bulletin]
E:\Weto\Liberta\Program\Weto_Bulletin.exe [2013-04-02 118784]

E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Ashampoo Magical Defrag.lnk - E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragCtrl.exe
Logitech SetPoint.lnk - E:\Program Files\Logitech\SetPoint\SetPoint.exe
Microsoft Office.lnk - E:\Program Files\Microsoft Office\Office10\OSA.EXE
Status Monitor.lnk - E:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
e:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2009-07-20 72208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Program Files\Brother\BRAdmin Light\BRAdmLight.exe"="E:\Program Files\Brother\BRAdmin Light\BRAdmLight.exe:*:Enabled:BRAdmin Light"
"F:\PLAY,RW,Copy JK\Winamp\winamp.exe"="F:\PLAY,RW,Copy JK\Winamp\winamp.exe:*:Enabled:Winamp"
"F:\GRAFIKA JK 2\ArchiCAD.exe"="F:\GRAFIKA JK 2\ArchiCAD.exe:*:Enabled:ArchiCAD 12.0.0 Component"
"F:\GAME JK\Activision\Call of Duty - World at War\CoDWaW.exe"="F:\GAME JK\Activision\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM) "
"F:\GAME JK\Activision\Call of Duty - World at War\CoDWaWmp.exe"="F:\GAME JK\Activision\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM) "
"F:\GAME JK\Stronghold 3 Gold Edition\Stronghold 3\bin\win32_release\Stronghold3.exe"="F:\GAME JK\Stronghold 3 Gold Edition\Stronghold 3\bin\win32_release\Stronghold3.exe:*:Enabled:Stronghold3"
"E:\Program Files\Google\Chrome\Application\chrome.exe"="E:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"F:\FILM JK\Free Download Manager\fdmwi.exe"="F:\FILM JK\Free Download Manager\fdmwi.exe:*:Enabled:fdmwi"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe"="E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:μTorrent"
"E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe"="E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe:*:Enabled:NVIDIA Network Service TCP Exception (HTTPS)"
"E:\Program Files\Skype\Phone\Skype.exe"="E:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=E:\WINDOWS\System32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=E:\WINDOWS\system32\l3codeca.acm
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-11-15 09:06:58 ----D---- E:\Program Files\Mozilla Firefox
2014-11-10 09:08:13 ----D---- E:\WINDOWS\system32\Adobe
2014-11-08 11:06:58 ----A---- E:\WINDOWS\system32\javaws.exe
2014-11-08 11:06:44 ----A---- E:\WINDOWS\system32\WindowsAccessBridge.dll
2014-11-08 11:06:43 ----A---- E:\WINDOWS\system32\javaw.exe
2014-11-08 11:06:43 ----A---- E:\WINDOWS\system32\java.exe
2014-10-23 12:05:22 ----A---- E:\WINDOWS\system32\nvdispco3234448.dll
2014-10-23 12:05:19 ----A---- E:\WINDOWS\system32\nvdispgenco3234448.dll
2014-10-21 09:08:23 ----D---- E:\Program Files\Creative
2014-10-21 09:08:23 ----A---- E:\WINDOWS\system32\eax.dll
2014-10-21 09:02:04 ----RA---- E:\WINDOWS\system32\MafiaSetup.exe

======List of files/folders modified in the last 1 month======

2014-11-17 09:17:31 ----D---- E:\Program Files\trend micro
2014-11-17 09:17:28 ----D---- E:\WINDOWS\Prefetch
2014-11-17 09:15:58 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent
2014-11-17 08:54:00 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\Media Player Classic
2014-11-17 08:54:00 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\Free Download Manager
2014-11-17 08:53:56 ----D---- E:\WINDOWS\Temp
2014-11-17 08:53:56 ----D---- E:\WINDOWS
2014-11-16 23:26:59 ----N---- E:\WINDOWS\SchedLgU.Txt
2014-11-16 23:26:32 ----A---- E:\WINDOWS\Brownie.ini
2014-11-15 09:08:01 ----D---- E:\Program Files
2014-11-15 09:08:00 ----D---- E:\Program Files\Mozilla Maintenance Service
2014-11-13 11:37:57 ----D---- E:\WINDOWS\system32
2014-11-13 10:07:19 ----SHD---- E:\WINDOWS\Installer
2014-11-13 10:02:03 ----SD---- E:\WINDOWS\Tasks
2014-11-12 10:08:11 ----A---- E:\WINDOWS\system32\FlashPlayerApp.exe
2014-11-11 20:08:53 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\Skype
2014-11-10 20:47:13 ----D---- E:\Documents and Settings\All Users\Data aplikací\Skype
2014-11-10 09:10:33 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\Adobe
2014-11-10 09:10:32 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\Macromedia
2014-11-10 09:10:16 ----D---- E:\WINDOWS\system32\Macromed
2014-11-10 09:08:25 ----D---- E:\WINDOWS\WinSxS
2014-11-09 20:11:38 ----A---- E:\WINDOWS\BRWMARK.INI
2014-11-08 11:07:07 ----D---- E:\Program Files\Common Files\Java
2014-10-26 14:31:45 ----D---- E:\WINDOWS\system32\CatRoot2
2014-10-26 14:31:44 ----HD---- E:\WINDOWS\inf
2014-10-26 11:57:55 ----A---- E:\WINDOWS\system32\PerfStringBackup.INI
2014-10-23 12:10:06 ----RSHDC---- E:\WINDOWS\system32\dllcache
2014-10-23 12:10:00 ----D---- E:\WINDOWS\system32\drivers
2014-10-23 12:07:52 ----D---- E:\WINDOWS\system32\ReinstallBackups
2014-10-23 12:07:31 ----D---- E:\Program Files\NVIDIA Corporation

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; E:\WINDOWS\system32\drivers\aswRvrt.sys [2014-07-09 49944]
R0 aswVmm;avast! VM Monitor; E:\WINDOWS\system32\drivers\aswVmm.sys [2014-07-09 192352]
R0 nvata;nvata; E:\WINDOWS\system32\DRIVERS\nvata.sys [2005-08-18 93568]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; E:\WINDOWS\System32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 prohlp02;StarForce Protection Helper Driver v2; E:\WINDOWS\System32\drivers\prohlp02.sys [2003-10-10 62720]
R0 prosync1;StarForce Protection Synchronization Driver v1; E:\WINDOWS\System32\drivers\prosync1.sys [2003-09-06 6944]
R0 PxHelp20;PxHelp20; E:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); E:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp01;StarForce Protection Helper Driver; E:\WINDOWS\System32\drivers\sfhlp01.sys [2003-09-06 4832]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); E:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); E:\WINDOWS\System32\drivers\sfsync02.sys [2005-08-10 19968]
R0 sptd;sptd; E:\WINDOWS\System32\Drivers\sptd.sys [2012-07-20 428088]
R1 AmdK8;AMD Processor Driver; E:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 AswRdr;aswRdr; E:\WINDOWS\system32\drivers\aswRdr.sys [2014-07-09 55112]
R1 aswSnx;aswSnx; E:\WINDOWS\system32\drivers\aswSnx.sys [2014-07-09 779536]
R1 aswSP;aswSP; E:\WINDOWS\system32\drivers\aswSP.sys [2014-07-09 414520]
R1 aswTdi;aswTdi; E:\WINDOWS\system32\drivers\aswTdi.sys [2014-07-09 57800]
R1 kbdhid;Ovladač klávesnice standardu HID; E:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 prodrv06;StarForce Protection Environment Driver v6; E:\WINDOWS\System32\drivers\prodrv06.sys [2003-10-10 52128]
R2 aswHwid;avast! HardwareID; E:\WINDOWS\system32\drivers\aswHwid.sys [2014-07-09 24184]
R2 aswMonFlt;aswMonFlt; E:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-07-09 67824]
R2 BrPar;BrPar; E:\WINDOWS\System32\drivers\BrPar.sys [2000-07-24 19537]
R2 LBeepKE;LBeepKE; E:\WINDOWS\System32\Drivers\LBeepKE.sys [2009-06-17 10384]
R2 WIBUKEY;WIBU-KEY Kernel Driver; E:\WINDOWS\SYSTEM32\DRIVERS\WibuKey.sys [2006-11-22 72704]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); E:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-05-19 3965056]
R3 AR5211;TP-LINK Wireless Network Adapter Service; E:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-03-27 543712]
R3 Arp1394;Protokol 1394 ARP Client; E:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 BrScnUsb;Brother USB Still Image driver; E:\WINDOWS\system32\DRIVERS\BrScnUsb.sys [2004-10-15 15295]
R3 BrSerIf;Brother MFC Serial Port Interface WDM Driver; E:\WINDOWS\System32\Drivers\BrSerIf.sys [2006-12-12 52224]
R3 BrUsbSer;Brother MFC USB Serial WDM Driver; E:\WINDOWS\System32\Drivers\BrUsbSer.sys [2006-09-03 11904]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; E:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; E:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; E:\WINDOWS\System32\Drivers\LEqdUsb.Sys [2009-06-17 40720]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; E:\WINDOWS\System32\Drivers\LHidEqd.Sys [2009-06-17 10384]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; E:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; E:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; E:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2009-06-17 28560]
R3 mouhid;Ovladač myši standardu HID; E:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 NIC1394;1394 Net Driver; E:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; E:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2014-10-16 13010256]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; E:\WINDOWS\system32\drivers\nvhda32.sys [2014-07-21 129184]
R3 nvnetbus;NVIDIA Network Bus Enumerator; E:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-04-05 12928]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; E:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbprint;Třída USB Printer; E:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; E:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 Wdf01000;Wdf01000; E:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
R3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; E:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
S3 awUSB;awUSB; E:\WINDOWS\system32\DRIVERS\USBDrv.sys [2012-04-13 13824]
S3 ax300tqt;ax300tqt; E:\WINDOWS\system32\drivers\ax300tqt.sys []
S3 CCDECODE;Dekodér Closed Caption; E:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 GVCplDrv;GVCplDrv; E:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 KMWDFilter;KMWDFilter; \??\E:\WINDOWS\System32\Drivers\KMWDFilter.SYS []
S3 L8042Kbd;Logitech SetPoint Keyboard Driver; E:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2009-06-17 20240]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; E:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; E:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; E:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent Driver; E:\WINDOWS\system32\drivers\ccdcmb.sys [2013-01-23 18560]
S3 nmwcdc;Nokia USB Communication Driver; E:\WINDOWS\system32\drivers\ccdcmbo.sys [2013-01-23 23168]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; E:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-04-05 33536]
S3 pccsmcfd;PCCS Mode Change Filter Driver; E:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
S3 SLIP;BDA Slip De-Framer; E:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; E:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; E:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2013-01-23 8192]
S3 usbscan;Ovladač skeneru USB; E:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; E:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; E:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2013-01-23 8192]
S3 WpdUsb;WpdUsb; E:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; E:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]
S3 ZSMC301b;WEBSHOT II USB CAM 300K; E:\WINDOWS\System32\Drivers\usbVM31b.sys [2004-01-15 90534]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AshampooDefragService;AshampooDefragService; E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragService.exe [2007-02-23 1687856]
R2 avast! Antivirus;avast! Antivirus; E:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-09 50344]
R2 JavaQuickStarterService;Java Quick Starter; E:\Program Files\Java\jre7\bin\jqs.exe [2014-11-08 182696]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; E:\Program Files\Silvercrest MTS2218 driver\KMWDSrv.exe [2008-05-30 208896]
R2 NvNetworkService;NVIDIA Network Service; E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-10-04 1795912]
R2 NVSvc;NVIDIA Driver Helper Service; E:\WINDOWS\system32\nvsvc32.exe [2014-10-16 154824]
R2 StarWindServiceAE;StarWind AE Service; E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 WindowsMangerProtect;WindowsMangerProtect Service; E:\Documents and Settings\All Users\Data aplikací\WindowsMangerProtect\ProtectWindowsManager.exe [2014-09-24 528896]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); E:\Program Files\Google\Update\GoogleUpdate.exe [2014-02-08 116648]
S2 SkypeUpdate;Skype Updater; E:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 aspnet_state;ASP.NET State Service; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 gupdatem;Služba Google Update (gupdatem); E:\Program Files\Google\Update\GoogleUpdate.exe [2014-02-08 116648]
S3 LBTServ;Logitech Bluetooth Service; E:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 121360]
S3 MozillaMaintenance;Mozilla Maintenance Service; E:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-15 114288]
S3 ServiceLayer;ServiceLayer; E:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S4 MDM;Machine Debug Manager; E:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

#2 Příspěvek od **Márty84** » 17 lis 2014 09:45

Zdravim

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Spustte ho.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

JaCub · #3 Příspěvek od **JaCub** » 17 lis 2014 11:29

# AdwCleaner v4.101 - Report created 17/11/2014 at 11:21:08
# Updated 09/11/2014 by Xplode
# Database : 2014-11-07.1 [Local]
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : jacubcuba - JAKUB
# Running from : E:\Documents and Settings\jacubcuba\Plocha\adwcleaner_4.101.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : WindowsMangerProtect

***** [ Files / Folders ] *****

Folder Deleted : E:\Documents and Settings\All Users\Data aplikací\WindowsMangerProtect
Folder Deleted : E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\PackageAware
Folder Deleted : E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\SearchProtect
Folder Deleted : E:\Documents and Settings\jacubcuba\Data aplikací\webssearches
[!] Folder Deleted : E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\Extensions\searchy@searchy.xpi
File Deleted : E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\trovi-search.xml

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

Shortcut Disinfected : E:\Documents and Settings\jacubcuba\Nabídka Start\Programy\Internet Explorer.lnk
Shortcut Disinfected : E:\Documents and Settings\jacubcuba\Data aplikací\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : E:\Documents and Settings\jacubcuba\Data aplikací\Microsoft\Internet Explorer\Quick Launch\Spustit prohlížeč Internet Explorer.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B0DE3308-5D5A-470D-81B9-634FC078393B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\OCS
Key Deleted : HKCU\Software\powerpack
Key Deleted : HKCU\Software\smarttweak
Key Deleted : HKCU\Software\SupHpUISoft
Key Deleted : HKLM\SOFTWARE\SupTab
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Uniblue
Key Deleted : HKLM\SOFTWARE\webssearchesSoftware
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webssearches uninstall
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Ask Toolbar_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe

***** [ Browsers ] *****

-\\ Internet Explorer v6.0.2900.5512

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]

-\\ Mozilla Firefox v33.1.1 (x86 cs)

[rz6s5h9r.default\prefs.js] - Line Deleted : user_pref("extensions.aniweather.timeShifted", 1445522);
[rz6s5h9r.default\prefs.js] - Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");

-\\ Google Chrome v38.0.2125.111

[E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://istart.webssearches.com/web/?type=ds&ts=1411571694&from=cvs&uid=WDCXWD600BB-00CAA1_WD-WCA8E5205094&q={searchTerms}
[E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://istart.webssearches.com/web/?type=ds&ts=1411571694&from=cvs&uid=WDCXWD600BB-00CAA1_WD-WCA8E5205094&q={searchTerms}

*************************

AdwCleaner[R0].txt - [5102 octets] - [17/11/2014 11:18:45]
AdwCleaner[S0].txt - [5066 octets] - [17/11/2014 11:21:08]

########## EOF - E:\AdwCleaner\AdwCleaner[S0].txt - [5126 octets] ##########

#4 Příspěvek od **Márty84** » 17 lis 2014 11:31

Udelejte !!!kompletni!!! kontrolu s MBAM http://www.bleepingcomputer.com/downloa ... re/dl/241/ (musite stahnout verzi 1.75, odmitnout upgrade a aktualizovat jen virovou databazi) a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce. Navod zde http://forum.viry.cz/viewtopic.php?f=29&t=115222

JaCub · #5 Příspěvek od **JaCub** » 19 lis 2014 20:37

MBAM jsem nainstaloval, aktualizoval virovou databázi, pro jistotu vypnul Avast , a spustil kontrolu.........zhruba po 12 minutách kontroly detekuje první havěť ale po chvílce spadne , naskočí oznámení Windows že program přestal pracovat.......zkusil jsem to 2x a pokaždé to samé....
Zítra to zkusím ještě jednou, pokud se nezadaří tak se ozvu.....

#6 Příspěvek od **Márty84** » 20 lis 2014 03:42

Zkuste to kdyztak v nouzovem rezimu.

JaCub · #7 Příspěvek od **JaCub** » 21 lis 2014 08:25

Poslední dobou ale zase běží jak má..........ale pro jistotu...

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.11.21.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
jacubcuba :: JAKUB [administrátor]

Ochrana: Zakázána

21.11.2014 6:44:14
MBAM-log-2014-11-21 (08-15-15).txt

Typ: Kompletní kontrola (E:\|F:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 476207
Uplynulý čas: 1 hodin, 12 minut, 36 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 7
E:\AdwCleaner\Quarantine\E\Documents and Settings\All Users\Data aplikací\WindowsMangerProtect\ProtectWindowsManager.exe.vir (PUP.Optional.WindowsProtectManger.A) -> Nebyla provedena žádná instrukce.
E:\Documents and Settings\jacubcuba\Dokumenty\Downloads\SpeedAnalysis-BitTorrent-c\SpeedAnalysisSetup.exe (Adware.InstallBrain) -> Nebyla provedena žádná instrukce.
E:\Documents and Settings\jacubcuba\Local Settings\Temp\uttB6.tmp.exe (PUP.Optional.SearchProtect.A) -> Nebyla provedena žádná instrukce.
E:\System Volume Information\_restore{B6D79D47-A3A2-4F34-BE3F-91BCE6062DF1}\RP682\A0189143.exe (PUP.Optional.WindowsProtectManger.A) -> Nebyla provedena žádná instrukce.
F:\Zálohy PrRW\Winamp\winamp5622_full_emusic-7plus_nl-nl.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
F:\Zálohy PrRW\Winamp\winamp563_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
E:\Program Files\Mozilla Firefox\browser\searchplugins\webssearches.xml (PUP.Optional.WebsSearches.A) -> Nebyla provedena žádná instrukce.

(konec)

#8 Příspěvek od **Márty84** » 21 lis 2014 13:30

No ADWClenaer smazal spoustu smeti, tak by to melo byt lepsi

Havet je ale v bodech obnovy.

Postupujte presne v tomto poradi.
1) MBAM nezavirejte, jen minimalizujte.
2) Vymazte/Vypnete vytvareni bodu obnovy http://forum.viry.cz/viewtopic.php?f=46&t=47040 , ale nerestartujte pc.
3) Ted nechte nalezy MBAM odstranit a restartujte pc.
4) Zopakujte test s MBAM a napiste jeho vysledek a podle toho zvolim dalsi postup.

Pokud bude cisto, zapnete zase funkci vytvareni bodu obnovy, at pak na to nezapomenem.

JaCub · #9 Příspěvek od **JaCub** » 21 lis 2014 18:50

První dvě položky nebyli zafajfkované v MBA ......tak jsem s nimi nic nedělal, u toho firefoxu to bude nejspíš nějaký doplněk....??

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.11.21.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
jacubcuba :: JAKUB [administrátor]

Ochrana: Zakázána

21.11.2014 17:20:14
mbam-log-2014-11-21 (17-20-14).txt

Typ: Kompletní kontrola (E:\|F:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 470247
Uplynulý čas: 1 hodin, 10 minut, 37 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 7
E:\AdwCleaner\Quarantine\E\Documents and Settings\All Users\Data aplikací\WindowsMangerProtect\ProtectWindowsManager.exe.vir (PUP.Optional.WindowsProtectManger.A) -> Nebyla provedena žádná instrukce.
E:\Program Files\Mozilla Firefox\browser\searchplugins\webssearches.xml (PUP.Optional.WebsSearches.A) -> Nebyla provedena žádná instrukce.
E:\Documents and Settings\jacubcuba\Local Settings\Temp\uttB6.tmp.exe (PUP.Optional.SearchProtect.A) -> Přesun do karantény a smazání se zdařilo.
F:\FILM JK\Free Download Manager\Download\Photoshop-cs6(32Ă—64Ă—)-a-Illustrator-cs6(32Ă—64Ă—)-+-benzin.rar (PUP.RiskwareTool.CK) -> Přesun do karantény a smazání se zdařilo.
F:\STAHOVÁNÍ JK\FireFox Mozzila\Archicad 11cz + 12cz full\Archicad 11cz + 12cz full\archicad 11 (1086) CZ full (upgrade+fix+crack)\OBJECTiVE ArchiCAD11 Cracked-ARHIT3CHT.rar (RiskWare.Tool.CK) -> Přesun do karantény a smazání se zdařilo.
F:\Zálohy PrRW\Winamp\winamp5622_full_emusic-7plus_nl-nl.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
F:\Zálohy PrRW\Winamp\winamp563_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.

(konec)

#10 Příspěvek od **Márty84** » 21 lis 2014 21:45

Mel jste smazat vsechno, ale neva, ja to pak odpalim skriptem. A ano, bude to nejaky plugin mozilly.

Dejte novy log z RSIT

JaCub · #11 Příspěvek od **JaCub** » 22 lis 2014 11:25

Logfile of random's system information tool 1.09 (written by random/random)
Run by jacubcuba at 2014-11-22 11:24:11
Systém Microsoft Windows XP Professional Service Pack 3
System drive E: has 42 GB (73%) free of 57 GB
Total RAM: 2047 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:24:23, on 22.11.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\svchost.exe
E:\Program Files\AVAST Software\Avast\AvastSvc.exe
E:\WINDOWS\system32\spoolsv.exe
E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragService.exe
E:\Program Files\Java\jre7\bin\jqs.exe
E:\Program Files\Silvercrest MTS2218 driver\KMWDSrv.exe
E:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
E:\WINDOWS\system32\nvsvc32.exe
E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\defragActivityMonitor.exe
E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\wscntfy.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\SOUNDMAN.EXE
F:\PLAY,RW,Copy JK\CyberLink\PowerDVD\PDVDServ.exe
E:\Program Files\Silvercrest MTS2218 driver\StartAutorun.exe
E:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
E:\Program Files\Silvercrest MTS2218 driver\KMConfig.exe
E:\Program Files\AVAST Software\Avast\AvastUI.exe
E:\WINDOWS\System32\svchost.exe
E:\Program Files\Silvercrest MTS2218 driver\KMProcess.exe
E:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
E:\WINDOWS\system32\RunDLL32.exe
E:\Program Files\Common Files\Java\Java Update\jusched.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Program Files\Seznam.cz\postak.exe
E:\WINDOWS\system32\rundll32.exe
E:\WINDOWS\System32\wbem\unsecapp.exe
E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragCtrl.exe
E:\Program Files\Logitech\SetPoint\SetPoint.exe
E:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
E:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
E:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
F:\FILM JK\Free Download Manager\fdm.exe
E:\Documents and Settings\jacubcuba\Plocha\RSIT.exe
E:\Program Files\trend micro\jacubcuba.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - E:\Program Files\Seznam.cz\core.3.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [RemoteControl] "F:\PLAY,RW,Copy JK\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [KMCONFIG] E:\Program Files\Silvercrest MTS2218 driver\StartAutorun.exe KMConfig.exe
O4 - HKLM\..\Run: [ISUSScheduler] "E:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AvastUI.exe] "E:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ISUSPM Startup] E:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [NvBackend] "E:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] E:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKLM\..\Run: [SunJavaUpdateSched] "E:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Seznam Postak] "E:\Program Files\Seznam.cz\postak.exe" -s
O4 - Global Startup: Ashampoo Magical Defrag.lnk = E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragCtrl.exe
O4 - Global Startup: Logitech SetPoint.lnk = E:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = E:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Status Monitor.lnk = E:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://F:\FILM JK\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://F:\FILM JK\Free Download Manager\dlselected.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - E:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - E:\WINDOWS\System32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AshampooDefragService - - E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragService.exe
O23 - Service: avast! Antivirus - AVAST Software - E:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - E:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - E:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - E:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Keyboard And Mouse Communication Service (KMWDSERVICE) - UASSOFT.COM - E:\Program Files\Silvercrest MTS2218 driver\KMWDSrv.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - E:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - E:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - E:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - E:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia - E:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - E:\Program Files\Skype\Updater\Updater.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 8086 bytes

======Scheduled tasks folder======

E:\WINDOWS\tasks\Adobe Flash Player Updater.job
E:\WINDOWS\tasks\AppleSoftwareUpdate.job
E:\WINDOWS\tasks\avast! Emergency Update.job
E:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
E:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"

"wrc@avast.com"=E:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=E:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=E:\WINDOWS\system32\Adobe\Director\np32dsw_1213153.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=E:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=E:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=E:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=E:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=E:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=E:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=E:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

E:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

E:\Program Files\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt

E:\Program Files\Mozilla Firefox\plugins\
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
npwachk.dll
QuickTimePlugin.class

E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\
cs@dictionaries.addons.mozilla.org
CuteButtonsCrystalSVG@ChoGGi
trash
{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}(2)
{0545b830-f0aa-4d7e-8820-50a4629a56fe}
{1018e4d6-728f-4b20-ad56-37578a4de76b}(2)
{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}(2)
{d37dc5d0-431d-44e5-8c91-49419370caa1}

E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\
amazonde-wh.xml
atlas-hledn.xml
atlas-mapy.xml
csfd.xml
cz-downloadchipeu.xml
ebay-durchsuchen.xml
google-play.xml
googletranslate.xml
idealode.xml
imdb-1.xml
imdb.xml
imdbcom.xml
mapycz.xml
search-firefox-addons.xml
seznam-avast.xml
sfd.xml
stahujcz.xml
thepiratebayorg.xml
tipmotocom---dly.xml
yahoo-movies.xml
youtube.xml
zbocz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - E:\Program Files\Seznam.cz\core.3.dll [2011-05-25 1145888]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=E:\WINDOWS\SOUNDMAN.EXE [2006-03-02 577536]
"RemoteControl"=F:\PLAY,RW,Copy JK\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
"Kernel and Hardware Abstraction Layer"=E:\WINDOWS\KHALMNPR.EXE [2009-06-17 55824]
"KMCONFIG"=E:\Program Files\Silvercrest MTS2218 driver\StartAutorun.exe [2008-05-30 212992]
"ISUSScheduler"=E:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2005-02-16 81920]
"AvastUI.exe"=E:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-21 5226600]
"ISUSPM Startup"=E:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-14 221184]
"NvBackend"=E:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2014-10-04 2462536]
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit -login []
"NvCplDaemon"=E:\WINDOWS\system32\NvCpl.dll [2014-10-16 15729864]
"nwiz"=E:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2014-10-16 2593056]
"SunJavaUpdateSched"=E:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"fsm"= []
"Seznam Postak"=E:\Program Files\Seznam.cz\postak.exe [2011-05-25 491040]
""= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
E:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2010-08-20 33120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrMfcWnd]
E:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2008-02-19 1089536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenter3]
E:\Program Files\Brother\ControlCenter3\brctrcen.exe [2008-12-24 114688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch]
E:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [2007-10-11 46368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware]
E:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2013-04-04 532040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
E:\Program Files\Messenger\msmsgs.exe /background []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
E:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [2013-10-02 1090912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD]
E:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [2007-10-11 29984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDFPrint]
E:\Program Files\PDF24\pdf24.exe [2014-07-04 191528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PPort11reminder]
E:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [2007-08-31 328992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
E:\Program Files\QuickTime\qttask.exe [2007-10-19 286720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
E:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe [2014-11-17 1385808]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Weto Bulletin]
E:\Weto\Liberta\Program\Weto_Bulletin.exe [2013-04-02 118784]

E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Ashampoo Magical Defrag.lnk - E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragCtrl.exe
Logitech SetPoint.lnk - E:\Program Files\Logitech\SetPoint\SetPoint.exe
Microsoft Office.lnk - E:\Program Files\Microsoft Office\Office10\OSA.EXE
Status Monitor.lnk - E:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
e:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2009-07-20 72208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Program Files\Brother\BRAdmin Light\BRAdmLight.exe"="E:\Program Files\Brother\BRAdmin Light\BRAdmLight.exe:*:Enabled:BRAdmin Light"
"F:\PLAY,RW,Copy JK\Winamp\winamp.exe"="F:\PLAY,RW,Copy JK\Winamp\winamp.exe:*:Enabled:Winamp"
"F:\GRAFIKA JK 2\ArchiCAD.exe"="F:\GRAFIKA JK 2\ArchiCAD.exe:*:Enabled:ArchiCAD 12.0.0 Component"
"F:\GAME JK\Activision\Call of Duty - World at War\CoDWaW.exe"="F:\GAME JK\Activision\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM) "
"F:\GAME JK\Activision\Call of Duty - World at War\CoDWaWmp.exe"="F:\GAME JK\Activision\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM) "
"F:\GAME JK\Stronghold 3 Gold Edition\Stronghold 3\bin\win32_release\Stronghold3.exe"="F:\GAME JK\Stronghold 3 Gold Edition\Stronghold 3\bin\win32_release\Stronghold3.exe:*:Enabled:Stronghold3"
"E:\Program Files\Google\Chrome\Application\chrome.exe"="E:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"F:\FILM JK\Free Download Manager\fdmwi.exe"="F:\FILM JK\Free Download Manager\fdmwi.exe:*:Enabled:fdmwi"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe"="E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:μTorrent"
"E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe"="E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe:*:Enabled:NVIDIA Network Service TCP Exception (HTTPS)"
"E:\Program Files\Skype\Phone\Skype.exe"="E:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=E:\WINDOWS\System32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=E:\WINDOWS\system32\l3codeca.acm
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-11-21 12:49:46 ----A---- E:\WINDOWS\system32\aswBoot.exe
2014-11-21 12:49:42 ----A---- E:\WINDOWS\avastSS.scr
2014-11-21 06:38:06 ----D---- E:\Program Files\Malwarebytes' Anti-Malware
2014-11-21 06:38:06 ----A---- E:\WINDOWS\system32\drivers\mbam.sys
2014-11-17 11:18:37 ----D---- E:\AdwCleaner
2014-11-15 09:06:58 ----D---- E:\Program Files\Mozilla Firefox
2014-11-10 09:08:13 ----D---- E:\WINDOWS\system32\Adobe
2014-11-08 11:06:58 ----A---- E:\WINDOWS\system32\javaws.exe
2014-11-08 11:06:44 ----A---- E:\WINDOWS\system32\WindowsAccessBridge.dll
2014-11-08 11:06:43 ----A---- E:\WINDOWS\system32\javaw.exe
2014-11-08 11:06:43 ----A---- E:\WINDOWS\system32\java.exe
2014-10-23 12:05:22 ----A---- E:\WINDOWS\system32\nvdispco3234448.dll
2014-10-23 12:05:19 ----A---- E:\WINDOWS\system32\nvdispgenco3234448.dll

======List of files/folders modified in the last 1 month======

2014-11-22 11:24:17 ----D---- E:\Program Files\trend micro
2014-11-22 11:23:59 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\Free Download Manager
2014-11-22 11:23:54 ----D---- E:\WINDOWS\Temp
2014-11-22 11:23:54 ----D---- E:\WINDOWS
2014-11-22 10:49:39 ----D---- E:\WINDOWS\system32\drivers
2014-11-22 02:56:46 ----N---- E:\WINDOWS\SchedLgU.Txt
2014-11-21 22:27:14 ----D---- E:\WINDOWS\Prefetch
2014-11-21 18:53:19 ----SHD---- E:\System Volume Information
2014-11-21 18:53:19 ----D---- E:\WINDOWS\system32\Restore
2014-11-21 18:35:04 ----D---- E:\WINDOWS\l2schemas
2014-11-21 17:13:58 ----HDC---- E:\WINDOWS\$NtUninstallKB926239$
2014-11-21 15:31:33 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\Media Player Classic
2014-11-21 12:50:01 ----SD---- E:\WINDOWS\Tasks
2014-11-21 12:49:46 ----D---- E:\WINDOWS\system32
2014-11-21 06:38:06 ----D---- E:\Program Files
2014-11-20 08:42:40 ----A---- E:\WINDOWS\Brownie.ini
2014-11-20 08:05:44 ----A---- E:\WINDOWS\BRWMARK.INI
2014-11-19 08:53:25 ----D---- E:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-11-19 08:51:12 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent
2014-11-18 09:31:34 ----D---- E:\Program Files\Messenger
2014-11-17 11:26:27 ----SHD---- E:\WINDOWS\Installer
2014-11-15 09:08:00 ----D---- E:\Program Files\Mozilla Maintenance Service
2014-11-12 10:08:11 ----A---- E:\WINDOWS\system32\FlashPlayerApp.exe
2014-11-11 20:08:53 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\Skype
2014-11-10 20:47:13 ----D---- E:\Documents and Settings\All Users\Data aplikací\Skype
2014-11-10 09:10:33 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\Adobe
2014-11-10 09:10:32 ----D---- E:\Documents and Settings\jacubcuba\Data aplikací\Macromedia
2014-11-10 09:10:16 ----D---- E:\WINDOWS\system32\Macromed
2014-11-10 09:08:25 ----D---- E:\WINDOWS\WinSxS
2014-11-08 11:07:07 ----D---- E:\Program Files\Common Files\Java
2014-10-26 14:31:45 ----D---- E:\WINDOWS\system32\CatRoot2
2014-10-26 14:31:44 ----HD---- E:\WINDOWS\inf
2014-10-26 11:57:55 ----A---- E:\WINDOWS\system32\PerfStringBackup.INI
2014-10-23 12:10:06 ----RSHDC---- E:\WINDOWS\system32\dllcache
2014-10-23 12:07:52 ----D---- E:\WINDOWS\system32\ReinstallBackups
2014-10-23 12:07:31 ----D---- E:\Program Files\NVIDIA Corporation

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; E:\WINDOWS\system32\drivers\aswRvrt.sys [2014-11-21 49944]
R0 aswVmm;avast! VM Monitor; E:\WINDOWS\system32\drivers\aswVmm.sys [2014-11-21 206248]
R0 nvata;nvata; E:\WINDOWS\system32\DRIVERS\nvata.sys [2005-08-18 93568]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; E:\WINDOWS\System32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 prohlp02;StarForce Protection Helper Driver v2; E:\WINDOWS\System32\drivers\prohlp02.sys [2003-10-10 62720]
R0 prosync1;StarForce Protection Synchronization Driver v1; E:\WINDOWS\System32\drivers\prosync1.sys [2003-09-06 6944]
R0 PxHelp20;PxHelp20; E:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); E:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp01;StarForce Protection Helper Driver; E:\WINDOWS\System32\drivers\sfhlp01.sys [2003-09-06 4832]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); E:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); E:\WINDOWS\System32\drivers\sfsync02.sys [2005-08-10 19968]
R0 sptd;sptd; E:\WINDOWS\System32\Drivers\sptd.sys [2012-07-20 428088]
R1 AmdK8;AMD Processor Driver; E:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 AswRdr;aswRdr; E:\WINDOWS\system32\drivers\aswRdr.sys [2014-11-21 55240]
R1 aswSnx;aswSnx; E:\WINDOWS\system32\drivers\aswSnx.sys [2014-11-22 787800]
R1 aswSP;aswSP; E:\WINDOWS\system32\drivers\aswSP.sys [2014-11-21 423784]
R1 aswTdi;aswTdi; E:\WINDOWS\system32\drivers\aswTdi.sys [2014-11-21 57928]
R1 kbdhid;Ovladač klávesnice standardu HID; E:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 prodrv06;StarForce Protection Environment Driver v6; E:\WINDOWS\System32\drivers\prodrv06.sys [2003-10-10 52128]
R2 aswHwid;avast! HardwareID; E:\WINDOWS\system32\drivers\aswHwid.sys [2014-11-21 24184]
R2 aswMonFlt;aswMonFlt; E:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-11-21 70384]
R2 BrPar;BrPar; E:\WINDOWS\System32\drivers\BrPar.sys [2000-07-24 19537]
R2 LBeepKE;LBeepKE; E:\WINDOWS\System32\Drivers\LBeepKE.sys [2009-06-17 10384]
R2 WIBUKEY;WIBU-KEY Kernel Driver; E:\WINDOWS\SYSTEM32\DRIVERS\WibuKey.sys [2006-11-22 72704]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); E:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-05-19 3965056]
R3 AR5211;TP-LINK Wireless Network Adapter Service; E:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-03-27 543712]
R3 Arp1394;Protokol 1394 ARP Client; E:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 BrScnUsb;Brother USB Still Image driver; E:\WINDOWS\system32\DRIVERS\BrScnUsb.sys [2004-10-15 15295]
R3 BrSerIf;Brother MFC Serial Port Interface WDM Driver; E:\WINDOWS\System32\Drivers\BrSerIf.sys [2006-12-12 52224]
R3 BrUsbSer;Brother MFC USB Serial WDM Driver; E:\WINDOWS\System32\Drivers\BrUsbSer.sys [2006-09-03 11904]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; E:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; E:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; E:\WINDOWS\System32\Drivers\LEqdUsb.Sys [2009-06-17 40720]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; E:\WINDOWS\System32\Drivers\LHidEqd.Sys [2009-06-17 10384]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; E:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; E:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; E:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2009-06-17 28560]
R3 MBAMProtector;MBAMProtector; \??\E:\WINDOWS\system32\drivers\mbam.sys []
R3 mouhid;Ovladač myši standardu HID; E:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 NIC1394;1394 Net Driver; E:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; E:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2014-10-16 13010256]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; E:\WINDOWS\system32\drivers\nvhda32.sys [2014-07-21 129184]
R3 nvnetbus;NVIDIA Network Bus Enumerator; E:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-04-05 12928]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; E:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbprint;Třída USB Printer; E:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; E:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 Wdf01000;Wdf01000; E:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
R3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; E:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
S3 a0z91y3m;a0z91y3m; E:\WINDOWS\system32\drivers\a0z91y3m.sys []
S3 awUSB;awUSB; E:\WINDOWS\system32\DRIVERS\USBDrv.sys [2012-04-13 13824]
S3 CCDECODE;Dekodér Closed Caption; E:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 GVCplDrv;GVCplDrv; E:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 KMWDFilter;KMWDFilter; \??\E:\WINDOWS\System32\Drivers\KMWDFilter.SYS []
S3 L8042Kbd;Logitech SetPoint Keyboard Driver; E:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2009-06-17 20240]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; E:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; E:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; E:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent Driver; E:\WINDOWS\system32\drivers\ccdcmb.sys [2013-01-23 18560]
S3 nmwcdc;Nokia USB Communication Driver; E:\WINDOWS\system32\drivers\ccdcmbo.sys [2013-01-23 23168]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; E:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-04-05 33536]
S3 pccsmcfd;PCCS Mode Change Filter Driver; E:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
S3 SLIP;BDA Slip De-Framer; E:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; E:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; E:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2013-01-23 8192]
S3 usbscan;Ovladač skeneru USB; E:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; E:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; E:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2013-01-23 8192]
S3 WpdUsb;WpdUsb; E:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; E:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]
S3 ZSMC301b;WEBSHOT II USB CAM 300K; E:\WINDOWS\System32\Drivers\usbVM31b.sys [2004-01-15 90534]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AshampooDefragService;AshampooDefragService; E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragService.exe [2007-02-23 1687856]
R2 avast! Antivirus;avast! Antivirus; E:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-21 50344]
R2 JavaQuickStarterService;Java Quick Starter; E:\Program Files\Java\jre7\bin\jqs.exe [2014-11-08 182696]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; E:\Program Files\Silvercrest MTS2218 driver\KMWDSrv.exe [2008-05-30 208896]
R2 MBAMScheduler;MBAMScheduler; E:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 NvNetworkService;NVIDIA Network Service; E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-10-04 1795912]
R2 NVSvc;NVIDIA Driver Helper Service; E:\WINDOWS\system32\nvsvc32.exe [2014-10-16 154824]
R2 StarWindServiceAE;StarWind AE Service; E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); E:\Program Files\Google\Update\GoogleUpdate.exe [2014-02-08 116648]
S2 MBAMService;MBAMService; E:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 SkypeUpdate;Skype Updater; E:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 aspnet_state;ASP.NET State Service; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 gupdatem;Služba Google Update (gupdatem); E:\Program Files\Google\Update\GoogleUpdate.exe [2014-02-08 116648]
S3 LBTServ;Logitech Bluetooth Service; E:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 121360]
S3 MozillaMaintenance;Mozilla Maintenance Service; E:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-15 114288]
S3 ServiceLayer;ServiceLayer; E:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S4 MDM;Machine Debug Manager; E:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

#12 Příspěvek od **Márty84** » 22 lis 2014 11:28

Jeste jeden sken a budem mazat.

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe , ulozte na plochu a spustte.
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

JaCub · #13 Příspěvek od **JaCub** » 22 lis 2014 14:57

PC vcelku šlape, tak doufám že mohu důvěřovat..... , podle toho jak dlouho trval ten scan OLT....

OTL logfile created on: 22.11.2014 12:23:06 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = E:\Documents and Settings\jacubcuba\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 69,68% Memory free
3,85 Gb Paging File | 3,43 Gb Available in Paging File | 89,03% Paging File free
Paging file location(s): E:\pagefile.sys 0 0 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive E: | 55,89 Gb Total Space | 41,04 Gb Free Space | 73,43% Space Free | Partition Type: NTFS
Drive F: | 465,76 Gb Total Space | 150,63 Gb Free Space | 32,34% Space Free | Partition Type: NTFS

Computer Name: JAKUB | User Name: jacubcuba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.11.22 12:14:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\jacubcuba\Plocha\OTL.exe
PRC - [2014.11.21 12:50:06 | 005,226,600 | ---- | M] (AVAST Software) -- E:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.11.21 12:49:35 | 000,050,344 | ---- | M] (AVAST Software) -- E:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.11.08 11:06:08 | 000,182,696 | ---- | M] (Oracle Corporation) -- E:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2014.10.04 07:37:07 | 002,462,536 | ---- | M] (NVIDIA Corporation) -- E:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014.10.04 07:36:57 | 001,795,912 | ---- | M] (NVIDIA Corporation) -- E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- E:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013.01.16 23:06:36 | 006,860,288 | ---- | M] (FreeDownloadManager.ORG) -- F:\FILM JK\Free Download Manager\fdm.exe
PRC - [2011.05.25 09:00:02 | 000,491,040 | ---- | M] () -- E:\Program Files\Seznam.cz\postak.exe
PRC - [2009.12.23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2009.07.20 11:30:50 | 000,813,584 | ---- | M] (Logitech, Inc.) -- E:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2009.07.10 11:42:32 | 000,055,824 | ---- | M] (Logitech, Inc.) -- E:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2009.05.29 09:13:40 | 000,729,600 | ---- | M] (UASSOFT.COM) -- E:\Program Files\Silvercrest MTS2218 driver\KMCONFIG.exe
PRC - [2008.08.21 13:15:58 | 000,348,160 | ---- | M] (UASSOFT.COM) -- E:\Program Files\Silvercrest MTS2218 driver\KMProcess.exe
PRC - [2008.05.30 00:17:38 | 000,212,992 | ---- | M] (UASSOFT.COM) -- E:\Program Files\Silvercrest MTS2218 driver\StartAutorun.exe
PRC - [2008.05.30 00:17:38 | 000,208,896 | ---- | M] (UASSOFT.COM) -- E:\Program Files\Silvercrest MTS2218 driver\KMWDSrv.exe
PRC - [2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\explorer.exe
PRC - [2008.01.31 16:29:06 | 000,196,608 | R--- | M] (Brother Industries, Ltd.) -- E:\Program Files\Brother\Brmfcmon\BrMfcMon.exe
PRC - [2007.02.23 14:20:10 | 000,078,008 | ---- | M] () -- E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\defragActivityMonitor.exe
PRC - [2007.02.23 14:20:06 | 004,538,672 | ---- | M] ( ) -- E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragCtrl.exe
PRC - [2007.02.23 14:20:06 | 001,687,856 | ---- | M] ( ) -- E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragService.exe
PRC - [2006.03.02 00:22:04 | 000,577,536 | R--- | M] (Realtek Semiconductor Corp.) -- E:\WINDOWS\soundman.exe

========== Modules (No Company Name) ==========

MOD - [2014.11.21 22:38:47 | 002,903,040 | ---- | M] () -- E:\Program Files\AVAST Software\Avast\defs\14112101\algo.dll
MOD - [2014.11.21 12:49:40 | 038,562,088 | ---- | M] () -- E:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.10.16 17:41:25 | 002,156,320 | ---- | M] () -- E:\Program Files\NVIDIA Corporation\nview\nView.dll
MOD - [2014.10.16 17:41:25 | 000,681,760 | ---- | M] () -- E:\Program Files\NVIDIA Corporation\nview\nvShell.dll
MOD - [2014.09.04 17:07:13 | 000,348,160 | ---- | M] () -- F:\PROGRAMY JK\WinRAR\rarlng.dll
MOD - [2012.12.26 08:13:54 | 003,547,136 | ---- | M] () -- F:\FILM JK\Free Download Manager\fdmbtsupp.dll
MOD - [2011.05.25 09:00:02 | 000,491,040 | ---- | M] () -- E:\Program Files\Seznam.cz\postak.exe
MOD - [2011.05.25 08:59:56 | 000,821,792 | ---- | M] () -- E:\Program Files\Seznam.cz\email.3.dll
MOD - [2011.05.25 08:59:40 | 001,145,888 | ---- | M] () -- E:\Program Files\Seznam.cz\core.3.dll
MOD - [2009.07.20 11:27:14 | 000,017,936 | ---- | M] () -- E:\Program Files\Logitech\SetPoint\khalwrapper.dll
MOD - [2008.07.11 15:27:08 | 000,106,496 | ---- | M] () -- E:\Program Files\Silvercrest MTS2218 driver\keydll.dll
MOD - [2008.06.16 08:06:10 | 000,053,248 | ---- | M] () -- E:\Program Files\Silvercrest MTS2218 driver\MouseHook.dll
MOD - [2007.02.23 14:20:10 | 000,078,008 | ---- | M] () -- E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\defragActivityMonitor.exe
MOD - [2001.10.28 15:42:30 | 000,116,224 | ---- | M] () -- E:\WINDOWS\system32\pdfcmnnt.dll

========== Services (SafeList) ==========

SRV - [2014.11.21 12:49:35 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- E:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2014.11.15 09:07:28 | 000,114,288 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- E:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014.11.12 10:08:11 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.11.08 11:06:08 | 000,182,696 | ---- | M] (Oracle Corporation) [Auto | Running] -- E:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2014.10.04 07:36:57 | 001,795,912 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014.04.03 19:21:48 | 000,315,008 | R--- | M] (Skype Technologies) [Auto | Stopped] -- E:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.04.18 10:06:42 | 000,737,616 | ---- | M] (Nokia) [On_Demand | Stopped] -- E:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- E:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- E:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2009.12.23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009.07.20 11:28:10 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- E:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2008.05.30 00:17:38 | 000,208,896 | ---- | M] (UASSOFT.COM) [Auto | Running] -- E:\Program Files\Silvercrest MTS2218 driver\KMWDSrv.exe -- (KMWDSERVICE)
SRV - [2007.02.23 14:20:06 | 001,687,856 | ---- | M] ( ) [Auto | Running] -- E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragService.exe -- (AshampooDefragService)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a0z91y3m)
DRV - [2014.11.22 00:55:37 | 000,787,800 | ---- | M] (AVAST Software) [File_System | System | Running] -- E:\WINDOWS\system32\drivers\aswsnx.sys -- (aswSnx)
DRV - [2014.11.21 12:50:05 | 000,423,784 | ---- | M] (AVAST Software) [File_System | System | Running] -- E:\WINDOWS\system32\drivers\aswsp.sys -- (aswSP)
DRV - [2014.11.21 12:49:42 | 000,206,248 | ---- | M] () [Kernel | Boot | Running] -- E:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014.11.21 12:49:42 | 000,070,384 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- E:\WINDOWS\system32\drivers\aswmonflt.sys -- (aswMonFlt)
DRV - [2014.11.21 12:49:42 | 000,057,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2014.11.21 12:49:42 | 000,055,240 | ---- | M] (AVAST Software) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\aswrdr.sys -- (AswRdr)
DRV - [2014.11.21 12:49:42 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- E:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014.11.21 12:49:42 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- E:\WINDOWS\system32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2014.07.21 15:18:03 | 000,129,184 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\nvhda32.sys -- (NVHDA)
DRV - [2013.04.04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- E:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2013.01.23 09:31:50 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2013.01.23 09:31:50 | 000,018,560 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2013.01.23 09:31:50 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2013.01.23 09:31:50 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2012.10.17 13:53:46 | 000,019,072 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2012.07.20 21:15:51 | 000,428,088 | ---- | M] () [Kernel | Boot | Running] -- E:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2012.04.13 13:01:46 | 000,013,824 | ---- | M] (Scott) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\USBDrv.sys -- (awUSB)
DRV - [2009.06.17 17:56:32 | 000,028,560 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2009.06.17 17:56:16 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2009.06.17 17:56:06 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2009.06.17 17:55:58 | 000,010,384 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\LHidEqd.sys -- (LHidEqd)
DRV - [2009.06.17 17:55:50 | 000,040,720 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV - [2009.06.17 17:55:34 | 000,010,384 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- E:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2009.06.17 17:55:18 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2008.12.17 12:42:50 | 000,018,432 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\KMWDFilter.SYS -- (KMWDFilter)
DRV - [2007.03.27 06:27:02 | 000,543,712 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2006.11.22 06:20:00 | 000,072,704 | ---- | M] (WIBU-SYSTEMS AG) [Kernel | Auto | Running] -- E:\WINDOWS\system32\drivers\WibuKey.sys -- (WIBUKEY)
DRV - [2006.05.19 08:44:52 | 003,965,056 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM)
DRV - [2005.08.18 10:52:06 | 000,093,568 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- E:\WINDOWS\system32\drivers\nvata.sys -- (nvata)
DRV - [2005.08.10 15:06:28 | 000,019,968 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- E:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02)
DRV - [2005.08.10 13:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- E:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01)
DRV - [2005.05.16 14:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- E:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02)
DRV - [2005.04.05 20:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- E:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005.04.05 20:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005.03.09 07:53:00 | 000,036,352 | R--- | M] (Advanced Micro Devices) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004.05.02 09:47:08 | 000,023,040 | R--- | M] () [Kernel | On_Demand | Stopped] -- E:\WINDOWS\System32\drivers\GVCplDrv.sys -- (GVCplDrv)
DRV - [2004.01.15 06:20:38 | 000,090,534 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- E:\WINDOWS\system32\drivers\usbVM31b.sys -- (ZSMC301b)
DRV - [2003.10.10 15:06:26 | 000,062,720 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- E:\WINDOWS\system32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2003.10.10 14:06:24 | 000,052,128 | ---- | M] (Protection Technology) [Kernel | System | Running] -- E:\WINDOWS\system32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2003.09.06 13:27:06 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- E:\WINDOWS\system32\drivers\sfhlp01.sys -- (sfhlp01)
DRV - [2003.09.06 13:22:08 | 000,006,944 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- E:\WINDOWS\system32\drivers\prosync1.sys -- (prosync1)
DRV - [2000.07.24 00:01:00 | 000,019,537 | ---- | M] (Brother Industries Ltd.) [Kernel | Auto | Running] -- E:\WINDOWS\system32\drivers\BRPAR.SYS -- (BrPar)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1614895754-602162358-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
IE - HKU\S-1-5-21-1614895754-602162358-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
IE - HKU\S-1-5-21-1614895754-602162358-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
IE - HKU\S-1-5-21-1614895754-602162358-725345543-1003\..\SearchScopes,DefaultScope = {15C4DF55-4B67-495A-A3D3-A497C4A49EE0}
IE - HKU\S-1-5-21-1614895754-602162358-725345543-1003\..\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}: "URL" = http://search.seznam.cz/?sourceid=quick ... earchTerms}
IE - HKU\S-1-5-21-1614895754-602162358-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Seznam"
FF - prefs.js..browser.search.defaultthis.engineName: "Seznam"
FF - prefs.js..browser.search.defaulturl: "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
FF - prefs.js..browser.search.openintab: true
FF - prefs.js..browser.search.order.1: "Seznam"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "https://www.seznam.cz"
FF - prefs.js..extensions.enabledAddons: %7B1A2D0EC4-75F5-4c91-89C4-3656F6E44B68%7D:0.6.3
FF - prefs.js..extensions.enabledAddons: %7B1BC9BA34-1EED-42ca-A505-6D2F1A935BBB%7D:5.12.12.1
FF - prefs.js..extensions.enabledAddons: %7Ba0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7%7D:20131118
FF - prefs.js..extensions.enabledAddons: %7Bd37dc5d0-431d-44e5-8c91-49419370caa1%7D:3.4.14
FF - prefs.js..extensions.enabledAddons: %7B5C655500-E712-41e7-9349-CE462F844B19%7D:1.0
FF - prefs.js..extensions.enabledAddons: %7B0538E3E3-7E9B-4d49-8831-A227C80A7AD3%7D:2.2.4
FF - prefs.js..extensions.enabledAddons: CompactMenuCE%40Merci.chao:6.2.0
FF - prefs.js..extensions.enabledAddons: CuteButtonsCrystalSVG%40ChoGGi:0.3.7
FF - prefs.js..extensions.enabledAddons: %7B097d3191-e6fa-4728-9826-b533d755359d%7D:0.7.25
FF - prefs.js..extensions.enabledAddons: %7Bdc572301-7619-498c-a57d-39143191b318%7D:0.4.1.5.2
FF - prefs.js..extensions.enabledAddons: fdm_ffext%40freedownloadmanager.org:1.6.0.8
FF - prefs.js..extensions.enabledAddons: %7B0545b830-f0aa-4d7e-8820-50a4629a56fe%7D:25.1
FF - prefs.js..extensions.enabledAddons: %7B37fa1426-b82d-11db-8314-0800200c9a66%7D:3.5.1
FF - prefs.js..extensions.enabledAddons: s3download%40statusbar:3.06
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:33.1.1
FF - prefs.js..keyword.URL: "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: E:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: E:\WINDOWS\system32\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: E:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.71.2: E:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2: E:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: E:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll File not found
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: E:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: E:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: E:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: E:\Program Files\AVAST Software\Avast\WebRep\FF [2014.11.21 12:49:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.1.1\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2014.11.15 09:07:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.1.1\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2014.11.15 09:07:08 | 000,000,000 | ---D | M]

[2012.07.12 19:57:13 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Extensions
[2014.11.18 21:41:09 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions
[2014.05.16 07:39:07 | 000,000,000 | ---D | M] (Forecastfox) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
[2012.10.20 11:37:40 | 000,000,000 | ---D | M] (Forecastfox) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}(2)
[2014.10.31 19:40:29 | 000,000,000 | ---D | M] ("ColorfulTabs") -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2012.10.20 11:37:23 | 000,000,000 | ---D | M] (Flagfox) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}(2)
[2013.12.15 20:18:45 | 000,000,000 | ---D | M] (IE Tab 2 (FF 3.6+)) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
[2014.09.22 19:11:19 | 000,000,000 | ---D | M] (FT DeepDark) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
[2013.11.26 15:59:19 | 000,000,000 | ---D | M] (WOT) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2012.10.20 11:40:10 | 000,000,000 | ---D | M] (WOT) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}(2)
[2014.01.23 20:43:09 | 000,000,000 | ---D | M] (FoxClocks) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}
[2014.11.10 20:10:31 | 000,000,000 | ---D | M] (ÄŚeskĂ˝ slovnĂk pro kontrolu pravopisu) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\cs@dictionaries.addons.mozilla.org
[2014.08.31 14:40:14 | 000,000,000 | ---D | M] (CuteButtons - Crystal SVG) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\CuteButtonsCrystalSVG@ChoGGi
[2014.11.18 21:41:09 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\trash
[2014.04.30 06:01:46 | 000,781,344 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\aeroimproved@rsjtdrjgfuzkfg.com.xpi
[2014.05.29 13:20:07 | 000,100,100 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\CompactMenuCE@Merci.chao.xpi
[2014.11.13 09:36:22 | 000,362,790 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\s3download@statusbar.xpi
[2014.11.18 21:40:29 | 000,130,542 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\searchy@searchy.xpi
[2014.05.16 07:40:05 | 000,023,913 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\the-addon-bar@GeekInTraining-GiT.xpi
[2014.09.25 15:33:06 | 000,450,785 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi
[2013.05.28 20:06:09 | 000,096,207 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi
[2014.11.08 21:35:41 | 000,230,965 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi
[2014.11.16 15:26:40 | 002,782,992 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{3d2ee42e-a6d9-4888-bd17-2148dc7928d7}.xpi
[2014.04.15 11:30:35 | 000,151,038 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi
[2014.11.12 20:10:28 | 000,979,699 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014.10.05 10:28:34 | 000,801,883 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi
[2014.11.18 21:38:29 | 000,024,899 | ---- | M] () (No name found) -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\extensions\trash\add-to-searchbox@maltekraus.de.xpi
[2013.01.24 12:03:50 | 000,002,347 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\amazonde-wh.xml
[2014.11.16 15:22:29 | 000,002,203 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\atlas-hledn.xml
[2014.11.16 15:22:30 | 000,002,223 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\atlas-mapy.xml
[2014.11.16 15:22:29 | 000,001,837 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\csfd.xml
[2012.11.13 09:04:33 | 000,002,455 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\cz-downloadchipeu.xml
[2013.01.24 12:04:21 | 000,002,437 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\ebay-durchsuchen.xml
[2013.01.24 11:56:07 | 000,001,245 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\google-play.xml
[2014.07.28 11:02:50 | 000,001,633 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\googletranslate.xml
[2013.01.24 12:00:42 | 000,001,849 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\idealode.xml
[2013.01.24 11:45:49 | 000,001,504 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\imdb-1.xml
[2014.11.16 15:22:30 | 000,012,854 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\imdb.xml
[2014.11.16 15:22:29 | 000,012,864 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\imdbcom.xml
[2012.11.13 09:11:34 | 000,002,048 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\mapycz.xml
[2013.01.24 11:56:22 | 000,002,352 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\search-firefox-addons.xml
[2014.10.01 07:28:37 | 000,002,427 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\seznam-avast.xml
[2013.01.26 22:17:50 | 000,000,383 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\sfd.xml
[2012.11.13 09:25:48 | 000,002,245 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\stahujcz.xml
[2013.01.24 11:47:09 | 000,001,679 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\thepiratebayorg.xml
[2014.11.20 14:37:07 | 000,001,298 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\tipmotocom---dly.xml
[2013.01.24 12:12:31 | 000,001,160 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\yahoo-movies.xml
[2013.01.24 11:45:10 | 000,004,140 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\youtube.xml
[2012.11.13 09:11:50 | 000,002,214 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\searchplugins\zbocz.xml
[2014.11.15 09:07:00 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files\Mozilla Firefox\extensions
[2014.11.15 09:07:01 | 000,000,000 | ---D | M] (Skype Click to Call) -- E:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014.11.15 09:06:59 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files\Mozilla Firefox\browser\extensions
[2014.11.15 09:07:33 | 000,000,000 | ---D | M] (Default) -- E:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\ALL USERS\DATA APLIKACĂ\FREE DOWNLOAD MANAGER\FIREFOX\EXTENSIONS\1.6.0.8
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\{0538E3E3-7E9B-4D49-8831-A227C80A7AD3}
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\{0545B830-F0AA-4D7E-8820-50A4629A56FE}
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\{097D3191-E6FA-4728-9826-B533D755359D}.XPI
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\{1A2D0EC4-75F5-4C91-89C4-3656F6E44B68}.XPI
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\{1BC9BA34-1EED-42CA-A505-6D2F1A935BBB}
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\{37FA1426-B82D-11DB-8314-0800200C9A66}.XPI
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\{5C655500-E712-41E7-9349-CE462F844B19}.XPI
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\{A0D7CCB3-214D-498B-B4AA-0E8FDA9A7BF7}
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\{D37DC5D0-431D-44E5-8C91-49419370CAA1}
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\{DC572301-7619-498C-A57D-39143191B318}.XPI
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\COMPACTMENUCE@MERCI.CHAO.XPI
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\CUTEBUTTONSCRYSTALSVG@CHOGGI
File not found (No name found) -- E:\DOCUMENTS AND SETTINGS\JACUBCUBA\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\RZ6S5H9R.DEFAULT\EXTENSIONS\S3DOWNLOAD@STATUSBAR.XPI
[2011.10.26 19:49:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- E:\Program Files\mozilla firefox\plugins\npwachk.dll

========== Chrome ==========

CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: No name found = E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: No name found = E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2018.95_0\
CHR - Extension: No name found = E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2021.112_0\
CHR - Extension: No name found = E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2001.10.25 13:00:00 | 000,000,737 | ---- | M]) - E:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - No CLSID value found.
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (Ukazatel S-Rank) - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - E:\Program Files\Seznam.cz\core.3.dll ()
O4 - HKLM..\Run: [AvastUI.exe] E:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] E:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [KMCONFIG] E:\Program Files\Silvercrest MTS2218 driver\StartAutorun.exe KMConfig.exe File not found
O4 - HKLM..\Run: [NvBackend] E:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [NvCplDaemon] E:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] E:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] E:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] E:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKU\S-1-5-21-1614895754-602162358-725345543-1003..\Run: [] File not found
O4 - HKU\S-1-5-21-1614895754-602162358-725345543-1003..\Run: [fsm] File not found
O4 - HKU\S-1-5-21-1614895754-602162358-725345543-1003..\Run: [Seznam Postak] E:\Program Files\Seznam.cz\postak.exe ()
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Ashampoo Magical Defrag.lnk = E:\Program Files\Ashampoo\Ashampoo Magical Defrag\bin\aDefragCtrl.exe ( )
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech SetPoint.lnk = E:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1614895754-602162358-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Stáhnout Free Download Managerem - F:\FILM JK\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - F:\FILM JK\Free Download Manager\dlselected.htm ()
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.71.2)
O16 - DPF: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} http://java.sun.com/products/plugin/aut ... s-i586.cab (Java Plug-in 1.4.2_05)
O16 - DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_51)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.71.2)
O16 - DPF: Microsoft XML Parser for Java file://E:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.100.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EF825E74-971C-458F-833C-BF555BC79BD7}: DhcpNameServer = 192.168.100.254
O20 - HKLM Winlogon: Shell - (Explorer.exe) - E:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (E:\WINDOWS\system32\userinit.exe) - E:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (longhornui.exe) - E:\WINDOWS\System32\longhornui.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - (e:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - e:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{2de6a51a-729a-11e2-883b-f8d1117ffeb8}\Shell - "" = AutoRun
O33 - MountPoints2\{2de6a51a-729a-11e2-883b-f8d1117ffeb8}\Shell\AutoRun\command - "" = H:\Autorun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.9B05 PID_0083
O33 - MountPoints2\{cd5ec6fc-cc3d-11e1-a709-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{cd5ec6fc-cc3d-11e1-a709-806d6172696f}\Shell\AutoRun\command - "" = D:\Setup.exe
O33 - MountPoints2\{e1aa9e46-dba4-11e1-a500-f8d1117ffeb8}\Shell - "" = AutoRun
O33 - MountPoints2\{e1aa9e46-dba4-11e1-a500-f8d1117ffeb8}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.ac3acm - E:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.iac2 - E:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - E:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - E:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - E:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - E:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - E:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - E:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - E:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - E:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - E:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - E:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - E:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.XVID - E:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - E:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to E:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014.11.22 12:14:29 | 000,602,112 | ---- | C] (OldTimer Tools) -- E:\Documents and Settings\jacubcuba\Plocha\OTL.exe
[2014.11.22 11:23:54 | 000,000,000 | RH-D | C] -- E:\Documents and Settings\jacubcuba\Recent
[2014.11.21 12:49:46 | 000,291,352 | ---- | C] (AVAST Software) -- E:\WINDOWS\System32\aswBoot.exe
[2014.11.21 12:49:42 | 000,043,152 | ---- | C] (AVAST Software) -- E:\WINDOWS\avastSS.scr
[2014.11.21 06:38:08 | 000,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2014.11.21 06:38:06 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbam.sys
[2014.11.21 06:38:06 | 000,000,000 | ---D | C] -- E:\Program Files\Malwarebytes' Anti-Malware
[2014.11.17 11:18:37 | 000,000,000 | ---D | C] -- E:\AdwCleaner
[2014.11.15 09:06:58 | 000,000,000 | ---D | C] -- E:\Program Files\Mozilla Firefox
[2014.11.10 09:08:13 | 000,000,000 | ---D | C] -- E:\WINDOWS\System32\Adobe
[2014.11.08 11:06:58 | 000,272,808 | ---- | C] (Oracle Corporation) -- E:\WINDOWS\System32\javaws.exe
[2014.11.08 11:06:44 | 000,096,680 | ---- | C] (Oracle Corporation) -- E:\WINDOWS\System32\WindowsAccessBridge.dll
[2014.11.08 11:06:43 | 000,175,528 | ---- | C] (Oracle Corporation) -- E:\WINDOWS\System32\javaw.exe
[2014.11.08 11:06:43 | 000,175,528 | ---- | C] (Oracle Corporation) -- E:\WINDOWS\System32\java.exe
[2014.10.25 15:43:56 | 000,000,000 | ---D | C] -- E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\Adobe
[2 E:\WINDOWS\System32\*.tmp files -> E:\WINDOWS\System32\*.tmp -> ]
[1 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014.11.22 12:50:42 | 000,000,364 | -H-- | M] () -- E:\WINDOWS\tasks\avast! Emergency Update.job
[2014.11.22 12:48:46 | 000,000,512 | ---- | M] () -- E:\PhysicalMBR.bin
[2014.11.22 12:17:52 | 000,015,798 | ---- | M] () -- E:\WINDOWS\System32\nvAppTimestamps
[2014.11.22 12:14:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\jacubcuba\Plocha\OTL.exe
[2014.11.22 12:08:00 | 000,000,914 | ---- | M] () -- E:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014.11.22 12:07:00 | 000,000,940 | ---- | M] () -- E:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014.11.22 10:53:52 | 000,000,936 | ---- | M] () -- E:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014.11.22 10:50:11 | 000,002,048 | --S- | M] () -- E:\WINDOWS\bootstat.dat
[2014.11.22 02:56:20 | 000,000,852 | ---- | M] () -- E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Status Monitor.lnk
[2014.11.22 00:55:37 | 000,787,800 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswsnx.sys
[2014.11.21 21:48:10 | 001,431,152 | ---- | M] () -- E:\WINDOWS\System32\nvdrsdb0.bin
[2014.11.21 21:48:10 | 000,000,001 | ---- | M] () -- E:\WINDOWS\System32\nvdrssel.bin
[2014.11.21 12:50:05 | 000,423,784 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswsp.sys
[2014.11.21 12:49:42 | 000,291,352 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\aswBoot.exe
[2014.11.21 12:49:42 | 000,206,248 | ---- | M] () -- E:\WINDOWS\System32\drivers\aswVmm.sys
[2014.11.21 12:49:42 | 000,070,384 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswmonflt.sys
[2014.11.21 12:49:42 | 000,057,928 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswTdi.sys
[2014.11.21 12:49:42 | 000,055,240 | ---- | M] (AVAST Software) -- E:\WINDOWS\System32\drivers\aswrdr.sys
[2014.11.21 12:49:42 | 000,049,944 | ---- | M] () -- E:\WINDOWS\System32\drivers\aswRvrt.sys
[2014.11.21 12:49:42 | 000,043,152 | ---- | M] (AVAST Software) -- E:\WINDOWS\avastSS.scr
[2014.11.21 12:49:42 | 000,024,184 | ---- | M] () -- E:\WINDOWS\System32\drivers\aswHwid.sys
[2014.11.21 06:38:09 | 000,000,784 | ---- | M] () -- E:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2014.11.20 19:16:00 | 000,221,696 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.11.20 08:42:40 | 000,000,131 | ---- | M] () -- E:\WINDOWS\Brownie.ini
[2014.11.20 08:05:44 | 000,000,825 | ---- | M] () -- E:\WINDOWS\BRWMARK.INI
[2014.11.19 21:45:50 | 001,431,152 | ---- | M] () -- E:\WINDOWS\System32\nvdrsdb1.bin
[2014.11.17 11:16:06 | 002,140,160 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Plocha\adwcleaner_4.101.exe
[2014.11.15 08:40:46 | 000,002,206 | ---- | M] () -- E:\WINDOWS\System32\wpa.dbl
[2014.11.12 10:08:11 | 000,701,104 | ---- | M] (Adobe Systems Incorporated) -- E:\WINDOWS\System32\FlashPlayerApp.exe
[2014.11.12 10:08:11 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- E:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2014.11.11 19:16:31 | 000,002,283 | ---- | M] () -- E:\Documents and Settings\All Users\Plocha\Skype.lnk
[2014.11.08 11:06:12 | 000,096,680 | ---- | M] (Oracle Corporation) -- E:\WINDOWS\System32\WindowsAccessBridge.dll
[2014.11.08 11:06:06 | 000,272,808 | ---- | M] (Oracle Corporation) -- E:\WINDOWS\System32\javaws.exe
[2014.11.08 11:06:06 | 000,175,528 | ---- | M] (Oracle Corporation) -- E:\WINDOWS\System32\javaw.exe
[2014.11.08 11:06:05 | 000,175,528 | ---- | M] (Oracle Corporation) -- E:\WINDOWS\System32\java.exe
[2014.11.08 11:06:05 | 000,145,408 | ---- | M] (Oracle Corporation) -- E:\WINDOWS\System32\javacpl.cpl
[2014.10.26 11:57:58 | 000,455,376 | ---- | M] () -- E:\WINDOWS\System32\perfh009.dat
[2014.10.26 11:57:58 | 000,075,350 | ---- | M] () -- E:\WINDOWS\System32\perfc009.dat
[2014.10.26 11:57:56 | 000,451,058 | ---- | M] () -- E:\WINDOWS\System32\perfh005.dat
[2014.10.26 11:57:56 | 000,088,940 | ---- | M] () -- E:\WINDOWS\System32\perfc005.dat
[2 E:\WINDOWS\System32\*.tmp files -> E:\WINDOWS\System32\*.tmp -> ]
[1 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014.11.22 12:48:46 | 000,000,512 | ---- | C] () -- E:\PhysicalMBR.bin
[2014.11.21 06:38:09 | 000,000,784 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2014.11.17 11:16:05 | 002,140,160 | ---- | C] () -- E:\Documents and Settings\jacubcuba\Plocha\adwcleaner_4.101.exe
[2014.11.17 09:17:10 | 000,781,383 | ---- | C] () -- E:\Documents and Settings\jacubcuba\Plocha\RSIT.exe
[2014.10.21 09:02:04 | 000,319,488 | R--- | C] () -- E:\WINDOWS\System32\MafiaSetup.exe
[2014.10.17 11:52:48 | 000,940,844 | ---- | C] () -- E:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-1614895754-602162358-725345543-1003-0.dat
[2014.10.13 21:01:24 | 000,243,260 | ---- | C] () -- E:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
[2014.10.13 07:49:40 | 004,047,877 | ---- | C] () -- E:\WINDOWS\System32\nvcoproc.bin
[2014.06.24 18:02:54 | 000,001,747 | ---- | C] () -- E:\Documents and Settings\All Users\Data aplikací\QTSBandwidthCache
[2014.04.30 06:01:48 | 000,024,184 | ---- | C] () -- E:\WINDOWS\System32\drivers\aswHwid.sys
[2014.03.02 22:05:11 | 000,007,341 | ---- | C] () -- E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\MRDownloader.err
[2014.03.02 21:19:56 | 000,001,192 | ---- | C] () -- E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\MRDownloader.nast
[2013.03.04 15:51:22 | 000,206,248 | ---- | C] () -- E:\WINDOWS\System32\drivers\aswVmm.sys
[2013.03.04 15:51:20 | 000,049,944 | ---- | C] () -- E:\WINDOWS\System32\drivers\aswRvrt.sys
[2013.01.15 21:14:23 | 000,000,400 | ---- | C] () -- E:\WINDOWS\louisa4.INI
[2012.08.11 12:31:32 | 000,000,032 | ---- | C] () -- E:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2012.07.20 17:37:38 | 000,057,528 | ---- | C] () -- E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\SRDownloader.err
[2012.07.17 19:26:57 | 000,001,232 | ---- | C] () -- E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\SRDownloader.nast
[2012.07.13 19:36:06 | 000,221,696 | ---- | C] () -- E:\Documents and Settings\jacubcuba\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.07.13 05:41:36 | 000,000,060 | R--- | C] () -- E:\Program Files\BRINST.INI

========== ZeroAccess Check ==========

[2012.07.25 17:35:59 | 000,000,227 | RHS- | M] () -- E:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\System32\shdocvw.dll -- [2008.04.14 07:51:56 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = E:\WINDOWS\System32\wbem\fastprox.dll -- [2008.04.14 07:51:42 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = E:\WINDOWS\System32\wbem\wbemess.dll -- [2008.04.14 07:52:06 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014.07.20 22:28:25 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\ashampoo
[2013.03.18 21:16:49 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Autodesk
[2013.11.05 10:38:28 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2012.12.26 20:20:45 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2013.01.14 08:49:17 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Free Download Manager
[2012.08.26 16:01:14 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\FreeDownloadManager.ORG
[2012.12.04 09:36:03 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Nokia
[2012.12.04 09:16:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\NokiaInstallerCache
[2012.12.04 09:52:30 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\PC Suite
[2014.07.10 09:45:21 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\RELOADED
[2012.09.16 14:12:49 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\ScanSoft
[2013.04.06 00:02:22 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\vsosdk
[2014.09.09 10:26:06 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\AIMP3
[2013.04.07 10:58:39 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\ARA
[2014.07.20 22:29:01 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Ashampoo
[2014.03.23 21:15:35 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Ashampoo Photo Commander 7
[2013.07.01 10:33:07 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Ashampoo Photo Commander 9
[2013.06.10 16:08:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Ashampoo Slideshow Studio 2012
[2013.03.18 21:16:49 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Autodesk
[2013.11.05 11:08:49 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\AVAST Software
[2012.12.25 10:29:51 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Command & Conquer 3 Tiberium Wars
[2012.11.12 08:22:39 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\FireShot
[2012.07.24 12:09:47 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Foxit
[2012.07.23 09:29:24 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Foxit Software
[2014.11.22 12:14:24 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Free Download Manager
[2014.09.28 14:57:47 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Graphisoft
[2013.03.19 09:05:02 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\IGC
[2012.07.17 20:33:55 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\LangSoft
[2012.07.20 09:00:51 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Leadertech
[2014.01.16 09:10:42 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\LockAP
[2013.04.03 08:46:54 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Nokia
[2013.04.03 08:46:56 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Nokia Suite
[2013.11.14 18:02:21 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\OpenOffice
[2012.07.12 20:05:34 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Oracle
[2014.08.18 10:39:32 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\PC Suite
[2013.04.20 19:46:20 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\PC-FAX TX
[2014.02.03 18:25:37 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Popisovac
[2013.11.24 17:19:46 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Red Alert 3 Uprising
[2012.07.21 16:23:32 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\ScanSoft
[2014.07.19 14:03:30 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Software Informer
[2012.09.11 17:06:47 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Thunderbird
[2014.11.19 08:51:12 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent
[2014.10.01 14:56:57 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Weto

========== Purity Check ==========

========== Custom Scans ==========

< >
[2012.07.12 16:07:39 | 000,000,065 | ---- | C] () -- E:\WINDOWS\Tasks\desktop.ini
[2012.07.12 16:09:36 | 000,000,006 | -H-- | C] () -- E:\WINDOWS\Tasks\SA.DAT
[2012.07.14 08:09:40 | 000,000,914 | ---- | C] () -- E:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2012.07.14 15:17:09 | 000,000,364 | -H-- | C] () -- E:\WINDOWS\Tasks\avast! Emergency Update.job
[2014.02.08 16:06:58 | 000,000,936 | ---- | C] () -- E:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2014.02.08 16:06:58 | 000,000,940 | ---- | C] () -- E:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2014.06.24 18:07:40 | 000,000,284 | ---- | C] () -- E:\WINDOWS\Tasks\AppleSoftwareUpdate.job

< >

< MD5 for: AGP440.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp2.cab:AGP440.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- E:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- E:\WINDOWS\system32\drivers\agp440.sys
[2004.08.03 22:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- E:\WINDOWS\$NtServicePackUninstall$\agp440.sys

< MD5 for: ATAPI.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- E:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- E:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- E:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- E:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- E:\WINDOWS\system32\ReinstallBackups\0010\DriverFiles\i386\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- E:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- E:\WINDOWS\system32\autochk.exe
[2004.08.17 14:49:22 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- E:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp2.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- E:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- E:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- E:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.17 14:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- E:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- E:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- E:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- E:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- E:\WINDOWS\system32\eventlog.dll
[2004.08.17 14:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- E:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- E:\WINDOWS\explorer.exe
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- E:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- E:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- E:\WINDOWS\system32\LHTrans\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp2.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 23:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- E:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 23:01:30 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- E:\WINDOWS\system32\HAL.DLL
[2004.08.03 21:59:10 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- E:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp2.cab:Changer.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 23:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- E:\WINDOWS\ServicePackFiles\i386\changer.sys
[2004.08.03 22:00:14 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=DAF1A8193B6CAF0FB858CADCC5C4AF4A -- E:\WINDOWS\$NtServicePackUninstall$\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- E:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.25 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- E:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 06:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- E:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 06:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- E:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.17 14:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- E:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- E:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- E:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- E:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- E:\WINDOWS\system32\drivers\ndis.sys
[2004.08.03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- E:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004.08.17 14:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- E:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- E:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- E:\WINDOWS\system32\netlogon.dll

< MD5 for: NVATA.SYS >
[2005.08.18 10:52:06 | 000,093,568 | R--- | M] (NVIDIA Corporation) MD5=0344AA9113DC16EEC379F4652020849D -- E:\WINDOWS\system32\drivers\nvata.sys

< MD5 for: SCECLI.DLL >
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- E:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- E:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- E:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.17 14:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- E:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 07:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- E:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 07:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- E:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2013.04.04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- E:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- E:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- E:\WINDOWS\system32\svchost.exe
[2004.08.17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- E:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- E:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- E:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.03 22:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- E:\WINDOWS\$NtServicePackUninstall$\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- E:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- E:\WINDOWS\system32\userinit.exe
[2004.08.17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- E:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- E:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2013.04.04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- E:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- E:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- E:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.17 14:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- E:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- E:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- E:\WINDOWS\system32\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[1 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]
[1 E:\WINDOWS\CSC\*.tmp files -> E:\WINDOWS\CSC\*.tmp -> ]
[2 E:\WINDOWS\system32\*.tmp files -> E:\WINDOWS\system32\*.tmp -> ]
[1 E:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp files -> E:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014.11.10 09:10:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Adobe
[2014.09.09 10:26:06 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\AIMP3
[2012.09.13 19:15:52 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Apple Computer
[2013.04.07 10:58:39 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\ARA
[2014.07.20 22:29:01 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Ashampoo
[2014.03.23 21:15:35 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Ashampoo Photo Commander 7
[2013.07.01 10:33:07 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Ashampoo Photo Commander 9
[2013.06.10 16:08:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Ashampoo Slideshow Studio 2012
[2013.03.18 21:16:49 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Autodesk
[2013.11.05 11:08:49 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\AVAST Software
[2012.07.13 05:27:55 | 000,000,000 | R--D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Brother
[2012.12.25 10:29:51 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Command & Conquer 3 Tiberium Wars
[2012.07.17 14:51:26 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\CyberLink
[2012.11.12 08:22:39 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\FireShot
[2012.07.24 12:09:47 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Foxit
[2012.07.23 09:29:24 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Foxit Software
[2014.11.22 12:14:24 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Free Download Manager
[2014.09.28 14:57:47 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Graphisoft
[2012.08.11 13:04:45 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Help
[2012.07.12 16:17:50 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Identities
[2013.03.19 09:05:02 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\IGC
[2012.07.13 05:32:18 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\InstallShield
[2012.07.17 20:33:55 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\LangSoft
[2012.07.20 09:00:51 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Leadertech
[2014.01.16 09:10:42 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\LockAP
[2012.07.20 09:08:51 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Logitech
[2014.11.10 09:10:32 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Macromedia
[2012.08.23 07:02:48 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Malwarebytes
[2014.11.21 15:31:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Media Player Classic
[2013.06.26 10:48:11 | 000,000,000 | --SD | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Microsoft
[2012.07.12 19:57:13 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla
[2013.04.03 08:46:54 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Nokia
[2013.04.03 08:46:56 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Nokia Suite
[2013.01.01 22:44:15 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\NVIDIA
[2013.11.14 18:02:21 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\OpenOffice
[2012.07.12 20:05:34 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Oracle
[2014.08.18 10:39:32 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\PC Suite
[2013.04.20 19:46:20 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\PC-FAX TX
[2014.02.03 18:25:37 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Popisovac
[2013.11.24 17:19:46 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Red Alert 3 Uprising
[2012.07.21 16:23:32 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\ScanSoft
[2012.07.21 22:12:43 | 000,000,000 | RH-D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\SecuROM
[2014.11.11 20:08:53 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Skype
[2012.08.11 12:31:32 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\skypePM
[2014.07.19 14:03:30 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Software Informer
[2012.07.12 20:01:06 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Sun
[2012.09.11 17:06:47 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Thunderbird
[2012.08.01 09:36:34 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\U3
[2014.11.19 08:51:12 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent
[2013.03.26 22:53:00 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\vlc
[2014.10.01 14:56:57 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Weto
[2014.05.18 18:34:30 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\Winamp
[2012.07.19 07:49:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\jacubcuba\Data aplikací\WinRAR

< %APPDATA%\*.exe /s >
[2014.03.24 11:10:11 | 007,688,368 | ---- | M] (AIMP DevTeam) -- E:\Documents and Settings\jacubcuba\Data aplikací\AIMP3\UpdateInstaller.exe
[2013.01.23 09:01:25 | 007,680,037 | ---- | M] (FreeDownloadManager.ORG ) -- E:\Documents and Settings\jacubcuba\Data aplikací\Free Download Manager\Update\fdminst.exe
[2012.10.25 16:16:10 | 001,482,240 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\LockAP\Lockv245.exe
[2012.07.21 16:04:32 | 000,010,134 | R--- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Microsoft\Installer\{2BC2781A-F7F6-452E-95EB-018A522F1B2C}\ARPPRODUCTICON.exe
[2012.12.02 13:02:57 | 000,158,000 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Mozilla\Firefox\Profiles\rz6s5h9r.default\FlashGot.exe
[2014.09.29 18:06:45 | 000,937,896 | ---- | M] (Oracle Corporation) -- E:\Documents and Settings\jacubcuba\Data aplikací\Sun\Java\JRERunOnce.exe
[2014.09.29 10:13:40 | 000,145,408 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Sun\Java\jre1.7.0_67\lzma.exe
[2014.11.08 11:03:49 | 000,145,408 | ---- | M] () -- E:\Documents and Settings\jacubcuba\Data aplikací\Sun\Java\jre1.7.0_71\lzma.exe
[2014.11.17 09:01:29 | 001,385,808 | ---- | M] (BitTorrent Inc.) -- E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe
[2014.09.30 20:26:34 | 001,419,856 | ---- | M] (BitTorrent Inc.) -- E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\updates\3.4.2_34024.exe
[2014.11.17 09:01:29 | 001,385,808 | ---- | M] (BitTorrent Inc.) -- E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\updates\3.4.2_34944.exe
[2006.05.24 11:10:42 | 000,455,600 | ---- | M] (Macrovision Corporation) -- E:\Documents and Settings\jacubcuba\Data aplikací\Weto\Liberta\setup.exe
[2012.02.07 08:35:40 | 050,449,456 | ---- | M] (Microsoft Corporation) -- E:\Documents and Settings\jacubcuba\Data aplikací\Weto\Liberta\Requirements\dotNetFx40_Full_x86_x64.exe
[2012.02.08 08:22:26 | 010,208,598 | ---- | M] (Geek Software GmbH ) -- E:\Documents and Settings\jacubcuba\Data aplikací\Weto\Liberta\Requirements\pdf24.exe
[2011.08.26 06:45:46 | 005,073,240 | ---- | M] (Microsoft Corporation) -- E:\Documents and Settings\jacubcuba\Data aplikací\Weto\Liberta\Requirements\vcredist_x86_10.0.30319.1.exe
[2009.03.16 13:35:46 | 000,525,128 | ---- | M] (Microsoft Corporation) -- E:\Documents and Settings\jacubcuba\Data aplikací\Weto\Liberta\Requirements\directx_march2009_redist\DXSETUP.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2 E:\WINDOWS\system32\*.tmp files -> E:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2012.07.20 21:15:51 | 000,428,088 | ---- | M] () Unable to obtain MD5 -- E:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2012.07.12 17:52:31 | 000,094,208 | ---- | M] () -- E:\WINDOWS\System32\config\default.sav
[2012.07.12 17:52:31 | 000,634,880 | ---- | M] () -- E:\WINDOWS\System32\config\software.sav
[2012.07.12 17:52:31 | 000,442,368 | ---- | M] () -- E:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[2 E:\WINDOWS\system32\*.tmp files -> E:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >
[2014.11.21 12:49:42 | 000,024,184 | ---- | M] () -- E:\WINDOWS\system32\drivers\aswHwid.sys
[2014.11.21 12:49:42 | 000,070,384 | ---- | M] (AVAST Software) -- E:\WINDOWS\system32\drivers\aswmonflt.sys
[2014.11.21 12:49:42 | 000,055,240 | ---- | M] (AVAST Software) -- E:\WINDOWS\system32\drivers\aswrdr.sys
[2014.11.21 12:49:42 | 000,049,944 | ---- | M] () -- E:\WINDOWS\system32\drivers\aswRvrt.sys
[2014.11.22 00:55:37 | 000,787,800 | ---- | M] (AVAST Software) -- E:\WINDOWS\system32\drivers\aswsnx.sys
[2014.11.21 12:50:05 | 000,423,784 | ---- | M] (AVAST Software) -- E:\WINDOWS\system32\drivers\aswsp.sys
[2014.11.21 12:49:42 | 000,057,928 | ---- | M] (AVAST Software) -- E:\WINDOWS\system32\drivers\aswTdi.sys
[2014.11.21 12:49:42 | 000,206,248 | ---- | M] () -- E:\WINDOWS\system32\drivers\aswVmm.sys

< %systemroot%\system32\*.* /3 >
[2014.11.21 12:49:42 | 000,291,352 | ---- | M] (AVAST Software) -- E:\WINDOWS\system32\aswBoot.exe
[2014.11.22 14:14:09 | 000,015,798 | ---- | M] () -- E:\WINDOWS\system32\nvAppTimestamps
[2014.11.21 21:48:10 | 001,431,152 | ---- | M] () -- E:\WINDOWS\system32\nvdrsdb0.bin
[2014.11.19 21:45:50 | 001,431,152 | ---- | M] () -- E:\WINDOWS\system32\nvdrsdb1.bin
[2014.11.21 21:48:10 | 000,000,001 | ---- | M] () -- E:\WINDOWS\system32\nvdrssel.bin
[2 E:\WINDOWS\system32\*.tmp files -> E:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = E:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 07:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"fsm" =
"Seznam Postak" = "E:\Program Files\Seznam.cz\postak.exe" -s -- [2011.05.25 09:00:02 | 000,491,040 | ---- | M] ()
"" =

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" >

< /v GinaDLL /c >

< reg query >

< "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v >

< ImagePath /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" >

< /v ImagePath /c >

< >

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.11.22 12:48:46 | 000,000,512 | ---- | M] () MD5=3E0A3550CD1A2811216E8801031B403F -- E:\PhysicalMBR.bin

< >

< *crack* /s >

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2014.03.05 21:17:46 | 000,000,636 | ---- | M] () -- \Documents and Settings\jacubcuba\Data aplikací\Microsoft\Internet Explorer\Quick Launch\Zástupce - Downloader.lnk
[2014.03.02 21:33:43 | 000,000,687 | ---- | M] () -- \Documents and Settings\jacubcuba\Data aplikací\Microsoft\Internet Explorer\Quick Launch\Zástupce - MRDownloader.lnk
[2014.09.11 19:56:59 | 000,007,341 | ---- | M] () -- \Documents and Settings\jacubcuba\Local Settings\Data aplikací\MRDownloader.err
[2014.09.18 20:12:03 | 000,001,192 | ---- | M] () -- \Documents and Settings\jacubcuba\Local Settings\Data aplikací\MRDownloader.nast
[2014.03.08 20:54:40 | 000,057,528 | ---- | M] () -- \Documents and Settings\jacubcuba\Local Settings\Data aplikací\SRDownloader.err
[2014.03.08 20:54:42 | 000,001,232 | ---- | M] () -- \Documents and Settings\jacubcuba\Local Settings\Data aplikací\SRDownloader.nast
[2014.07.24 14:53:16 | 000,072,638 | ---- | M] () -- \Documents and Settings\jacubcuba\Local Settings\Data aplikací\Skype\Apps\login\images\loader.gif
[2014.07.24 14:53:16 | 000,003,032 | ---- | M] () -- \Documents and Settings\jacubcuba\Local Settings\Data aplikací\Skype\Apps\login\images\loader.png
[2014.07.24 14:53:16 | 000,006,012 | ---- | M] () -- \Documents and Settings\jacubcuba\Local Settings\Data aplikací\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.07.24 14:53:16 | 000,021,956 | ---- | M] () -- \Documents and Settings\jacubcuba\Local Settings\Data aplikací\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.07.24 14:53:16 | 000,009,772 | ---- | M] () -- \Documents and Settings\jacubcuba\Local Settings\Data aplikací\Skype\Apps\login\images\retina\loader@2x.png
[2014.03.02 21:33:23 | 000,000,687 | ---- | M] () -- \Documents and Settings\jacubcuba\Plocha\PLAY,RW\Zástupce - MRDownloader.lnk
[2012.08.19 07:32:26 | 000,000,637 | ---- | M] () -- \Documents and Settings\jacubcuba\Plocha\PLAY,RW\Zástupce - SRDownloader.lnk
[2014.06.09 17:34:22 | 000,000,078 | ---- | M] () -- \Documents and Settings\jacubcuba\SuperbShare\downloaderInfo.xml
[2012.08.03 12:29:12 | 002,070,424 | ---- | M] () -- \Program Files\Ashampoo\Ashampoo Snap 5\portaluploader.dll
[2014.11.21 12:49:34 | 000,072,480 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2001.01.16 05:55:36 | 000,053,248 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7Debug\coloader.dll
[2001.01.16 03:22:34 | 000,002,560 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VS7Debug\coloader.tlb
[2012.09.25 03:39:16 | 000,112,128 | ---- | M] () -- \Program Files\Common Files\Nokia\Tss\ProductApiLoader\ta_productapiloader.dll
[2014.10.04 07:36:18 | 001,171,272 | ---- | M] () -- \Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2014.06.10 15:42:34 | 000,065,344 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2014.06.10 15:42:30 | 000,070,464 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2013.11.14 18:01:40 | 000,029,696 | ---- | M] () -- \Program Files\OpenOffice 4\program\javaloader.uno.dll
[2013.09.17 04:57:36 | 000,005,813 | ---- | M] () -- \Program Files\OpenOffice 4\program\pythonloader.py
[2013.11.14 18:01:44 | 000,020,992 | ---- | M] () -- \Program Files\OpenOffice 4\program\pythonloader.uno.dll
[2013.09.20 13:57:06 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice 4\program\pythonloader.uno.ini
[2013.09.20 13:39:02 | 000,003,868 | ---- | M] () -- \Program Files\OpenOffice 4\program\classes\unoloader.jar
[2013.09.16 22:10:56 | 000,013,420 | ---- | M] () -- \Program Files\OpenOffice 4\program\python-core-2.7.5\lib\unittest\loader.py
[2004.08.17 14:49:06 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2004.08.03 21:59:38 | 000,230,400 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.exe
[2004.08.03 21:59:38 | 000,278,016 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\osloader.ntd
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 23:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 23:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2014.06.24 18:51:34 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2014.09.22 15:11:06 | 000,009,622 | ---- | M] () -- \WINDOWS\system32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2011.03.09 23:43:26 | 000,413,696 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60310.0\System.Runtime.Serialization.dll
[2014.09.24 16:19:18 | 001,186,816 | ---- | M] () -- \Program Files\Microsoft Silverlight\4.0.60310.0\System.Runtime.Serialization.ni.dll
[2004.08.17 14:43:56 | 000,028,416 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\grserial.sys
[2004.08.17 14:44:16 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2012.07.25 17:36:12 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014.10.01 15:15:01 | 000,310,272 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ff3383438d688a0118d0fa19ed1dc4\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.10.01 15:15:32 | 002,625,024 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\e9f8a45b1063d6c6a62718c88a5623d1\System.Runtime.Serialization.ni.dll
[2014.10.01 14:42:39 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014.10.01 14:42:35 | 001,026,936 | ---- | M] () -- \WINDOWS\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2005.09.23 06:28:56 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.03.18 12:16:28 | 001,026,936 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 12:16:28 | 000,122,264 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2008.04.14 06:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 06:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2004.07.19 17:54:20 | 000,131,072 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\system.runtime.serialization.formatters.soap.dll
[2001.10.25 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2001.10.25 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]
[2008.04.14 06:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys

< *w7lxe* /s >

< End of report >

JaCub · #14 Příspěvek od **JaCub** » 22 lis 2014 14:59

OTL Extras logfile created on: 22.11.2014 12:23:14 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = E:\Documents and Settings\jacubcuba\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 69,68% Memory free
3,85 Gb Paging File | 3,43 Gb Available in Paging File | 89,03% Paging File free
Paging file location(s): E:\pagefile.sys 0 0 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive E: | 55,89 Gb Total Space | 41,04 Gb Free Space | 73,43% Space Free | Partition Type: NTFS
Drive F: | 465,76 Gb Total Space | 150,63 Gb Free Space | 32,34% Space Free | Partition Type: NTFS

Computer Name: JAKUB | User Name: jacubcuba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1614895754-602162358-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- E:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "F:\PLAY,RW,Copy JK\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "F:\PLAY,RW,Copy JK\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "F:\PLAY,RW,Copy JK\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"E:\Program Files\Brother\BRAdmin Light\BRAdmLight.exe" = E:\Program Files\Brother\BRAdmin Light\BRAdmLight.exe:*:Enabled:BRAdmin Light -- (Brother Industries, Ltd.)
"F:\PLAY,RW,Copy JK\Winamp\winamp.exe" = F:\PLAY,RW,Copy JK\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.)
"F:\GRAFIKA JK 2\ArchiCAD.exe" = F:\GRAFIKA JK 2\ArchiCAD.exe:*:Enabled:ArchiCAD 12.0.0 Component -- (Graphisoft R&D)
"F:\GAME JK\Activision\Call of Duty - World at War\CoDWaW.exe" = F:\GAME JK\Activision\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- (Activision Blizzard, Inc.)
"F:\GAME JK\Activision\Call of Duty - World at War\CoDWaWmp.exe" = F:\GAME JK\Activision\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- (Activision Blizzard, Inc.)
"F:\GAME JK\Stronghold 3 Gold Edition\Stronghold 3\bin\win32_release\Stronghold3.exe" = F:\GAME JK\Stronghold 3 Gold Edition\Stronghold 3\bin\win32_release\Stronghold3.exe:*:Enabled:Stronghold3
"E:\Program Files\Google\Chrome\Application\chrome.exe" = E:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome -- (Google Inc.)
"F:\FILM JK\Free Download Manager\fdmwi.exe" = F:\FILM JK\Free Download Manager\fdmwi.exe:*:Enabled:fdmwi -- ()
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe" = E:\Documents and Settings\jacubcuba\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent Inc.)
"E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe" = E:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe:*:Enabled:NVIDIA Network Service TCP Exception (HTTPS) -- (NVIDIA Corporation)
"E:\Program Files\Skype\Phone\Skype.exe" = E:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{00060000-0000-1004-8002-0000C06B5161}" = WIBU-KEY Setup (WIBU-KEY Remove)
"{001FFFFF-FF08-FF01-FF11-01F00F02F000}" = ArchiCAD 8.1 CZE
"{01B4AC8E-6D83-44B3-958D-2AFE57BE54DB}" = Brother MFL-Pro Suite MFC-6490CW
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0ED38503-B69A-44B4-98BE-21BFF284A9B6}" = Brother Driver Deployment Wizard
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1EE5DCB1-E25C-44CB-8B32-EB063ED8EF73}" = Liberta
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{220C463A-2890-4C7F-B97C-C49FE175B849}" = OpenOffice 4.0.1
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 6.21
"{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1" = Media Player Classic - Home Cinema v1.4.2499.0
"{26A24AE4-039D-4CA4-87B4-2F03217071FF}" = Java 7 Update 71
"{29373274-977E-413C-A4DE-DC0F8E80C429}" = Nokia Connectivity Cable Driver
"{2BC2781A-F7F6-452E-95EB-018A522F1B2C}" = PaperPort Image Printer
"{2F2B569E-2024-48B8-867B-DB1BF2338F38}" = Silvercrest MTS2218 driver
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{350C97C4-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5B09BD67-4C99-46A1-8161-B7208CE18121}" = QuickTime
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1" = PROFIT 2013.06
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}" = PC Connectivity Solution
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7148F0A8-6813-11D6-A77B-00B0D0142050}" = Java 2 Runtime Environment, SE v1.4.2_05
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{758AF648-0B6C-4593-BDF1-9BF4CB50A359}" = IL-2 Sturmovik 1946
"{7710EC3A-8108-431B-9B8B-27BD8E44E503}" = Brother HL-5250DN
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7A8FF745-BBC5-482B-88E4-18D3178249A9}" = ScanSoft PaperPort 11
"{7B8ECA2E-D769-48A6-8A90-4C3CA47D5953}" = TechCON OSMA (4.1B)
"{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1" = PDF24 Creator 6.7.0
"{83437081-8186-4F63-BD39-4BE8A691E055}" = Hidden & Dangerous 2
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1" = Ashampoo Burning Studio 6 FREE v.6.84
"{91B33C97-65E9-BC54-E48F-B5E531F7886F}_is1" = Ashampoo Slideshow Studio 2012 v.1.0.2
"{91B33C97-F98D-5B16-9410-DF7FD6B5D902}_is1" = Ashampoo Burning Studio 2012 v.10.0.15
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC853A11-2047-4AAE-9EF1-9084C5B35926}" = KalkulacniProgram
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty(R) - World at War(TM) 1.1 Patch
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 344.48
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 344.48
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.1.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 141.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.14.0702
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 16.13.56
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.3.32.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B455E95A-B804-439F-B533-336B1635AE97}" = NVIDIA PhysX
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B8B4D43C-EAA0-4EEC-B93E-D4D012316286}" = Free DWG Viewer 7.1
"{C92AB6F1-6A1B-F954-7C68-B44BA8E357A4}_is1" = Ashampoo Photo Commander 9 v.9.4.3
"{C92AB6F1-DF43-1F74-81AF-9BE56BF1D67F}_is1" = Ashampoo Snap 5 v.5.1.5
"{D560A981-FEB3-42F0-A61A-13E9528E0C51}_is1" = GTR 2 1.0.0.0
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{DB75941E-30C4-4D97-B000-D17C764B998C}" = Brother BRAdmin Light 1.21.0002
"{DDE59617-F59A-473B-BC4E-C2B81F6CD38D}" = Command & Conquer™ Red Alert™ 3 Uprising
"{DDEDAF6C-488E-4CDA-8276-1CCF5F3C5C32}" = Command & Conquer 3
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}" = Nokia Suite
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"001FFFFFFF12FF00FF1101F03F02F000-R1" = ArchiCAD 12 CZE
"17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382" = Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 15 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 12.1
"AIMP3" = AIMP3
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.83
"Ashampoo Magical Defrag" = Ashampoo Magical Defrag
"avast" = Avast Free Antivirus
"CCleaner" = CCleaner
"čeština do hry T34 versus TIGER" = čeština do hry T34 versus TIGER
"DVDFab 9_is1" = DVDFab 9.0.1.6 (14/12/2012) Qt
"EAX Unified" = EAX Unified
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30
"Foxit Reader_is1" = Foxit Reader
"Free Download Manager_is1" = Free Download Manager 3.9.2
"Google Chrome" = Google Chrome
"InstallShield_{2F2B569E-2024-48B8-867B-DB1BF2338F38}" = Silvercrest MTS2218 driver
"InstallShield_{758AF648-0B6C-4593-BDF1-9BF4CB50A359}" = IL-2 Sturmovik 1946
"InstallShield_{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty(R) - World at War(TM) 1.1 Patch
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.1.0 (Full)
"Longhorn Transformation Pack" = Longhorn Transformation Pack 10.5
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.75.0.1300
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Mozilla Firefox 33.1.1 (x86 cs)" = Mozilla Firefox 33.1.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia Suite" = Nokia Suite
"Ňŕíęč Âňîđîé Ěčđîâîé: Ň-34 ďđîňčâ Ňčăđŕ_is1" = Ňŕíęč Âňîđîé Ěčđîâîé: Ň-34 ďđîňčâ Ňčăđŕ
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"ProFact 3.0 Free_is1" = ProFact 3.0 Free
"Projekty 1.1_is1" = Projekty 1.1
"Software Informer_is1" = Software Informer 1.0 BETA
"STLFR_eng_is1" = 'Steel Fury - Kharkov 1942'
"szn-software-postak" = Seznam Pošťák (Všichni uživatelé tohoto počítače.)
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR 5.11 (32-bit)
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9
"X3TerranConflict_is1" = X3 Terran Conflict v2.5

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1614895754-602162358-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent
"Winamp Detect" = Winamp Detector Plug-in

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 9.11.2014 15:59:57 | Computer Name = JAKUB | Source = Application Error | ID = 1000
Description = Chybující aplikace mpc-hc.exe, verze 1.4.2499.0, chybující modul mpc-hc.exe,
verze 1.4.2499.0, adresa chyby 0x00271e20.

Error - 17.11.2014 6:44:56 | Computer Name = JAKUB | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace mbam.exe, verze 1.75.0.1, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 17.11.2014 16:40:18 | Computer Name = JAKUB | Source = WmiAdapter | ID = 4099
Description = Otevření služby se nezdařil

Error - 18.11.2014 4:22:20 | Computer Name = JAKUB | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace mbam.exe, verze 1.75.0.1, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 18.11.2014 16:16:45 | Computer Name = JAKUB | Source = Application Error | ID = 1000
Description = Chybující aplikace mbam.exe, verze 1.75.0.1, chybující modul version.dll,
verze 5.1.2600.5512, adresa chyby 0x00001ddc.

Error - 18.11.2014 16:27:19 | Computer Name = JAKUB | Source = Application Error | ID = 1000
Description = Chybující aplikace mbam.exe, verze 1.75.0.1, chybující modul version.dll,
verze 5.1.2600.5512, adresa chyby 0x00001ddc.

Error - 19.11.2014 3:48:50 | Computer Name = JAKUB | Source = Application Error | ID = 1000
Description = Chybující aplikace plugin-container.exe, verze 33.1.1.5430, chybující
modul mozalloc.dll, verze 33.1.1.5430, adresa chyby 0x00001425.

Error - 19.11.2014 3:54:01 | Computer Name = JAKUB | Source = Application Error | ID = 1000
Description = Chybující aplikace mbam.exe, verze 1.0.1.711, chybující modul msvcr100.dll,
verze 10.0.40219.325, adresa chyby 0x0008d6fd.

Error - 21.11.2014 10:16:20 | Computer Name = JAKUB | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace mbam.exe, verze 1.75.0.1, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 22.11.2014 7:22:05 | Computer Name = JAKUB | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.69.0, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

[ System Events ]
Error - 17.11.2014 6:21:08 | Computer Name = JAKUB | Source = Service Control Manager | ID = 7034
Description = Služba Služba brány aplikačního rozhraní byla neočekávaně ukončena.
Tento stav nastal již 1krát.

Error - 17.11.2014 6:22:08 | Computer Name = JAKUB | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Zařazování tisku.

Error - 17.11.2014 6:22:08 | Computer Name = JAKUB | Source = Service Control Manager | ID = 7000
Description = Služba Zařazování tisku neuspěla při spuštění v důsledku následující
chyby: %%1053

Error - 17.11.2014 6:22:32 | Computer Name = JAKUB | Source = DCOM | ID = 10010
Description = Server {49BD2028-1523-11D1-AD79-00C04FD8FDFF} se v daném časovém limitu
neregistroval u služby DCOM.

Error - 17.11.2014 6:47:10 | Computer Name = JAKUB | Source = Service Control Manager | ID = 7034
Description = Služba MBAMScheduler byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 17.11.2014 16:40:19 | Computer Name = JAKUB | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Adaptér výkonu služby WMI.

Error - 17.11.2014 16:40:19 | Computer Name = JAKUB | Source = Service Control Manager | ID = 7000
Description = Služba Adaptér výkonu služby WMI neuspěla při spuštění v důsledku
následující chyby: %%1053

Error - 18.11.2014 4:17:11 | Computer Name = JAKUB | Source = Service Control Manager | ID = 7011
Description = Vypršel časový limit (30000 milisekund) čekání na odezvu transakce
služby NVSvc.

Error - 21.11.2014 7:51:03 | Computer Name = JAKUB | Source = DCOM | ID = 10010
Description = Server {49BD2028-1523-11D1-AD79-00C04FD8FDFF} se v daném časovém limitu
neregistroval u služby DCOM.

Error - 22.11.2014 5:50:37 | Computer Name = JAKUB | Source = sr | ID = 1
Description = Filtr nástroje Obnovení systému zjistil neočekávanou chybu 0xC0000001
při zpracování souboru na svazku HarddiskVolume1. Sledování svazku bylo ukončeno.

< End of report >

JaCub · #15 Příspěvek od **JaCub** » 22 lis 2014 15:05

Děkuji.

VIRY.CZ

Vytížení CPU.

Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.

Re: Vytížení CPU.