Prosím o kontrolu logu. Předem díky.
Logfile of random's system information tool 1.06 (written by random/random)
Run by Adam at 2010-01-30 16:28:44
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 637 MB (2%) free of 38 GB
Total RAM: 2046 MB (53% free)
======Scheduled tasks folder======
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-1004336348-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-1004336348-725345543-1003UA.job
C:\WINDOWS\tasks\PCConfidential.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D}]
MyWebSearch Search Assistant BHO - C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL [2009-07-16 65536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{751BE56D-A6B1-4901-91BA-D62033450B13}]
UpdateChecker Class - C:\Program Files\Stylish Profile\updaterWin32.dll [2009-11-02 35328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8AA217B9-D729-4ee0-AED7-E93D695E94A2}]
TomBHO Class - C:\Program Files\Stylish Profile\tom4ie.dll [2009-09-24 213504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-15 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-14 764912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-09-15 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2009-05-06 1145736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-25 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
Yontoo Layers - C:\Program Files\Yontoo Layers Client\YontooIEClient.dll [2009-10-27 194912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - Megaupload Toolbar - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL [2007-07-31 1933256]
{07B18EA9-A523-4961-B6BB-170DE4475CCA} - My Web Search - C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL [2009-07-16 434271]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2009-05-06 1145736]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-04-23 937416]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-15 256112]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\PROGRA~1\Avast4\ashDisp.exe [2009-02-05 81000]
"JMB36X IDE Setup"=C:\WINDOWS\JM\JMInsIDE.exe []
"36X Raid Configurer"=C:\WINDOWS\system32\JMRaidSetup.exe [2007-02-06 1953792]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-10-16 16855552]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-25 149280]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-06-13 528384]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]
"Kerio VPN Client"=C:\Program Files\Kerio\VPN Client\kvpnclient.exe [2008-01-16 2646016]
""= []
"MyWebSearch Plugin"=rundll32 C:\PROGRA~1\MYWEBS~1\bar\2.bin\M3PLUGIN.DLL,UPF []
"MyWebSearch Email Plugin"=C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe [2009-07-16 32838]
"reader_s"=C:\WINDOWS\System32\reader_s.exe [2009-04-18 33792]
"svchost"=C:\WINDOWS\mssrvc\svchost.exe []
"My Web Search Bar Search Scope Monitor"=C:\PROGRA~1\MYWEBS~1\bar\2.bin\m3SrchMn.exe [2009-07-16 24688]
"PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2009-07-27 180224]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"eurobattlegui"=D:\hry_\Warcraft III frozen throne\eb.exe [2009-10-22 757760]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"Free Download Manager"=C:\Program Files\Free Download Manager\fdm.exe [2007-12-31 2449455]
"EarthDesk"=C:\Program Files\XericDesign\EarthDesk\EarthDesk.exe /silentstart []
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-06 68856]
"uTorrent"=C:\Program Files\uTorrent\utorrent.exe [2009-12-15 289584]
"MyWebSearch Email Plugin"=C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe [2009-07-16 32838]
"reader_s"=C:\Documents and Settings\Adam\reader_s.exe [2009-04-18 33792]
"Steam"=C:\Program Files\Steam\Steam.exe -silent []
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-04-24 203928]
"Google Update"=C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-06-30 133104]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2009-09-03 3342336]
C:\Documents and Settings\Adam\Nabídka Start\Programy\Po spuštění
Adobe Media Player.lnk - C:\Program Files\Adobe Media Player\Adobe Media Player.exe
IMVU.lnk - C:\Program Files\IMVU\IMVUClient.exe
rncsys32.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-02-26 126976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt]
C:\WINDOWS\system32\crypts.dll [2009-04-01 32768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\podgvgm]
C:\WINDOWS\system32\podgvgm.dll [2009-06-13 16896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digiwet.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\hry_\Track Mania Nations\TrackMania Nations ESWC\TmNationsESWC.exe"="D:\hry_\Track Mania Nations\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"D:\hry_\FM08\fm.exe"="D:\hry_\FM08\fm.exe:*:Enabled:Football Manager 2008"
"D:\hry_\Heroes of Might and Magic III Complete\Heroes3.exe"="D:\hry_\Heroes of Might and Magic III Complete\Heroes3.exe:*:Enabled:Heroes of Might and Magic® III"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\QIP\qip.exe"="C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Documents and Settings\Adam\Plocha\bulanci.exe"="C:\Documents and Settings\Adam\Plocha\bulanci.exe:*:Enabled:bulanci"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"D:\hry_\Crysis\Bin32\Crysis.exe"="D:\hry_\Crysis\Bin32\Crysis.exe:*:Enabled:Crysis_32"
"D:\hry_\Crysis\Bin32\CrysisDedicatedServer.exe"="D:\hry_\Crysis\Bin32\CrysisDedicatedServer.exe:*:Enabled:CrysisDedicatedServer_32"
"C:\Documents and Settings\Adam\Miranda IM\miranda32.exe"="C:\Documents and Settings\Adam\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"D:\hry_\flatout\FlatOut Ultimate Carnage\Fouc.exe"="D:\hry_\flatout\FlatOut Ultimate Carnage\Fouc.exe:*:Enabled:FlatOut Ultimate Carnage"
"C:\Documents and Settings\Adam\Local Settings\Temp\pes2009.exe"="C:\Documents and Settings\Adam\Local Settings\Temp\pes2009.exe:*:Enabled:Pro Evolution Soccer 2009"
"D:\hry_\pes\pes2009.exe"="D:\hry_\pes\pes2009.exe:*:Enabled:Pro Evolution Soccer 2009"
"D:\hry_\Lotr\game.dat"="D:\hry_\Lotr\game.dat:*:Enabled:The Battle for Middle-earth(tm) II"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"D:\hry_\Cod4\iw3mp.exe"="D:\hry_\Cod4\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"D:\hry_\Football Manager 2009\fm.exe"="D:\hry_\Football Manager 2009\fm.exe:*:Disabled:Football Manager 2009"
"D:\hry_\EOS\Empire of Sports\NetworkDiagnostic.exe"="D:\hry_\EOS\Empire of Sports\NetworkDiagnostic.exe:*:Enabled:Empire of Sports Network Diagnostic"
"D:\hry_\EOS\Empire of Sports\EmpireOfSports.exe"="D:\hry_\EOS\Empire of Sports\EmpireOfSports.exe:*:Enabled:Empire of Sports"
"C:\Documents and Settings\Adam\Local Settings\Data aplikací\F4\ClientUpdater\ClientUpdater.exe"="C:\Documents and Settings\Adam\Local Settings\Data aplikací\F4\ClientUpdater\ClientUpdater.exe:*:Enabled:F4 Game Client Updater"
"D:\hry_\Pro.Evolution.Soccer.2009.Full-Rip.Skullptura\PES 2009\pes2009.exe"="D:\hry_\Pro.Evolution.Soccer.2009.Full-Rip.Skullptura\PES 2009\pes2009.exe:*:Enabled:Pro Evolution Soccer 2009"
"C:\Program Files\Steam\SteamApps\common\football manager 2010 demo\fm.exe"="C:\Program Files\Steam\SteamApps\common\football manager 2010 demo\fm.exe:*:Enabled:Football Manager 2010 Demo"
"D:\hry_\PC_Pro.Evolution.Soccer.2010.FullRip-TPTB\Pro Evolution Soccer 2010\pes2010.exe"="D:\hry_\PC_Pro.Evolution.Soccer.2010.FullRip-TPTB\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\hry_\Vancouver_2010-Razor1911\Vancouver.exe"="D:\hry_\Vancouver_2010-Razor1911\Vancouver.exe:*:Enabled:Vancouver 2010™"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{49cc615a-b123-11dc-9f90-0090272d0e7d}]
shell\AutoRun\command - G:\Autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{49cc6175-b123-11dc-9f90-0090272d0e7d}]
shell\AutoRun\command - H:\Autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fe819205-8fd9-11dd-a3ae-0090272d0e7d}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL system.exe
shell\Explore\command - system.exe
shell\Open\command - system.exe
======File associations======
.reg - open - "regedit.exe" "%1"
======List of files/folders created in the last 3 months======
2010-01-30 16:28:45 ----D---- C:\Program Files\trend micro
2010-01-30 16:28:44 ----D---- C:\rsit
2010-01-12 10:05:48 ----D---- C:\Program Files\Steinberg
2010-01-02 09:32:03 ----HDC---- C:\WINDOWS\$NtUninstallKB921883$
2010-01-01 15:13:42 ----D---- C:\Program Files\LogMeIn Hamachi
2009-12-31 21:17:12 ----D---- C:\Program Files\ICQ6
2009-12-31 16:17:06 ----D---- C:\Documents and Settings\Adam\Data aplikací\TeamViewer
2009-12-31 15:56:52 ----D---- C:\WINDOWS\Eurobattle.net
2009-12-31 15:54:35 ----A---- C:\WINDOWS\Eurobattle.net Setup Log.txt
2009-12-30 23:51:16 ----A---- C:\WINDOWS\War3Unin.exe
2009-12-19 09:57:18 ----A---- C:\WINDOWS\system32\rmc_rtspdl.dll
2009-12-19 09:57:18 ----A---- C:\WINDOWS\system32\rmc_fixasf.exe
2009-12-19 09:54:23 ----D---- C:\WINDOWS\Replay Media Catcher
2009-12-19 09:54:23 ----D---- C:\Program Files\Replay Media Catcher
2009-11-07 11:17:48 ----D---- C:\Program Files\Electronic Arts
2009-11-06 10:59:54 ----A---- C:\WINDOWS\system32\xlivefnt.dll
2009-11-06 10:59:54 ----A---- C:\WINDOWS\system32\xlive.dll
2009-11-06 10:58:04 ----A---- C:\WINDOWS\system32\xlive.dll.cat
2009-11-03 14:35:42 ----D---- C:\Program Files\Yontoo Layers Client
2009-11-03 14:35:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Tarma Installer
2009-11-03 14:30:40 ----D---- C:\Program Files\Stylish Profile
2009-11-02 18:05:36 ----A---- C:\WINDOWS\system32\xliveinstall.dll
2009-11-02 18:05:34 ----A---- C:\WINDOWS\system32\xliveinstallhost.exe
2009-11-01 18:28:35 ----D---- C:\Program Files\Veetle
======List of files/folders modified in the last 3 months======
2010-01-30 16:32:25 ----D---- C:\Documents and Settings\Adam\Data aplikací\Free Download Manager
2010-01-30 16:31:58 ----D---- C:\WINDOWS\Temp
2010-01-30 16:31:41 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-30 16:31:30 ----D---- C:\Documents and Settings\Adam\Data aplikací\uTorrent
2010-01-30 16:28:58 ----D---- C:\WINDOWS\Prefetch
2010-01-30 16:28:45 ----RD---- C:\Program Files
2010-01-30 13:57:46 ----D---- C:\Documents and Settings\Adam\Data aplikací\MegauploadToolbar
2010-01-30 12:45:10 ----SD---- C:\WINDOWS\Tasks
2010-01-30 11:22:30 ----D---- C:\Program Files\ZwangiSrch
2010-01-30 11:22:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\ZwangiSrch
2010-01-30 10:45:56 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-29 17:53:19 ----D---- C:\Program Files\Mozilla Firefox
2010-01-29 10:54:05 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-28 07:17:36 ----D---- C:\Program Files\AIMP2
2010-01-23 09:10:22 ----D---- C:\WINDOWS
2010-01-21 14:28:31 ----SHD---- C:\WINDOWS\Installer
2010-01-21 14:28:18 ----D---- C:\WINDOWS\system32
2010-01-21 14:27:18 ----D---- C:\WINDOWS\system32\DirectX
2010-01-21 14:27:17 ----HD---- C:\WINDOWS\inf
2010-01-21 14:25:54 ----RSD---- C:\WINDOWS\assembly
2010-01-21 14:19:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-14 21:18:47 ----D---- C:\Program Files\Garena
2010-01-13 14:39:46 ----D---- C:\WINDOWS\system32\drivers
2010-01-12 16:14:52 ----D---- C:\Program Files\VSTPlugIns
2010-01-02 21:23:54 ----D---- C:\Documents and Settings\Adam\Data aplikací\Skype
2010-01-02 12:17:06 ----D---- C:\WINDOWS\system32\config
2010-01-02 09:31:55 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-01 15:12:38 ----D---- C:\Program Files\Hamachi
2010-01-01 15:12:32 ----D---- C:\Documents and Settings\Adam\Data aplikací\Hamachi
2010-01-01 15:06:54 ----D---- C:\Temp
2009-12-28 15:51:58 ----D---- C:\Documents and Settings\Adam\Data aplikací\GameHouse
2009-12-25 15:59:03 ----D---- C:\WINDOWS\system32\wbem
2009-12-25 15:58:54 ----D---- C:\WINDOWS\Registration
2009-12-24 12:20:07 ----D---- C:\Program Files\Google
2009-12-15 14:59:41 ----D---- C:\Program Files\Opera
2009-12-12 12:06:35 ----D---- C:\Program Files\VirtualDJ
2009-11-26 17:18:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2009-11-13 15:03:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2009-11-13 15:03:33 ----D---- C:\Program Files\Common Files\Adobe
2009-11-13 15:03:20 ----D---- C:\Program Files\Adobe
2009-11-07 21:28:58 ----D---- C:\WINDOWS\system32\CatRoot
2009-11-07 21:27:31 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-11-07 21:25:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
2009-11-07 21:18:34 ----D---- C:\Program Files\uTorrent
2009-11-07 10:13:49 ----D---- C:\Downloads
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-17 39936]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2009-07-27 58908]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-11-15 34064]
R2 Prvflder;Prvflder; C:\WINDOWS\system32\DRIVERS\prvflder.sys [2006-04-21 70912]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-02-26 2863616]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-10-24 117760]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-09-23 26176]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-10-16 4615168]
R3 kvpndev;Kerio VPN adapter; C:\WINDOWS\system32\DRIVERS\kvpndrv.sys [2008-01-16 65024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2004-08-17 12416]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S1 12f9c294;12f9c294; C:\WINDOWS\System32\drivers\12f9c294.sys []
S1 4fff7758;4fff7758; C:\WINDOWS\System32\drivers\4fff7758.sys []
S1 c9da0e03;c9da0e03; C:\WINDOWS\System32\drivers\c9da0e03.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
S2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys []
S2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys []
S3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
S3 botdrv;botdrv; \??\C:\WINDOWS\system32\driver.sys []
S3 Bridge;Most MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-03 71552]
S3 BridgeMP;Miniport mostu MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-03 71552]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 GarenaPEngine;GarenaPEngine; \??\C:\DOCUME~1\Adam\LOCALS~1\Temp\PJO758F.tmp []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 PAC207;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
S3 pnkbstrk;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 restore;restore; \??\C:\WINDOWS\system32\drivers\restore.sys []
S3 s115bus;Sony Ericsson Device 115 driver (WDM); C:\WINDOWS\system32\DRIVERS\s115bus.sys [2007-04-23 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s115mdfl.sys [2007-04-23 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s115mdm.sys [2007-04-23 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s115mgmt.sys [2007-04-23 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s115obex.sys [2007-04-23 98568]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [2006-01-29 16896]
S3 tap0801;TAP-Win32 Adapter V8; C:\WINDOWS\system32\DRIVERS\tap0801.sys [2006-10-01 26624]
S3 tap0901_2gm;VPN Anonymizer Adapter; C:\WINDOWS\system32\DRIVERS\tap0901_2gm.sys [2007-06-21 30720]
S3 tcpsr;tcpsr; \??\C:\WINDOWS\System32\drivers\tcpsr.sys []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2009-07-10 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-02-26 520192]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2009-10-29 1074568]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-25 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-03-10 75064]
R2 pnkbstrb;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-07-02 189768]
R2 prfldsvc;Private Folder Service; C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe [2006-04-21 69632]
R2 starwindserviceae;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R2 ZwangiSrch Service;ZwangiSrch Service; C:\Documents and Settings\All Users\Data aplikací\ZwangiSrch\zwangi151.exe [2010-01-29 46568]
S2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Avast4\aswUpdSv.exe [2009-02-05 18752]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-02-25 593920]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Avast4\ashServ.exe [2009-02-05 138680]
S2 BITSERSvc;Služba inteligentního přenosu na pozadí BITSERSvc; C:\WINDOWS\system32\adsldpz.exe [2009-04-18 53248]
S2 BrowserNetDDE;Prohledávání počítačů BrowserNetDDE; C:\WINDOWS\system32\accwizo.exe [2009-03-24 34816]
S2 FastUserSwitchingCompatibility LM Service;Kompatibilita pro rychlé přepínání uživatelů FastUserSwitchingCompatibility LM Service; C:\WINDOWS\system32\12520437pw.exe [2009-04-03 47104]
S2 fci;FCI; C:\WINDOWS\system32\svchost.exe [2009-07-10 14336]
S2 gupdate1c9dfa1b149dc4a;Google Update Service (gupdate1c9dfa1b149dc4a); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-05-28 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-28 183280]
S2 msupdate;Microsoft security update service; c:\windows\system32\mssrv32.exe [2009-04-27 22016]
S2 MyWebSearchService;My Web Search Service; C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwssvc.exe [2009-07-16 28762]
S2 NetTcpPortSharingHidServ;Net.Tcp Port Sharing Service NetTcpPortSharingHidServ; C:\WINDOWS\system32\~.exe srv []
S2 RasMan Antivirus;Správce vzdáleného přístupu RasMan Antivirus; C:\WINDOWS\system32\12520437pwn.exe [2009-05-12 49664]
S2 RDSessMgrprfldsvc;Správce relací nápovědy ke vzdálené ploše RDSessMgrprfldsvc; C:\WINDOWS\system32\actskin4v.exe [2009-04-05 37888]
S2 Wodkjuntryo;Wodkjuntryo; C:\WINDOWS\System32\svchost.exe [2009-07-10 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-01-03 72704]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Avast4\ashMaiSv.exe [2009-02-05 254040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Avast4\ashWebSv.exe [2009-02-05 352920]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 usnjsvc;Služba Čtení deníku USN sdílených složek programu Messenger; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o Kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o Kontrolu logu
Mám docela problém, když spustím avz.exe, tak se nic nestane.
Re: Prosím o Kontrolu logu
No prostě se ten program nespustí. Vůbec nezareaguje. Dobře, tak zítra bych mohl až k večeru, mám dlouho školu.
Zpráva je moc dlouhá, nevleze se tady, tak přikládám v příloze i OTL.
Zpráva je moc dlouhá, nevleze se tady, tak přikládám v příloze i OTL.
Re: Prosím o Kontrolu logu
Dá se říct, že to je hlavně práce mého otce a mě.
All processes killed
========== PROCESSES ==========
No active process named Explorer.exe was found!
========== OTL ==========
No active process named F75B.tmp was found!
No active process named zwangi151.exe was found!
No active process named MWSOEMON.EXE was found!
No active process named M3SRCHMN.EXE was found!
No active process named reader_s.exe was found!
No active process named reader_s.exe was found!
Service ZwangiSrch Service stopped successfully!
Service ZwangiSrch Service deleted successfully!
C:\Documents and Settings\All Users\Data aplikací\ZwangiSrch\zwangi151.exe moved successfully.
Service MyWebSearchService stopped successfully!
Service MyWebSearchService deleted successfully!
C:\Program Files\MyWebSearch\bar\2.bin\MWSSVC.EXE moved successfully.
Service Wodkjuntryo stopped successfully!
Service Wodkjuntryo deleted successfully!
C:\Documents and Settings\Adam\Data aplikací\bmigwuck.dll moved successfully.
Service RasMan Antivirus stopped successfully!
Service RasMan Antivirus deleted successfully!
C:\WINDOWS\system32\12520437pwn.exe moved successfully.
Service msupdate stopped successfully!
Service msupdate deleted successfully!
C:\WINDOWS\system32\mssrv32.exe moved successfully.
Service BITSERSvc stopped successfully!
Service BITSERSvc deleted successfully!
C:\WINDOWS\system32\adsldpz.exe moved successfully.
Service RDSessMgrprfldsvc stopped successfully!
Service RDSessMgrprfldsvc deleted successfully!
C:\WINDOWS\system32\actskin4v.exe moved successfully.
Service FastUserSwitchingCompatibility LM Service stopped successfully!
Service FastUserSwitchingCompatibility LM Service deleted successfully!
C:\WINDOWS\system32\12520437pw.exe moved successfully.
Service BrowserNetDDE stopped successfully!
Service BrowserNetDDE deleted successfully!
C:\WINDOWS\system32\accwizo.exe moved successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D}\ deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL moved successfully.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00A6FAF6-072E-44cf-8957-5838F569A31D} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D}\ not found.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL not found.
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E!
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E!
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E!
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E!
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E!
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E!
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D}\ not found.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL not found.
Prefs.js: "http://search13.net/search.php?clid=486&q=" removed from browser.search.defaulturl
Prefs.js: "http://search13.net/search.php?clid=486&q=" removed from keyword.URL
C:\Program Files\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897}\defaults\preferences folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897}\defaults folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897} folder moved successfully.
C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}\ deleted successfully.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{751BE56D-A6B1-4901-91BA-D62033450B13}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{751BE56D-A6B1-4901-91BA-D62033450B13}\ deleted successfully.
C:\Program Files\Stylish Profile\updaterWin32.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8AA217B9-D729-4ee0-AED7-E93D695E94A2}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AA217B9-D729-4ee0-AED7-E93D695E94A2}\ deleted successfully.
C:\Program Files\Stylish Profile\tom4ie.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ deleted successfully.
C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}\ deleted successfully.
C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
C:\Program Files\Ask.com\GenericAskToolbar.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
C:\Program Files\Yontoo Layers Client\YontooIEClient.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{07B18EA9-A523-4961-B6BB-170DE4475CCA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}\ deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}\ deleted successfully.
File C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ deleted successfully.
C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ deleted successfully.
C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{07B18EA9-A523-4961-B6BB-170DE4475CCA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}\ not found.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
File C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
File C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{07B18EA9-A523-4961-B6BB-170DE4475CCA} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}\ not found.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
File C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
File C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{07B18EA9-A523-4961-B6BB-170DE4475CCA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}\ not found.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
File C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
File C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
File C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\My Web Search Bar Search Scope Monitor deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3SRCHMN.EXE moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Email Plugin deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\MWSOEMON.EXE moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Plugin deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3PLUGIN.DLL moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\reader_s deleted successfully.
C:\WINDOWS\system32\reader_s.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\svchost deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Email Plugin deleted successfully.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSOEMON.EXE not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\reader_s deleted successfully.
C:\Documents and Settings\Adam\reader_s.exe moved successfully.
C:\Documents and Settings\Adam\Nabídka Start\Programy\Po spuštění\rncsys32.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:rundll32.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:tapi.nfo deleted successfully.
C:\WINDOWS\system32\tapi.nfo moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:beforeglav deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit:C:\WINDOWS\system32\sdra64.exe deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt\ deleted successfully.
C:\WINDOWS\system32\crypts.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\podgvgm\ deleted successfully.
C:\WINDOWS\system32\podgvgm.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ deleted successfully.
C:\Program Files\Common Files\System\WebCheck.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\a2service.exe\ deleted successfully.
C:\WINDOWS\System32\ntsd.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ArcaCheck.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\arcavir.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashDisp.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashEnhcd.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashServ.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashUpd.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\aswUpdSv.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avadmin.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avcenter.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avcls.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avconfig.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avconsol.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgnt.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgrssvc.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avguard.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvMonitor.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.com\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVP32.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avscan.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avz.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avz_se.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avz4.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bdagent.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bdinit.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\caav.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\caavguiscan.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\casecuritycenter.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CCenter.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ccupdate.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cfp.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cfpupdat.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cmdagent.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drwadins.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DRWEB32.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drwebupw.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ekrn.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FAMEH32.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\filemon.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FPAVServer.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fpscan.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FPWin.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fsav32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fsgk32st.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FSMA32.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GFRing3.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\guardgui.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\guardxservice.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\guardxup.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HijackThis.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KASMain.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KASTask.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAV32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVDX.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVPF.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVPFW.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVStart.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KPFW32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KPFW32X.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Navapsvc.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Navapw32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\navigator.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NAVNT.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NAVSTUB.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NAVW32.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NAVWNT.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\niu.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32krn.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Nvcc.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\OllyDBG.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\outpost.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\preupd.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pskdr.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedit.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regmon.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RegTool.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\scan32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SfFnUp.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Vba32arkit.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vba32ldr.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vsserv.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Zanda.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zapro.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Zlh.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zonealarm.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zoneband.dll\ deleted successfully.
File ntsd -d not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders:digiwet.dll deleted successfully.
C:\WINDOWS\system32\digiwet.dll moved successfully.
Wodkjuntryo removed from NetSvcs value successfully!
Error: No service named Wodkjuntryo was found to stop!
Unable to stop service Wodkjuntryo!
File C:\Documents and Settings\Adam\Data aplikací\bmigwuck.dll not found.
C:\sqmnoopt06.sqm moved successfully.
C:\sqmdata06.sqm moved successfully.
C:\sqmnoopt05.sqm moved successfully.
C:\sqmdata05.sqm moved successfully.
C:\sqmnoopt04.sqm moved successfully.
C:\sqmdata04.sqm moved successfully.
C:\sqmnoopt03.sqm moved successfully.
C:\sqmdata03.sqm moved successfully.
C:\sqmnoopt02.sqm moved successfully.
C:\sqmdata02.sqm moved successfully.
C:\sqmnoopt01.sqm moved successfully.
C:\sqmdata01.sqm moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\sqmnoopt00.sqm moved successfully.
C:\sqmdata00.sqm moved successfully.
C:\sqmnoopt19.sqm moved successfully.
C:\sqmdata19.sqm moved successfully.
C:\sqmnoopt18.sqm moved successfully.
C:\sqmdata18.sqm moved successfully.
C:\sqmnoopt17.sqm moved successfully.
C:\sqmdata17.sqm moved successfully.
C:\sqmnoopt16.sqm moved successfully.
C:\sqmdata16.sqm moved successfully.
C:\sqmnoopt15.sqm moved successfully.
C:\sqmdata15.sqm moved successfully.
C:\sqmnoopt14.sqm moved successfully.
C:\sqmdata14.sqm moved successfully.
C:\sqmnoopt13.sqm moved successfully.
C:\sqmdata13.sqm moved successfully.
C:\sqmnoopt12.sqm moved successfully.
C:\sqmdata12.sqm moved successfully.
C:\sqmnoopt11.sqm moved successfully.
C:\sqmdata11.sqm moved successfully.
C:\sqmnoopt10.sqm moved successfully.
C:\sqmdata10.sqm moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-1004336348-725345543-1003Core.job moved successfully.
C:\sqmnoopt09.sqm moved successfully.
C:\sqmdata09.sqm moved successfully.
C:\sqmnoopt08.sqm moved successfully.
C:\sqmdata08.sqm moved successfully.
C:\sqmnoopt07.sqm moved successfully.
C:\sqmdata07.sqm moved successfully.
ADS C:\WINDOWS\System32\svchost.exe:ext.exe deleted successfully.
ADS C:\WINDOWS\Prefetch\SVCHOST.EXE:EXT.EXE-0731C82F.pf deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:C980DA7D deleted successfully.
========== SERVICES/DRIVERS ==========
Service FCI stopped successfully!
Service FCI deleted successfully!
Service 12f9c294 stopped successfully!
Service 12f9c294 deleted successfully!
Service 4fff7758 stopped successfully!
Service 4fff7758 deleted successfully!
Service c9da0e03 stopped successfully!
Service c9da0e03 deleted successfully!
Error: No service named Wodkjuntryo was found to stop!
Unable to stop service Wodkjuntryo!
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Email Plugin not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\reader_s not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\80:TCP deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\53:UDP deleted successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: Adam
->Temp folder emptied: 3008131246 bytes
->Temporary Internet Files folder emptied: 122832767 bytes
->Java cache emptied: 60478903 bytes
->FireFox cache emptied: 148193408 bytes
->Google Chrome cache emptied: 53787619 bytes
->Apple Safari cache emptied: 1087315 bytes
->Opera cache emptied: 665701161 bytes
User: Admin
->Temp folder emptied: 7094069 bytes
->Temporary Internet Files folder emptied: 6468475 bytes
->FireFox cache emptied: 63626287 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 17610172 bytes
User: NetworkService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 1844222 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2343638 bytes
%systemroot%\System32 .tmp files removed: 41657 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 213531335 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 2506234 bytes
RecycleBin emptied: 2852092128 bytes
Total Files Cleaned = 6 893,00 mb
Restore point Set: OTL Restore Point (64424509440)
OTL by OldTimer - Version 3.1.27.1 log created on 01312010_183857
Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\YT9T12EL\;ns=0;url=http%3A%2F%2Fwww.justin.tv%2Fsanductech%23r%3Dratp6aU;ref=;ce=1;je=0;sr=1280x1024x32;dg=P9137-W-MS-7;dst=1;et=1263662497250;tzo=-60;a=p-16uNVwiyGoWyg;labels=sports[1].gif not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\UHXG21T7\3661311656;ns=0;url=http%3A%2F%2Fwww.justin.tv%2Fsitinurhalizah;ref=;ce=1;je=0;sr=1280x1024x32;dg=P9137-W-MS-7;dst=1;et=1263661396406;tzo=-60;a=p-16uNVwiyGoWyg;labels=sports[1].gif not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\SPD8O6C3\18-1263661311656;ns=0;url=http%3A%2F%2Fwww.justin.tv%2Fparusss9;ref=;ce=1;je=0;sr=1280x1024x32;dg=P9137-W-MS-7;dst=1;et=1263661311656;tzo=-60;a=p-16uNVwiyGoWyg;labels=sports[1].gif not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NKQXINO\T3M0TCAWP1HMECAT3DPKWCAC9F3P0CAVESEX6CAJNGIKNCAW4S2KACAKNCQH8CAATGRYVCA8OCDYQCA6O3RV4CAWDGMZBCA5XWVZFCAR9Q58UCAVJ9WABCAYZSIFICAX6GS6KCAJ8HZDJCAXLHRPSCA8L7UU0CAGAYP12CAL5PVHT.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\0UVBJCA0LQEPWCA11T3BACA58FPXSCAKOTDQBCA2V8QFACAB3EBYCCAGFO87LCA3P9SA3CAN9MPTVCAWY9QS9CA62BLI1CA2H4U1RCA2MINI3CAIJ29OFCA0QV46ZCALYBYZ3CAX250LECA2WPBT4CASV8CA4CAA0426KCAJ2GGIL.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\2872QCAS1W7OTCA2IK13QCAUSS1U6CA4SA2IECAK675JOCAEXH0G5CAY1SDEUCA7HHN7FCAV57JS6CAEW8DJOCAHD5E7ICAWTTZITCA67XRU3CAFSYCU5CADHZFTTCA6QG5B5CA9F4OOVCAHFJXGYCADZLD0ECAT7UBPJCA0E4CDH.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\2CA9UQZ33CA2OX12RCALEWWT0CAHWJQCPCAZTLJBGCAJF0NZ0CARJH6NECA4E16EMCAV77E5XCA7W5HJ6CA35R4DCCAW0MEH6CA5N586BCA6X90LDCARB7TTNCA6LFBKDCAZKWC5WCADMX2RXCA6B4Q8FCAXMT95BCABGWG3ICABNR3C7 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\31O0KCAM8HEN7CAF7ZA82CAC1ZB82CA421SL5CA9LCXJ5CAOYP4MDCA2P3I09CA72EXNCCAL5VNJCCAFV4GTYCA689R82CAC6A1D7CAFIQG1RCA59PI3ECAKPFG03CA1DBMF8CACDMTGICAJTYNUQCAHV33B2CAPI8MXVCAYUKS3K.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\33K36CALYCOK3CAGBASFDCAOJM4LRCA992ZMTCAE2YG3UCA1I3WQSCACVQMZRCADR2ZW3CA3Q9GSLCATBJY60CAP05ECECA35I6QGCAYYBY7SCA3V7DWTCA9SJXVRCAZM3O12CARL09R9CAYGKAEDCATYIRW6CAP8Z7Q1CA1XZBHB.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\3CA8MP3WGCANITYMBCALLEE1GCAU7G1QECA3U90EXCAD31SI3CAXETTPQCAD6Z2UECAWAX9EOCA5EX66GCAJDC5KSCAXS6K0BCA7OGFW0CAFVCDW0CAFO8K3CCALHVELVCAU2IBB6CA34W11MCAC8UKVUCA0NATNFCAM05G0WCAAFAZ1B not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\3CACDYUTHCAK3Y259CAAMKM7OCAQGLVGVCAMRW6I7CAAI5CIZCAYIF5OLCAKM9SL3CAV3RDSTCAK75Y3OCAVPM4F8CAHYY1TXCAIAZV9JCA590MUYCATEY5DKCAGPQG74CA2KF4ERCA20T466CAT6OI8XCAJ23A1NCAGTCDLQCAKF7KK4 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\3CAH10BNOCAI08QX8CA6CHTCQCAKT869ICABEFKARCAW3PPC5CA95Y1BNCACU9REACAA72GQBCAL39RMECARZXD8BCAZG2X0WCAN2OQZYCAV6XFE5CAWQYKDCCAA8IEGPCAS7E0G1CAB9HH38CABE5JZ5CATQ0QPHCA29UZI0CA5N2RJW not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\3ZM8WCAN1V39TCANWUPG7CALFULTLCA7C9UEZCAQ97SY7CA6DMXV5CAI4WIL8CAE0AWS8CA2DSEKOCA5B81J6CA556JS4CAQOU1WQCA0W4A7ACAW76VYWCAJRLVHZCAGE1SDICAGP6Y92CADDS35QCA7P3RP1CA5IAUZICAYOVSOY.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\4CAK2NGJRCAXW2YZZCAQDMMXJCAKZYEVNCAZ1HZSECAHN38WFCA88V61VCAR33VBTCA01SBRACAE5REJMCAVUTJ4YCADUSB08CAL7MREVCASR0NUCCA17CEU3CA33R45WCA3SJNYVCAIS8RACCAMM9L09CASEF5EYCA7MSMZZCARQI4HP not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\56YHECAM1DWYQCAE4AXJ5CAX74S81CAOWUGB0CAFZAQ6WCAU1SL7GCA65AJXACA2BMA56CAWC6USFCAKGZ1F3CA8N2WAVCAHXA0R9CAZDO3K1CACVR3NECAPIXFDQCA04XY73CALW1YYCCAFSUT7UCAI0982ICAR2SXK8CAEFX6CT.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\5CAOC2855CA89OXN9CAOPUA5UCAI9Q1MECAWJGG5JCAZL8AZNCAJ42X9TCAAUVSO7CA19LOASCA2XIU45CA89LINSCAXMMOGNCAYTH94RCA55VO6ICAJZLG3WCAOEOHVRCAUNWYI9CABCTN33CAEUWEK3CA770T27CAHAVII6CAJZN9C8 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\5PV10CA3XHA48CA4RD6B3CAD5R4V1CAW9LANLCAXJUB57CAKL39M3CA5OTYXKCAWTRGKDCAESRQ0VCANGHFBSCA19RB0DCALODINMCA3ZF2XACAUCBUCECAMZ8TZACAA8KTTTCA9Z52TACAEGEM2UCA7OWKIOCA8N36ZECA05F4OW.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\5YYW2CA8LQYHNCA0K3NHXCAJR1UM5CAG4FKDHCAO14VFMCANF9FHRCAALHB3PCAKSDZV6CAAXWWRICA9SUUZICAQFATGMCAE4XK6XCA2EJQJTCAMMKY5OCA2S089VCAV46OBICAF6WPQ3CAR18YR1CAI6WZ20CATXL5YZCARL551R.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\6RBHFCAL8AU2PCAQH9V10CA1GFMG4CA0UUMUGCASR3VIMCAVM2KRTCAREV13SCA9LW2VJCAWULG14CAD09HRPCAVPJM1ECAOEFNKACAEA8E07CAANYP16CA19RLRHCAWW65PPCA202PVNCA502IZBCA64CSR7CAB6IEMXCAW07908.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\72GW8CAE95ROWCACEDY1SCAX46ZBRCAU6XCWDCAGOH8J2CAX07O41CALZCKAFCAD9QISZCA6RB1PJCAGFZ3EUCAUN20U3CAMWYCQ9CAZ3LASJCACHXU5NCATVM13KCAB57O89CAXT93F3CA7UCZ4XCA4ZEIV2CA3LXUXXCA268GNN.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\7CAJLWS3RCA3REVO3CAA248S5CA225ATACAHKT4RSCAQK0VVPCATWAMS0CAN361VICA1GSLOZCADJ1Q22CAK701VICAXEN8RCCAANAFGLCA6A5ZA1CAY0WQ4MCAA9S5HNCAKF8F27CAWNBLAYCAAWDE5WCAXWUDICCAI3FB39CAMT6NP4 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\7SHIUCAYAB385CAHAR0SWCADY80HICADAEZ99CAPC2J6DCAPT585WCANRMINPCAING3SKCAT8I4A3CAHUD52CCAQSB9XBCAFHYBAVCAMPVXWRCAOUZN49CASZ6J4BCADADCQ9CASG69F0CAE5RDAYCAG0MQ2GCAPYHAK4CAY5SY2F.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\ACAMTSP9JCANKI5CSCAJKSO0MCAB1XXZLCAUNPT61CA52F3V4CAC6SZK9CA548UI4CAU8GW9ECAOYZSH8CA5J5GJWCA9APMK9CAKGUM5RCARAP4YXCA72EQZ0CA13XX2YCAQ624N5CAL2HPQGCASGDXYNCAZM1EBGCA4H9ZNXCATQY8WY not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\AQARMCAESGWX5CA0WTBQ9CA1ZRCW8CAJ95S9DCABBJUH2CAAMHETWCA3MBKRQCAGV3J2MCADK9JMGCA8Z13G1CAGLRXB7CAHMD8HICA7WNEQ1CAZXTKN2CA8MJH5LCA76CCO0CAHHTPH5CARO2Y7OCA6LQH5LCADNNBPYCAWSO0XL.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\B3VP5CAOGK6V1CAU96VRLCAZH7MSRCAXGLGDSCA7JBDNJCA41IH04CAR3T2CSCAWITDV0CAT7FSFOCA22RPR3CA37MOXSCAU0RUK1CA70X3IXCA55SOCWCA2NS9SJCAXA2XRQCAETIKPICA4C9FM4CAU9Z8ZDCA4616VLCAWGAFQV.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\BCADO57MACAQDDYDGCA2O822PCAC9NTIWCA0VL5XDCABKYEU0CA867A69CAKE69VJCAVIDMUACAYDFN9TCACV4P4OCAP23QZ7CA4C5ITHCAW8JYC6CARCMG56CA7KRJYRCAXVOM1KCAEK2VLTCAUC2QDXCAMYOY2SCATBJSRTCAE21835 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\BCAIV3EZQCAF8SFGCCA1A17UFCAH43BW9CA6UOHOACANUH55MCAV5AWTICAO9OC5UCA5YKZ6HCAH9RG4JCADCZL92CAGBD3Q0CAKEG2ZICANMHVFNCAYTCQAACAT7VG6NCAQG7D8LCA56IAXVCA0PDUMBCAJE7MIJCAMGUK5UCAVVMPOH not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\CH7Y5CAW9S1SZCAOII5K9CA4F1MJZCA0T8WR3CA2MOJHUCA1LM8FRCA8045MVCAILT99TCAAWMFQ8CA5D0Q4SCA20M1UWCAFNZMSHCAQMQM53CA52ZBBYCASVHEH5CACUN87NCAH1LECHCAOP1OJ0CAU7VN16CAMS8HNGCAEMDX0E.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\DZ79JCAK9O3MLCAE3CHATCADGLTA3CAADRLXICAYRT1XOCAIFS6K4CAY0GLPBCAF1EHH9CA69URPWCANTBWCGCAMZXMLICACBRCO4CABC05EFCATA3C2NCAA6X1XJCAN2DHDNCAP1W21NCAJB9B10CAXW3ZG6CAAAWUFLCAL4RG77.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\E31MDCAD319EDCAP8N7JCCAH2RXIVCA1N8N19CAWRB7EMCATJZ9J4CAEAWS4TCA14FFQHCACFT34DCAPNF93BCAEP53WSCA0NQRA2CAUCY7FXCAGYML9HCAQPWJ9FCA993KY1CALFUW83CASR0B41CA0M6GDYCAYJAYD3CABJM81K.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\FK2BLCA89OJKRCAN3NNAFCAAQ1B0MCAP7GC5DCAAQ0VOLCAA06DWECAI1Z3E8CA6ES97MCAKNOFFTCA1HWABECAFWB573CAHA2QGKCAIPBTMDCA04O8V1CAPMAQ1YCA0EDQNBCALHVDE2CAC7SLVYCA14FXGZCAC04N58CAG5FB5K.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\FKBV3CASDSTL3CANU4RYXCA7TEA9ICAPX2PN3CA0SGSFRCAC04U1FCAE6UEVICAFE7I3ACAKT8TTFCAHR3N33CAQTD1X1CAT5HYL1CA00PW9XCAJ6AIGICA9DODYTCAA2PS1JCAUDKYXTCAVDL8YSCAJVWO0QCAMF8H84CAVEQ9IT.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\FUOMYCAUPKEY9CAKK72H4CA27IFM3CABXK6UBCAYB24BMCAIR5CBACA3C9OGOCA8MBVTECA4YT981CAVMUSF5CALVL6CWCAIETSJDCACQCYV6CA0M9YLQCAQV4LI7CAWTM2TPCAWATEWRCAEA1SDECADO0UVVCAXOM2VRCAEXGAAB.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\GCA04SPEBCA2I5ACTCA7TDA5ICAXQKUMVCAW14TNECA58VZIACA1IUPQ7CALFT7DYCAW1SV0HCAW4WJAYCA6RS9JOCATUL3AACABI7QEHCAEYXZBVCA0LBZFDCAS6X1G3CA957ZGFCASXW0XHCAKATUROCAM0IEGGCAHGMNZACA0Y4J37 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\H14ZBCA7X15YWCAE2YMQSCA7TD9CACAWSFC83CA4VI1AMCABNWIGFCAZ09J59CAOQ3BZ6CAF7H9NSCAO93611CAQPKEETCASDZ99QCAOLQF43CAVK6BPCCAQ71NT3CAEUDWHXCA0TJHFECA02W0H1CAX1Q5ZACAKZSCNJCAA6FEHQ.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\HDGVICAADSLVGCADIR2UVCA9E5WTOCAL8Z32WCAAB5ZC0CAFCR8Z9CA6KGZFSCAVWFGT9CALPTXCACAE8B5OXCAP5YX3ECAUDFMDBCAGUG2ANCAHQGW4JCAQ6XD01CADW8GD2CA4TJ9SDCA7FVJ5GCASWGA9PCAQSX0EECAKO9IRS.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\HEZOXCA4P0NHPCASB8101CA69DMXKCA1V5DTFCAQ1W6JBCALUDHFTCA2R2X2GCANU19AUCAHKU3S9CARP1RMQCAISVCCVCA9V2J3YCA2S150ACAK1V67FCA6894HBCAJTY102CADQHJRJCA5JOW29CAJ46UT5CA0O3XDGCAT4S9DV.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\ICAD5R820CAWZA40CCAO8R22VCA28SELGCA2N6GHHCA14X8ZGCA5NPIFJCAQWQD4CCAQEJ2EJCARN4I8XCAJOP2G6CAI6J9YVCAHY31L7CAYLDU15CADSC5WSCASN37WICAKDRKN4CA4FZQJDCAWE0CQ5CAEY2GF1CAKEOC0XCABI57C0 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\J082MCA1JD3YYCA2S8AFGCA97BJQICAEB4L2OCAWPZ512CAGBWTFQCARS3H40CACF8U3YCAC8DG2YCAA9KSTRCADGSDWUCATMS64NCA22E5IKCARX40HHCAXNQ83DCAZGSPTPCAC1HJ3CCAZ9G3EJCAAX9YTWCAZQJMP1CAAWJE77.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\JCADZCQ7YCA50EGNRCAHVRYFPCA4UKET2CA130JTICA97E4JBCA23BJBUCAWETKYRCAB3BY4ECAYT1662CA6ZA5Q9CALDV8DXCA2OWZGSCAC4L02HCA3FU77RCADPJY02CAUMY84LCAPCBE6ICAVL3Y3QCANV68IACACLJRHFCA6WYS51 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\K138ICA8PTN39CAMWATKVCA6ZIU9YCA0FZBENCACBG1I1CA0F6Z3GCA24UXMUCASP1ODZCANI8IM9CAZKALC7CA6M0W4YCACMU4EHCAP8G2OOCAVS3JLVCABUF1BFCAVIJ8KOCAMDU3NNCA3HCR3LCA60G4YICAGK11CVCAOAC279.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\K8520CABHGCESCATC5W7ECADYY4D1CAX81SLICA4G67VCCAOF3FBTCA4UQUJVCA08C3UMCAM9ULQ9CAON2C8TCACNFN4ACALK6IL8CA2R32G7CAKU05YPCAZJF99OCAORT076CA8F94VVCAM6U0TCCAHN3ONFCADQQ3ZHCA1CEKIH.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\KCAPL3IZFCAHZOHP1CAYNLD6XCA108V0ECATDC838CAX6J3N4CARYR1QSCAPVRH9QCA7H0ZG7CA32LXVNCATGB11ZCA5U5KWRCAW86XZCCA1JKVPSCAR1TFW0CA4VSVJPCA0IT4WUCA1HY7J8CAYC285KCAG02R00CAX5FCO4CAGNJJ12 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\KNNU7CA94S2NHCA1FKLWICACLDLJKCAVHWZA2CAZRSKZJCAH8IDI9CAHJIXCWCAPW9FP4CA3EQYRBCAHZBTERCAS8A1HSCAHDZJE4CAWPVPS2CAPR8WROCA43RQ9TCAA4TYWBCAJGQVN1CA2ACZC0CA6VEC1XCATZSULUCANV5ZQN.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\MGKT8CARPJSQXCAD7B88XCAEUKYAVCAEKN8OBCAN6ZAYMCAW93XNPCAENR9FXCATXGZS7CANRWZCPCAMZZY5DCAW0TJJCCAC9YOMPCAD71F3UCAJ6IRWECAWS5EY8CAUN31NECA72A7XECA13I8Q3CAP451EFCA965NPRCA9I1TU1.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\NCAJO9MBECA9XUV0HCA243T59CAB1CKBPCAB66IZKCA3A4ZTKCA1YK04LCAGRZQP8CAHSK705CAL08PUSCAQOHZ1VCAXVF0M5CA5BXSBYCA7AZHVHCAR5F6VFCAISE83VCA14S1FQCAGO0NGLCAIMQZ82CAPK83YRCAVIRL2LCAQ3ITGZ not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\NLN3RCAJ2PLDGCA0ZZRKXCA60XH5UCA52UWDTCACTS98ICALMWU1WCADV7OIDCAV5WDS0CAPCNO5VCA1HU5LHCA2VHJS3CAQVO8CBCAO23E3YCAJJ7TMMCASJZVFLCAHYOLYPCASTBMEMCAE1A9N8CAMXFPJGCAFO4MD4CA3CG80S.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\NP33NCAQ10DAGCAOSQNPZCA651AC0CAYYKFESCACBKDMCCA6IUGA1CA65K03JCACRJU5TCA1G8C78CA2EFRZPCAZ8YA6YCA3XZHP7CASLG5RMCAD67O2XCAU5H8OACAUOWQYXCA0P5TTBCADFFM33CAOULU6XCAYBC1E6CA7NK8IU.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\OCA84HKRBCAIMZIMQCAZVHU7QCAA3DD6ZCAOLXL4JCAOLB2JVCA1GM2JCCA2XBY03CAMBM49KCA23D6D3CAKXJWQRCABUJK2KCA2XVFQXCAKF2SWJCA2LX8SZCAAXPV42CAQNJ1CMCAYHX50RCAJ9GGE9CARE4DI2CAZLZJGTCASFSAKJ not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\OCAOO19KQCASV3QS5CA3G69CQCAHCBPF4CAFPGRCSCAZXJPV6CAMTY72ICAYF5EJ3CABIN0KXCAY3EZCXCA5HJG5JCA2Z8QXMCA1XBV80CA9LD2Q7CAWPM81DCAVIV2AACA2FAZDJCA026C7RCAAJWMGBCABVBR97CA9JOKWZCAE4GRVO not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\PCABDJ7AGCA0H0V7RCA42WHFPCAMPOFTJCAK51H6ZCACPUJ30CAEKVT8YCA243LV8CADHOCUMCAW2W5NRCA1D35FJCAXJHLCOCA8XLKIOCAP9TWVTCAORQ4UOCASUQIA4CA3AWKZ0CAQE34ZCCAROHJ81CAL4LRXSCAYHXYFVCAYX1V8B not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\PCAL2R9TECAVCEO8RCAL1XMGQCA5LEK3XCA1EEU5DCA1G3XDBCASF1HRSCA1K18EFCA7MKCD8CAGG69G6CA5IPRNYCAB45D1VCAXBXU1DCAR5IWORCA9USO01CA18YLHNCA4SBWXZCA7L4NHHCAGV247DCAFNBSHVCAGSMMHJCARKCI0Z not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\PXRLHCAM4VD5XCATCUEIRCA4WW4F5CAS6ESM5CAFAPTA0CA9ERGN7CA9SLXUPCAGIXVBDCAQZM8LOCANH35Z7CAGCC3GBCAYORD7ZCAG9IW2TCAOHNXNBCAITFJ66CAG2I0MQCAAOJ0RYCAT76EOACAQKKPA6CAZRPFP5CA6RGYRJ.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\PXSH1CAQJ7VF9CA2SF3XTCAUJWDQGCATJ1II4CAGZS7PBCAWQVZSTCA4WRCE2CA4EXSEUCA5XMTCZCA4HJHQWCATRQZCLCAFK36UCCAATICJRCA152MMTCA7BQVLPCAO0J2TOCAZ7FXTMCA1PCU9NCAT1JZM6CANXLQJQCABIKZNY.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\PYNGBCA8IIRGBCAPIODA9CAGJTMERCAF6750WCADCKEA3CAU4TJE9CAZTECF6CAAAPTGKCALT9AEXCADJI1C1CA2Y8YYNCAZZ772VCAV17VUDCA587HK3CALY1FCTCABRG597CAGV8MI3CA2CMC58CABUYDEOCAF7VX6ICAK2NWH6.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\RZ9P3CAPRYOESCA1B1XWUCA5WDL6UCAKCREIICAD7C5LUCALYPA2ECAW37590CAFL1D1OCAH4F01TCAPXFAITCAMC6J9KCA97ER8OCA3699JMCADCLPD1CAX3DOG7CAPYQ8S2CAOCY8SMCAYNV1FNCA26HZY1CAHF3HXZCAZLBGMY.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\SCAERLS7KCAKQR8T0CAJQEJ91CAEXPVIMCAFESE5XCANKV059CASXX9RXCAE2XUTMCADAN4JKCAC0PSKQCAK3QV1NCAM4IAFKCA79S7B3CALPXXZSCAKLDKHFCAY1Y3UQCA13461XCAZ9BKOSCA9X65RDCAYK7XH3CA5ZHDR1CA3V0G23 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\TBYGXCABO7HLBCA636U77CA52F6ZYCAK21474CAFRXYDXCAOW31X6CAMU23YUCA3OJSK7CAP7BNWBCA8PBG6PCA7Q1RTOCA3740M8CAAZF9EJCAQFGIG3CALKSOS5CA8YDIHTCA44FDUFCA5ASQ1TCAI04TR0CAYG47Z2CATBAEZI.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\TY3TCCA29865WCABFS3FHCAHL316YCAGF9XMJCACI53ECCAISAF43CAD8ACS8CAB1L15FCA6GY9RPCAGR4HLUCA9WP120CA210SOTCA4SYCQYCA9HJ5BNCAIVD05UCA88O37ICAFBWOZKCACM3U6VCAY1BFYFCA192P64CAJYRW1Z.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\VCA43TC5ECA5E9WVKCAODRJZ0CAL1DZ4UCAWSPDGLCA3NB969CA7G5B2PCAJ8PDBGCAN9LN4SCAAR0VV1CAWDB2B7CAEJZ0CQCA4D3QSKCAG9JYQ5CA2LB8MWCAE3L1VJCAUZRQYTCANIN47QCAW052LWCANDEZIPCAUGYGQOCAF5OMN5 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\VCA5XR7L6CALDYQ60CAQHHQJ1CAKZO26SCAFWWZMCCAAFUIEVCAY5HXFVCA01WYBOCACWX0UOCABNS9IACA68DLZCCAQPTA27CAYWOAG2CAFC4YVACAJJNZ4ACAEPJNZICAHY0ABECA9261HGCAL03D6BCAW0K3OTCA44U3I4CAL03THY not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\VG7JMCA0NEA8FCA7LOYM5CANAH7YCCA3VWEZUCAZDQ3LACA2OJ01UCAOEEG9YCANUXH87CAQV1VQ2CA5OYCPYCAGWUT9ACAG0574ACAN6WT2NCAMRW19LCAYRV1GGCAUQ1B92CAY6BPD8CAHO4EPTCAXF4ERGCAIKJSEOCAEO31A1.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\WCA3EGOILCAYN2K2CCA3OHMTPCA0OAWPYCAM2AZLPCAV1TWGXCAIPNVX3CAG41A2TCAAJ6HQOCAI9IMU0CAHIQ0QNCAJNI15NCANI2JM9CA995KOECA2EIB8GCAN5DWYPCAP8X11ICAN4TILRCA2BZGDCCAY55WQ7CAOYD8Y1CA1NX1G5 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\WCAELIRBSCAJBMMKDCABVHFAPCAZQO8I6CA2833QZCAGNP4Z0CA1XEK8RCAQMDCMMCAVQPD74CAMZ5OCNCAYJQ8XBCA2PVCL4CA8PJKHSCAO3WC9ECAI4S40FCAJNZQDNCACD92QDCAK9QHFICADL8HH8CA53SDLJCA8VQFCJCAHF1TT1 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\XLWD2CALN1F2YCA3PLYL0CA0UN7F0CAS8OWF5CAP783Z4CABB4OLYCAMH7HZNCATL6IS1CA2A1OZKCA3BP8WOCANRQQKMCAJ3SB6MCAFA3RHNCA4JDFS3CA6D1YCLCA3WZSL0CA039JXKCA2ELMVBCA8KO87MCA4U9WQNCAL5D67X.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\XPAU5CAOC0NYPCAJGW099CAELOJB5CAY5CMEGCAFRJ045CAUXP5SYCAO8DVYJCAA1TZ48CA7PMRCMCAHWP2WHCA4VFXDHCA3X04TNCAS6CIF6CAB2MKM5CAI00GL0CAD54F1ZCAJ88HCQCAXAFE7TCAQQZ0TJCARD63GGCASS9EGU.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\YRLYHCAXLG03NCAQVWSLVCAZS47EACAU94CXECAU1QHWMCACRMNE3CACAZOKCCA1UESEYCA7NCPD9CASM9LPCCASU708RCAZPMR8JCA9R37SACAJEA4VSCAW35XZJCAXT98S2CA15XPMXCAFSMI22CAD9R2EXCAFQ6E8MCAL2AM6C.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\Z0DXKCA5PAB7ICAGIGGUXCAJ84KPACAJFNIG4CAQIPL3GCAMN83LTCATR4641CA0345DOCA0CZZNFCAV7MVZLCAO5ZQD7CA5I5PHXCAZQ0R2WCAKLTTDCCA0NWUGWCA8DMJQBCAYE7TOLCAKSOMC9CAPR56O9CAYZAFP2CARZ83N6.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\Z3Q8JCA3WWM42CAT27FOICA2PFQYICAM371R8CAZBERIPCAEFMAE3CA0VCFPZCAUBG4IUCAOGGD2ICA9KJV8XCA05Q116CA7XC4JPCA5L1D43CAH4GNX6CA175ZN1CAY4MLY0CAMTD2X6CACTSR5RCA5VRH6MCAZ4AT4KCA6A0493.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\ZCARB6E15CASPLGMFCACKR5Q2CA1RKYWOCA8RCXV7CAFICPY4CAITVEYJCA5UNJ5GCATTYP16CAJ7JYADCADF8LDLCAQ58DOOCAZBMGF2CA1A7IQCCAQTUITUCAUI9BZLCAGZG8D2CA88S5DYCATAF170CACXE5NRCAPBLORLCA8QSNGZ not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\ZG3H5CA2GE1ESCA3MDTWZCAXC90P6CADHQ3XWCA05GOHXCADCKL8SCA8K3XTACAN99LT8CA3AL477CAO3PXPYCA13LYSPCALE86W0CAVQNU6DCAYURH75CA5YIDJ6CAZQWQ4GCAJJR0NHCAT0E0RICA6968HLCAQYZN1CCA05V6N1.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\ZIQCTCAUOWEWXCAKT9647CAG60F9SCA7126UECAUJJP9ICAY1IVQGCAIRTT3WCAL9D9T0CA0G3U1JCACVGVETCAPWUQ2TCA9R4E5ICAFVWDPMCACQ671ICA48KHQ7CALC8T4CCAU8C4PSCAH3P2MHCAPRFULMCAC5WAKWCAHCGUIG.htm not found!
C:\Documents and Settings\Adam\Local Settings\Temp\inE9.tmp moved successfully.
Registry entries deleted on Reboot...
All processes killed
========== PROCESSES ==========
No active process named Explorer.exe was found!
========== OTL ==========
No active process named F75B.tmp was found!
No active process named zwangi151.exe was found!
No active process named MWSOEMON.EXE was found!
No active process named M3SRCHMN.EXE was found!
No active process named reader_s.exe was found!
No active process named reader_s.exe was found!
Service ZwangiSrch Service stopped successfully!
Service ZwangiSrch Service deleted successfully!
C:\Documents and Settings\All Users\Data aplikací\ZwangiSrch\zwangi151.exe moved successfully.
Service MyWebSearchService stopped successfully!
Service MyWebSearchService deleted successfully!
C:\Program Files\MyWebSearch\bar\2.bin\MWSSVC.EXE moved successfully.
Service Wodkjuntryo stopped successfully!
Service Wodkjuntryo deleted successfully!
C:\Documents and Settings\Adam\Data aplikací\bmigwuck.dll moved successfully.
Service RasMan Antivirus stopped successfully!
Service RasMan Antivirus deleted successfully!
C:\WINDOWS\system32\12520437pwn.exe moved successfully.
Service msupdate stopped successfully!
Service msupdate deleted successfully!
C:\WINDOWS\system32\mssrv32.exe moved successfully.
Service BITSERSvc stopped successfully!
Service BITSERSvc deleted successfully!
C:\WINDOWS\system32\adsldpz.exe moved successfully.
Service RDSessMgrprfldsvc stopped successfully!
Service RDSessMgrprfldsvc deleted successfully!
C:\WINDOWS\system32\actskin4v.exe moved successfully.
Service FastUserSwitchingCompatibility LM Service stopped successfully!
Service FastUserSwitchingCompatibility LM Service deleted successfully!
C:\WINDOWS\system32\12520437pw.exe moved successfully.
Service BrowserNetDDE stopped successfully!
Service BrowserNetDDE deleted successfully!
C:\WINDOWS\system32\accwizo.exe moved successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D}\ deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL moved successfully.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00A6FAF6-072E-44cf-8957-5838F569A31D} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D}\ not found.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL not found.
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E!
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E!
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E!
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E!
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E!
Unable to set value : HKU\S-1-5-21-1123561945-1004336348-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E!
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D}\ not found.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL not found.
Prefs.js: "http://search13.net/search.php?clid=486&q=" removed from browser.search.defaulturl
Prefs.js: "http://search13.net/search.php?clid=486&q=" removed from keyword.URL
C:\Program Files\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897}\defaults\preferences folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897}\defaults folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897} folder moved successfully.
C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}\ deleted successfully.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{751BE56D-A6B1-4901-91BA-D62033450B13}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{751BE56D-A6B1-4901-91BA-D62033450B13}\ deleted successfully.
C:\Program Files\Stylish Profile\updaterWin32.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8AA217B9-D729-4ee0-AED7-E93D695E94A2}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AA217B9-D729-4ee0-AED7-E93D695E94A2}\ deleted successfully.
C:\Program Files\Stylish Profile\tom4ie.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\ deleted successfully.
C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}\ deleted successfully.
C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
C:\Program Files\Ask.com\GenericAskToolbar.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
C:\Program Files\Yontoo Layers Client\YontooIEClient.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{07B18EA9-A523-4961-B6BB-170DE4475CCA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}\ deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}\ deleted successfully.
File C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ deleted successfully.
C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ deleted successfully.
C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{07B18EA9-A523-4961-B6BB-170DE4475CCA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}\ not found.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
File C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
File C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{07B18EA9-A523-4961-B6BB-170DE4475CCA} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}\ not found.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
File C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
File C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{07B18EA9-A523-4961-B6BB-170DE4475CCA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}\ not found.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
File C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
File C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
File C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\My Web Search Bar Search Scope Monitor deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3SRCHMN.EXE moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Email Plugin deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\MWSOEMON.EXE moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Plugin deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3PLUGIN.DLL moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\reader_s deleted successfully.
C:\WINDOWS\system32\reader_s.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\svchost deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Email Plugin deleted successfully.
File C:\Program Files\MyWebSearch\bar\2.bin\MWSOEMON.EXE not found.
Registry value HKEY_USERS\S-1-5-21-1123561945-1004336348-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\reader_s deleted successfully.
C:\Documents and Settings\Adam\reader_s.exe moved successfully.
C:\Documents and Settings\Adam\Nabídka Start\Programy\Po spuštění\rncsys32.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:rundll32.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:tapi.nfo deleted successfully.
C:\WINDOWS\system32\tapi.nfo moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:beforeglav deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit:C:\WINDOWS\system32\sdra64.exe deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt\ deleted successfully.
C:\WINDOWS\system32\crypts.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\podgvgm\ deleted successfully.
C:\WINDOWS\system32\podgvgm.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ deleted successfully.
C:\Program Files\Common Files\System\WebCheck.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\a2service.exe\ deleted successfully.
C:\WINDOWS\System32\ntsd.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ArcaCheck.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\arcavir.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashDisp.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashEnhcd.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashServ.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ashUpd.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\aswUpdSv.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avadmin.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avcenter.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avcls.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avconfig.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avconsol.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgnt.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avgrssvc.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avguard.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvMonitor.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.com\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVP32.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avscan.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avz.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avz_se.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avz4.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bdagent.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bdinit.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\caav.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\caavguiscan.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\casecuritycenter.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CCenter.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ccupdate.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cfp.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cfpupdat.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cmdagent.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drwadins.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DRWEB32.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drwebupw.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ekrn.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FAMEH32.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\filemon.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FPAVServer.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fpscan.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FPWin.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fsav32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fsgk32st.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FSMA32.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GFRing3.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\guardgui.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\guardxservice.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\guardxup.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HijackThis.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KASMain.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KASTask.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAV32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVDX.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVPF.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVPFW.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVStart.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KPFW32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KPFW32X.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Navapsvc.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Navapw32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\navigator.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NAVNT.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NAVSTUB.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NAVW32.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NAVWNT.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\niu.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32krn.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Nvcc.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\OllyDBG.EXE\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\outpost.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\preupd.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pskdr.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedit.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regmon.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RegTool.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\scan32.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SfFnUp.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Vba32arkit.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vba32ldr.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vsserv.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Zanda.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zapro.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Zlh.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zonealarm.exe\ deleted successfully.
File ntsd -d not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zoneband.dll\ deleted successfully.
File ntsd -d not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders:digiwet.dll deleted successfully.
C:\WINDOWS\system32\digiwet.dll moved successfully.
Wodkjuntryo removed from NetSvcs value successfully!
Error: No service named Wodkjuntryo was found to stop!
Unable to stop service Wodkjuntryo!
File C:\Documents and Settings\Adam\Data aplikací\bmigwuck.dll not found.
C:\sqmnoopt06.sqm moved successfully.
C:\sqmdata06.sqm moved successfully.
C:\sqmnoopt05.sqm moved successfully.
C:\sqmdata05.sqm moved successfully.
C:\sqmnoopt04.sqm moved successfully.
C:\sqmdata04.sqm moved successfully.
C:\sqmnoopt03.sqm moved successfully.
C:\sqmdata03.sqm moved successfully.
C:\sqmnoopt02.sqm moved successfully.
C:\sqmdata02.sqm moved successfully.
C:\sqmnoopt01.sqm moved successfully.
C:\sqmdata01.sqm moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\sqmnoopt00.sqm moved successfully.
C:\sqmdata00.sqm moved successfully.
C:\sqmnoopt19.sqm moved successfully.
C:\sqmdata19.sqm moved successfully.
C:\sqmnoopt18.sqm moved successfully.
C:\sqmdata18.sqm moved successfully.
C:\sqmnoopt17.sqm moved successfully.
C:\sqmdata17.sqm moved successfully.
C:\sqmnoopt16.sqm moved successfully.
C:\sqmdata16.sqm moved successfully.
C:\sqmnoopt15.sqm moved successfully.
C:\sqmdata15.sqm moved successfully.
C:\sqmnoopt14.sqm moved successfully.
C:\sqmdata14.sqm moved successfully.
C:\sqmnoopt13.sqm moved successfully.
C:\sqmdata13.sqm moved successfully.
C:\sqmnoopt12.sqm moved successfully.
C:\sqmdata12.sqm moved successfully.
C:\sqmnoopt11.sqm moved successfully.
C:\sqmdata11.sqm moved successfully.
C:\sqmnoopt10.sqm moved successfully.
C:\sqmdata10.sqm moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1123561945-1004336348-725345543-1003Core.job moved successfully.
C:\sqmnoopt09.sqm moved successfully.
C:\sqmdata09.sqm moved successfully.
C:\sqmnoopt08.sqm moved successfully.
C:\sqmdata08.sqm moved successfully.
C:\sqmnoopt07.sqm moved successfully.
C:\sqmdata07.sqm moved successfully.
ADS C:\WINDOWS\System32\svchost.exe:ext.exe deleted successfully.
ADS C:\WINDOWS\Prefetch\SVCHOST.EXE:EXT.EXE-0731C82F.pf deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:C980DA7D deleted successfully.
========== SERVICES/DRIVERS ==========
Service FCI stopped successfully!
Service FCI deleted successfully!
Service 12f9c294 stopped successfully!
Service 12f9c294 deleted successfully!
Service 4fff7758 stopped successfully!
Service 4fff7758 deleted successfully!
Service c9da0e03 stopped successfully!
Service c9da0e03 deleted successfully!
Error: No service named Wodkjuntryo was found to stop!
Unable to stop service Wodkjuntryo!
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Email Plugin not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\reader_s not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\80:TCP deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\53:UDP deleted successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: Adam
->Temp folder emptied: 3008131246 bytes
->Temporary Internet Files folder emptied: 122832767 bytes
->Java cache emptied: 60478903 bytes
->FireFox cache emptied: 148193408 bytes
->Google Chrome cache emptied: 53787619 bytes
->Apple Safari cache emptied: 1087315 bytes
->Opera cache emptied: 665701161 bytes
User: Admin
->Temp folder emptied: 7094069 bytes
->Temporary Internet Files folder emptied: 6468475 bytes
->FireFox cache emptied: 63626287 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 17610172 bytes
User: NetworkService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 1844222 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2343638 bytes
%systemroot%\System32 .tmp files removed: 41657 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 213531335 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 2506234 bytes
RecycleBin emptied: 2852092128 bytes
Total Files Cleaned = 6 893,00 mb
Restore point Set: OTL Restore Point (64424509440)
OTL by OldTimer - Version 3.1.27.1 log created on 01312010_183857
Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\YT9T12EL\;ns=0;url=http%3A%2F%2Fwww.justin.tv%2Fsanductech%23r%3Dratp6aU;ref=;ce=1;je=0;sr=1280x1024x32;dg=P9137-W-MS-7;dst=1;et=1263662497250;tzo=-60;a=p-16uNVwiyGoWyg;labels=sports[1].gif not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\UHXG21T7\3661311656;ns=0;url=http%3A%2F%2Fwww.justin.tv%2Fsitinurhalizah;ref=;ce=1;je=0;sr=1280x1024x32;dg=P9137-W-MS-7;dst=1;et=1263661396406;tzo=-60;a=p-16uNVwiyGoWyg;labels=sports[1].gif not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\SPD8O6C3\18-1263661311656;ns=0;url=http%3A%2F%2Fwww.justin.tv%2Fparusss9;ref=;ce=1;je=0;sr=1280x1024x32;dg=P9137-W-MS-7;dst=1;et=1263661311656;tzo=-60;a=p-16uNVwiyGoWyg;labels=sports[1].gif not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\8NKQXINO\T3M0TCAWP1HMECAT3DPKWCAC9F3P0CAVESEX6CAJNGIKNCAW4S2KACAKNCQH8CAATGRYVCA8OCDYQCA6O3RV4CAWDGMZBCA5XWVZFCAR9Q58UCAVJ9WABCAYZSIFICAX6GS6KCAJ8HZDJCAXLHRPSCA8L7UU0CAGAYP12CAL5PVHT.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\0UVBJCA0LQEPWCA11T3BACA58FPXSCAKOTDQBCA2V8QFACAB3EBYCCAGFO87LCA3P9SA3CAN9MPTVCAWY9QS9CA62BLI1CA2H4U1RCA2MINI3CAIJ29OFCA0QV46ZCALYBYZ3CAX250LECA2WPBT4CASV8CA4CAA0426KCAJ2GGIL.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\2872QCAS1W7OTCA2IK13QCAUSS1U6CA4SA2IECAK675JOCAEXH0G5CAY1SDEUCA7HHN7FCAV57JS6CAEW8DJOCAHD5E7ICAWTTZITCA67XRU3CAFSYCU5CADHZFTTCA6QG5B5CA9F4OOVCAHFJXGYCADZLD0ECAT7UBPJCA0E4CDH.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\2CA9UQZ33CA2OX12RCALEWWT0CAHWJQCPCAZTLJBGCAJF0NZ0CARJH6NECA4E16EMCAV77E5XCA7W5HJ6CA35R4DCCAW0MEH6CA5N586BCA6X90LDCARB7TTNCA6LFBKDCAZKWC5WCADMX2RXCA6B4Q8FCAXMT95BCABGWG3ICABNR3C7 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\31O0KCAM8HEN7CAF7ZA82CAC1ZB82CA421SL5CA9LCXJ5CAOYP4MDCA2P3I09CA72EXNCCAL5VNJCCAFV4GTYCA689R82CAC6A1D7CAFIQG1RCA59PI3ECAKPFG03CA1DBMF8CACDMTGICAJTYNUQCAHV33B2CAPI8MXVCAYUKS3K.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\33K36CALYCOK3CAGBASFDCAOJM4LRCA992ZMTCAE2YG3UCA1I3WQSCACVQMZRCADR2ZW3CA3Q9GSLCATBJY60CAP05ECECA35I6QGCAYYBY7SCA3V7DWTCA9SJXVRCAZM3O12CARL09R9CAYGKAEDCATYIRW6CAP8Z7Q1CA1XZBHB.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\3CA8MP3WGCANITYMBCALLEE1GCAU7G1QECA3U90EXCAD31SI3CAXETTPQCAD6Z2UECAWAX9EOCA5EX66GCAJDC5KSCAXS6K0BCA7OGFW0CAFVCDW0CAFO8K3CCALHVELVCAU2IBB6CA34W11MCAC8UKVUCA0NATNFCAM05G0WCAAFAZ1B not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\3CACDYUTHCAK3Y259CAAMKM7OCAQGLVGVCAMRW6I7CAAI5CIZCAYIF5OLCAKM9SL3CAV3RDSTCAK75Y3OCAVPM4F8CAHYY1TXCAIAZV9JCA590MUYCATEY5DKCAGPQG74CA2KF4ERCA20T466CAT6OI8XCAJ23A1NCAGTCDLQCAKF7KK4 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\3CAH10BNOCAI08QX8CA6CHTCQCAKT869ICABEFKARCAW3PPC5CA95Y1BNCACU9REACAA72GQBCAL39RMECARZXD8BCAZG2X0WCAN2OQZYCAV6XFE5CAWQYKDCCAA8IEGPCAS7E0G1CAB9HH38CABE5JZ5CATQ0QPHCA29UZI0CA5N2RJW not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\3ZM8WCAN1V39TCANWUPG7CALFULTLCA7C9UEZCAQ97SY7CA6DMXV5CAI4WIL8CAE0AWS8CA2DSEKOCA5B81J6CA556JS4CAQOU1WQCA0W4A7ACAW76VYWCAJRLVHZCAGE1SDICAGP6Y92CADDS35QCA7P3RP1CA5IAUZICAYOVSOY.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\4CAK2NGJRCAXW2YZZCAQDMMXJCAKZYEVNCAZ1HZSECAHN38WFCA88V61VCAR33VBTCA01SBRACAE5REJMCAVUTJ4YCADUSB08CAL7MREVCASR0NUCCA17CEU3CA33R45WCA3SJNYVCAIS8RACCAMM9L09CASEF5EYCA7MSMZZCARQI4HP not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\56YHECAM1DWYQCAE4AXJ5CAX74S81CAOWUGB0CAFZAQ6WCAU1SL7GCA65AJXACA2BMA56CAWC6USFCAKGZ1F3CA8N2WAVCAHXA0R9CAZDO3K1CACVR3NECAPIXFDQCA04XY73CALW1YYCCAFSUT7UCAI0982ICAR2SXK8CAEFX6CT.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\5CAOC2855CA89OXN9CAOPUA5UCAI9Q1MECAWJGG5JCAZL8AZNCAJ42X9TCAAUVSO7CA19LOASCA2XIU45CA89LINSCAXMMOGNCAYTH94RCA55VO6ICAJZLG3WCAOEOHVRCAUNWYI9CABCTN33CAEUWEK3CA770T27CAHAVII6CAJZN9C8 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\5PV10CA3XHA48CA4RD6B3CAD5R4V1CAW9LANLCAXJUB57CAKL39M3CA5OTYXKCAWTRGKDCAESRQ0VCANGHFBSCA19RB0DCALODINMCA3ZF2XACAUCBUCECAMZ8TZACAA8KTTTCA9Z52TACAEGEM2UCA7OWKIOCA8N36ZECA05F4OW.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\5YYW2CA8LQYHNCA0K3NHXCAJR1UM5CAG4FKDHCAO14VFMCANF9FHRCAALHB3PCAKSDZV6CAAXWWRICA9SUUZICAQFATGMCAE4XK6XCA2EJQJTCAMMKY5OCA2S089VCAV46OBICAF6WPQ3CAR18YR1CAI6WZ20CATXL5YZCARL551R.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\6RBHFCAL8AU2PCAQH9V10CA1GFMG4CA0UUMUGCASR3VIMCAVM2KRTCAREV13SCA9LW2VJCAWULG14CAD09HRPCAVPJM1ECAOEFNKACAEA8E07CAANYP16CA19RLRHCAWW65PPCA202PVNCA502IZBCA64CSR7CAB6IEMXCAW07908.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\72GW8CAE95ROWCACEDY1SCAX46ZBRCAU6XCWDCAGOH8J2CAX07O41CALZCKAFCAD9QISZCA6RB1PJCAGFZ3EUCAUN20U3CAMWYCQ9CAZ3LASJCACHXU5NCATVM13KCAB57O89CAXT93F3CA7UCZ4XCA4ZEIV2CA3LXUXXCA268GNN.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\7CAJLWS3RCA3REVO3CAA248S5CA225ATACAHKT4RSCAQK0VVPCATWAMS0CAN361VICA1GSLOZCADJ1Q22CAK701VICAXEN8RCCAANAFGLCA6A5ZA1CAY0WQ4MCAA9S5HNCAKF8F27CAWNBLAYCAAWDE5WCAXWUDICCAI3FB39CAMT6NP4 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\7SHIUCAYAB385CAHAR0SWCADY80HICADAEZ99CAPC2J6DCAPT585WCANRMINPCAING3SKCAT8I4A3CAHUD52CCAQSB9XBCAFHYBAVCAMPVXWRCAOUZN49CASZ6J4BCADADCQ9CASG69F0CAE5RDAYCAG0MQ2GCAPYHAK4CAY5SY2F.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\ACAMTSP9JCANKI5CSCAJKSO0MCAB1XXZLCAUNPT61CA52F3V4CAC6SZK9CA548UI4CAU8GW9ECAOYZSH8CA5J5GJWCA9APMK9CAKGUM5RCARAP4YXCA72EQZ0CA13XX2YCAQ624N5CAL2HPQGCASGDXYNCAZM1EBGCA4H9ZNXCATQY8WY not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\AQARMCAESGWX5CA0WTBQ9CA1ZRCW8CAJ95S9DCABBJUH2CAAMHETWCA3MBKRQCAGV3J2MCADK9JMGCA8Z13G1CAGLRXB7CAHMD8HICA7WNEQ1CAZXTKN2CA8MJH5LCA76CCO0CAHHTPH5CARO2Y7OCA6LQH5LCADNNBPYCAWSO0XL.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\B3VP5CAOGK6V1CAU96VRLCAZH7MSRCAXGLGDSCA7JBDNJCA41IH04CAR3T2CSCAWITDV0CAT7FSFOCA22RPR3CA37MOXSCAU0RUK1CA70X3IXCA55SOCWCA2NS9SJCAXA2XRQCAETIKPICA4C9FM4CAU9Z8ZDCA4616VLCAWGAFQV.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\BCADO57MACAQDDYDGCA2O822PCAC9NTIWCA0VL5XDCABKYEU0CA867A69CAKE69VJCAVIDMUACAYDFN9TCACV4P4OCAP23QZ7CA4C5ITHCAW8JYC6CARCMG56CA7KRJYRCAXVOM1KCAEK2VLTCAUC2QDXCAMYOY2SCATBJSRTCAE21835 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\BCAIV3EZQCAF8SFGCCA1A17UFCAH43BW9CA6UOHOACANUH55MCAV5AWTICAO9OC5UCA5YKZ6HCAH9RG4JCADCZL92CAGBD3Q0CAKEG2ZICANMHVFNCAYTCQAACAT7VG6NCAQG7D8LCA56IAXVCA0PDUMBCAJE7MIJCAMGUK5UCAVVMPOH not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\CH7Y5CAW9S1SZCAOII5K9CA4F1MJZCA0T8WR3CA2MOJHUCA1LM8FRCA8045MVCAILT99TCAAWMFQ8CA5D0Q4SCA20M1UWCAFNZMSHCAQMQM53CA52ZBBYCASVHEH5CACUN87NCAH1LECHCAOP1OJ0CAU7VN16CAMS8HNGCAEMDX0E.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\DZ79JCAK9O3MLCAE3CHATCADGLTA3CAADRLXICAYRT1XOCAIFS6K4CAY0GLPBCAF1EHH9CA69URPWCANTBWCGCAMZXMLICACBRCO4CABC05EFCATA3C2NCAA6X1XJCAN2DHDNCAP1W21NCAJB9B10CAXW3ZG6CAAAWUFLCAL4RG77.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\E31MDCAD319EDCAP8N7JCCAH2RXIVCA1N8N19CAWRB7EMCATJZ9J4CAEAWS4TCA14FFQHCACFT34DCAPNF93BCAEP53WSCA0NQRA2CAUCY7FXCAGYML9HCAQPWJ9FCA993KY1CALFUW83CASR0B41CA0M6GDYCAYJAYD3CABJM81K.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\FK2BLCA89OJKRCAN3NNAFCAAQ1B0MCAP7GC5DCAAQ0VOLCAA06DWECAI1Z3E8CA6ES97MCAKNOFFTCA1HWABECAFWB573CAHA2QGKCAIPBTMDCA04O8V1CAPMAQ1YCA0EDQNBCALHVDE2CAC7SLVYCA14FXGZCAC04N58CAG5FB5K.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\FKBV3CASDSTL3CANU4RYXCA7TEA9ICAPX2PN3CA0SGSFRCAC04U1FCAE6UEVICAFE7I3ACAKT8TTFCAHR3N33CAQTD1X1CAT5HYL1CA00PW9XCAJ6AIGICA9DODYTCAA2PS1JCAUDKYXTCAVDL8YSCAJVWO0QCAMF8H84CAVEQ9IT.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\FUOMYCAUPKEY9CAKK72H4CA27IFM3CABXK6UBCAYB24BMCAIR5CBACA3C9OGOCA8MBVTECA4YT981CAVMUSF5CALVL6CWCAIETSJDCACQCYV6CA0M9YLQCAQV4LI7CAWTM2TPCAWATEWRCAEA1SDECADO0UVVCAXOM2VRCAEXGAAB.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\GCA04SPEBCA2I5ACTCA7TDA5ICAXQKUMVCAW14TNECA58VZIACA1IUPQ7CALFT7DYCAW1SV0HCAW4WJAYCA6RS9JOCATUL3AACABI7QEHCAEYXZBVCA0LBZFDCAS6X1G3CA957ZGFCASXW0XHCAKATUROCAM0IEGGCAHGMNZACA0Y4J37 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\H14ZBCA7X15YWCAE2YMQSCA7TD9CACAWSFC83CA4VI1AMCABNWIGFCAZ09J59CAOQ3BZ6CAF7H9NSCAO93611CAQPKEETCASDZ99QCAOLQF43CAVK6BPCCAQ71NT3CAEUDWHXCA0TJHFECA02W0H1CAX1Q5ZACAKZSCNJCAA6FEHQ.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\HDGVICAADSLVGCADIR2UVCA9E5WTOCAL8Z32WCAAB5ZC0CAFCR8Z9CA6KGZFSCAVWFGT9CALPTXCACAE8B5OXCAP5YX3ECAUDFMDBCAGUG2ANCAHQGW4JCAQ6XD01CADW8GD2CA4TJ9SDCA7FVJ5GCASWGA9PCAQSX0EECAKO9IRS.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\HEZOXCA4P0NHPCASB8101CA69DMXKCA1V5DTFCAQ1W6JBCALUDHFTCA2R2X2GCANU19AUCAHKU3S9CARP1RMQCAISVCCVCA9V2J3YCA2S150ACAK1V67FCA6894HBCAJTY102CADQHJRJCA5JOW29CAJ46UT5CA0O3XDGCAT4S9DV.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\ICAD5R820CAWZA40CCAO8R22VCA28SELGCA2N6GHHCA14X8ZGCA5NPIFJCAQWQD4CCAQEJ2EJCARN4I8XCAJOP2G6CAI6J9YVCAHY31L7CAYLDU15CADSC5WSCASN37WICAKDRKN4CA4FZQJDCAWE0CQ5CAEY2GF1CAKEOC0XCABI57C0 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\J082MCA1JD3YYCA2S8AFGCA97BJQICAEB4L2OCAWPZ512CAGBWTFQCARS3H40CACF8U3YCAC8DG2YCAA9KSTRCADGSDWUCATMS64NCA22E5IKCARX40HHCAXNQ83DCAZGSPTPCAC1HJ3CCAZ9G3EJCAAX9YTWCAZQJMP1CAAWJE77.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\JCADZCQ7YCA50EGNRCAHVRYFPCA4UKET2CA130JTICA97E4JBCA23BJBUCAWETKYRCAB3BY4ECAYT1662CA6ZA5Q9CALDV8DXCA2OWZGSCAC4L02HCA3FU77RCADPJY02CAUMY84LCAPCBE6ICAVL3Y3QCANV68IACACLJRHFCA6WYS51 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\K138ICA8PTN39CAMWATKVCA6ZIU9YCA0FZBENCACBG1I1CA0F6Z3GCA24UXMUCASP1ODZCANI8IM9CAZKALC7CA6M0W4YCACMU4EHCAP8G2OOCAVS3JLVCABUF1BFCAVIJ8KOCAMDU3NNCA3HCR3LCA60G4YICAGK11CVCAOAC279.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\K8520CABHGCESCATC5W7ECADYY4D1CAX81SLICA4G67VCCAOF3FBTCA4UQUJVCA08C3UMCAM9ULQ9CAON2C8TCACNFN4ACALK6IL8CA2R32G7CAKU05YPCAZJF99OCAORT076CA8F94VVCAM6U0TCCAHN3ONFCADQQ3ZHCA1CEKIH.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\KCAPL3IZFCAHZOHP1CAYNLD6XCA108V0ECATDC838CAX6J3N4CARYR1QSCAPVRH9QCA7H0ZG7CA32LXVNCATGB11ZCA5U5KWRCAW86XZCCA1JKVPSCAR1TFW0CA4VSVJPCA0IT4WUCA1HY7J8CAYC285KCAG02R00CAX5FCO4CAGNJJ12 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\KNNU7CA94S2NHCA1FKLWICACLDLJKCAVHWZA2CAZRSKZJCAH8IDI9CAHJIXCWCAPW9FP4CA3EQYRBCAHZBTERCAS8A1HSCAHDZJE4CAWPVPS2CAPR8WROCA43RQ9TCAA4TYWBCAJGQVN1CA2ACZC0CA6VEC1XCATZSULUCANV5ZQN.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\MGKT8CARPJSQXCAD7B88XCAEUKYAVCAEKN8OBCAN6ZAYMCAW93XNPCAENR9FXCATXGZS7CANRWZCPCAMZZY5DCAW0TJJCCAC9YOMPCAD71F3UCAJ6IRWECAWS5EY8CAUN31NECA72A7XECA13I8Q3CAP451EFCA965NPRCA9I1TU1.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\NCAJO9MBECA9XUV0HCA243T59CAB1CKBPCAB66IZKCA3A4ZTKCA1YK04LCAGRZQP8CAHSK705CAL08PUSCAQOHZ1VCAXVF0M5CA5BXSBYCA7AZHVHCAR5F6VFCAISE83VCA14S1FQCAGO0NGLCAIMQZ82CAPK83YRCAVIRL2LCAQ3ITGZ not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\NLN3RCAJ2PLDGCA0ZZRKXCA60XH5UCA52UWDTCACTS98ICALMWU1WCADV7OIDCAV5WDS0CAPCNO5VCA1HU5LHCA2VHJS3CAQVO8CBCAO23E3YCAJJ7TMMCASJZVFLCAHYOLYPCASTBMEMCAE1A9N8CAMXFPJGCAFO4MD4CA3CG80S.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\NP33NCAQ10DAGCAOSQNPZCA651AC0CAYYKFESCACBKDMCCA6IUGA1CA65K03JCACRJU5TCA1G8C78CA2EFRZPCAZ8YA6YCA3XZHP7CASLG5RMCAD67O2XCAU5H8OACAUOWQYXCA0P5TTBCADFFM33CAOULU6XCAYBC1E6CA7NK8IU.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\OCA84HKRBCAIMZIMQCAZVHU7QCAA3DD6ZCAOLXL4JCAOLB2JVCA1GM2JCCA2XBY03CAMBM49KCA23D6D3CAKXJWQRCABUJK2KCA2XVFQXCAKF2SWJCA2LX8SZCAAXPV42CAQNJ1CMCAYHX50RCAJ9GGE9CARE4DI2CAZLZJGTCASFSAKJ not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\OCAOO19KQCASV3QS5CA3G69CQCAHCBPF4CAFPGRCSCAZXJPV6CAMTY72ICAYF5EJ3CABIN0KXCAY3EZCXCA5HJG5JCA2Z8QXMCA1XBV80CA9LD2Q7CAWPM81DCAVIV2AACA2FAZDJCA026C7RCAAJWMGBCABVBR97CA9JOKWZCAE4GRVO not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\PCABDJ7AGCA0H0V7RCA42WHFPCAMPOFTJCAK51H6ZCACPUJ30CAEKVT8YCA243LV8CADHOCUMCAW2W5NRCA1D35FJCAXJHLCOCA8XLKIOCAP9TWVTCAORQ4UOCASUQIA4CA3AWKZ0CAQE34ZCCAROHJ81CAL4LRXSCAYHXYFVCAYX1V8B not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\PCAL2R9TECAVCEO8RCAL1XMGQCA5LEK3XCA1EEU5DCA1G3XDBCASF1HRSCA1K18EFCA7MKCD8CAGG69G6CA5IPRNYCAB45D1VCAXBXU1DCAR5IWORCA9USO01CA18YLHNCA4SBWXZCA7L4NHHCAGV247DCAFNBSHVCAGSMMHJCARKCI0Z not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\PXRLHCAM4VD5XCATCUEIRCA4WW4F5CAS6ESM5CAFAPTA0CA9ERGN7CA9SLXUPCAGIXVBDCAQZM8LOCANH35Z7CAGCC3GBCAYORD7ZCAG9IW2TCAOHNXNBCAITFJ66CAG2I0MQCAAOJ0RYCAT76EOACAQKKPA6CAZRPFP5CA6RGYRJ.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\PXSH1CAQJ7VF9CA2SF3XTCAUJWDQGCATJ1II4CAGZS7PBCAWQVZSTCA4WRCE2CA4EXSEUCA5XMTCZCA4HJHQWCATRQZCLCAFK36UCCAATICJRCA152MMTCA7BQVLPCAO0J2TOCAZ7FXTMCA1PCU9NCAT1JZM6CANXLQJQCABIKZNY.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\PYNGBCA8IIRGBCAPIODA9CAGJTMERCAF6750WCADCKEA3CAU4TJE9CAZTECF6CAAAPTGKCALT9AEXCADJI1C1CA2Y8YYNCAZZ772VCAV17VUDCA587HK3CALY1FCTCABRG597CAGV8MI3CA2CMC58CABUYDEOCAF7VX6ICAK2NWH6.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\RZ9P3CAPRYOESCA1B1XWUCA5WDL6UCAKCREIICAD7C5LUCALYPA2ECAW37590CAFL1D1OCAH4F01TCAPXFAITCAMC6J9KCA97ER8OCA3699JMCADCLPD1CAX3DOG7CAPYQ8S2CAOCY8SMCAYNV1FNCA26HZY1CAHF3HXZCAZLBGMY.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\SCAERLS7KCAKQR8T0CAJQEJ91CAEXPVIMCAFESE5XCANKV059CASXX9RXCAE2XUTMCADAN4JKCAC0PSKQCAK3QV1NCAM4IAFKCA79S7B3CALPXXZSCAKLDKHFCAY1Y3UQCA13461XCAZ9BKOSCA9X65RDCAYK7XH3CA5ZHDR1CA3V0G23 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\TBYGXCABO7HLBCA636U77CA52F6ZYCAK21474CAFRXYDXCAOW31X6CAMU23YUCA3OJSK7CAP7BNWBCA8PBG6PCA7Q1RTOCA3740M8CAAZF9EJCAQFGIG3CALKSOS5CA8YDIHTCA44FDUFCA5ASQ1TCAI04TR0CAYG47Z2CATBAEZI.txt not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\TY3TCCA29865WCABFS3FHCAHL316YCAGF9XMJCACI53ECCAISAF43CAD8ACS8CAB1L15FCA6GY9RPCAGR4HLUCA9WP120CA210SOTCA4SYCQYCA9HJ5BNCAIVD05UCA88O37ICAFBWOZKCACM3U6VCAY1BFYFCA192P64CAJYRW1Z.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\VCA43TC5ECA5E9WVKCAODRJZ0CAL1DZ4UCAWSPDGLCA3NB969CA7G5B2PCAJ8PDBGCAN9LN4SCAAR0VV1CAWDB2B7CAEJZ0CQCA4D3QSKCAG9JYQ5CA2LB8MWCAE3L1VJCAUZRQYTCANIN47QCAW052LWCANDEZIPCAUGYGQOCAF5OMN5 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\VCA5XR7L6CALDYQ60CAQHHQJ1CAKZO26SCAFWWZMCCAAFUIEVCAY5HXFVCA01WYBOCACWX0UOCABNS9IACA68DLZCCAQPTA27CAYWOAG2CAFC4YVACAJJNZ4ACAEPJNZICAHY0ABECA9261HGCAL03D6BCAW0K3OTCA44U3I4CAL03THY not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\VG7JMCA0NEA8FCA7LOYM5CANAH7YCCA3VWEZUCAZDQ3LACA2OJ01UCAOEEG9YCANUXH87CAQV1VQ2CA5OYCPYCAGWUT9ACAG0574ACAN6WT2NCAMRW19LCAYRV1GGCAUQ1B92CAY6BPD8CAHO4EPTCAXF4ERGCAIKJSEOCAEO31A1.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\WCA3EGOILCAYN2K2CCA3OHMTPCA0OAWPYCAM2AZLPCAV1TWGXCAIPNVX3CAG41A2TCAAJ6HQOCAI9IMU0CAHIQ0QNCAJNI15NCANI2JM9CA995KOECA2EIB8GCAN5DWYPCAP8X11ICAN4TILRCA2BZGDCCAY55WQ7CAOYD8Y1CA1NX1G5 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\WCAELIRBSCAJBMMKDCABVHFAPCAZQO8I6CA2833QZCAGNP4Z0CA1XEK8RCAQMDCMMCAVQPD74CAMZ5OCNCAYJQ8XBCA2PVCL4CA8PJKHSCAO3WC9ECAI4S40FCAJNZQDNCACD92QDCAK9QHFICADL8HH8CA53SDLJCA8VQFCJCAHF1TT1 not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\XLWD2CALN1F2YCA3PLYL0CA0UN7F0CAS8OWF5CAP783Z4CABB4OLYCAMH7HZNCATL6IS1CA2A1OZKCA3BP8WOCANRQQKMCAJ3SB6MCAFA3RHNCA4JDFS3CA6D1YCLCA3WZSL0CA039JXKCA2ELMVBCA8KO87MCA4U9WQNCAL5D67X.htm not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\XPAU5CAOC0NYPCAJGW099CAELOJB5CAY5CMEGCAFRJ045CAUXP5SYCAO8DVYJCAA1TZ48CA7PMRCMCAHWP2WHCA4VFXDHCA3X04TNCAS6CIF6CAB2MKM5CAI00GL0CAD54F1ZCAJ88HCQCAXAFE7TCAQQZ0TJCARD63GGCASS9EGU.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\YRLYHCAXLG03NCAQVWSLVCAZS47EACAU94CXECAU1QHWMCACRMNE3CACAZOKCCA1UESEYCA7NCPD9CASM9LPCCASU708RCAZPMR8JCA9R37SACAJEA4VSCAW35XZJCAXT98S2CA15XPMXCAFSMI22CAD9R2EXCAFQ6E8MCAL2AM6C.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\Z0DXKCA5PAB7ICAGIGGUXCAJ84KPACAJFNIG4CAQIPL3GCAMN83LTCATR4641CA0345DOCA0CZZNFCAV7MVZLCAO5ZQD7CA5I5PHXCAZQ0R2WCAKLTTDCCA0NWUGWCA8DMJQBCAYE7TOLCAKSOMC9CAPR56O9CAYZAFP2CARZ83N6.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\Z3Q8JCA3WWM42CAT27FOICA2PFQYICAM371R8CAZBERIPCAEFMAE3CA0VCFPZCAUBG4IUCAOGGD2ICA9KJV8XCA05Q116CA7XC4JPCA5L1D43CAH4GNX6CA175ZN1CAY4MLY0CAMTD2X6CACTSR5RCA5VRH6MCAZ4AT4KCA6A0493.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\ZCARB6E15CASPLGMFCACKR5Q2CA1RKYWOCA8RCXV7CAFICPY4CAITVEYJCA5UNJ5GCATTYP16CAJ7JYADCADF8LDLCAQ58DOOCAZBMGF2CA1A7IQCCAQTUITUCAUI9BZLCAGZG8D2CA88S5DYCATAF170CACXE5NRCAPBLORLCA8QSNGZ not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\ZG3H5CA2GE1ESCA3MDTWZCAXC90P6CADHQ3XWCA05GOHXCADCKL8SCA8K3XTACAN99LT8CA3AL477CAO3PXPYCA13LYSPCALE86W0CAVQNU6DCAYURH75CA5YIDJ6CAZQWQ4GCAJJR0NHCAT0E0RICA6968HLCAQYZN1CCA05V6N1.xml not found!
File\Folder C:\Documents and Settings\Adam\Local Settings\Temp\Temporary Internet Files\Content.IE5\0M1CKME2\ZIQCTCAUOWEWXCAKT9647CAG60F9SCA7126UECAUJJP9ICAY1IVQGCAIRTT3WCAL9D9T0CA0G3U1JCACVGVETCAPWUQ2TCA9R4E5ICAFVWDPMCACQ671ICA48KHQ7CALC8T4CCAU8C4PSCAH3P2MHCAPRFULMCAC5WAKWCAHCGUIG.htm not found!
C:\Documents and Settings\Adam\Local Settings\Temp\inE9.tmp moved successfully.
Registry entries deleted on Reboot...
Re: Prosím o Kontrolu logu
ComboFix 10-01-30.07 - Adam 31.01.2010 19:50:29.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.2046.1572 [GMT 1:00]
Spuštěný z: c:\documents and settings\Adam\Plocha\abraka.com.exe
AV: avast! antivirus 4.8.1335 [VPS 090228-0] *On-access scanning enabled* (Outdated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\FunWebProducts
c:\program files\FunWebProducts\Shared\Cache\CursorManiaBtn.html
c:\program files\FunWebProducts\Shared\Cache\MyFunCardsIMBtn.html
c:\program files\FunWebProducts\Shared\Cache\SmileyCentralBtn.html
c:\program files\FunWebProducts\Shared\Cache\WebfettiBtn.html
c:\program files\Cheat Engine\dbk32.sys
c:\program files\Internet Explorer\msimg32.dll
c:\program files\MyWebSearch
c:\program files\MyWebSearch\bar\1.bin\F3HTMLMU.DLL
c:\program files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSBAR.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
c:\program files\MyWebSearch\bar\1.bin\MWSOESTB.DLL
c:\program files\MyWebSearch\bar\2.bin\F3BKGERR.JPG
c:\program files\MyWebSearch\bar\2.bin\F3CJPEG.DLL
c:\program files\MyWebSearch\bar\2.bin\F3DTACTL.DLL
c:\program files\MyWebSearch\bar\2.bin\F3HISTSW.DLL
c:\program files\MyWebSearch\bar\2.bin\F3HKSTUB.DLL
c:\program files\MyWebSearch\bar\2.bin\F3HTMLMU.DLL
c:\program files\MyWebSearch\bar\2.bin\F3HTTPCT.DLL
c:\program files\MyWebSearch\bar\2.bin\F3POPSWT.DLL
c:\program files\MyWebSearch\bar\2.bin\F3PSSAVR.SCR
c:\program files\MyWebSearch\bar\2.bin\F3REGHK.DLL
c:\program files\MyWebSearch\bar\2.bin\F3REPROX.DLL
c:\program files\MyWebSearch\bar\2.bin\F3RESTUB.DLL
c:\program files\MyWebSearch\bar\2.bin\F3SCRCTR.DLL
c:\program files\MyWebSearch\bar\2.bin\F3SCHMON.EXE
c:\program files\MyWebSearch\bar\2.bin\F3SPACER.WMV
c:\program files\MyWebSearch\bar\2.bin\F3WALLPP.DAT
c:\program files\MyWebSearch\bar\2.bin\F3WPHOOK.DLL
c:\program files\MyWebSearch\bar\2.bin\FWPBUDDY.PNG
c:\program files\MyWebSearch\bar\2.bin\M3FFXTBR.JAR
c:\program files\MyWebSearch\bar\2.bin\M3FFXTBR.MANIFEST
c:\program files\MyWebSearch\bar\2.bin\M3HIGHIN.EXE
c:\program files\MyWebSearch\bar\2.bin\M3HTml.dll
c:\program files\MyWebSearch\bar\2.bin\M3IDLE.DLL
c:\program files\MyWebSearch\bar\2.bin\M3IMPIPE.EXE
c:\program files\MyWebSearch\bar\2.bin\M3MEDINT.EXE
c:\program files\MyWebSearch\bar\2.bin\M3MSG.DLL
c:\program files\MyWebSearch\bar\2.bin\M3NTSTBR.JAR
c:\program files\MyWebSearch\bar\2.bin\M3NTSTBR.MANIFEST
c:\program files\MyWebSearch\bar\2.bin\M3OUTLCN.DLL
c:\program files\MyWebSearch\bar\2.bin\M3SKIN.DLL
c:\program files\MyWebSearch\bar\2.bin\M3SKPLAY.EXE
c:\program files\MyWebSearch\bar\2.bin\M3SLSRCH.EXE
c:\program files\MyWebSearch\bar\2.bin\MWSOEPLG.DLL
c:\program files\MyWebSearch\bar\2.bin\MWSOESTB.DLL
c:\program files\MyWebSearch\bar\2.bin\NPMYWEBS.DLL
c:\program files\MyWebSearch\bar\Avatar\COMMON.F3S
c:\program files\MyWebSearch\bar\Avatar\COMMON\avatar.htm
c:\program files\MyWebSearch\bar\Avatar\COMMON\bgfadel.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\bgfader.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\common-x.css
c:\program files\MyWebSearch\bar\Avatar\COMMON\common.css
c:\program files\MyWebSearch\bar\Avatar\COMMON\cornerbl.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\cornerbr.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\ext_def.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\ext_roll.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\include.js
c:\program files\MyWebSearch\bar\Avatar\COMMON\index.htm
c:\program files\MyWebSearch\bar\Avatar\COMMON\loader.htm
c:\program files\MyWebSearch\bar\Avatar\COMMON\loading.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\logo.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\max_def.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\max_roll.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\min_def.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\min_roll.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\noflash.htm
c:\program files\MyWebSearch\bar\Avatar\COMMON\res_def.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\res_roll.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\spacer.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\spacer.swf
c:\program files\MyWebSearch\bar\Avatar\COMMON\topgrad.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\window.ico
c:\program files\MyWebSearch\bar\Cache\0001A40B
c:\program files\MyWebSearch\bar\Cache\0001DE35
c:\program files\MyWebSearch\bar\Cache\0001E72E
c:\program files\MyWebSearch\bar\Cache\000229D5
c:\program files\MyWebSearch\bar\Cache\00028EF7
c:\program files\MyWebSearch\bar\Cache\00040E16
c:\program files\MyWebSearch\bar\Cache\00118C9D
c:\program files\MyWebSearch\bar\Cache\0011C541.bin
c:\program files\MyWebSearch\bar\Cache\0011D4B2.bin
c:\program files\MyWebSearch\bar\Cache\0011E3A6.bin
c:\program files\MyWebSearch\bar\Cache\0011E54C.bin
c:\program files\MyWebSearch\bar\Cache\0011E7BD.bin
c:\program files\MyWebSearch\bar\Cache\002276A1
c:\program files\MyWebSearch\bar\Cache\0033E660
c:\program files\MyWebSearch\bar\Cache\003896D1
c:\program files\MyWebSearch\bar\Cache\00AAD3A0
c:\program files\MyWebSearch\bar\Cache\00CC3613.bin
c:\program files\MyWebSearch\bar\Cache\00CC38E2.bin
c:\program files\MyWebSearch\bar\Cache\022032A2
c:\program files\MyWebSearch\bar\Cache\02360994.bin
c:\program files\MyWebSearch\bar\Cache\03C64C9E.bin
c:\program files\MyWebSearch\bar\Cache\04CE6F55
c:\program files\MyWebSearch\bar\Cache\0520A460.bin
c:\program files\MyWebSearch\bar\Cache\0520A78D.bin
c:\program files\MyWebSearch\bar\Cache\0520B652.bin
c:\program files\MyWebSearch\bar\Cache\files.ini
c:\program files\MyWebSearch\bar\Game\CHECKERS.F3S
c:\program files\MyWebSearch\bar\Game\CHESS.F3S
c:\program files\MyWebSearch\bar\Game\REVERSI.F3S
c:\program files\MyWebSearch\bar\History\search3
c:\program files\MyWebSearch\bar\icons\CM.ICO
c:\program files\MyWebSearch\bar\icons\MFC.ICO
c:\program files\MyWebSearch\bar\icons\PSS.ICO
c:\program files\MyWebSearch\bar\icons\SMILEY.ICO
c:\program files\MyWebSearch\bar\icons\WB.ICO
c:\program files\MyWebSearch\bar\icons\ZWINKY.ICO
c:\program files\MyWebSearch\bar\Message\COMMON.F3S
c:\program files\MyWebSearch\bar\Message\COMMON\ask_logo.gif
c:\program files\MyWebSearch\bar\Message\COMMON\autoup.gif
c:\program files\MyWebSearch\bar\Message\COMMON\autoup.htm
c:\program files\MyWebSearch\bar\Message\COMMON\center.htm
c:\program files\MyWebSearch\bar\Message\COMMON\index.htm
c:\program files\MyWebSearch\bar\Message\COMMON\mid_dots.gif
c:\program files\MyWebSearch\bar\Message\COMMON\mws_logo.gif
c:\program files\MyWebSearch\bar\Message\COMMON\protect.htm
c:\program files\MyWebSearch\bar\Message\COMMON\shocked.gif
c:\program files\MyWebSearch\bar\Message\COMMON\stop.gif
c:\program files\MyWebSearch\bar\Message\COMMON\systray.htm
c:\program files\MyWebSearch\bar\Message\COMMON\systrayp.htm
c:\program files\MyWebSearch\bar\Message\COMMON\tp_grad.gif
c:\program files\MyWebSearch\bar\Message\COMMON\warn.gif
c:\program files\MyWebSearch\bar\Notifier\COMMON.F3S
c:\program files\MyWebSearch\bar\Notifier\DOG.F3S
c:\program files\MyWebSearch\bar\Notifier\FISH.F3S
c:\program files\MyWebSearch\bar\Notifier\KUNGFU.F3S
c:\program files\MyWebSearch\bar\Notifier\LIFEGARD.F3S
c:\program files\MyWebSearch\bar\Notifier\MAID.F3S
c:\program files\MyWebSearch\bar\Notifier\MAILBOX.F3S
c:\program files\MyWebSearch\bar\Notifier\OPERA.F3S
c:\program files\MyWebSearch\bar\Notifier\ROBOT.F3S
c:\program files\MyWebSearch\bar\Notifier\SEDUCT.F3S
c:\program files\MyWebSearch\bar\Notifier\SURFER.F3S
c:\program files\MyWebSearch\bar\Settings\prevcfg2.htm
c:\program files\MyWebSearch\bar\Settings\s_pid.dat
c:\program files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
c:\program files\WinPCap
c:\program files\WinPCap\rpcapd.exe
c:\windows\mssrvc
c:\windows\system32\1958507876.dat
c:\windows\system32\2424468211.dat
c:\windows\system32\drivers\npf.sys
c:\windows\system32\f3PSSavr.scr
c:\windows\system32\lowsec
c:\windows\system32\lowsec\local.ds
c:\windows\system32\lowsec\user.ds
c:\windows\system32\lowsec\user.ds.lll
c:\windows\system32\Packet.dll
c:\windows\system32\podgvgm32.dll
c:\windows\system32\pthreadVC.dll
c:\windows\system32\sdra64.exe
c:\windows\system32\WanPacket.dll
c:\windows\system32\wbem\grpconv.exe
c:\windows\system32\wpcap.dll
c:\windows\unins000.dat
c:\windows\unins000.exe
Nakažená kopie c:\windows\system32\userinit.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\system32\dllcache\userinit.exe
c:\windows\system32\grpconv.exe . . . chybí !!
Nakažená kopie c:\windows\system32\drivers\ndis.sys byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\system32\drivers\ndis(2).sys
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_BOTDRV
-------\Legacy_NETTCPPORTSHARINGHIDSERV
-------\Legacy_NPF
-------\Legacy_RESTORE
-------\Legacy_TCPSR
-------\Service_botdrv
-------\Service_NetTcpPortSharingHidServ
-------\Service_npf
-------\Service_restore
-------\Service_tcpsr
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-31 )))))))))))))))))))))))))))))))
.
2010-01-31 17:38 . 2010-01-31 17:38 -------- d-----w- C:\_OTL
2010-01-31 13:53 . 2010-01-31 13:54 -------- d-----w- C:\Filmoteka
2010-01-31 13:49 . 2010-01-31 13:52 -------- d-----w- c:\program files\Filmy
2010-01-31 13:46 . 2010-01-31 13:46 -------- d-----w- c:\program files\Common Files\Borland Shared
2010-01-31 13:46 . 1999-01-20 04:01 210032 ----a-w- c:\windows\system32\DBCLIENT.DLL
2010-01-30 15:28 . 2010-01-30 15:32 -------- d-----w- c:\program files\trend micro
2010-01-30 15:28 . 2010-01-30 15:32 -------- d-----w- C:\rsit
2010-01-12 09:05 . 2010-01-12 09:05 -------- d-----w- c:\program files\Steinberg
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-31 18:58 . 2009-06-29 17:18 -------- d-----w- c:\program files\Cheat Engine
2010-01-31 17:39 . 2008-05-14 13:08 -------- d-----w- c:\program files\MegauploadToolbar
2010-01-31 17:39 . 2009-11-03 13:35 -------- d-----w- c:\program files\Yontoo Layers Client
2010-01-31 17:39 . 2009-10-18 15:44 -------- d-----w- c:\program files\Ask.com
2010-01-31 17:39 . 2009-11-03 13:30 -------- d-----w- c:\program files\Stylish Profile
2010-01-31 17:32 . 2009-10-26 06:30 -------- d-----w- c:\program files\PowerISO
2010-01-30 22:01 . 2008-07-19 08:51 -------- d-----w- c:\program files\AIMP2
2010-01-30 18:44 . 2009-10-15 05:19 -------- d-----w- c:\program files\ZwangiSrch
2010-01-21 13:19 . 2007-12-17 20:58 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-14 20:18 . 2008-10-27 13:27 -------- d-----w- c:\program files\Garena
2010-01-12 15:14 . 2008-03-04 16:26 -------- d-----w- c:\program files\VSTPlugIns
2010-01-01 14:13 . 2010-01-01 14:13 -------- d-----w- c:\program files\LogMeIn Hamachi
2010-01-01 14:12 . 2008-07-26 15:04 -------- d-----w- c:\program files\Hamachi
2009-12-31 20:17 . 2009-12-31 20:17 -------- d-----w- c:\program files\ICQ6
2009-12-31 14:50 . 2009-12-30 22:51 29730 ----a-w- c:\windows\War3Unin.dat
2009-12-31 14:50 . 2009-12-30 22:51 139264 ----a-w- c:\windows\War3Unin.exe
2009-12-30 22:51 . 2009-12-30 22:51 2829 ----a-w- c:\windows\War3Unin.pif
2009-12-24 11:20 . 2008-01-11 13:28 -------- d-----w- c:\program files\Google
2009-12-19 12:03 . 2009-12-19 08:54 -------- d-----w- c:\program files\Replay Media Catcher
2009-12-19 08:57 . 2009-12-19 08:57 237568 ----a-w- c:\windows\system32\rmc_rtspdl.dll
2009-12-19 08:57 . 2009-12-19 08:57 156672 ----a-w- c:\windows\system32\rmc_fixasf.exe
2009-12-15 13:59 . 2007-12-17 21:03 -------- d-----w- c:\program files\Opera
2009-12-12 11:06 . 2008-11-13 17:47 -------- d-----w- c:\program files\VirtualDJ
2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll
2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\opera\program\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\opera\program\plugins\ssldivx.dll
2009-03-25 06:55 . 2009-03-25 06:55 20480 --sha-w- c:\windows\system32\12520437p.dll
2009-04-13 16:39 . 2009-04-13 16:39 20480 --sha-w- c:\windows\system32\6to4svcz.dll
2009-04-05 12:36 . 2009-04-05 12:36 20480 --sha-w- c:\windows\system32\activedsb.dll
2009-03-22 16:17 . 2009-03-22 16:17 20480 --sha-w- c:\windows\system32\alrsvci.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-05-06 68856]
"AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2009-04-24 203928]
"Google Update"="c:\documents and settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2009-06-30 133104]
"EA Core"="c:\program files\Electronic Arts\EADM\Core.exe" [2009-09-03 3342336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"36X Raid Configurer"="c:\windows\system32\JMRaidSetup.exe" [2007-02-06 1953792]
"RTHDCPL"="RTHDCPL.EXE" [2007-10-16 16855552]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-08-25 149280]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 528384]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
"Kerio VPN Client"="c:\program files\Kerio\VPN Client\kvpnclient.exe" [2008-01-16 2646016]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2007-01-19 5674352]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"="c:\windows\system32\Macromed\Flash\FlashUtil10b.exe" [2009-02-03 240544]
c:\documents and settings\Admin\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /r \??\F:\0autocheck autochk *
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\hry_\\Track Mania Nations\\TrackMania Nations ESWC\\TmNationsESWC.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Documents and Settings\\Adam\\Miranda IM\\miranda32.exe"=
"c:\\Documents and Settings\\Adam\\Local Settings\\Data aplikací\\F4\\ClientUpdater\\ClientUpdater.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [31.3.2008 5:00 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [31.3.2008 5:00 20560]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [29.10.2009 12:27 1074568]
R2 Prvflder;Prvflder;c:\windows\system32\drivers\prvflder.sys [21.4.2006 7:22 70912]
R3 kvpndev;Kerio VPN adapter;c:\windows\system32\drivers\kvpndrv.sys [16.1.2008 9:58 65024]
S0 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
S2 gupdate1c9dfa1b149dc4a;Google Update Service (gupdate1c9dfa1b149dc4a);c:\program files\Google\Update\GoogleUpdate.exe [28.5.2009 15:36 133104]
S2 Wodkjuntryo;Wodkjuntryo;c:\windows\System32\svchost.exe -k netsvcs [17.8.2004 14:49 14336]
S3 GarenaPEngine;GarenaPEngine;\??\c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp --> c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp [?]
S3 PAC207;VideoCAM GE111;c:\windows\system32\drivers\pfc027.sys [8.4.2005 10:46 162176]
S3 s115bus;Sony Ericsson Device 115 driver (WDM);c:\windows\system32\drivers\s115bus.sys [1.10.2008 17:59 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;c:\windows\system32\drivers\s115mdfl.sys [1.10.2008 17:59 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;c:\windows\system32\drivers\s115mdm.sys [1.10.2008 17:59 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s115mgmt.sys [1.10.2008 17:59 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;c:\windows\system32\drivers\s115obex.sys [1.10.2008 17:59 98568]
S3 SynasUSB;SynasUSB;c:\windows\system32\drivers\synasUSB.sys [25.1.2009 21:45 16896]
S3 tap0801;TAP-Win32 Adapter V8;c:\windows\system32\drivers\tap0801.sys [1.10.2006 13:37 26624]
S3 tap0901_2gm;VPN Anonymizer Adapter;c:\windows\system32\drivers\tap0901_2gm.sys [21.6.2007 15:21 30720]
.
Obsah adresáře 'Naplánované úlohy'
2010-01-31 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-01-25 14:30]
2010-01-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-28 14:36]
2010-01-31 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2009-05-06 16:11]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://search13.net/
uDefault_Search_URL = hxxp://search13.net/
uInternet Settings,ProxyOverride = local
uSearchAssistant = hxxp://search13.net/
uCustomizeSearch = hxxp://search13.net/
IE: &Search - http://edits.mywebsearch.com/toolbaredi ... p=ZJman000
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Download all with Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm
IE: Download selected with Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm
IE: Download video with Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Download with Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{14CD42DD-ABCD-3586-DCAB-40E3693E3737} - c:\program files\Stylish Profile\ct.htm
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\Adam\Nabídka Start\Programy\IMVU\Run IMVU.lnk
FF - ProfilePath - c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz/
FF - component: c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - component: c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1591.6512\npCIDetect13.dll
FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Opera\program\plugins\npdivx32.dll
FF - plugin: c:\program files\Veetle\Player\npvlc.dll
FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll
---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKCU-Run-EarthDesk - c:\program files\XericDesign\EarthDesk\EarthDesk.exe
HKCU-Run-Steam - c:\program files\Steam\Steam.exe
HKCU-Run-DAEMON Tools Lite - c:\program files\DAEMON Tools Lite\daemon.exe
HKLM-Run-JMB36X IDE Setup - c:\windows\JM\JMInsIDE.exe
HKLM-Run-eurobattlegui - d:\hry_\Warcraft III frozen throne\eb.exe
ActiveSetup-{A9F32C39-E65C-1A92-EFF1-0AB408982D87} - c:\docume~1\Adam\LOCALS~1\Temp\Crysis02.exe
AddRemove-Ableton Live_is1 - c:\program files\Ableton\Live 7.0.2\Uninstall\unins000.exe
AddRemove-CABAL Online(Europe)_is1 - d:\hry_\Cabal\CABAL Online (Europe)\unins000.exe
AddRemove-DAEMON Tools Toolbar - c:\program files\DAEMON Tools Toolbar\uninst.exe
AddRemove-EoS-{5CCCD423-F673-4CD8-9464-9D950F49BBC3} - d:\hry_\EOS\Empire of Sports\Uninstall.exe
AddRemove-Farm Frenzy 2 - c:\progra~1\GAMEHO~1\FARMFR~1\UNWISE.EXE
AddRemove-FIFA MANAGER 08 - d:\hry_\Fifa manager 08\eauninstall.exe
AddRemove-FIFA MANAGER 09 - d:\hry_\fifa manager 09\eauninstall.exe
AddRemove-FIFA MANAGER 10 Demo - d:\manager\eauninstall.exe
AddRemove-FlatOut Ultimate Carnage - d:\hry_\flatout\FlatOut Ultimate Carnage\Uninstall.exe
AddRemove-Football Manager 2008 - d:\hry_\FM08\Uninstall_Football Manager 2008\Uninstall Football Manager 2008.exe
AddRemove-Free Download Manager Archive Pack_is1 - c:\windows\unins000.exe
AddRemove-Steam App 34110 - c:\program files\Steam\steam.exe
AddRemove-TmNationsForever_is1 - c:\program files\TmNationsForever\unins000.exe
AddRemove-{2A9F95AB-65A3-432c-8631-B8BC5BF7477A} - d:\hry_\Lotr\EAUninstall.exe
AddRemove-{5A438E06-0BB3-4C5F-0085-B14F1F4077E6} - d:\hry_\Fifa 2007\EAUninstall.exe
AddRemove-{B931FB80-537A-4600-00AD-AC5DEDB6C25B} - d:\hry_\LOTR datadisk\EAUninstall.exe
AddRemove-Ôîňîďŕę ôóňáîëčńňîâ Đîńńčč (ver.1.0) äë˙ FIFA Ma~30233282_is1 - d:\hry_\fifa manager 09\unins000.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-31 20:02
Windows 5.1.2600 Service Pack 2 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GarenaPEngine]
"ImagePath"="\??\c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(896)
c:\windows\system32\Ati2evxx.dll
- - - - - - - > 'explorer.exe'(6756)
c:\windows\system32\browselc.dll
c:\program files\Microsoft Office\OFFICE11\msohev.dll
c:\program files\Sony Ericsson\Mobile2\File Manager\FM.dll
c:\windows\system32\MSVCR71.dll
c:\program files\Common Files\Teleca Shared\tlib_log.dll
c:\program files\Common Files\Teleca Shared\boost_log-vc71-mt-1_33.dll
c:\windows\system32\DivXG400.ax
c:\windows\system32\mpeg2dmx.ax
c:\windows\system32\DivXMedia.ax
c:\windows\system32\ffdshow.ax
c:\program files\Common Files\Ahead\DSFilter\NeVideo.ax
c:\program files\Common Files\Ahead\Lib\AdvrCntr.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Avast4\aswUpdSv.exe
c:\program files\Avast4\ashServ.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\PnkBstrA.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\PnkBstrB.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Microsoft Private Folder 1.0\PrfldSvc.exe
c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\windows\System32\PAStiSvc.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\windows\system32\wdfmgr.exe
c:\program files\Canon\CAL\CALMAIN.exe
c:\program files\Avast4\ashMaiSv.exe
c:\windows\system32\wscntfy.exe
c:\program files\Avast4\ashWebSv.exe
c:\program files\Common Files\Teleca Shared\Generic.exe
c:\program files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
c:\windows\SoftwareDistribution\Download\8058ebceb452c83425841a510aaccdfb\update\update.exe
.
**************************************************************************
.
Celkový čas: 2010-01-31 20:10:55 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-01-31 19:10
Před spuštěním: 5 553 352 704
Po spuštění: 5 314 670 592
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
- - End Of File - - F1E0104F3567FD432943B9B2B40D76A9
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.2046.1572 [GMT 1:00]
Spuštěný z: c:\documents and settings\Adam\Plocha\abraka.com.exe
AV: avast! antivirus 4.8.1335 [VPS 090228-0] *On-access scanning enabled* (Outdated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\FunWebProducts
c:\program files\FunWebProducts\Shared\Cache\CursorManiaBtn.html
c:\program files\FunWebProducts\Shared\Cache\MyFunCardsIMBtn.html
c:\program files\FunWebProducts\Shared\Cache\SmileyCentralBtn.html
c:\program files\FunWebProducts\Shared\Cache\WebfettiBtn.html
c:\program files\Cheat Engine\dbk32.sys
c:\program files\Internet Explorer\msimg32.dll
c:\program files\MyWebSearch
c:\program files\MyWebSearch\bar\1.bin\F3HTMLMU.DLL
c:\program files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSBAR.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
c:\program files\MyWebSearch\bar\1.bin\MWSOESTB.DLL
c:\program files\MyWebSearch\bar\2.bin\F3BKGERR.JPG
c:\program files\MyWebSearch\bar\2.bin\F3CJPEG.DLL
c:\program files\MyWebSearch\bar\2.bin\F3DTACTL.DLL
c:\program files\MyWebSearch\bar\2.bin\F3HISTSW.DLL
c:\program files\MyWebSearch\bar\2.bin\F3HKSTUB.DLL
c:\program files\MyWebSearch\bar\2.bin\F3HTMLMU.DLL
c:\program files\MyWebSearch\bar\2.bin\F3HTTPCT.DLL
c:\program files\MyWebSearch\bar\2.bin\F3POPSWT.DLL
c:\program files\MyWebSearch\bar\2.bin\F3PSSAVR.SCR
c:\program files\MyWebSearch\bar\2.bin\F3REGHK.DLL
c:\program files\MyWebSearch\bar\2.bin\F3REPROX.DLL
c:\program files\MyWebSearch\bar\2.bin\F3RESTUB.DLL
c:\program files\MyWebSearch\bar\2.bin\F3SCRCTR.DLL
c:\program files\MyWebSearch\bar\2.bin\F3SCHMON.EXE
c:\program files\MyWebSearch\bar\2.bin\F3SPACER.WMV
c:\program files\MyWebSearch\bar\2.bin\F3WALLPP.DAT
c:\program files\MyWebSearch\bar\2.bin\F3WPHOOK.DLL
c:\program files\MyWebSearch\bar\2.bin\FWPBUDDY.PNG
c:\program files\MyWebSearch\bar\2.bin\M3FFXTBR.JAR
c:\program files\MyWebSearch\bar\2.bin\M3FFXTBR.MANIFEST
c:\program files\MyWebSearch\bar\2.bin\M3HIGHIN.EXE
c:\program files\MyWebSearch\bar\2.bin\M3HTml.dll
c:\program files\MyWebSearch\bar\2.bin\M3IDLE.DLL
c:\program files\MyWebSearch\bar\2.bin\M3IMPIPE.EXE
c:\program files\MyWebSearch\bar\2.bin\M3MEDINT.EXE
c:\program files\MyWebSearch\bar\2.bin\M3MSG.DLL
c:\program files\MyWebSearch\bar\2.bin\M3NTSTBR.JAR
c:\program files\MyWebSearch\bar\2.bin\M3NTSTBR.MANIFEST
c:\program files\MyWebSearch\bar\2.bin\M3OUTLCN.DLL
c:\program files\MyWebSearch\bar\2.bin\M3SKIN.DLL
c:\program files\MyWebSearch\bar\2.bin\M3SKPLAY.EXE
c:\program files\MyWebSearch\bar\2.bin\M3SLSRCH.EXE
c:\program files\MyWebSearch\bar\2.bin\MWSOEPLG.DLL
c:\program files\MyWebSearch\bar\2.bin\MWSOESTB.DLL
c:\program files\MyWebSearch\bar\2.bin\NPMYWEBS.DLL
c:\program files\MyWebSearch\bar\Avatar\COMMON.F3S
c:\program files\MyWebSearch\bar\Avatar\COMMON\avatar.htm
c:\program files\MyWebSearch\bar\Avatar\COMMON\bgfadel.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\bgfader.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\common-x.css
c:\program files\MyWebSearch\bar\Avatar\COMMON\common.css
c:\program files\MyWebSearch\bar\Avatar\COMMON\cornerbl.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\cornerbr.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\ext_def.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\ext_roll.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\include.js
c:\program files\MyWebSearch\bar\Avatar\COMMON\index.htm
c:\program files\MyWebSearch\bar\Avatar\COMMON\loader.htm
c:\program files\MyWebSearch\bar\Avatar\COMMON\loading.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\logo.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\max_def.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\max_roll.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\min_def.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\min_roll.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\noflash.htm
c:\program files\MyWebSearch\bar\Avatar\COMMON\res_def.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\res_roll.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\spacer.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\spacer.swf
c:\program files\MyWebSearch\bar\Avatar\COMMON\topgrad.gif
c:\program files\MyWebSearch\bar\Avatar\COMMON\window.ico
c:\program files\MyWebSearch\bar\Cache\0001A40B
c:\program files\MyWebSearch\bar\Cache\0001DE35
c:\program files\MyWebSearch\bar\Cache\0001E72E
c:\program files\MyWebSearch\bar\Cache\000229D5
c:\program files\MyWebSearch\bar\Cache\00028EF7
c:\program files\MyWebSearch\bar\Cache\00040E16
c:\program files\MyWebSearch\bar\Cache\00118C9D
c:\program files\MyWebSearch\bar\Cache\0011C541.bin
c:\program files\MyWebSearch\bar\Cache\0011D4B2.bin
c:\program files\MyWebSearch\bar\Cache\0011E3A6.bin
c:\program files\MyWebSearch\bar\Cache\0011E54C.bin
c:\program files\MyWebSearch\bar\Cache\0011E7BD.bin
c:\program files\MyWebSearch\bar\Cache\002276A1
c:\program files\MyWebSearch\bar\Cache\0033E660
c:\program files\MyWebSearch\bar\Cache\003896D1
c:\program files\MyWebSearch\bar\Cache\00AAD3A0
c:\program files\MyWebSearch\bar\Cache\00CC3613.bin
c:\program files\MyWebSearch\bar\Cache\00CC38E2.bin
c:\program files\MyWebSearch\bar\Cache\022032A2
c:\program files\MyWebSearch\bar\Cache\02360994.bin
c:\program files\MyWebSearch\bar\Cache\03C64C9E.bin
c:\program files\MyWebSearch\bar\Cache\04CE6F55
c:\program files\MyWebSearch\bar\Cache\0520A460.bin
c:\program files\MyWebSearch\bar\Cache\0520A78D.bin
c:\program files\MyWebSearch\bar\Cache\0520B652.bin
c:\program files\MyWebSearch\bar\Cache\files.ini
c:\program files\MyWebSearch\bar\Game\CHECKERS.F3S
c:\program files\MyWebSearch\bar\Game\CHESS.F3S
c:\program files\MyWebSearch\bar\Game\REVERSI.F3S
c:\program files\MyWebSearch\bar\History\search3
c:\program files\MyWebSearch\bar\icons\CM.ICO
c:\program files\MyWebSearch\bar\icons\MFC.ICO
c:\program files\MyWebSearch\bar\icons\PSS.ICO
c:\program files\MyWebSearch\bar\icons\SMILEY.ICO
c:\program files\MyWebSearch\bar\icons\WB.ICO
c:\program files\MyWebSearch\bar\icons\ZWINKY.ICO
c:\program files\MyWebSearch\bar\Message\COMMON.F3S
c:\program files\MyWebSearch\bar\Message\COMMON\ask_logo.gif
c:\program files\MyWebSearch\bar\Message\COMMON\autoup.gif
c:\program files\MyWebSearch\bar\Message\COMMON\autoup.htm
c:\program files\MyWebSearch\bar\Message\COMMON\center.htm
c:\program files\MyWebSearch\bar\Message\COMMON\index.htm
c:\program files\MyWebSearch\bar\Message\COMMON\mid_dots.gif
c:\program files\MyWebSearch\bar\Message\COMMON\mws_logo.gif
c:\program files\MyWebSearch\bar\Message\COMMON\protect.htm
c:\program files\MyWebSearch\bar\Message\COMMON\shocked.gif
c:\program files\MyWebSearch\bar\Message\COMMON\stop.gif
c:\program files\MyWebSearch\bar\Message\COMMON\systray.htm
c:\program files\MyWebSearch\bar\Message\COMMON\systrayp.htm
c:\program files\MyWebSearch\bar\Message\COMMON\tp_grad.gif
c:\program files\MyWebSearch\bar\Message\COMMON\warn.gif
c:\program files\MyWebSearch\bar\Notifier\COMMON.F3S
c:\program files\MyWebSearch\bar\Notifier\DOG.F3S
c:\program files\MyWebSearch\bar\Notifier\FISH.F3S
c:\program files\MyWebSearch\bar\Notifier\KUNGFU.F3S
c:\program files\MyWebSearch\bar\Notifier\LIFEGARD.F3S
c:\program files\MyWebSearch\bar\Notifier\MAID.F3S
c:\program files\MyWebSearch\bar\Notifier\MAILBOX.F3S
c:\program files\MyWebSearch\bar\Notifier\OPERA.F3S
c:\program files\MyWebSearch\bar\Notifier\ROBOT.F3S
c:\program files\MyWebSearch\bar\Notifier\SEDUCT.F3S
c:\program files\MyWebSearch\bar\Notifier\SURFER.F3S
c:\program files\MyWebSearch\bar\Settings\prevcfg2.htm
c:\program files\MyWebSearch\bar\Settings\s_pid.dat
c:\program files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
c:\program files\WinPCap
c:\program files\WinPCap\rpcapd.exe
c:\windows\mssrvc
c:\windows\system32\1958507876.dat
c:\windows\system32\2424468211.dat
c:\windows\system32\drivers\npf.sys
c:\windows\system32\f3PSSavr.scr
c:\windows\system32\lowsec
c:\windows\system32\lowsec\local.ds
c:\windows\system32\lowsec\user.ds
c:\windows\system32\lowsec\user.ds.lll
c:\windows\system32\Packet.dll
c:\windows\system32\podgvgm32.dll
c:\windows\system32\pthreadVC.dll
c:\windows\system32\sdra64.exe
c:\windows\system32\WanPacket.dll
c:\windows\system32\wbem\grpconv.exe
c:\windows\system32\wpcap.dll
c:\windows\unins000.dat
c:\windows\unins000.exe
Nakažená kopie c:\windows\system32\userinit.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\system32\dllcache\userinit.exe
c:\windows\system32\grpconv.exe . . . chybí !!
Nakažená kopie c:\windows\system32\drivers\ndis.sys byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\system32\drivers\ndis(2).sys
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_BOTDRV
-------\Legacy_NETTCPPORTSHARINGHIDSERV
-------\Legacy_NPF
-------\Legacy_RESTORE
-------\Legacy_TCPSR
-------\Service_botdrv
-------\Service_NetTcpPortSharingHidServ
-------\Service_npf
-------\Service_restore
-------\Service_tcpsr
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-31 )))))))))))))))))))))))))))))))
.
2010-01-31 17:38 . 2010-01-31 17:38 -------- d-----w- C:\_OTL
2010-01-31 13:53 . 2010-01-31 13:54 -------- d-----w- C:\Filmoteka
2010-01-31 13:49 . 2010-01-31 13:52 -------- d-----w- c:\program files\Filmy
2010-01-31 13:46 . 2010-01-31 13:46 -------- d-----w- c:\program files\Common Files\Borland Shared
2010-01-31 13:46 . 1999-01-20 04:01 210032 ----a-w- c:\windows\system32\DBCLIENT.DLL
2010-01-30 15:28 . 2010-01-30 15:32 -------- d-----w- c:\program files\trend micro
2010-01-30 15:28 . 2010-01-30 15:32 -------- d-----w- C:\rsit
2010-01-12 09:05 . 2010-01-12 09:05 -------- d-----w- c:\program files\Steinberg
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-31 18:58 . 2009-06-29 17:18 -------- d-----w- c:\program files\Cheat Engine
2010-01-31 17:39 . 2008-05-14 13:08 -------- d-----w- c:\program files\MegauploadToolbar
2010-01-31 17:39 . 2009-11-03 13:35 -------- d-----w- c:\program files\Yontoo Layers Client
2010-01-31 17:39 . 2009-10-18 15:44 -------- d-----w- c:\program files\Ask.com
2010-01-31 17:39 . 2009-11-03 13:30 -------- d-----w- c:\program files\Stylish Profile
2010-01-31 17:32 . 2009-10-26 06:30 -------- d-----w- c:\program files\PowerISO
2010-01-30 22:01 . 2008-07-19 08:51 -------- d-----w- c:\program files\AIMP2
2010-01-30 18:44 . 2009-10-15 05:19 -------- d-----w- c:\program files\ZwangiSrch
2010-01-21 13:19 . 2007-12-17 20:58 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-14 20:18 . 2008-10-27 13:27 -------- d-----w- c:\program files\Garena
2010-01-12 15:14 . 2008-03-04 16:26 -------- d-----w- c:\program files\VSTPlugIns
2010-01-01 14:13 . 2010-01-01 14:13 -------- d-----w- c:\program files\LogMeIn Hamachi
2010-01-01 14:12 . 2008-07-26 15:04 -------- d-----w- c:\program files\Hamachi
2009-12-31 20:17 . 2009-12-31 20:17 -------- d-----w- c:\program files\ICQ6
2009-12-31 14:50 . 2009-12-30 22:51 29730 ----a-w- c:\windows\War3Unin.dat
2009-12-31 14:50 . 2009-12-30 22:51 139264 ----a-w- c:\windows\War3Unin.exe
2009-12-30 22:51 . 2009-12-30 22:51 2829 ----a-w- c:\windows\War3Unin.pif
2009-12-24 11:20 . 2008-01-11 13:28 -------- d-----w- c:\program files\Google
2009-12-19 12:03 . 2009-12-19 08:54 -------- d-----w- c:\program files\Replay Media Catcher
2009-12-19 08:57 . 2009-12-19 08:57 237568 ----a-w- c:\windows\system32\rmc_rtspdl.dll
2009-12-19 08:57 . 2009-12-19 08:57 156672 ----a-w- c:\windows\system32\rmc_fixasf.exe
2009-12-15 13:59 . 2007-12-17 21:03 -------- d-----w- c:\program files\Opera
2009-12-12 11:06 . 2008-11-13 17:47 -------- d-----w- c:\program files\VirtualDJ
2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll
2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\opera\program\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\opera\program\plugins\ssldivx.dll
2009-03-25 06:55 . 2009-03-25 06:55 20480 --sha-w- c:\windows\system32\12520437p.dll
2009-04-13 16:39 . 2009-04-13 16:39 20480 --sha-w- c:\windows\system32\6to4svcz.dll
2009-04-05 12:36 . 2009-04-05 12:36 20480 --sha-w- c:\windows\system32\activedsb.dll
2009-03-22 16:17 . 2009-03-22 16:17 20480 --sha-w- c:\windows\system32\alrsvci.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-05-06 68856]
"AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2009-04-24 203928]
"Google Update"="c:\documents and settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2009-06-30 133104]
"EA Core"="c:\program files\Electronic Arts\EADM\Core.exe" [2009-09-03 3342336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"36X Raid Configurer"="c:\windows\system32\JMRaidSetup.exe" [2007-02-06 1953792]
"RTHDCPL"="RTHDCPL.EXE" [2007-10-16 16855552]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-08-25 149280]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 528384]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
"Kerio VPN Client"="c:\program files\Kerio\VPN Client\kvpnclient.exe" [2008-01-16 2646016]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2007-01-19 5674352]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"="c:\windows\system32\Macromed\Flash\FlashUtil10b.exe" [2009-02-03 240544]
c:\documents and settings\Admin\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /r \??\F:\0autocheck autochk *
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\hry_\\Track Mania Nations\\TrackMania Nations ESWC\\TmNationsESWC.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Documents and Settings\\Adam\\Miranda IM\\miranda32.exe"=
"c:\\Documents and Settings\\Adam\\Local Settings\\Data aplikací\\F4\\ClientUpdater\\ClientUpdater.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [31.3.2008 5:00 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [31.3.2008 5:00 20560]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [29.10.2009 12:27 1074568]
R2 Prvflder;Prvflder;c:\windows\system32\drivers\prvflder.sys [21.4.2006 7:22 70912]
R3 kvpndev;Kerio VPN adapter;c:\windows\system32\drivers\kvpndrv.sys [16.1.2008 9:58 65024]
S0 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
S2 gupdate1c9dfa1b149dc4a;Google Update Service (gupdate1c9dfa1b149dc4a);c:\program files\Google\Update\GoogleUpdate.exe [28.5.2009 15:36 133104]
S2 Wodkjuntryo;Wodkjuntryo;c:\windows\System32\svchost.exe -k netsvcs [17.8.2004 14:49 14336]
S3 GarenaPEngine;GarenaPEngine;\??\c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp --> c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp [?]
S3 PAC207;VideoCAM GE111;c:\windows\system32\drivers\pfc027.sys [8.4.2005 10:46 162176]
S3 s115bus;Sony Ericsson Device 115 driver (WDM);c:\windows\system32\drivers\s115bus.sys [1.10.2008 17:59 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;c:\windows\system32\drivers\s115mdfl.sys [1.10.2008 17:59 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;c:\windows\system32\drivers\s115mdm.sys [1.10.2008 17:59 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s115mgmt.sys [1.10.2008 17:59 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;c:\windows\system32\drivers\s115obex.sys [1.10.2008 17:59 98568]
S3 SynasUSB;SynasUSB;c:\windows\system32\drivers\synasUSB.sys [25.1.2009 21:45 16896]
S3 tap0801;TAP-Win32 Adapter V8;c:\windows\system32\drivers\tap0801.sys [1.10.2006 13:37 26624]
S3 tap0901_2gm;VPN Anonymizer Adapter;c:\windows\system32\drivers\tap0901_2gm.sys [21.6.2007 15:21 30720]
.
Obsah adresáře 'Naplánované úlohy'
2010-01-31 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-01-25 14:30]
2010-01-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-28 14:36]
2010-01-31 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2009-05-06 16:11]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://search13.net/
uDefault_Search_URL = hxxp://search13.net/
uInternet Settings,ProxyOverride = local
uSearchAssistant = hxxp://search13.net/
uCustomizeSearch = hxxp://search13.net/
IE: &Search - http://edits.mywebsearch.com/toolbaredi ... p=ZJman000
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Download all with Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm
IE: Download selected with Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm
IE: Download video with Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Download with Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{14CD42DD-ABCD-3586-DCAB-40E3693E3737} - c:\program files\Stylish Profile\ct.htm
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\Adam\Nabídka Start\Programy\IMVU\Run IMVU.lnk
FF - ProfilePath - c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz/
FF - component: c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - component: c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1591.6512\npCIDetect13.dll
FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Opera\program\plugins\npdivx32.dll
FF - plugin: c:\program files\Veetle\Player\npvlc.dll
FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll
---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKCU-Run-EarthDesk - c:\program files\XericDesign\EarthDesk\EarthDesk.exe
HKCU-Run-Steam - c:\program files\Steam\Steam.exe
HKCU-Run-DAEMON Tools Lite - c:\program files\DAEMON Tools Lite\daemon.exe
HKLM-Run-JMB36X IDE Setup - c:\windows\JM\JMInsIDE.exe
HKLM-Run-eurobattlegui - d:\hry_\Warcraft III frozen throne\eb.exe
ActiveSetup-{A9F32C39-E65C-1A92-EFF1-0AB408982D87} - c:\docume~1\Adam\LOCALS~1\Temp\Crysis02.exe
AddRemove-Ableton Live_is1 - c:\program files\Ableton\Live 7.0.2\Uninstall\unins000.exe
AddRemove-CABAL Online(Europe)_is1 - d:\hry_\Cabal\CABAL Online (Europe)\unins000.exe
AddRemove-DAEMON Tools Toolbar - c:\program files\DAEMON Tools Toolbar\uninst.exe
AddRemove-EoS-{5CCCD423-F673-4CD8-9464-9D950F49BBC3} - d:\hry_\EOS\Empire of Sports\Uninstall.exe
AddRemove-Farm Frenzy 2 - c:\progra~1\GAMEHO~1\FARMFR~1\UNWISE.EXE
AddRemove-FIFA MANAGER 08 - d:\hry_\Fifa manager 08\eauninstall.exe
AddRemove-FIFA MANAGER 09 - d:\hry_\fifa manager 09\eauninstall.exe
AddRemove-FIFA MANAGER 10 Demo - d:\manager\eauninstall.exe
AddRemove-FlatOut Ultimate Carnage - d:\hry_\flatout\FlatOut Ultimate Carnage\Uninstall.exe
AddRemove-Football Manager 2008 - d:\hry_\FM08\Uninstall_Football Manager 2008\Uninstall Football Manager 2008.exe
AddRemove-Free Download Manager Archive Pack_is1 - c:\windows\unins000.exe
AddRemove-Steam App 34110 - c:\program files\Steam\steam.exe
AddRemove-TmNationsForever_is1 - c:\program files\TmNationsForever\unins000.exe
AddRemove-{2A9F95AB-65A3-432c-8631-B8BC5BF7477A} - d:\hry_\Lotr\EAUninstall.exe
AddRemove-{5A438E06-0BB3-4C5F-0085-B14F1F4077E6} - d:\hry_\Fifa 2007\EAUninstall.exe
AddRemove-{B931FB80-537A-4600-00AD-AC5DEDB6C25B} - d:\hry_\LOTR datadisk\EAUninstall.exe
AddRemove-Ôîňîďŕę ôóňáîëčńňîâ Đîńńčč (ver.1.0) äë˙ FIFA Ma~30233282_is1 - d:\hry_\fifa manager 09\unins000.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-31 20:02
Windows 5.1.2600 Service Pack 2 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GarenaPEngine]
"ImagePath"="\??\c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(896)
c:\windows\system32\Ati2evxx.dll
- - - - - - - > 'explorer.exe'(6756)
c:\windows\system32\browselc.dll
c:\program files\Microsoft Office\OFFICE11\msohev.dll
c:\program files\Sony Ericsson\Mobile2\File Manager\FM.dll
c:\windows\system32\MSVCR71.dll
c:\program files\Common Files\Teleca Shared\tlib_log.dll
c:\program files\Common Files\Teleca Shared\boost_log-vc71-mt-1_33.dll
c:\windows\system32\DivXG400.ax
c:\windows\system32\mpeg2dmx.ax
c:\windows\system32\DivXMedia.ax
c:\windows\system32\ffdshow.ax
c:\program files\Common Files\Ahead\DSFilter\NeVideo.ax
c:\program files\Common Files\Ahead\Lib\AdvrCntr.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Avast4\aswUpdSv.exe
c:\program files\Avast4\ashServ.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\PnkBstrA.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\PnkBstrB.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Microsoft Private Folder 1.0\PrfldSvc.exe
c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\windows\System32\PAStiSvc.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\windows\system32\wdfmgr.exe
c:\program files\Canon\CAL\CALMAIN.exe
c:\program files\Avast4\ashMaiSv.exe
c:\windows\system32\wscntfy.exe
c:\program files\Avast4\ashWebSv.exe
c:\program files\Common Files\Teleca Shared\Generic.exe
c:\program files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
c:\windows\SoftwareDistribution\Download\8058ebceb452c83425841a510aaccdfb\update\update.exe
.
**************************************************************************
.
Celkový čas: 2010-01-31 20:10:55 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-01-31 19:10
Před spuštěním: 5 553 352 704
Po spuštění: 5 314 670 592
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
- - End Of File - - F1E0104F3567FD432943B9B2B40D76A9
Re: Prosím o Kontrolu logu
Nevšiml jsme si, že by CF něco hlásilo.
Ano, počítač pracuje o hodně rychleji.
Ale mám dva problémy. Složku uploud tam nemám. A když zapnu gmer a pak chci kliknout na save, tak mi zamzrne počítač.
Ano, počítač pracuje o hodně rychleji.
Ale mám dva problémy. Složku uploud tam nemám. A když zapnu gmer a pak chci kliknout na save, tak mi zamzrne počítač.
Re: Prosím o Kontrolu logu
Nevšim jsem si ničeho. Každopádně díky za to, jak mi pomáháš.
ROOTREPEAL (c) AD, 2007-2009
==================================================
Scan Start Time: 2010/01/31 21:05
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP2
==================================================
Drivers
-------------------
Name: dump_atapi.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_atapi.sys
Address: 0xABB88000 Size: 98304 File Visible: No Signed: -
Status: -
Name: dump_WMILIB.SYS
Image Path: C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS
Address: 0xBA652000 Size: 8192 File Visible: No Signed: -
Status: -
Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xA87C7000 Size: 49152 File Visible: No Signed: -
Status: -
Hidden/Locked Files
-------------------
Path: C:\Documents and Settings\Adam\My Private Folder\prvflder.dat
Status: Invisible to the Windows API!
Path: c:\documents and settings\adam\data aplikací\opera\opera\sessions\autosave.win
Status: Size mismatch (API: 11243, Raw: 11262)
Path: C:\Documents and Settings\Adam\Local Settings\Data aplikací\Opera\Opera\cache\opr0QZ6V
Status: Could not get file information (Error 0xc0000008)
==EOF==
ROOTREPEAL (c) AD, 2007-2009
==================================================
Scan Start Time: 2010/01/31 21:05
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP2
==================================================
Drivers
-------------------
Name: dump_atapi.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_atapi.sys
Address: 0xABB88000 Size: 98304 File Visible: No Signed: -
Status: -
Name: dump_WMILIB.SYS
Image Path: C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS
Address: 0xBA652000 Size: 8192 File Visible: No Signed: -
Status: -
Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xA87C7000 Size: 49152 File Visible: No Signed: -
Status: -
Hidden/Locked Files
-------------------
Path: C:\Documents and Settings\Adam\My Private Folder\prvflder.dat
Status: Invisible to the Windows API!
Path: c:\documents and settings\adam\data aplikací\opera\opera\sessions\autosave.win
Status: Size mismatch (API: 11243, Raw: 11262)
Path: C:\Documents and Settings\Adam\Local Settings\Data aplikací\Opera\Opera\cache\opr0QZ6V
Status: Could not get file information (Error 0xc0000008)
==EOF==
Re: Prosím o Kontrolu logu
Ja mizím spát, takže zítra. Nevěděl jsem jestli OTL nebo Extras, tak přikládám oboje do přílohy.
Re: Prosím o Kontrolu logu
Promin, že odepisuju tak pozdě, ale dějepis mi dal zabrat.
Použitím OTL myslíš co? Run scan nebo run fix? A nastavit na 30 nebo 7 dní?
Použitím OTL myslíš co? Run scan nebo run fix? A nastavit na 30 nebo 7 dní?
Re: Prosím o Kontrolu logu
========== OTL ==========
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk /r \??\F: deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk * deleted successfully.
C:\sqmnoopt00.sqm moved successfully.
C:\sqmdata00.sqm moved successfully.
========== FILES ==========
File C:\WINDOWS\system32\drivers\agp440.sys successfully replaced with C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\agp440.sys
File C:\WINDOWS\system32\grpconv.exe successfully replaced with C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\grpconv.exe
File C:\WINDOWS\system32\dllcache\ndis.sys successfully replaced with C:\WINDOWS\system32\drivers\ndis.sys
File C:\ntsd.exe successfully replaced with C:\WINDOWS\system32\ntsd.exe
C:\WINDOWS\Prefetch\SVCHOST.EXE moved successfully.
OTL by OldTimer - Version 3.1.27.1 log created on 02012010_210528
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk /r \??\F: deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk * deleted successfully.
C:\sqmnoopt00.sqm moved successfully.
C:\sqmdata00.sqm moved successfully.
========== FILES ==========
File C:\WINDOWS\system32\drivers\agp440.sys successfully replaced with C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\agp440.sys
File C:\WINDOWS\system32\grpconv.exe successfully replaced with C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\grpconv.exe
File C:\WINDOWS\system32\dllcache\ndis.sys successfully replaced with C:\WINDOWS\system32\drivers\ndis.sys
File C:\ntsd.exe successfully replaced with C:\WINDOWS\system32\ntsd.exe
C:\WINDOWS\Prefetch\SVCHOST.EXE moved successfully.
OTL by OldTimer - Version 3.1.27.1 log created on 02012010_210528
Re: Prosím o Kontrolu logu
Logfile of random's system information tool 1.06 (written by random/random)
Run by Adam at 2010-02-01 21:15:51
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 4 GB (11%) free of 38 GB
Total RAM: 2046 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:15:57, on 1.2.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\QIP\qip.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Adam\Local Settings\Data aplikací\Opera\Opera\temporary_downloads\RSIT.exe
C:\Program Files\trend micro\Adam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://search13.net/search.php?clid=486&q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Kerio VPN Client] "C:\Program Files\Kerio\VPN Client\kvpnclient.exe" /tryauto
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10b.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10b.exe (User 'Default user')
O4 - Startup: Adobe Media Player.lnk = C:\Program Files\Adobe Media Player\Adobe Media Player.exe
O4 - Startup: IMVU.lnk = C:\Program Files\IMVU\IMVUClient.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredi ... p=ZJman000
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra 'Tools' menuitem: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Adam\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Adam\Nabídka Start\Programy\Absolute Poker\Absolute Poker.lnk (HKCU)
O9 - Extra 'Tools' menuitem: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Adam\Nabídka Start\Programy\Absolute Poker\Absolute Poker.lnk (HKCU)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Update Service (gupdate1c9dfa1b149dc4a) (gupdate1c9dfa1b149dc4a) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB (pnkbstrb) - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
O23 - Service: StarWind AE Service (starwindserviceae) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
--
End of file - 9897 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-25 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"36X Raid Configurer"=C:\WINDOWS\system32\JMRaidSetup.exe [2007-02-06 1953792]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-10-16 16855552]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-25 149280]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-06-13 528384]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]
"Kerio VPN Client"=C:\Program Files\Kerio\VPN Client\kvpnclient.exe [2008-01-16 2646016]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-06 68856]
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-04-24 203928]
"Google Update"=C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-06-30 133104]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe -silent []
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
C:\Documents and Settings\Adam\Nabídka Start\Programy\Po spuštění
Adobe Media Player.lnk - C:\Program Files\Adobe Media Player\Adobe Media Player.exe
IMVU.lnk - C:\Program Files\IMVU\IMVUClient.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-02-26 126976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\hry_\Track Mania Nations\TrackMania Nations ESWC\TmNationsESWC.exe"="D:\hry_\Track Mania Nations\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\QIP\qip.exe"="C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Documents and Settings\Adam\Miranda IM\miranda32.exe"="C:\Documents and Settings\Adam\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Documents and Settings\Adam\Local Settings\Data aplikací\F4\ClientUpdater\ClientUpdater.exe"="C:\Documents and Settings\Adam\Local Settings\Data aplikací\F4\ClientUpdater\ClientUpdater.exe:*:Enabled:F4 Game Client Updater"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
======List of files/folders created in the last 1 months======
2010-02-01 21:15:51 ----D---- C:\rsit
2010-02-01 21:05:28 ----D---- C:\_OTL
2010-02-01 21:05:28 ----A---- C:\WINDOWS\system32\grpconv.exe
2010-02-01 19:31:14 ----SD---- C:\abraka.com
2010-02-01 19:28:31 ----A---- C:\ntsd.exe
2010-02-01 06:17:00 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-02-01 06:14:27 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-02-01 06:14:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-02-01 06:14:02 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$
2010-02-01 06:13:56 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-02-01 06:13:43 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-02-01 06:13:31 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-02-01 06:13:19 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-02-01 06:13:07 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2010-02-01 06:12:55 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-02-01 06:09:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-02-01 06:08:58 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-02-01 06:08:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-02-01 06:08:36 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-02-01 06:08:28 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2010-02-01 06:08:08 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-02-01 06:07:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-02-01 06:07:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2010-02-01 06:07:43 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-02-01 06:07:33 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-02-01 06:07:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-02-01 06:07:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-02-01 06:06:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-02-01 06:06:45 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-02-01 06:06:00 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-02-01 06:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2010-02-01 06:05:36 ----D---- C:\WINDOWS\ServicePackFiles
2010-02-01 06:05:33 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2010-02-01 06:05:25 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-02-01 06:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$
2010-02-01 06:05:05 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2010-02-01 06:04:31 ----SHD---- C:\Config.Msi
2010-02-01 06:04:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-02-01 06:04:10 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-02-01 06:03:59 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-02-01 06:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-01-31 22:22:30 ----SHD---- C:\RECYCLER
2010-01-31 21:18:16 ----A---- C:\RootRepeal report 01-31-10 (21-18-16).txt
2010-01-31 19:43:26 ----A---- C:\Boot.bak
2010-01-31 19:43:20 ----RASHD---- C:\cmdcons
2010-01-31 19:41:35 ----D---- C:\WINDOWS\ERDNT
2010-01-31 18:29:49 ----A---- C:\WINDOWS\Eurobattle.net Uninstall Log.txt
2010-01-31 14:49:05 ----D---- C:\Program Files\Filmy
2010-01-31 14:46:30 ----D---- C:\Program Files\Common Files\Borland Shared
2010-01-31 14:46:30 ----A---- C:\WINDOWS\system32\DBCLIENT.DLL
2010-01-30 16:28:45 ----D---- C:\Program Files\trend micro
2010-01-12 10:05:48 ----D---- C:\Program Files\Steinberg
2010-01-02 09:32:03 ----HDC---- C:\WINDOWS\$NtUninstallKB921883$
======List of files/folders modified in the last 1 months======
2010-02-01 21:13:49 ----RD---- C:\Program Files
2010-02-01 21:13:37 ----D---- C:\WINDOWS\Temp
2010-02-01 21:13:35 ----D---- C:\WINDOWS
2010-02-01 21:13:32 ----A---- C:\WINDOWS\NeroDigital.ini
2010-02-01 21:13:23 ----SD---- C:\WINDOWS\Tasks
2010-02-01 21:12:43 ----D---- C:\WINDOWS\system32\drivers
2010-02-01 21:11:57 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-01 21:11:57 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-01 21:05:41 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-01 21:05:28 ----D---- C:\WINDOWS\system32
2010-02-01 21:05:28 ----D---- C:\WINDOWS\Prefetch
2010-02-01 20:16:51 ----D---- C:\Program Files\Mozilla Firefox
2010-02-01 16:23:50 ----HD---- C:\WINDOWS\inf
2010-02-01 16:23:41 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-01 07:55:11 ----D---- C:\WINDOWS\AppPatch
2010-02-01 07:55:10 ----D---- C:\WINDOWS\system32\Setup
2010-02-01 07:43:32 ----RSD---- C:\WINDOWS\assembly
2010-02-01 07:40:56 ----D---- C:\WINDOWS\Microsoft.NET
2010-02-01 06:16:53 ----SHD---- C:\WINDOWS\Installer
2010-02-01 06:16:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-01 06:16:27 ----D---- C:\WINDOWS\WinSxS
2010-02-01 06:14:31 ----A---- C:\WINDOWS\imsins.BAK
2010-02-01 06:07:09 ----D---- C:\Program Files\Outlook Express
2010-02-01 06:04:53 ----D---- C:\WINDOWS\system32\cs-cz
2010-02-01 06:04:53 ----D---- C:\Program Files\Internet Explorer
2010-02-01 06:04:44 ----D---- C:\WINDOWS\ie7updates
2010-01-31 20:50:31 ----D---- C:\Program Files\Avast4
2010-01-31 20:42:57 ----D---- C:\Documents and Settings\Adam\Data aplikací\uTorrent
2010-01-31 20:09:43 ----D---- C:\WINDOWS\repair
2010-01-31 20:05:13 ----D---- C:\WINDOWS\Help
2010-01-31 20:01:46 ----A---- C:\WINDOWS\system.ini
2010-01-31 19:59:48 ----D---- C:\WINDOWS\system32\config
2010-01-31 19:59:07 ----D---- C:\WINDOWS\system32\wbem
2010-01-31 19:58:28 ----D---- C:\Program Files\Cheat Engine
2010-01-31 19:55:28 ----D---- C:\Program Files\Common Files
2010-01-31 19:43:26 ----RASH---- C:\boot.ini
2010-01-31 18:39:36 ----D---- C:\Program Files\Common Files\System
2010-01-31 18:39:33 ----D---- C:\Program Files\MegauploadToolbar
2010-01-31 18:39:24 ----D---- C:\Program Files\Yontoo Layers Client
2010-01-31 18:39:22 ----D---- C:\Program Files\Ask.com
2010-01-31 18:39:13 ----D---- C:\Program Files\Stylish Profile
2010-01-31 18:38:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\ZwangiSrch
2010-01-31 18:34:49 ----D---- C:\Documents and Settings\Adam\Data aplikací\Free Download Manager
2010-01-31 18:32:39 ----D---- C:\Program Files\PowerISO
2010-01-30 23:01:40 ----D---- C:\Program Files\AIMP2
2010-01-30 19:44:35 ----D---- C:\Program Files\ZwangiSrch
2010-01-30 13:57:46 ----D---- C:\Documents and Settings\Adam\Data aplikací\MegauploadToolbar
2010-01-21 14:27:18 ----D---- C:\WINDOWS\system32\DirectX
2010-01-21 14:19:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-14 21:18:47 ----D---- C:\Program Files\Garena
2010-01-12 16:14:52 ----D---- C:\Program Files\VSTPlugIns
2010-01-05 10:58:03 ----N---- C:\WINDOWS\system32\occache.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\wininet.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\webcheck.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\url.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\pngfilt.dll
2010-01-05 10:58:02 ----N---- C:\WINDOWS\system32\mstime.dll
2010-01-05 10:58:02 ----N---- C:\WINDOWS\system32\msrating.dll
2010-01-05 10:58:02 ----A---- C:\WINDOWS\system32\mshtmled.dll
2010-01-05 10:58:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-01-05 10:58:01 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-01-05 10:58:01 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-01-05 10:58:00 ----N---- C:\WINDOWS\system32\jsproxy.dll
2010-01-05 10:58:00 ----N---- C:\WINDOWS\system32\iernonce.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\iepeers.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-01-05 10:57:59 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2010-01-05 10:57:59 ----A---- C:\WINDOWS\system32\ieencode.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\ieaksie.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\ieakeng.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\extmgr.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\corpol.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\icardie.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\dxtrans.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\advpack.dll
2010-01-02 21:23:54 ----D---- C:\Documents and Settings\Adam\Data aplikací\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-17 39936]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
R2 Prvflder;Prvflder; C:\WINDOWS\system32\DRIVERS\prvflder.sys [2006-04-21 70912]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-02-26 2863616]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-10-24 117760]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-09-23 26176]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-10-16 4615168]
R3 kvpndev;Kerio VPN adapter; C:\WINDOWS\system32\DRIVERS\kvpndrv.sys [2008-01-16 65024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2004-08-17 12416]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
S2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys []
S2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys []
S3 Bridge;Most MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-03 71552]
S3 BridgeMP;Miniport mostu MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-03 71552]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 GarenaPEngine;GarenaPEngine; \??\C:\DOCUME~1\Adam\LOCALS~1\Temp\PJO758F.tmp []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 PAC207;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
S3 pnkbstrk;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 s115bus;Sony Ericsson Device 115 driver (WDM); C:\WINDOWS\system32\DRIVERS\s115bus.sys [2007-04-23 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s115mdfl.sys [2007-04-23 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s115mdm.sys [2007-04-23 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s115mgmt.sys [2007-04-23 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s115obex.sys [2007-04-23 98568]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [2006-01-29 16896]
S3 tap0801;TAP-Win32 Adapter V8; C:\WINDOWS\system32\DRIVERS\tap0801.sys [2006-10-01 26624]
S3 tap0901_2gm;VPN Anonymizer Adapter; C:\WINDOWS\system32\DRIVERS\tap0901_2gm.sys [2007-06-21 30720]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2009-07-10 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-02-26 520192]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2009-10-29 1074568]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-25 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-03-10 75064]
R2 pnkbstrb;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-07-02 189768]
R2 prfldsvc;Private Folder Service; C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe [2006-04-21 69632]
R2 starwindserviceae;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-02-25 593920]
S2 gupdate1c9dfa1b149dc4a;Google Update Service (gupdate1c9dfa1b149dc4a); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-05-28 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-28 183280]
S2 Wodkjuntryo;Wodkjuntryo; C:\WINDOWS\System32\svchost.exe [2009-07-10 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-01-03 72704]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 usnjsvc;Služba Čtení deníku USN sdílených složek programu Messenger; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Run by Adam at 2010-02-01 21:15:51
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 4 GB (11%) free of 38 GB
Total RAM: 2046 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:15:57, on 1.2.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\QIP\qip.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Adam\Local Settings\Data aplikací\Opera\Opera\temporary_downloads\RSIT.exe
C:\Program Files\trend micro\Adam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://search13.net/search.php?clid=486&q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Kerio VPN Client] "C:\Program Files\Kerio\VPN Client\kvpnclient.exe" /tryauto
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10b.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10b.exe (User 'Default user')
O4 - Startup: Adobe Media Player.lnk = C:\Program Files\Adobe Media Player\Adobe Media Player.exe
O4 - Startup: IMVU.lnk = C:\Program Files\IMVU\IMVUClient.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredi ... p=ZJman000
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra 'Tools' menuitem: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Adam\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Adam\Nabídka Start\Programy\Absolute Poker\Absolute Poker.lnk (HKCU)
O9 - Extra 'Tools' menuitem: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Adam\Nabídka Start\Programy\Absolute Poker\Absolute Poker.lnk (HKCU)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Update Service (gupdate1c9dfa1b149dc4a) (gupdate1c9dfa1b149dc4a) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB (pnkbstrb) - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
O23 - Service: StarWind AE Service (starwindserviceae) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
--
End of file - 9897 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-25 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"36X Raid Configurer"=C:\WINDOWS\system32\JMRaidSetup.exe [2007-02-06 1953792]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-10-16 16855552]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-25 149280]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-06-13 528384]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]
"Kerio VPN Client"=C:\Program Files\Kerio\VPN Client\kvpnclient.exe [2008-01-16 2646016]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-06 68856]
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-04-24 203928]
"Google Update"=C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-06-30 133104]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe -silent []
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
C:\Documents and Settings\Adam\Nabídka Start\Programy\Po spuštění
Adobe Media Player.lnk - C:\Program Files\Adobe Media Player\Adobe Media Player.exe
IMVU.lnk - C:\Program Files\IMVU\IMVUClient.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-02-26 126976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\hry_\Track Mania Nations\TrackMania Nations ESWC\TmNationsESWC.exe"="D:\hry_\Track Mania Nations\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\QIP\qip.exe"="C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Documents and Settings\Adam\Miranda IM\miranda32.exe"="C:\Documents and Settings\Adam\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Documents and Settings\Adam\Local Settings\Data aplikací\F4\ClientUpdater\ClientUpdater.exe"="C:\Documents and Settings\Adam\Local Settings\Data aplikací\F4\ClientUpdater\ClientUpdater.exe:*:Enabled:F4 Game Client Updater"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
======List of files/folders created in the last 1 months======
2010-02-01 21:15:51 ----D---- C:\rsit
2010-02-01 21:05:28 ----D---- C:\_OTL
2010-02-01 21:05:28 ----A---- C:\WINDOWS\system32\grpconv.exe
2010-02-01 19:31:14 ----SD---- C:\abraka.com
2010-02-01 19:28:31 ----A---- C:\ntsd.exe
2010-02-01 06:17:00 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-02-01 06:14:27 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-02-01 06:14:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-02-01 06:14:02 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$
2010-02-01 06:13:56 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-02-01 06:13:43 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-02-01 06:13:31 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-02-01 06:13:19 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-02-01 06:13:07 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2010-02-01 06:12:55 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-02-01 06:09:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-02-01 06:08:58 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-02-01 06:08:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-02-01 06:08:36 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-02-01 06:08:28 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2010-02-01 06:08:08 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-02-01 06:07:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-02-01 06:07:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2010-02-01 06:07:43 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-02-01 06:07:33 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-02-01 06:07:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-02-01 06:07:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-02-01 06:06:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-02-01 06:06:45 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-02-01 06:06:00 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-02-01 06:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2010-02-01 06:05:36 ----D---- C:\WINDOWS\ServicePackFiles
2010-02-01 06:05:33 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2010-02-01 06:05:25 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-02-01 06:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$
2010-02-01 06:05:05 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2010-02-01 06:04:31 ----SHD---- C:\Config.Msi
2010-02-01 06:04:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-02-01 06:04:10 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-02-01 06:03:59 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-02-01 06:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-01-31 22:22:30 ----SHD---- C:\RECYCLER
2010-01-31 21:18:16 ----A---- C:\RootRepeal report 01-31-10 (21-18-16).txt
2010-01-31 19:43:26 ----A---- C:\Boot.bak
2010-01-31 19:43:20 ----RASHD---- C:\cmdcons
2010-01-31 19:41:35 ----D---- C:\WINDOWS\ERDNT
2010-01-31 18:29:49 ----A---- C:\WINDOWS\Eurobattle.net Uninstall Log.txt
2010-01-31 14:49:05 ----D---- C:\Program Files\Filmy
2010-01-31 14:46:30 ----D---- C:\Program Files\Common Files\Borland Shared
2010-01-31 14:46:30 ----A---- C:\WINDOWS\system32\DBCLIENT.DLL
2010-01-30 16:28:45 ----D---- C:\Program Files\trend micro
2010-01-12 10:05:48 ----D---- C:\Program Files\Steinberg
2010-01-02 09:32:03 ----HDC---- C:\WINDOWS\$NtUninstallKB921883$
======List of files/folders modified in the last 1 months======
2010-02-01 21:13:49 ----RD---- C:\Program Files
2010-02-01 21:13:37 ----D---- C:\WINDOWS\Temp
2010-02-01 21:13:35 ----D---- C:\WINDOWS
2010-02-01 21:13:32 ----A---- C:\WINDOWS\NeroDigital.ini
2010-02-01 21:13:23 ----SD---- C:\WINDOWS\Tasks
2010-02-01 21:12:43 ----D---- C:\WINDOWS\system32\drivers
2010-02-01 21:11:57 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-01 21:11:57 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-01 21:05:41 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-01 21:05:28 ----D---- C:\WINDOWS\system32
2010-02-01 21:05:28 ----D---- C:\WINDOWS\Prefetch
2010-02-01 20:16:51 ----D---- C:\Program Files\Mozilla Firefox
2010-02-01 16:23:50 ----HD---- C:\WINDOWS\inf
2010-02-01 16:23:41 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-01 07:55:11 ----D---- C:\WINDOWS\AppPatch
2010-02-01 07:55:10 ----D---- C:\WINDOWS\system32\Setup
2010-02-01 07:43:32 ----RSD---- C:\WINDOWS\assembly
2010-02-01 07:40:56 ----D---- C:\WINDOWS\Microsoft.NET
2010-02-01 06:16:53 ----SHD---- C:\WINDOWS\Installer
2010-02-01 06:16:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-01 06:16:27 ----D---- C:\WINDOWS\WinSxS
2010-02-01 06:14:31 ----A---- C:\WINDOWS\imsins.BAK
2010-02-01 06:07:09 ----D---- C:\Program Files\Outlook Express
2010-02-01 06:04:53 ----D---- C:\WINDOWS\system32\cs-cz
2010-02-01 06:04:53 ----D---- C:\Program Files\Internet Explorer
2010-02-01 06:04:44 ----D---- C:\WINDOWS\ie7updates
2010-01-31 20:50:31 ----D---- C:\Program Files\Avast4
2010-01-31 20:42:57 ----D---- C:\Documents and Settings\Adam\Data aplikací\uTorrent
2010-01-31 20:09:43 ----D---- C:\WINDOWS\repair
2010-01-31 20:05:13 ----D---- C:\WINDOWS\Help
2010-01-31 20:01:46 ----A---- C:\WINDOWS\system.ini
2010-01-31 19:59:48 ----D---- C:\WINDOWS\system32\config
2010-01-31 19:59:07 ----D---- C:\WINDOWS\system32\wbem
2010-01-31 19:58:28 ----D---- C:\Program Files\Cheat Engine
2010-01-31 19:55:28 ----D---- C:\Program Files\Common Files
2010-01-31 19:43:26 ----RASH---- C:\boot.ini
2010-01-31 18:39:36 ----D---- C:\Program Files\Common Files\System
2010-01-31 18:39:33 ----D---- C:\Program Files\MegauploadToolbar
2010-01-31 18:39:24 ----D---- C:\Program Files\Yontoo Layers Client
2010-01-31 18:39:22 ----D---- C:\Program Files\Ask.com
2010-01-31 18:39:13 ----D---- C:\Program Files\Stylish Profile
2010-01-31 18:38:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\ZwangiSrch
2010-01-31 18:34:49 ----D---- C:\Documents and Settings\Adam\Data aplikací\Free Download Manager
2010-01-31 18:32:39 ----D---- C:\Program Files\PowerISO
2010-01-30 23:01:40 ----D---- C:\Program Files\AIMP2
2010-01-30 19:44:35 ----D---- C:\Program Files\ZwangiSrch
2010-01-30 13:57:46 ----D---- C:\Documents and Settings\Adam\Data aplikací\MegauploadToolbar
2010-01-21 14:27:18 ----D---- C:\WINDOWS\system32\DirectX
2010-01-21 14:19:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-14 21:18:47 ----D---- C:\Program Files\Garena
2010-01-12 16:14:52 ----D---- C:\Program Files\VSTPlugIns
2010-01-05 10:58:03 ----N---- C:\WINDOWS\system32\occache.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\wininet.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\webcheck.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\url.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\pngfilt.dll
2010-01-05 10:58:02 ----N---- C:\WINDOWS\system32\mstime.dll
2010-01-05 10:58:02 ----N---- C:\WINDOWS\system32\msrating.dll
2010-01-05 10:58:02 ----A---- C:\WINDOWS\system32\mshtmled.dll
2010-01-05 10:58:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-01-05 10:58:01 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-01-05 10:58:01 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-01-05 10:58:00 ----N---- C:\WINDOWS\system32\jsproxy.dll
2010-01-05 10:58:00 ----N---- C:\WINDOWS\system32\iernonce.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\iepeers.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-01-05 10:57:59 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2010-01-05 10:57:59 ----A---- C:\WINDOWS\system32\ieencode.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\ieaksie.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\ieakeng.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\extmgr.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\corpol.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\icardie.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\dxtrans.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\advpack.dll
2010-01-02 21:23:54 ----D---- C:\Documents and Settings\Adam\Data aplikací\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-17 39936]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
R2 Prvflder;Prvflder; C:\WINDOWS\system32\DRIVERS\prvflder.sys [2006-04-21 70912]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-02-26 2863616]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-10-24 117760]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-09-23 26176]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-10-16 4615168]
R3 kvpndev;Kerio VPN adapter; C:\WINDOWS\system32\DRIVERS\kvpndrv.sys [2008-01-16 65024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2004-08-17 12416]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
S2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys []
S2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys []
S3 Bridge;Most MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-03 71552]
S3 BridgeMP;Miniport mostu MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-03 71552]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 GarenaPEngine;GarenaPEngine; \??\C:\DOCUME~1\Adam\LOCALS~1\Temp\PJO758F.tmp []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 PAC207;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
S3 pnkbstrk;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 s115bus;Sony Ericsson Device 115 driver (WDM); C:\WINDOWS\system32\DRIVERS\s115bus.sys [2007-04-23 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s115mdfl.sys [2007-04-23 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s115mdm.sys [2007-04-23 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s115mgmt.sys [2007-04-23 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s115obex.sys [2007-04-23 98568]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [2006-01-29 16896]
S3 tap0801;TAP-Win32 Adapter V8; C:\WINDOWS\system32\DRIVERS\tap0801.sys [2006-10-01 26624]
S3 tap0901_2gm;VPN Anonymizer Adapter; C:\WINDOWS\system32\DRIVERS\tap0901_2gm.sys [2007-06-21 30720]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2009-07-10 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-02-26 520192]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2009-10-29 1074568]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-25 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-03-10 75064]
R2 pnkbstrb;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-07-02 189768]
R2 prfldsvc;Private Folder Service; C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe [2006-04-21 69632]
R2 starwindserviceae;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-02-25 593920]
S2 gupdate1c9dfa1b149dc4a;Google Update Service (gupdate1c9dfa1b149dc4a); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-05-28 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-28 183280]
S2 Wodkjuntryo;Wodkjuntryo; C:\WINDOWS\System32\svchost.exe [2009-07-10 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-01-03 72704]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 usnjsvc;Služba Čtení deníku USN sdílených složek programu Messenger; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Re: Prosím o Kontrolu logu
Ten Avast už neměl licenci. Tak jsem ho odstranil. A po smazání té havěti plánuju počíst něco tady a sehnat si nějáký optimální antivir. Ten druhý scan mi jede už skoro hodinu. Nechám to přes noc zaplé a ráno tu dám log.
CKScanner - Additional Security Risks - These are not necessarily bad
c:\documents and settings\adam\dokumenty\ableton\library\presets\audio effects\vinyl distortion\crack.adv
c:\program files\bestgameever\audiosurf\engine\engine\channels\crypt.dll
c:\program files\garena\plugins\ui\avoidcrackplugin.dll
c:\program files\image-line\fl studio 7\crack.exe
scanner sequence 3.CA.11
----- EOF -----
CKScanner - Additional Security Risks - These are not necessarily bad
c:\documents and settings\adam\dokumenty\ableton\library\presets\audio effects\vinyl distortion\crack.adv
c:\program files\bestgameever\audiosurf\engine\engine\channels\crypt.dll
c:\program files\garena\plugins\ui\avoidcrackplugin.dll
c:\program files\image-line\fl studio 7\crack.exe
scanner sequence 3.CA.11
----- EOF -----
Re: Prosím o Kontrolu logu
Tak nakonec přece jenom.
Malwarebytes' Anti-Malware 1.44
Verze databáze: 3510
Windows 5.1.2600 Service Pack 2
Internet Explorer 7.0.5730.13
1.2.2010 22:30:50
log.txt
Typ kontroly: Kompletní kontrola (C:\|)
Zkontrolované objekty: 280372
Uplynulý čas: 54 minute(s), 6 second(s)
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 99
Infikované hodnoty registru: 4
Infikované datové položky registru: 0
Infikované adresáře: 5
Infikované soubory: 73
Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)
Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)
Infikované klíče registru:
HKEY_CLASSES_ROOT\funwebproducts.historykillerscheduler (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.historykillerscheduler.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.historyswattercontrolbar (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.historyswattercontrolbar.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.htmlmenu.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.killerobjmanager (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.killerobjmanager.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.popswatterbarbutton (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.popswatterbarbutton.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\mywebsearch.chatsessionplugin (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\mywebsearch.chatsessionplugin.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\mywebsearch.outlookaddin (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\mywebsearch.outlookaddin.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\screensavercontrol.screensaverinstaller (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\screensavercontrol.screensaverinstaller.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{07b18eaa-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{07b18eac-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{1093995a-ba37-41d2-836e-091067c4ad17} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{120927bf-1700-43bc-810f-fab92549b390} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{17de5e5e-bfe3-4e83-8e1f-8755795359ec} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{1f52a5fa-a705-4415-b975-88503b291728} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{247a115f-06c2-4fb3-967d-2d62d3cf4f0a} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{2e3537fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{3e1656ed-f60e-4597-b6aa-b6a58e171495} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{3e53e2cb-86db-4a4a-8bd9-ffeb7a64df82} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{3e720451-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{3e720453-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{63d0ed2b-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{63d0ed2d-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{6e74766c-4d93-4cc0-96d1-47b8e07ff9ca} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{72ee7f04-15bd-4845-a005-d6711144d86a} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{7473d291-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{7473d293-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{7473d295-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{7473d297-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{90449521-d834-4703-bb4e-d3aa44042ff8} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{991aac62-b100-47ce-8b75-253965244f69} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{a626cdbd-3d13-4f78-b819-440a28d7e8fc} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{bbabdc90-f3d5-4801-863a-ee6ae529862d} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{cf54be1c-9359-4395-8533-1657cf209cfe} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{d6ff3684-ad3b-48eb-bbb4-b9e6c5a355c1} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{de38c398-b328-4f4c-a3ad-1b5e4ed93477} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{e342af55-b78a-4cd0-a2bb-da7f52d9d25e} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{e342af55-b78a-4cd0-a2bb-da7f52d9d25f} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{e79dfbc9-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{e79dfbcb-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{f87d7fb5-9dc5-4c8c-b998-d8dfe02e2978} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{1e0de227-5ce4-4ea3-ab0c-8b03e1aa76bc} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{84da4fdf-a1cf-4195-8688-3e961f505983} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{8e6f1832-9607-4440-8530-13be7c4b1d14} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{938aa51a-996c-4884-98ce-80dd16a5c9da} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{a9571378-68a1-443d-b082-284f960c6d17} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{adb01e81-3c79-4272-a0f1-7b2be7a782dc} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{b813095c-81c0-4e40-aa14-67520372b987} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{c9d7be3e-141a-4c85-8cd6-32461f3df2c7} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{cff4ce82-3aa2-451f-9b77-7165605fb835} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{d9fffb27-d62a-4d64-8cec-1ff006528805} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{e79dfbca-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{0d26bc71-a633-4e71-ad31-eadc3a1b6a3a} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{29d67d3c-509a-4544-903f-c8c1b8236554} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{d518921a-4a03-425e-9873-b9a71756821e} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{e47caee0-deea-464a-9326-3f2801535a4d} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{e79dfbc0-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{f42228fb-e84e-479e-b922-fbbd096e792c} (Adware.MyWebSearch) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{19127ad2-394b-70f5-c650-b97867baa1f7} (Backdoor.Bot) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{43bf8cd1-c5d5-2230-7bb2-98f22c2b7dc6} (Backdoor.Bot) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59c7fc09-1c83-4648-b3e6-003d2bbc7481} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68af847f-6e91-45dd-9b68-d6a12c30e5d7} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170b96c-28d4-4626-8358-27e6caeef907} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d1a71fa0-ff48-48dd-9b6d-7a13a3e42127} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ddb1968e-ead6-40fd-8dae-ff14757f60c7} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f138d901-86f0-4383-99b6-9cdd406036da} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{e79dfbca-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> No action taken.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{19127ad2-394b-70f5-c650-b97867baa1f7} (Backdoor.Bot) -> No action taken.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{43bf8cd1-c5d5-2230-7bb2-98f22c2b7dc6} (Backdoor.Bot) -> No action taken.
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{19127ad2-394b-70f5-c650-b97867baa1f7} (Backdoor.Bot) -> No action taken.
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{43bf8cd1-c5d5-2230-7bb2-98f22c2b7dc6} (Backdoor.Bot) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\zwangisrch (Adware.Agent) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{dabf362d-d442-4402-9208-ca9ed70dd01e} (Adware.Advantage) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{5ac3a9ef-c0f8-41d4-b4e2-b7cebb794151} (Adware.Advantage) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{862def42-89aa-49fa-ae1f-8a84b1b08a17} (Adware.Advantage) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{f6e4845d-1d13-4bc0-942d-b9191524cc48} (Adware.Advantage) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{602d9049-b4ac-4a25-bf75-a9b54d747cba} (Adware.Advantage) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyWebSearch bar Uninstall (Adware.MyWebSearch) -> No action taken.
Infikované hodnoty registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\system32\ktlibeay80_0.9.8.2.dll (Trojan.FakeAlert) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\system32\ktssleay80_0.9.8.2.dll (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&Search\(default) (Adware.Hotbar) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources\f3popularscreensavers (Adware.MyWebSearch) -> No action taken.
Infikované datové položky registru:
(Nebyly nalezeny žádné škodlivé položky)
Infikované adresáře:
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data\Adam (Adware.MyWebSearch) -> No action taken.
C:\Program Files\Advantage (Adware.Advantage) -> No action taken.
C:\Program Files\Anti-Leech (Trojan.AntiLeechPlugin) -> No action taken.
Infikované soubory:
C:\Program Files\MSN Messenger\msimg32.dll (Adware.MyWebSearch) -> No action taken.
C:\Program Files\MSN Messenger\riched20.dll (Adware.MyWebSearch) -> No action taken.
C:\Program Files\Native Instruments\Traktor DJ Studio 2\UNWISE.EXE (Malware.Packer.Morphine) -> No action taken.
C:\Program Files\Common Files\System\temp.dll (Trojan.PWS) -> No action taken.
C:\Program Files\ZwangiSrch\uninstall.exe (Adware.Agent) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP593\A0394477.exe (Adware.Agent) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397982.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397973.exe (Trojan.Agent) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397974.sys (Rootkit.Protector) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397976.dll (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397978.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397979.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397980.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397981.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397985.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397989.SCR (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397990.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397992.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397994.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397997.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397998.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397999.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398000.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398001.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398002.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398004.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398005.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398006.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398007.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398008.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398009.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398010.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398019.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398022.scr (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398024.dll (Trojan.FakeAlert) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398091.sys (Malware.Trace) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401665.sys (Malware.Trace) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401719.exe (Backdoor.IRCBot) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401720.exe (Trojan.Agent) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401721.exe (Trojan.Dropper) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401722.exe (Trojan.Dropper) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401724.dll (Trojan.Agent) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401726.exe (Backdoor.Bot) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401728.dll (Trojan.FakeAlert) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401730.nfo (Backdoor.Bot) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401734.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401735.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401736.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401737.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401738.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401739.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401740.dll (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401753.sys (Rootkit.Protector) -> No action taken.
C:\WINDOWS\system32\12520437p.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\6to4svcz.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\activedsb.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\alrsvci.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\podgvgm.dl_ (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data\Adam\avatar.dat (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data\Adam\outfit.dat (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data\Adam\register.dat (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data\Adam\zbucks.dat (Adware.MyWebSearch) -> No action taken.
C:\Program Files\Advantage\AdVantage.db (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\AdVantage.exe (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\AdVantage.htm (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\AdVUninst.exe (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\ffext.mod (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\TR.dll (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\user.db (Adware.Advantage) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\wiaserva.log (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\ktlibeay80_0.9.8.2.dll (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\ktssleay80_0.9.8.2.dll (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\Adam\Local Settings\temp\Opr71A.tmp.htm (Trojan.Agent) -> No action taken.
Malwarebytes' Anti-Malware 1.44
Verze databáze: 3510
Windows 5.1.2600 Service Pack 2
Internet Explorer 7.0.5730.13
1.2.2010 22:30:50
log.txt
Typ kontroly: Kompletní kontrola (C:\|)
Zkontrolované objekty: 280372
Uplynulý čas: 54 minute(s), 6 second(s)
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 99
Infikované hodnoty registru: 4
Infikované datové položky registru: 0
Infikované adresáře: 5
Infikované soubory: 73
Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)
Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)
Infikované klíče registru:
HKEY_CLASSES_ROOT\funwebproducts.historykillerscheduler (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.historykillerscheduler.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.historyswattercontrolbar (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.historyswattercontrolbar.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.htmlmenu.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.killerobjmanager (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.killerobjmanager.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.popswatterbarbutton (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\funwebproducts.popswatterbarbutton.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\mywebsearch.chatsessionplugin (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\mywebsearch.chatsessionplugin.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\mywebsearch.outlookaddin (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\mywebsearch.outlookaddin.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\screensavercontrol.screensaverinstaller (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\screensavercontrol.screensaverinstaller.1 (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{07b18eaa-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{07b18eac-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{1093995a-ba37-41d2-836e-091067c4ad17} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{120927bf-1700-43bc-810f-fab92549b390} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{17de5e5e-bfe3-4e83-8e1f-8755795359ec} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{1f52a5fa-a705-4415-b975-88503b291728} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{247a115f-06c2-4fb3-967d-2d62d3cf4f0a} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{2e3537fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{3e1656ed-f60e-4597-b6aa-b6a58e171495} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{3e53e2cb-86db-4a4a-8bd9-ffeb7a64df82} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{3e720451-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{3e720453-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{63d0ed2b-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{63d0ed2d-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{6e74766c-4d93-4cc0-96d1-47b8e07ff9ca} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{72ee7f04-15bd-4845-a005-d6711144d86a} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{7473d291-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{7473d293-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{7473d295-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{7473d297-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{90449521-d834-4703-bb4e-d3aa44042ff8} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{991aac62-b100-47ce-8b75-253965244f69} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{a626cdbd-3d13-4f78-b819-440a28d7e8fc} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{bbabdc90-f3d5-4801-863a-ee6ae529862d} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{cf54be1c-9359-4395-8533-1657cf209cfe} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{d6ff3684-ad3b-48eb-bbb4-b9e6c5a355c1} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{de38c398-b328-4f4c-a3ad-1b5e4ed93477} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{e342af55-b78a-4cd0-a2bb-da7f52d9d25e} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{e342af55-b78a-4cd0-a2bb-da7f52d9d25f} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{e79dfbc9-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{e79dfbcb-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{f87d7fb5-9dc5-4c8c-b998-d8dfe02e2978} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{1e0de227-5ce4-4ea3-ab0c-8b03e1aa76bc} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{84da4fdf-a1cf-4195-8688-3e961f505983} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{8e6f1832-9607-4440-8530-13be7c4b1d14} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{938aa51a-996c-4884-98ce-80dd16a5c9da} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{a9571378-68a1-443d-b082-284f960c6d17} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{adb01e81-3c79-4272-a0f1-7b2be7a782dc} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{b813095c-81c0-4e40-aa14-67520372b987} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{c9d7be3e-141a-4c85-8cd6-32461f3df2c7} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{cff4ce82-3aa2-451f-9b77-7165605fb835} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{d9fffb27-d62a-4d64-8cec-1ff006528805} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{e79dfbca-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{0d26bc71-a633-4e71-ad31-eadc3a1b6a3a} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{29d67d3c-509a-4544-903f-c8c1b8236554} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{d518921a-4a03-425e-9873-b9a71756821e} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{e47caee0-deea-464a-9326-3f2801535a4d} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{e79dfbc0-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{f42228fb-e84e-479e-b922-fbbd096e792c} (Adware.MyWebSearch) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{19127ad2-394b-70f5-c650-b97867baa1f7} (Backdoor.Bot) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{43bf8cd1-c5d5-2230-7bb2-98f22c2b7dc6} (Backdoor.Bot) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59c7fc09-1c83-4648-b3e6-003d2bbc7481} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68af847f-6e91-45dd-9b68-d6a12c30e5d7} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170b96c-28d4-4626-8358-27e6caeef907} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d1a71fa0-ff48-48dd-9b6d-7a13a3e42127} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ddb1968e-ead6-40fd-8dae-ff14757f60c7} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f138d901-86f0-4383-99b6-9cdd406036da} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{e79dfbca-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> No action taken.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{19127ad2-394b-70f5-c650-b97867baa1f7} (Backdoor.Bot) -> No action taken.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{43bf8cd1-c5d5-2230-7bb2-98f22c2b7dc6} (Backdoor.Bot) -> No action taken.
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{19127ad2-394b-70f5-c650-b97867baa1f7} (Backdoor.Bot) -> No action taken.
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\{43bf8cd1-c5d5-2230-7bb2-98f22c2b7dc6} (Backdoor.Bot) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\zwangisrch (Adware.Agent) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{dabf362d-d442-4402-9208-ca9ed70dd01e} (Adware.Advantage) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{5ac3a9ef-c0f8-41d4-b4e2-b7cebb794151} (Adware.Advantage) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{862def42-89aa-49fa-ae1f-8a84b1b08a17} (Adware.Advantage) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{f6e4845d-1d13-4bc0-942d-b9191524cc48} (Adware.Advantage) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{602d9049-b4ac-4a25-bf75-a9b54d747cba} (Adware.Advantage) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyWebSearch bar Uninstall (Adware.MyWebSearch) -> No action taken.
Infikované hodnoty registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\system32\ktlibeay80_0.9.8.2.dll (Trojan.FakeAlert) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\system32\ktssleay80_0.9.8.2.dll (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&Search\(default) (Adware.Hotbar) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources\f3popularscreensavers (Adware.MyWebSearch) -> No action taken.
Infikované datové položky registru:
(Nebyly nalezeny žádné škodlivé položky)
Infikované adresáře:
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data\Adam (Adware.MyWebSearch) -> No action taken.
C:\Program Files\Advantage (Adware.Advantage) -> No action taken.
C:\Program Files\Anti-Leech (Trojan.AntiLeechPlugin) -> No action taken.
Infikované soubory:
C:\Program Files\MSN Messenger\msimg32.dll (Adware.MyWebSearch) -> No action taken.
C:\Program Files\MSN Messenger\riched20.dll (Adware.MyWebSearch) -> No action taken.
C:\Program Files\Native Instruments\Traktor DJ Studio 2\UNWISE.EXE (Malware.Packer.Morphine) -> No action taken.
C:\Program Files\Common Files\System\temp.dll (Trojan.PWS) -> No action taken.
C:\Program Files\ZwangiSrch\uninstall.exe (Adware.Agent) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP593\A0394477.exe (Adware.Agent) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397982.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397973.exe (Trojan.Agent) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397974.sys (Rootkit.Protector) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397976.dll (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397978.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397979.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397980.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397981.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397985.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397989.SCR (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397990.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397992.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397994.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397997.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397998.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0397999.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398000.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398001.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398002.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398004.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398005.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398006.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398007.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398008.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398009.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398010.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398019.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398022.scr (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398024.dll (Trojan.FakeAlert) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP595\A0398091.sys (Malware.Trace) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401665.sys (Malware.Trace) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401719.exe (Backdoor.IRCBot) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401720.exe (Trojan.Agent) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401721.exe (Trojan.Dropper) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401722.exe (Trojan.Dropper) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401724.dll (Trojan.Agent) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401726.exe (Backdoor.Bot) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401728.dll (Trojan.FakeAlert) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401730.nfo (Backdoor.Bot) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401734.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401735.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401736.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401737.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401738.DLL (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401739.EXE (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401740.dll (Adware.MyWebSearch) -> No action taken.
C:\System Volume Information\_restore{538C0CED-7923-43E0-BD96-9AFEAFA5DCDA}\RP597\A0401753.sys (Rootkit.Protector) -> No action taken.
C:\WINDOWS\system32\12520437p.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\6to4svcz.dll (Trojan.Vundo) -> No action taken.
C:\WINDOWS\system32\activedsb.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\alrsvci.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\podgvgm.dl_ (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data\Adam\avatar.dat (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data\Adam\outfit.dat (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data\Adam\register.dat (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\FunWebProducts\Data\Adam\zbucks.dat (Adware.MyWebSearch) -> No action taken.
C:\Program Files\Advantage\AdVantage.db (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\AdVantage.exe (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\AdVantage.htm (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\AdVUninst.exe (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\ffext.mod (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\TR.dll (Adware.Advantage) -> No action taken.
C:\Program Files\Advantage\user.db (Adware.Advantage) -> No action taken.
C:\Documents and Settings\Adam\Data aplikací\wiaserva.log (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\ktlibeay80_0.9.8.2.dll (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\ktssleay80_0.9.8.2.dll (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\Adam\Local Settings\temp\Opr71A.tmp.htm (Trojan.Agent) -> No action taken.
Re: Prosím o Kontrolu logu
Ano, počítač pracuje o hodně rychleji. Jen když zapnu počítač vyhodí mi to okno s tím, že mi chybí kvpnclient.exe. Něco jsem hledal na googlu a doporučujou stáhnout Ted se docela bojím cokoliv stahovat, takže co myslíš? 
A když se podívám na správce úloh, do záložky procesy mám tam několikrát svchost.exe a firewall mi píše, že svchost.exe mi žere cca. 80% paměti.
Logfile of random's system information tool 1.06 (written by random/random)
Run by Adam at 2010-02-02 21:22:26
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 4 GB (10%) free of 38 GB
Total RAM: 2046 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:22:32, on 2.2.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Adam\Local Settings\Data aplikací\Opera\Opera\temporary_downloads\RSIT (1).exe
C:\Program Files\Uniblue\RegistryBooster\registrybooster.exe
C:\Program Files\trend micro\Adam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://search13.net/search.php?clid=486&q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Kerio VPN Client] "C:\Program Files\Kerio\VPN Client\kvpnclient.exe" /tryauto
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [UniblueRegistryBooster] "C:\Program Files\Uniblue\RegistryBooster\launcher.exe" delay 20000
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10b.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10b.exe (User 'Default user')
O4 - Startup: Adobe Media Player.lnk = C:\Program Files\Adobe Media Player\Adobe Media Player.exe
O4 - Startup: IMVU.lnk = C:\Program Files\IMVU\IMVUClient.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra 'Tools' menuitem: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Adam\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Adam\Nabídka Start\Programy\Absolute Poker\Absolute Poker.lnk (HKCU)
O9 - Extra 'Tools' menuitem: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Adam\Nabídka Start\Programy\Absolute Poker\Absolute Poker.lnk (HKCU)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Update Service (gupdate1c9dfa1b149dc4a) (gupdate1c9dfa1b149dc4a) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB (pnkbstrb) - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
O23 - Service: StarWind AE Service (starwindserviceae) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
--
End of file - 10450 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2010-02-02 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-25 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"36X Raid Configurer"=C:\WINDOWS\system32\JMRaidSetup.exe [2007-02-06 1953792]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-10-16 16855552]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-25 149280]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-06-13 528384]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]
"Kerio VPN Client"=C:\Program Files\Kerio\VPN Client\kvpnclient.exe [2008-01-16 2646016]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-01-28 2757512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-06 68856]
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-04-24 203928]
"Google Update"=C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-06-30 133104]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe -silent []
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"UniblueRegistryBooster"=C:\Program Files\Uniblue\RegistryBooster\launcher.exe [2009-12-02 60208]
C:\Documents and Settings\Adam\Nabídka Start\Programy\Po spuštění
Adobe Media Player.lnk - C:\Program Files\Adobe Media Player\Adobe Media Player.exe
IMVU.lnk - C:\Program Files\IMVU\IMVUClient.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-02-26 126976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\hry_\Track Mania Nations\TrackMania Nations ESWC\TmNationsESWC.exe"="D:\hry_\Track Mania Nations\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\QIP\qip.exe"="C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Documents and Settings\Adam\Miranda IM\miranda32.exe"="C:\Documents and Settings\Adam\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Documents and Settings\Adam\Local Settings\Data aplikací\F4\ClientUpdater\ClientUpdater.exe"="C:\Documents and Settings\Adam\Local Settings\Data aplikací\F4\ClientUpdater\ClientUpdater.exe:*:Enabled:F4 Game Client Updater"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
======List of files/folders created in the last 1 months======
2010-02-02 21:22:21 ----D---- C:\Documents and Settings\Adam\Data aplikací\Uniblue
2010-02-02 21:22:15 ----D---- C:\Program Files\Uniblue
2010-02-02 19:10:32 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-02-02 19:10:06 ----D---- C:\Program Files\Alwil Software
2010-02-02 19:10:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2010-02-02 06:25:10 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-02-02 06:24:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-02-01 21:33:00 ----D---- C:\Documents and Settings\Adam\Data aplikací\Malwarebytes
2010-02-01 21:32:54 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-02-01 21:32:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-02-01 21:15:51 ----D---- C:\rsit
2010-02-01 21:05:28 ----D---- C:\_OTL
2010-02-01 21:05:28 ----A---- C:\WINDOWS\system32\grpconv.exe
2010-02-01 19:31:14 ----SD---- C:\abraka.com
2010-02-01 19:28:31 ----A---- C:\ntsd.exe
2010-02-01 06:17:00 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-02-01 06:14:27 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-02-01 06:14:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-02-01 06:14:02 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$
2010-02-01 06:13:56 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-02-01 06:13:43 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-02-01 06:13:31 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-02-01 06:13:19 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-02-01 06:13:07 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2010-02-01 06:12:55 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-02-01 06:09:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-02-01 06:08:58 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-02-01 06:08:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-02-01 06:08:36 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-02-01 06:08:28 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2010-02-01 06:08:08 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-02-01 06:07:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-02-01 06:07:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2010-02-01 06:07:43 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-02-01 06:07:33 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-02-01 06:07:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-02-01 06:07:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-02-01 06:06:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-02-01 06:06:45 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-02-01 06:06:00 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-02-01 06:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2010-02-01 06:05:36 ----D---- C:\WINDOWS\ServicePackFiles
2010-02-01 06:05:33 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2010-02-01 06:05:25 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-02-01 06:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$
2010-02-01 06:05:05 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2010-02-01 06:04:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-02-01 06:04:10 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-02-01 06:03:59 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-02-01 06:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-01-31 22:22:30 ----SHD---- C:\RECYCLER
2010-01-31 21:18:16 ----A---- C:\RootRepeal report 01-31-10 (21-18-16).txt
2010-01-31 19:43:26 ----A---- C:\Boot.bak
2010-01-31 19:43:20 ----RASHD---- C:\cmdcons
2010-01-31 19:41:35 ----D---- C:\WINDOWS\ERDNT
2010-01-31 18:29:49 ----A---- C:\WINDOWS\Eurobattle.net Uninstall Log.txt
2010-01-31 14:49:05 ----D---- C:\Program Files\Filmy
2010-01-31 14:46:30 ----D---- C:\Program Files\Common Files\Borland Shared
2010-01-31 14:46:30 ----A---- C:\WINDOWS\system32\DBCLIENT.DLL
2010-01-30 16:28:45 ----D---- C:\Program Files\trend micro
2010-01-12 10:05:48 ----D---- C:\Program Files\Steinberg
======List of files/folders modified in the last 1 months======
2010-02-02 21:22:15 ----RD---- C:\Program Files
2010-02-02 21:16:27 ----D---- C:\WINDOWS\Temp
2010-02-02 21:15:56 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-02 21:15:36 ----SD---- C:\WINDOWS\Tasks
2010-02-02 21:13:48 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-02 21:13:24 ----D---- C:\Documents and Settings\Adam\Data aplikací\uTorrent
2010-02-02 19:32:45 ----D---- C:\Program Files\Mozilla Firefox
2010-02-02 19:25:54 ----A---- C:\WINDOWS\NeroDigital.ini
2010-02-02 19:20:07 ----D---- C:\WINDOWS\system32
2010-02-02 19:10:48 ----D---- C:\WINDOWS\system32\drivers
2010-02-02 19:10:43 ----SHD---- C:\WINDOWS\Installer
2010-02-02 19:10:42 ----D---- C:\WINDOWS\WinSxS
2010-02-02 19:04:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google Updater
2010-02-02 07:02:36 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-02 07:01:33 ----D---- C:\WINDOWS
2010-02-02 06:43:44 ----D---- C:\Program Files\ZwangiSrch
2010-02-02 06:43:44 ----D---- C:\Program Files\MSN Messenger
2010-02-02 06:43:44 ----D---- C:\Program Files\Common Files\System
2010-02-02 06:25:15 ----HD---- C:\WINDOWS\inf
2010-02-02 06:25:13 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-02 06:25:04 ----A---- C:\WINDOWS\imsins.BAK
2010-02-01 21:05:28 ----D---- C:\WINDOWS\Prefetch
2010-02-01 16:23:41 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-01 07:55:11 ----D---- C:\WINDOWS\AppPatch
2010-02-01 07:55:10 ----D---- C:\WINDOWS\system32\Setup
2010-02-01 07:43:32 ----RSD---- C:\WINDOWS\assembly
2010-02-01 07:40:56 ----D---- C:\WINDOWS\Microsoft.NET
2010-02-01 06:07:09 ----D---- C:\Program Files\Outlook Express
2010-02-01 06:04:53 ----D---- C:\WINDOWS\system32\cs-cz
2010-02-01 06:04:53 ----D---- C:\Program Files\Internet Explorer
2010-02-01 06:04:44 ----D---- C:\WINDOWS\ie7updates
2010-01-31 20:50:31 ----D---- C:\Program Files\Avast4
2010-01-31 20:09:43 ----D---- C:\WINDOWS\repair
2010-01-31 20:05:13 ----D---- C:\WINDOWS\Help
2010-01-31 20:01:46 ----A---- C:\WINDOWS\system.ini
2010-01-31 19:59:48 ----D---- C:\WINDOWS\system32\config
2010-01-31 19:59:07 ----D---- C:\WINDOWS\system32\wbem
2010-01-31 19:58:28 ----D---- C:\Program Files\Cheat Engine
2010-01-31 19:55:28 ----D---- C:\Program Files\Common Files
2010-01-31 19:43:26 ----RASH---- C:\boot.ini
2010-01-31 18:39:33 ----D---- C:\Program Files\MegauploadToolbar
2010-01-31 18:39:24 ----D---- C:\Program Files\Yontoo Layers Client
2010-01-31 18:39:22 ----D---- C:\Program Files\Ask.com
2010-01-31 18:39:13 ----D---- C:\Program Files\Stylish Profile
2010-01-31 18:38:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\ZwangiSrch
2010-01-31 18:34:49 ----D---- C:\Documents and Settings\Adam\Data aplikací\Free Download Manager
2010-01-31 18:32:39 ----D---- C:\Program Files\PowerISO
2010-01-30 23:01:40 ----D---- C:\Program Files\AIMP2
2010-01-30 13:57:46 ----D---- C:\Documents and Settings\Adam\Data aplikací\MegauploadToolbar
2010-01-21 14:27:18 ----D---- C:\WINDOWS\system32\DirectX
2010-01-21 14:19:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-14 21:18:47 ----D---- C:\Program Files\Garena
2010-01-12 16:14:52 ----D---- C:\Program Files\VSTPlugIns
2010-01-05 10:58:03 ----N---- C:\WINDOWS\system32\occache.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\wininet.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\webcheck.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\url.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\pngfilt.dll
2010-01-05 10:58:02 ----N---- C:\WINDOWS\system32\mstime.dll
2010-01-05 10:58:02 ----N---- C:\WINDOWS\system32\msrating.dll
2010-01-05 10:58:02 ----A---- C:\WINDOWS\system32\mshtmled.dll
2010-01-05 10:58:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-01-05 10:58:01 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-01-05 10:58:01 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-01-05 10:58:00 ----N---- C:\WINDOWS\system32\jsproxy.dll
2010-01-05 10:58:00 ----N---- C:\WINDOWS\system32\iernonce.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\iepeers.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-01-05 10:57:59 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2010-01-05 10:57:59 ----A---- C:\WINDOWS\system32\ieencode.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\ieaksie.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\ieakeng.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\extmgr.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\corpol.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\icardie.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\dxtrans.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\advpack.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-01-28 28240]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-01-28 163280]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-01-28 46672]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-17 39936]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-01-28 19024]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-01-28 100432]
R2 Prvflder;Prvflder; C:\WINDOWS\system32\DRIVERS\prvflder.sys [2006-04-21 70912]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-01-28 23376]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-02-26 2863616]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-10-24 117760]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-09-23 26176]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-10-16 4615168]
R3 kvpndev;Kerio VPN adapter; C:\WINDOWS\system32\DRIVERS\kvpndrv.sys [2008-01-16 65024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2004-08-17 12416]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
S2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys []
S2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys []
S3 Bridge;Most MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-03 71552]
S3 BridgeMP;Miniport mostu MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-03 71552]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 GarenaPEngine;GarenaPEngine; \??\C:\DOCUME~1\Adam\LOCALS~1\Temp\PJO758F.tmp []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 PAC207;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
S3 pnkbstrk;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 s115bus;Sony Ericsson Device 115 driver (WDM); C:\WINDOWS\system32\DRIVERS\s115bus.sys [2007-04-23 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s115mdfl.sys [2007-04-23 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s115mdm.sys [2007-04-23 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s115mgmt.sys [2007-04-23 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s115obex.sys [2007-04-23 98568]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [2006-01-29 16896]
S3 tap0801;TAP-Win32 Adapter V8; C:\WINDOWS\system32\DRIVERS\tap0801.sys [2006-10-01 26624]
S3 tap0901_2gm;VPN Anonymizer Adapter; C:\WINDOWS\system32\DRIVERS\tap0901_2gm.sys [2007-06-21 30720]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2009-07-10 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-02-26 520192]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2009-10-29 1074568]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-25 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-03-10 75064]
R2 pnkbstrb;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-07-02 189768]
R2 prfldsvc;Private Folder Service; C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe [2006-04-21 69632]
R2 starwindserviceae;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-02-25 593920]
S2 gupdate1c9dfa1b149dc4a;Google Update Service (gupdate1c9dfa1b149dc4a); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-05-28 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-02-02 194032]
S2 Wodkjuntryo;Wodkjuntryo; C:\WINDOWS\System32\svchost.exe [2009-07-10 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-01-03 72704]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 usnjsvc;Služba Čtení deníku USN sdílených složek programu Messenger; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Kód: Vybrat vše
http://www.liutilities.com/products/wintaskspro/processlibrary/kvpnclient/
A když se podívám na správce úloh, do záložky procesy mám tam několikrát svchost.exe a firewall mi píše, že svchost.exe mi žere cca. 80% paměti.
Logfile of random's system information tool 1.06 (written by random/random)
Run by Adam at 2010-02-02 21:22:26
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 4 GB (10%) free of 38 GB
Total RAM: 2046 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:22:32, on 2.2.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Adam\Local Settings\Data aplikací\Opera\Opera\temporary_downloads\RSIT (1).exe
C:\Program Files\Uniblue\RegistryBooster\registrybooster.exe
C:\Program Files\trend micro\Adam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://search13.net/search.php?clid=486&q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Kerio VPN Client] "C:\Program Files\Kerio\VPN Client\kvpnclient.exe" /tryauto
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [UniblueRegistryBooster] "C:\Program Files\Uniblue\RegistryBooster\launcher.exe" delay 20000
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10b.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10b.exe (User 'Default user')
O4 - Startup: Adobe Media Player.lnk = C:\Program Files\Adobe Media Player\Adobe Media Player.exe
O4 - Startup: IMVU.lnk = C:\Program Files\IMVU\IMVUClient.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra 'Tools' menuitem: StylishProfile - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Program Files\Stylish Profile\ct.htm
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Adam\Nabídka Start\Programy\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Adam\Nabídka Start\Programy\Absolute Poker\Absolute Poker.lnk (HKCU)
O9 - Extra 'Tools' menuitem: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Adam\Nabídka Start\Programy\Absolute Poker\Absolute Poker.lnk (HKCU)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Update Service (gupdate1c9dfa1b149dc4a) (gupdate1c9dfa1b149dc4a) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB (pnkbstrb) - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
O23 - Service: StarWind AE Service (starwindserviceae) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
--
End of file - 10450 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2010-02-02 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-25 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"36X Raid Configurer"=C:\WINDOWS\system32\JMRaidSetup.exe [2007-02-06 1953792]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-10-16 16855552]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-25 149280]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-06-13 528384]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]
"Kerio VPN Client"=C:\Program Files\Kerio\VPN Client\kvpnclient.exe [2008-01-16 2646016]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-01-28 2757512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-06 68856]
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-04-24 203928]
"Google Update"=C:\Documents and Settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-06-30 133104]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe -silent []
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"UniblueRegistryBooster"=C:\Program Files\Uniblue\RegistryBooster\launcher.exe [2009-12-02 60208]
C:\Documents and Settings\Adam\Nabídka Start\Programy\Po spuštění
Adobe Media Player.lnk - C:\Program Files\Adobe Media Player\Adobe Media Player.exe
IMVU.lnk - C:\Program Files\IMVU\IMVUClient.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-02-26 126976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\hry_\Track Mania Nations\TrackMania Nations ESWC\TmNationsESWC.exe"="D:\hry_\Track Mania Nations\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\QIP\qip.exe"="C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Documents and Settings\Adam\Miranda IM\miranda32.exe"="C:\Documents and Settings\Adam\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Documents and Settings\Adam\Local Settings\Data aplikací\F4\ClientUpdater\ClientUpdater.exe"="C:\Documents and Settings\Adam\Local Settings\Data aplikací\F4\ClientUpdater\ClientUpdater.exe:*:Enabled:F4 Game Client Updater"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
======List of files/folders created in the last 1 months======
2010-02-02 21:22:21 ----D---- C:\Documents and Settings\Adam\Data aplikací\Uniblue
2010-02-02 21:22:15 ----D---- C:\Program Files\Uniblue
2010-02-02 19:10:32 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-02-02 19:10:06 ----D---- C:\Program Files\Alwil Software
2010-02-02 19:10:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2010-02-02 06:25:10 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-02-02 06:24:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-02-01 21:33:00 ----D---- C:\Documents and Settings\Adam\Data aplikací\Malwarebytes
2010-02-01 21:32:54 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-02-01 21:32:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-02-01 21:15:51 ----D---- C:\rsit
2010-02-01 21:05:28 ----D---- C:\_OTL
2010-02-01 21:05:28 ----A---- C:\WINDOWS\system32\grpconv.exe
2010-02-01 19:31:14 ----SD---- C:\abraka.com
2010-02-01 19:28:31 ----A---- C:\ntsd.exe
2010-02-01 06:17:00 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-02-01 06:14:27 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-02-01 06:14:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-02-01 06:14:02 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$
2010-02-01 06:13:56 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-02-01 06:13:43 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-02-01 06:13:31 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-02-01 06:13:19 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-02-01 06:13:07 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2010-02-01 06:12:55 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-02-01 06:09:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-02-01 06:08:58 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-02-01 06:08:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-02-01 06:08:36 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-02-01 06:08:28 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2010-02-01 06:08:08 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-02-01 06:07:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-02-01 06:07:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2010-02-01 06:07:43 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-02-01 06:07:33 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-02-01 06:07:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-02-01 06:07:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-02-01 06:06:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-02-01 06:06:45 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-02-01 06:06:00 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-02-01 06:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2010-02-01 06:05:36 ----D---- C:\WINDOWS\ServicePackFiles
2010-02-01 06:05:33 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2010-02-01 06:05:25 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-02-01 06:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$
2010-02-01 06:05:05 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2010-02-01 06:04:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-02-01 06:04:10 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-02-01 06:03:59 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-02-01 06:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-01-31 22:22:30 ----SHD---- C:\RECYCLER
2010-01-31 21:18:16 ----A---- C:\RootRepeal report 01-31-10 (21-18-16).txt
2010-01-31 19:43:26 ----A---- C:\Boot.bak
2010-01-31 19:43:20 ----RASHD---- C:\cmdcons
2010-01-31 19:41:35 ----D---- C:\WINDOWS\ERDNT
2010-01-31 18:29:49 ----A---- C:\WINDOWS\Eurobattle.net Uninstall Log.txt
2010-01-31 14:49:05 ----D---- C:\Program Files\Filmy
2010-01-31 14:46:30 ----D---- C:\Program Files\Common Files\Borland Shared
2010-01-31 14:46:30 ----A---- C:\WINDOWS\system32\DBCLIENT.DLL
2010-01-30 16:28:45 ----D---- C:\Program Files\trend micro
2010-01-12 10:05:48 ----D---- C:\Program Files\Steinberg
======List of files/folders modified in the last 1 months======
2010-02-02 21:22:15 ----RD---- C:\Program Files
2010-02-02 21:16:27 ----D---- C:\WINDOWS\Temp
2010-02-02 21:15:56 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-02 21:15:36 ----SD---- C:\WINDOWS\Tasks
2010-02-02 21:13:48 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-02 21:13:24 ----D---- C:\Documents and Settings\Adam\Data aplikací\uTorrent
2010-02-02 19:32:45 ----D---- C:\Program Files\Mozilla Firefox
2010-02-02 19:25:54 ----A---- C:\WINDOWS\NeroDigital.ini
2010-02-02 19:20:07 ----D---- C:\WINDOWS\system32
2010-02-02 19:10:48 ----D---- C:\WINDOWS\system32\drivers
2010-02-02 19:10:43 ----SHD---- C:\WINDOWS\Installer
2010-02-02 19:10:42 ----D---- C:\WINDOWS\WinSxS
2010-02-02 19:04:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google Updater
2010-02-02 07:02:36 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-02 07:01:33 ----D---- C:\WINDOWS
2010-02-02 06:43:44 ----D---- C:\Program Files\ZwangiSrch
2010-02-02 06:43:44 ----D---- C:\Program Files\MSN Messenger
2010-02-02 06:43:44 ----D---- C:\Program Files\Common Files\System
2010-02-02 06:25:15 ----HD---- C:\WINDOWS\inf
2010-02-02 06:25:13 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-02 06:25:04 ----A---- C:\WINDOWS\imsins.BAK
2010-02-01 21:05:28 ----D---- C:\WINDOWS\Prefetch
2010-02-01 16:23:41 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-01 07:55:11 ----D---- C:\WINDOWS\AppPatch
2010-02-01 07:55:10 ----D---- C:\WINDOWS\system32\Setup
2010-02-01 07:43:32 ----RSD---- C:\WINDOWS\assembly
2010-02-01 07:40:56 ----D---- C:\WINDOWS\Microsoft.NET
2010-02-01 06:07:09 ----D---- C:\Program Files\Outlook Express
2010-02-01 06:04:53 ----D---- C:\WINDOWS\system32\cs-cz
2010-02-01 06:04:53 ----D---- C:\Program Files\Internet Explorer
2010-02-01 06:04:44 ----D---- C:\WINDOWS\ie7updates
2010-01-31 20:50:31 ----D---- C:\Program Files\Avast4
2010-01-31 20:09:43 ----D---- C:\WINDOWS\repair
2010-01-31 20:05:13 ----D---- C:\WINDOWS\Help
2010-01-31 20:01:46 ----A---- C:\WINDOWS\system.ini
2010-01-31 19:59:48 ----D---- C:\WINDOWS\system32\config
2010-01-31 19:59:07 ----D---- C:\WINDOWS\system32\wbem
2010-01-31 19:58:28 ----D---- C:\Program Files\Cheat Engine
2010-01-31 19:55:28 ----D---- C:\Program Files\Common Files
2010-01-31 19:43:26 ----RASH---- C:\boot.ini
2010-01-31 18:39:33 ----D---- C:\Program Files\MegauploadToolbar
2010-01-31 18:39:24 ----D---- C:\Program Files\Yontoo Layers Client
2010-01-31 18:39:22 ----D---- C:\Program Files\Ask.com
2010-01-31 18:39:13 ----D---- C:\Program Files\Stylish Profile
2010-01-31 18:38:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\ZwangiSrch
2010-01-31 18:34:49 ----D---- C:\Documents and Settings\Adam\Data aplikací\Free Download Manager
2010-01-31 18:32:39 ----D---- C:\Program Files\PowerISO
2010-01-30 23:01:40 ----D---- C:\Program Files\AIMP2
2010-01-30 13:57:46 ----D---- C:\Documents and Settings\Adam\Data aplikací\MegauploadToolbar
2010-01-21 14:27:18 ----D---- C:\WINDOWS\system32\DirectX
2010-01-21 14:19:18 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-14 21:18:47 ----D---- C:\Program Files\Garena
2010-01-12 16:14:52 ----D---- C:\Program Files\VSTPlugIns
2010-01-05 10:58:03 ----N---- C:\WINDOWS\system32\occache.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\wininet.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\webcheck.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\url.dll
2010-01-05 10:58:03 ----A---- C:\WINDOWS\system32\pngfilt.dll
2010-01-05 10:58:02 ----N---- C:\WINDOWS\system32\mstime.dll
2010-01-05 10:58:02 ----N---- C:\WINDOWS\system32\msrating.dll
2010-01-05 10:58:02 ----A---- C:\WINDOWS\system32\mshtmled.dll
2010-01-05 10:58:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-01-05 10:58:01 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-01-05 10:58:01 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-01-05 10:58:00 ----N---- C:\WINDOWS\system32\jsproxy.dll
2010-01-05 10:58:00 ----N---- C:\WINDOWS\system32\iernonce.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\iepeers.dll
2010-01-05 10:58:00 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-01-05 10:57:59 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2010-01-05 10:57:59 ----A---- C:\WINDOWS\system32\ieencode.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\ieaksie.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\ieakeng.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\extmgr.dll
2010-01-05 10:57:58 ----N---- C:\WINDOWS\system32\corpol.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\icardie.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\dxtrans.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2010-01-05 10:57:58 ----A---- C:\WINDOWS\system32\advpack.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-01-28 28240]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-01-28 163280]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-01-28 46672]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-17 39936]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-01-28 19024]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-01-28 100432]
R2 Prvflder;Prvflder; C:\WINDOWS\system32\DRIVERS\prvflder.sys [2006-04-21 70912]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-01-28 23376]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-02-26 2863616]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-10-24 117760]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-09-23 26176]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-10-16 4615168]
R3 kvpndev;Kerio VPN adapter; C:\WINDOWS\system32\DRIVERS\kvpndrv.sys [2008-01-16 65024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2004-08-17 12416]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
S2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys []
S2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys []
S3 Bridge;Most MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-03 71552]
S3 BridgeMP;Miniport mostu MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-03 71552]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 GarenaPEngine;GarenaPEngine; \??\C:\DOCUME~1\Adam\LOCALS~1\Temp\PJO758F.tmp []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 PAC207;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
S3 pnkbstrk;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 s115bus;Sony Ericsson Device 115 driver (WDM); C:\WINDOWS\system32\DRIVERS\s115bus.sys [2007-04-23 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s115mdfl.sys [2007-04-23 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s115mdm.sys [2007-04-23 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s115mgmt.sys [2007-04-23 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s115obex.sys [2007-04-23 98568]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [2006-01-29 16896]
S3 tap0801;TAP-Win32 Adapter V8; C:\WINDOWS\system32\DRIVERS\tap0801.sys [2006-10-01 26624]
S3 tap0901_2gm;VPN Anonymizer Adapter; C:\WINDOWS\system32\DRIVERS\tap0901_2gm.sys [2007-06-21 30720]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2009-07-10 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-02-26 520192]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2009-10-29 1074568]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-25 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-03-10 75064]
R2 pnkbstrb;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-07-02 189768]
R2 prfldsvc;Private Folder Service; C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe [2006-04-21 69632]
R2 starwindserviceae;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-02-25 593920]
S2 gupdate1c9dfa1b149dc4a;Google Update Service (gupdate1c9dfa1b149dc4a); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-05-28 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-02-02 194032]
S2 Wodkjuntryo;Wodkjuntryo; C:\WINDOWS\System32\svchost.exe [2009-07-10 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-01-03 72704]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 usnjsvc;Služba Čtení deníku USN sdílených složek programu Messenger; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Re: Prosím o Kontrolu logu
ComboFix 10-02-03.01 - Adam 03.02.2010 18:03:56.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.2046.1417 [GMT 1:00]
Spuštěný z: c:\documents and settings\Adam\Local Settings\Data aplikací\Opera\Opera\temporary_downloads\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: COMODO Firewall *enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-01-03 do 2010-02-03 )))))))))))))))))))))))))))))))
.
2010-02-02 21:03 . 2010-02-02 21:03 87104 ----a-w- c:\windows\system32\drivers\inspect.sys
2010-02-02 21:03 . 2010-02-02 21:03 25160 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2010-02-02 21:03 . 2010-02-02 21:03 171552 ----a-w- c:\windows\system32\guard32.dll
2010-02-02 21:03 . 2010-02-02 21:03 134344 ----a-w- c:\windows\system32\drivers\cmdguard.sys
2010-02-02 21:03 . 2010-02-02 21:03 -------- d-----w- c:\program files\COMODO
2010-02-02 20:22 . 2010-02-02 20:22 -------- d-----w- c:\program files\Uniblue
2010-02-02 18:20 . 2010-01-28 22:09 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-02-02 18:10 . 2010-01-28 21:57 163280 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-02-02 18:10 . 2010-01-28 21:54 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-02-02 18:10 . 2010-01-28 21:57 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-02-02 18:10 . 2010-01-28 21:54 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-02-02 18:10 . 2010-01-28 21:54 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-02-02 18:10 . 2010-01-28 21:54 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-02-02 18:10 . 2010-01-28 21:53 28240 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-02-02 18:10 . 2010-01-28 22:09 152672 ----a-w- c:\windows\system32\aswBoot.exe
2010-02-02 18:10 . 2010-02-02 18:10 -------- d-----w- c:\program files\Alwil Software
2010-02-01 20:32 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-02-01 20:32 . 2010-02-01 20:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-02-01 20:32 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-02-01 20:15 . 2010-02-01 20:16 -------- d-----w- C:\rsit
2010-02-01 20:05 . 2010-02-01 20:05 -------- d-----w- C:\_OTL
2010-02-01 20:05 . 2008-04-14 03:22 39424 ----a-w- c:\windows\system32\grpconv.exe
2010-02-01 20:05 . 2004-08-03 22:07 42368 -c--a-w- c:\windows\system32\dllcache\agp440.sys
2010-02-01 20:05 . 2004-08-03 22:07 42368 ----a-w- c:\windows\system32\drivers\agp440.sys
2010-02-01 18:31 . 2010-02-01 18:31 -------- d-----w- C:\abraka.com
2010-02-01 18:28 . 2001-10-25 14:00 31744 ----a-w- C:\ntsd.exe
2010-02-01 05:05 . 2010-02-01 05:05 -------- d-----w- c:\windows\ServicePackFiles
2010-01-31 13:49 . 2010-01-31 13:52 -------- d-----w- c:\program files\Filmy
2010-01-31 13:46 . 2010-01-31 13:46 -------- d-----w- c:\program files\Common Files\Borland Shared
2010-01-31 13:46 . 1999-01-20 04:01 210032 ----a-w- c:\windows\system32\DBCLIENT.DLL
2010-01-30 15:28 . 2010-02-02 20:22 -------- d-----w- c:\program files\trend micro
2010-01-12 09:05 . 2010-01-12 09:05 -------- d-----w- c:\program files\Steinberg
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-02 06:02 . 2001-10-25 14:00 83562 ----a-w- c:\windows\system32\perfc005.dat
2010-02-02 06:02 . 2001-10-25 14:00 440812 ----a-w- c:\windows\system32\perfh005.dat
2010-02-02 05:43 . 2009-10-15 05:19 -------- d-----w- c:\program files\ZwangiSrch
2010-02-02 05:43 . 2008-01-07 20:25 -------- d-----w- c:\program files\MSN Messenger
2010-01-31 19:50 . 2007-12-17 21:09 -------- d-----w- c:\program files\Avast4
2010-01-31 18:58 . 2009-06-29 17:18 -------- d-----w- c:\program files\Cheat Engine
2010-01-31 17:39 . 2008-05-14 13:08 -------- d-----w- c:\program files\MegauploadToolbar
2010-01-31 17:39 . 2009-11-03 13:35 -------- d-----w- c:\program files\Yontoo Layers Client
2010-01-31 17:39 . 2009-10-18 15:44 -------- d-----w- c:\program files\Ask.com
2010-01-31 17:39 . 2009-11-03 13:30 -------- d-----w- c:\program files\Stylish Profile
2010-01-31 17:32 . 2009-10-26 06:30 -------- d-----w- c:\program files\PowerISO
2010-01-30 22:01 . 2008-07-19 08:51 -------- d-----w- c:\program files\AIMP2
2010-01-21 13:19 . 2007-12-17 20:58 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-14 20:18 . 2008-10-27 13:27 -------- d-----w- c:\program files\Garena
2010-01-12 15:14 . 2008-03-04 16:26 -------- d-----w- c:\program files\VSTPlugIns
2010-01-05 09:58 . 2004-08-17 13:49 832512 ----a-w- c:\windows\system32\wininet.dll
2010-01-05 09:57 . 2004-08-17 13:49 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-01-05 09:57 . 2004-08-17 13:49 17408 ------w- c:\windows\system32\corpol.dll
2010-01-01 14:13 . 2010-01-01 14:13 -------- d-----w- c:\program files\LogMeIn Hamachi
2010-01-01 14:12 . 2008-07-26 15:04 -------- d-----w- c:\program files\Hamachi
2009-12-31 20:17 . 2009-12-31 20:17 -------- d-----w- c:\program files\ICQ6
2009-12-31 14:50 . 2009-12-30 22:51 29730 ----a-w- c:\windows\War3Unin.dat
2009-12-31 14:50 . 2009-12-30 22:51 139264 ----a-w- c:\windows\War3Unin.exe
2009-12-30 22:51 . 2009-12-30 22:51 2829 ----a-w- c:\windows\War3Unin.pif
2009-12-24 11:20 . 2008-01-11 13:28 -------- d-----w- c:\program files\Google
2009-12-19 12:03 . 2009-12-19 08:54 -------- d-----w- c:\program files\Replay Media Catcher
2009-12-19 08:57 . 2009-12-19 08:57 237568 ----a-w- c:\windows\system32\rmc_rtspdl.dll
2009-12-19 08:57 . 2009-12-19 08:57 156672 ----a-w- c:\windows\system32\rmc_fixasf.exe
2009-12-15 13:59 . 2007-12-17 21:03 -------- d-----w- c:\program files\Opera
2009-12-12 11:06 . 2008-11-13 17:47 -------- d-----w- c:\program files\VirtualDJ
2009-11-21 16:46 . 2004-08-17 13:49 470528 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll
2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\opera\program\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\opera\program\plugins\ssldivx.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-05-06 68856]
"AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2009-04-24 203928]
"Google Update"="c:\documents and settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2009-06-30 133104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"36X Raid Configurer"="c:\windows\system32\JMRaidSetup.exe" [2007-02-06 1953792]
"RTHDCPL"="RTHDCPL.EXE" [2007-10-16 16855552]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-08-25 149280]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 528384]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
"Kerio VPN Client"="c:\program files\Kerio\VPN Client\kvpnclient.exe" [2008-01-16 2646016]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-01-28 2757512]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2010-02-02 1800464]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2007-01-19 5674352]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"="c:\windows\system32\Macromed\Flash\FlashUtil10b.exe" [2009-02-03 240544]
c:\documents and settings\Admin\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\guard32.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\hry_\\Track Mania Nations\\TrackMania Nations ESWC\\TmNationsESWC.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Documents and Settings\\Adam\\Miranda IM\\miranda32.exe"=
"c:\\Documents and Settings\\Adam\\Local Settings\\Data aplikací\\F4\\ClientUpdater\\ClientUpdater.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2.2.2010 19:10 163280]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [2.2.2010 22:03 134344]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2.2.2010 22:03 25160]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2.2.2010 19:10 19024]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [29.10.2009 12:27 1074568]
R2 Prvflder;Prvflder;c:\windows\system32\drivers\prvflder.sys [21.4.2006 7:22 70912]
R3 kvpndev;Kerio VPN adapter;c:\windows\system32\drivers\kvpndrv.sys [16.1.2008 9:58 65024]
S0 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
S2 gupdate1c9dfa1b149dc4a;Google Update Service (gupdate1c9dfa1b149dc4a);c:\program files\Google\Update\GoogleUpdate.exe [28.5.2009 15:36 133104]
S2 Wodkjuntryo;Wodkjuntryo;c:\windows\System32\svchost.exe -k netsvcs [17.8.2004 14:49 14336]
S3 GarenaPEngine;GarenaPEngine;\??\c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp --> c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp [?]
S3 PAC207;VideoCAM GE111;c:\windows\system32\drivers\pfc027.sys [8.4.2005 10:46 162176]
S3 s115bus;Sony Ericsson Device 115 driver (WDM);c:\windows\system32\drivers\s115bus.sys [1.10.2008 17:59 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;c:\windows\system32\drivers\s115mdfl.sys [1.10.2008 17:59 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;c:\windows\system32\drivers\s115mdm.sys [1.10.2008 17:59 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s115mgmt.sys [1.10.2008 17:59 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;c:\windows\system32\drivers\s115obex.sys [1.10.2008 17:59 98568]
S3 SynasUSB;SynasUSB;c:\windows\system32\drivers\synasUSB.sys [25.1.2009 21:45 16896]
S3 tap0801;TAP-Win32 Adapter V8;c:\windows\system32\drivers\tap0801.sys [1.10.2006 13:37 26624]
S3 tap0901_2gm;VPN Anonymizer Adapter;c:\windows\system32\drivers\tap0901_2gm.sys [21.6.2007 15:21 30720]
.
Obsah adresáře 'Naplánované úlohy'
2010-02-03 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-01-25 18:04]
2010-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-28 14:36]
2010-02-03 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2009-05-06 16:11]
.
.
------- Doplňkový sken -------
.
uStart Page =
uDefault_Search_URL =
uInternet Settings,ProxyOverride = local
uSearchAssistant =
uCustomizeSearch =
IE: &Search
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Download all with Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm
IE: Download selected with Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm
IE: Download video with Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Download with Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{14CD42DD-ABCD-3586-DCAB-40E3693E3737} - c:\program files\Stylish Profile\ct.htm
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\Adam\Nabídka Start\Programy\IMVU\Run IMVU.lnk
FF - ProfilePath - c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz/
FF - component: c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - component: c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1851.5542\npCIDetect14.dll
FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Opera\program\plugins\npdivx32.dll
FF - plugin: c:\program files\Veetle\Player\npvlc.dll
FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKCU-Run-EA Core - c:\program files\Electronic Arts\EADM\Core.exe
AddRemove-AdVantage_DAEM - c:\program files\AdVantage\AdVUninst.exe
AddRemove-EADM - c:\program files\Electronic Arts\EADM\Uninstall.exe
AddRemove-Filmotéka_is1 - c:\filmoteka\unins000.exe
AddRemove-Native Instruments Traktor DJ Studio v2.5.3 - c:\progra~1\NATIVE~1\TRAKTO~1\UNWISE.EXE
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-03 18:14
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwClose, ZwOpenFile
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GarenaPEngine]
"ImagePath"="\??\c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(936)
c:\windows\system32\guard32.dll
c:\windows\system32\Ati2evxx.dll
- - - - - - - > 'lsass.exe'(992)
c:\windows\system32\guard32.dll
.
Celkový čas: 2010-02-03 18:17:49
ComboFix-quarantined-files.txt 2010-02-03 17:17
Před spuštěním: 3 662 798 848
Po spuštění: 3 774 107 648
- - End Of File - - 996BD3A008E495AE283E7498D2CB1555
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.2046.1417 [GMT 1:00]
Spuštěný z: c:\documents and settings\Adam\Local Settings\Data aplikací\Opera\Opera\temporary_downloads\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: COMODO Firewall *enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-01-03 do 2010-02-03 )))))))))))))))))))))))))))))))
.
2010-02-02 21:03 . 2010-02-02 21:03 87104 ----a-w- c:\windows\system32\drivers\inspect.sys
2010-02-02 21:03 . 2010-02-02 21:03 25160 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2010-02-02 21:03 . 2010-02-02 21:03 171552 ----a-w- c:\windows\system32\guard32.dll
2010-02-02 21:03 . 2010-02-02 21:03 134344 ----a-w- c:\windows\system32\drivers\cmdguard.sys
2010-02-02 21:03 . 2010-02-02 21:03 -------- d-----w- c:\program files\COMODO
2010-02-02 20:22 . 2010-02-02 20:22 -------- d-----w- c:\program files\Uniblue
2010-02-02 18:20 . 2010-01-28 22:09 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-02-02 18:10 . 2010-01-28 21:57 163280 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-02-02 18:10 . 2010-01-28 21:54 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-02-02 18:10 . 2010-01-28 21:57 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-02-02 18:10 . 2010-01-28 21:54 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-02-02 18:10 . 2010-01-28 21:54 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-02-02 18:10 . 2010-01-28 21:54 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-02-02 18:10 . 2010-01-28 21:53 28240 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-02-02 18:10 . 2010-01-28 22:09 152672 ----a-w- c:\windows\system32\aswBoot.exe
2010-02-02 18:10 . 2010-02-02 18:10 -------- d-----w- c:\program files\Alwil Software
2010-02-01 20:32 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-02-01 20:32 . 2010-02-01 20:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-02-01 20:32 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-02-01 20:15 . 2010-02-01 20:16 -------- d-----w- C:\rsit
2010-02-01 20:05 . 2010-02-01 20:05 -------- d-----w- C:\_OTL
2010-02-01 20:05 . 2008-04-14 03:22 39424 ----a-w- c:\windows\system32\grpconv.exe
2010-02-01 20:05 . 2004-08-03 22:07 42368 -c--a-w- c:\windows\system32\dllcache\agp440.sys
2010-02-01 20:05 . 2004-08-03 22:07 42368 ----a-w- c:\windows\system32\drivers\agp440.sys
2010-02-01 18:31 . 2010-02-01 18:31 -------- d-----w- C:\abraka.com
2010-02-01 18:28 . 2001-10-25 14:00 31744 ----a-w- C:\ntsd.exe
2010-02-01 05:05 . 2010-02-01 05:05 -------- d-----w- c:\windows\ServicePackFiles
2010-01-31 13:49 . 2010-01-31 13:52 -------- d-----w- c:\program files\Filmy
2010-01-31 13:46 . 2010-01-31 13:46 -------- d-----w- c:\program files\Common Files\Borland Shared
2010-01-31 13:46 . 1999-01-20 04:01 210032 ----a-w- c:\windows\system32\DBCLIENT.DLL
2010-01-30 15:28 . 2010-02-02 20:22 -------- d-----w- c:\program files\trend micro
2010-01-12 09:05 . 2010-01-12 09:05 -------- d-----w- c:\program files\Steinberg
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-02 06:02 . 2001-10-25 14:00 83562 ----a-w- c:\windows\system32\perfc005.dat
2010-02-02 06:02 . 2001-10-25 14:00 440812 ----a-w- c:\windows\system32\perfh005.dat
2010-02-02 05:43 . 2009-10-15 05:19 -------- d-----w- c:\program files\ZwangiSrch
2010-02-02 05:43 . 2008-01-07 20:25 -------- d-----w- c:\program files\MSN Messenger
2010-01-31 19:50 . 2007-12-17 21:09 -------- d-----w- c:\program files\Avast4
2010-01-31 18:58 . 2009-06-29 17:18 -------- d-----w- c:\program files\Cheat Engine
2010-01-31 17:39 . 2008-05-14 13:08 -------- d-----w- c:\program files\MegauploadToolbar
2010-01-31 17:39 . 2009-11-03 13:35 -------- d-----w- c:\program files\Yontoo Layers Client
2010-01-31 17:39 . 2009-10-18 15:44 -------- d-----w- c:\program files\Ask.com
2010-01-31 17:39 . 2009-11-03 13:30 -------- d-----w- c:\program files\Stylish Profile
2010-01-31 17:32 . 2009-10-26 06:30 -------- d-----w- c:\program files\PowerISO
2010-01-30 22:01 . 2008-07-19 08:51 -------- d-----w- c:\program files\AIMP2
2010-01-21 13:19 . 2007-12-17 20:58 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-14 20:18 . 2008-10-27 13:27 -------- d-----w- c:\program files\Garena
2010-01-12 15:14 . 2008-03-04 16:26 -------- d-----w- c:\program files\VSTPlugIns
2010-01-05 09:58 . 2004-08-17 13:49 832512 ----a-w- c:\windows\system32\wininet.dll
2010-01-05 09:57 . 2004-08-17 13:49 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-01-05 09:57 . 2004-08-17 13:49 17408 ------w- c:\windows\system32\corpol.dll
2010-01-01 14:13 . 2010-01-01 14:13 -------- d-----w- c:\program files\LogMeIn Hamachi
2010-01-01 14:12 . 2008-07-26 15:04 -------- d-----w- c:\program files\Hamachi
2009-12-31 20:17 . 2009-12-31 20:17 -------- d-----w- c:\program files\ICQ6
2009-12-31 14:50 . 2009-12-30 22:51 29730 ----a-w- c:\windows\War3Unin.dat
2009-12-31 14:50 . 2009-12-30 22:51 139264 ----a-w- c:\windows\War3Unin.exe
2009-12-30 22:51 . 2009-12-30 22:51 2829 ----a-w- c:\windows\War3Unin.pif
2009-12-24 11:20 . 2008-01-11 13:28 -------- d-----w- c:\program files\Google
2009-12-19 12:03 . 2009-12-19 08:54 -------- d-----w- c:\program files\Replay Media Catcher
2009-12-19 08:57 . 2009-12-19 08:57 237568 ----a-w- c:\windows\system32\rmc_rtspdl.dll
2009-12-19 08:57 . 2009-12-19 08:57 156672 ----a-w- c:\windows\system32\rmc_fixasf.exe
2009-12-15 13:59 . 2007-12-17 21:03 -------- d-----w- c:\program files\Opera
2009-12-12 11:06 . 2008-11-13 17:47 -------- d-----w- c:\program files\VirtualDJ
2009-11-21 16:46 . 2004-08-17 13:49 470528 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll
2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\opera\program\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\opera\program\plugins\ssldivx.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-05-06 68856]
"AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2009-04-24 203928]
"Google Update"="c:\documents and settings\Adam\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2009-06-30 133104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"36X Raid Configurer"="c:\windows\system32\JMRaidSetup.exe" [2007-02-06 1953792]
"RTHDCPL"="RTHDCPL.EXE" [2007-10-16 16855552]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-08-25 149280]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 528384]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-05-27 413696]
"Kerio VPN Client"="c:\program files\Kerio\VPN Client\kvpnclient.exe" [2008-01-16 2646016]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-01-28 2757512]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2010-02-02 1800464]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2007-01-19 5674352]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"="c:\windows\system32\Macromed\Flash\FlashUtil10b.exe" [2009-02-03 240544]
c:\documents and settings\Admin\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\guard32.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\hry_\\Track Mania Nations\\TrackMania Nations ESWC\\TmNationsESWC.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Documents and Settings\\Adam\\Miranda IM\\miranda32.exe"=
"c:\\Documents and Settings\\Adam\\Local Settings\\Data aplikací\\F4\\ClientUpdater\\ClientUpdater.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2.2.2010 19:10 163280]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [2.2.2010 22:03 134344]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2.2.2010 22:03 25160]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2.2.2010 19:10 19024]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [29.10.2009 12:27 1074568]
R2 Prvflder;Prvflder;c:\windows\system32\drivers\prvflder.sys [21.4.2006 7:22 70912]
R3 kvpndev;Kerio VPN adapter;c:\windows\system32\drivers\kvpndrv.sys [16.1.2008 9:58 65024]
S0 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
S2 gupdate1c9dfa1b149dc4a;Google Update Service (gupdate1c9dfa1b149dc4a);c:\program files\Google\Update\GoogleUpdate.exe [28.5.2009 15:36 133104]
S2 Wodkjuntryo;Wodkjuntryo;c:\windows\System32\svchost.exe -k netsvcs [17.8.2004 14:49 14336]
S3 GarenaPEngine;GarenaPEngine;\??\c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp --> c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp [?]
S3 PAC207;VideoCAM GE111;c:\windows\system32\drivers\pfc027.sys [8.4.2005 10:46 162176]
S3 s115bus;Sony Ericsson Device 115 driver (WDM);c:\windows\system32\drivers\s115bus.sys [1.10.2008 17:59 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;c:\windows\system32\drivers\s115mdfl.sys [1.10.2008 17:59 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;c:\windows\system32\drivers\s115mdm.sys [1.10.2008 17:59 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s115mgmt.sys [1.10.2008 17:59 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;c:\windows\system32\drivers\s115obex.sys [1.10.2008 17:59 98568]
S3 SynasUSB;SynasUSB;c:\windows\system32\drivers\synasUSB.sys [25.1.2009 21:45 16896]
S3 tap0801;TAP-Win32 Adapter V8;c:\windows\system32\drivers\tap0801.sys [1.10.2006 13:37 26624]
S3 tap0901_2gm;VPN Anonymizer Adapter;c:\windows\system32\drivers\tap0901_2gm.sys [21.6.2007 15:21 30720]
.
Obsah adresáře 'Naplánované úlohy'
2010-02-03 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-01-25 18:04]
2010-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-28 14:36]
2010-02-03 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2009-05-06 16:11]
.
.
------- Doplňkový sken -------
.
uStart Page =
uDefault_Search_URL =
uInternet Settings,ProxyOverride = local
uSearchAssistant =
uCustomizeSearch =
IE: &Search
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Download all with Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm
IE: Download selected with Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm
IE: Download video with Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Download with Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{14CD42DD-ABCD-3586-DCAB-40E3693E3737} - c:\program files\Stylish Profile\ct.htm
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\Adam\Nabídka Start\Programy\IMVU\Run IMVU.lnk
FF - ProfilePath - c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz/
FF - component: c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - component: c:\documents and settings\Adam\Data aplikací\Mozilla\Firefox\Profiles\0gth7nk8.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1851.5542\npCIDetect14.dll
FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Opera\program\plugins\npdivx32.dll
FF - plugin: c:\program files\Veetle\Player\npvlc.dll
FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKCU-Run-EA Core - c:\program files\Electronic Arts\EADM\Core.exe
AddRemove-AdVantage_DAEM - c:\program files\AdVantage\AdVUninst.exe
AddRemove-EADM - c:\program files\Electronic Arts\EADM\Uninstall.exe
AddRemove-Filmotéka_is1 - c:\filmoteka\unins000.exe
AddRemove-Native Instruments Traktor DJ Studio v2.5.3 - c:\progra~1\NATIVE~1\TRAKTO~1\UNWISE.EXE
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-03 18:14
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwClose, ZwOpenFile
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GarenaPEngine]
"ImagePath"="\??\c:\docume~1\Adam\LOCALS~1\Temp\PJO758F.tmp"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(936)
c:\windows\system32\guard32.dll
c:\windows\system32\Ati2evxx.dll
- - - - - - - > 'lsass.exe'(992)
c:\windows\system32\guard32.dll
.
Celkový čas: 2010-02-03 18:17:49
ComboFix-quarantined-files.txt 2010-02-03 17:17
Před spuštěním: 3 662 798 848
Po spuštění: 3 774 107 648
- - End Of File - - 996BD3A008E495AE283E7498D2CB1555
Přispějete na provoz fóra?