Prosim o kontrolu logov

Zpráva

freem1 · #1 Příspěvek od **freem1** » 26 led 2010 23:54

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:50:31, on 26.01.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\SOUNDMAN.EXE
D:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\SweetIM\Messenger\SweetIM.exe
D:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\PixArt\PAC7302\Monitor.exe
D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
C:\Program Files\Common Files\BinarySense\hldasvc.exe
C:\Program Files\Common Files\BinarySense\hldasvc.exe
C:\WINDOWS\system32\CNAB4RPK.EXE
D:\Program Files\ICQ6Toolbar\ICQ Service.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
D:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
C:\WINDOWS\System32\TUProgSt.exe
D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
D:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
D:\Program Files\QIP\qip.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Z internetu stiahnute\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - D:\PROGRA~1\Crawler\ctbr.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - D:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - d:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - D:\PROGRA~1\Crawler\ctbr.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - d:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SpywareTerminator] "D:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SweetIM] D:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\PAC7302\Monitor.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [swg] "D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Previesť cieľ odkazu do formátu Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Previesť do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Pridať cieľ odkazu do existujúceho súboru PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Pridať do existujúceho súboru PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - D:\Program Files\QIP\qip.exe (HKCU)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: hddlife - {BD758015-47D9-477A-8873-4B688A2BC0E2} - "C:\Program Files\Common Files\BinarySense\hlAPP.dll" (file missing)
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - d:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - D:\PROGRA~1\Crawler\ctbr.dll
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - D:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Software Updater (gusvc) - Google - D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HDDlife HDD Access service - BinarySense, Inc. - C:\Program Files\Common Files\BinarySense\hldasvc.exe
O23 - Service: ICQ Service - Unknown owner - D:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - D:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: NBService - Nero AG - D:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - D:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - D:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
O23 - Service: Uniblue DiskRescue - Uniblue - D:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe

--
End of file - 15175 bytes

Logfile of random's system information tool 1.06 (written by random/random)
Run by Freemen at 2010-01-26 23:53:20
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 3 GB (10%) free of 30 GB
Total RAM: 1023 MB (30% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:53:26, on 26.01.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\SOUNDMAN.EXE
D:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\SweetIM\Messenger\SweetIM.exe
D:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\PixArt\PAC7302\Monitor.exe
D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
C:\Program Files\Common Files\BinarySense\hldasvc.exe
C:\Program Files\Common Files\BinarySense\hldasvc.exe
C:\WINDOWS\system32\CNAB4RPK.EXE
D:\Program Files\ICQ6Toolbar\ICQ Service.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
D:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
C:\WINDOWS\System32\TUProgSt.exe
D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
D:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
D:\Program Files\QIP\qip.exe
D:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\NOTEPAD.EXE
D:\Z internetu stiahnute\RSIT.exe
D:\Z internetu stiahnute\Freemen.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - D:\PROGRA~1\Crawler\ctbr.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - D:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - d:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - D:\PROGRA~1\Crawler\ctbr.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - d:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SpywareTerminator] "D:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SweetIM] D:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\PAC7302\Monitor.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [swg] "D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Previesť cieľ odkazu do formátu Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Previesť do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Pridať cieľ odkazu do existujúceho súboru PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Pridať do existujúceho súboru PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - D:\Program Files\QIP\qip.exe (HKCU)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: hddlife - {BD758015-47D9-477A-8873-4B688A2BC0E2} - "C:\Program Files\Common Files\BinarySense\hlAPP.dll" (file missing)
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - d:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - D:\PROGRA~1\Crawler\ctbr.dll
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - D:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Software Updater (gusvc) - Google - D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HDDlife HDD Access service - BinarySense, Inc. - C:\Program Files\Common Files\BinarySense\hldasvc.exe
O23 - Service: ICQ Service - Unknown owner - D:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - D:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: NBService - Nero AG - D:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - D:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - D:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
O23 - Service: Uniblue DiskRescue - Uniblue - D:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe

--
End of file - 15240 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Automatic troubleshooting.job
C:\WINDOWS\tasks\Uniblue DiskRescue 2009.job
C:\WINDOWS\tasks\Uniblue SpyEraser.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
D:\PROGRA~1\Crawler\ctbr.dll [2008-12-03 1194496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2009-11-05 503808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - D:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-12-27 312928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-13 259696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - D:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-18 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - d:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-11-23 204048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-12-23 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-12-23 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-05-20 1258808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2009-11-05 503808]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler Toolbar - D:\PROGRA~1\Crawler\ctbr.dll [2008-12-03 1194496]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-13 259696]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2009-06-01 962808]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - d:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-11-23 204048]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-05-20 1258808]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-12-05 8523776]
"nwiz"=nwiz.exe /install []
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-05-17 77824]
"SpywareTerminator"=D:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe [2008-12-19 2267136]
"avast!"=D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"SweetIM"=D:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-05-20 111928]
"SunJavaUpdateSched"=D:\Program Files\Java\jre6\bin\jusched.exe [2009-12-23 149280]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-12-27 198160]
"PAC7302_Monitor"=C:\WINDOWS\PixArt\PAC7302\Monitor.exe [2007-12-10 323584]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-09-14 68856]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2007-11-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=D:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableStatusMessages"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoStartMenuPinnedList"=0
"NoStartMenuMFUprogramsList"=0
"NoUserNameInStartMenu"=0
"NoStartMenuSubFolders"=0
"NoCommonGroups"=0
"NoPrinterTabs"=0
"NoDeletePrinter"=0
"NoAddPrinter"=0
"NoPrinters"=0
"NoFavoritesMenu"=0
"NoDrives"=0
"NoRecentDocsNetHood"=0
"NoChangeAnimation"=0
"NoChangeKeyboardNavigationIndicators"=0
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="D:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\WINDOWS\system32\CNAB4RPK.EXE"="C:\WINDOWS\system32\CNAB4RPK.EXE:*:Disabled:Canon LBP2900 RPC Server Process"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"D:\Program Files\BitTorrent\bittorrent.exe"="D:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"D:\Program Files\DNA\btdna.exe"="D:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"D:\Program Files\Winamp Remote\bin\Orb.exe"="D:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb"
"D:\Program Files\Winamp Remote\bin\OrbTray.exe"="D:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray"
"D:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe"="D:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client"
"D:\Program Files\Windows Live\Messenger\msnmsgr.exe"="D:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"D:\Program Files\Windows Live\Messenger\livecall.exe"="D:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"D:\Program Files\LimeWire\LimeWire.exe"="D:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"D:\Program Files\Google\Google Talk\googletalk.exe"="D:\Program Files\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk"
"D:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe"="D:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager"
"D:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe"="D:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile"
"D:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe"="D:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:*:Enabled:umi"
"D:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe"="D:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin"
"C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.dll"="C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.dll:*:Enabled:Google Talk Plugin"
"C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe"="C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"D:\Program Files\ICQ6.5\ICQ.exe"="D:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\Windows Live\Messenger\msnmsgr.exe"="D:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"D:\Program Files\Windows Live\Messenger\livecall.exe"="D:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{10e662db-f52c-11de-80be-00138f7f1a94}]
shell\AutoRun\command - G:\pccompanion\Startme.exe
shell\menu1\command - G:\pccompanion\Startme.exe

======File associations======

.bat - edit - %SystemRoot%\System32\NOTEPAD.EXE %1"
.ini - open - %SystemRoot%\System32\NOTEPAD.EXE %1"
.js - open - NOTEPAD.EXE %1
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
.vbs - open - NOTEPAD.EXE %1

======List of files/folders created in the last 1 months======

2010-01-24 10:46:09 ----D---- C:\Documents and Settings\Freemen\Data aplikací\RaimaRadioPro
2010-01-24 10:46:03 ----D---- D:\Program Files\RarmaRadio
2010-01-18 14:59:27 ----D---- C:\tmpDownload
2010-01-18 13:30:44 ----D---- C:\tmp
2010-01-17 23:28:40 ----A---- C:\WINDOWS\system32\TURegOpt.exe
2010-01-17 23:28:38 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2010-01-17 23:27:46 ----D---- D:\Program Files\TuneUp Utilities 2010
2010-01-17 19:37:50 ----D---- C:\Demo-2010
2010-01-13 11:10:35 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-13 11:10:10 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-01-04 15:24:57 ----D---- D:\Program Files\Elcom
2010-01-04 15:23:02 ----D---- C:\WINDOWS\Binaries
2010-01-04 15:21:06 ----D---- C:\Demo
2010-01-03 16:20:10 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-01-03 15:51:40 ----A---- C:\WINDOWS\system32\Remover.ini
2010-01-03 15:51:40 ----A---- C:\WINDOWS\system32\Remove.exe
2010-01-03 15:51:38 ----A---- C:\WINDOWS\system32\CoInst_071029.dll
2010-01-03 15:51:31 ----D---- D:\Program Files\ANC
2010-01-03 15:51:30 ----A---- C:\WINDOWS\system32\SP7302.INI
2010-01-03 15:51:27 ----A---- C:\WINDOWS\system32\P7302USD.dll
2010-01-03 15:51:25 ----D---- C:\WINDOWS\PixArt
2010-01-03 15:51:25 ----D---- C:\Program Files\Common Files\PAC7302
2009-12-28 00:03:35 ----A---- C:\Documents and Settings\All Users\Data aplikací\mazuki.dll
2009-12-27 23:55:41 ----A---- C:\WINDOWS\system32\wpcap.dll
2009-12-27 23:55:41 ----A---- C:\WINDOWS\system32\WanPacket.dll
2009-12-27 23:55:41 ----A---- C:\WINDOWS\system32\pthreadVC.dll
2009-12-27 23:55:41 ----A---- C:\WINDOWS\system32\Packet.dll
2009-12-27 23:55:30 ----D---- D:\Program Files\E.M. Youtube Video Download Tool
2009-12-27 23:35:28 ----D---- C:\Program Files\Common Files\xing shared
2009-12-27 23:35:08 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2009-12-27 23:21:33 ----D---- D:\Program Files\Real
2009-12-27 23:21:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Real
2009-12-27 23:02:52 ----D---- D:\Program Files\DVDVideoSoft
2009-12-27 23:02:52 ----D---- C:\Program Files\Common Files\DVDVideoSoft
2009-12-27 15:43:00 ----D---- D:\Program Files\ConvertHelper
2009-12-27 12:59:06 ----D---- C:\Smaragd
2009-12-27 12:49:48 ----D---- C:\Documents and Settings\Freemen\Data aplikací\gtk-2.0
2009-12-27 12:48:54 ----D---- C:\Documents and Settings\Freemen\Data aplikací\avidemux
2009-12-27 12:48:16 ----D---- D:\Program Files\Avidemux 2.4

======List of files/folders modified in the last 1 months======

2010-01-26 23:51:42 ----D---- C:\WINDOWS\Prefetch
2010-01-26 23:23:13 ----D---- C:\WINDOWS\temp
2010-01-26 23:20:40 ----D---- D:\Program Files\Mozilla Firefox
2010-01-26 23:19:02 ----D---- C:\Program Files\Common Files\Akamai
2010-01-26 23:18:41 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-01-26 18:47:25 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-26 18:47:11 ----D---- C:\Documents and Settings\Freemen\Data aplikací\Skype
2010-01-26 11:07:55 ----SHD---- C:\WINDOWS\Installer
2010-01-26 11:07:54 ----SHD---- C:\Config.Msi
2010-01-26 11:07:49 ----D---- C:\WINDOWS
2010-01-26 10:46:02 ----D---- C:\Demoverzia Alfa
2010-01-26 10:43:11 ----D---- C:\ALFA
2010-01-25 18:00:42 ----D---- C:\Documents and Settings\Freemen\Data aplikací\Spyware Terminator
2010-01-23 12:05:24 ----D---- C:\WINDOWS\system32
2010-01-22 12:06:27 ----HD---- C:\WINDOWS\inf
2010-01-22 12:06:21 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-01-22 12:06:19 ----D---- D:\Program Files\internet explorer
2010-01-22 12:06:12 ----D---- C:\WINDOWS\ie8updates
2010-01-22 12:05:59 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-22 12:05:55 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-21 22:47:31 ----D---- C:\Documents and Settings\Freemen\Data aplikací\ICQ
2010-01-20 17:13:04 ----D---- D:\Program Files\Microsoft Silverlight
2010-01-19 14:46:23 ----A---- C:\WINDOWS\win.ini
2010-01-19 12:56:50 ----D---- C:\Civil 3D Projects
2010-01-19 12:55:44 ----D---- D:\Program Files\AutoCAD Civil 3D 2010
2010-01-19 12:09:11 ----D---- C:\Documents and Settings\Freemen\Data aplikací\TrekBuddy Atlas Creator
2010-01-18 15:18:36 ----D---- C:\download
2010-01-17 23:28:47 ----SD---- C:\WINDOWS\Tasks
2010-01-17 23:08:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
2010-01-17 13:14:14 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-13 12:36:22 ----D---- C:\WINDOWS\AppPatch
2010-01-13 11:12:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-01-13 11:10:44 ----A---- C:\WINDOWS\imsins.BAK
2010-01-12 13:58:34 ----D---- C:\Documents and Settings\Freemen\Data aplikací\BitTorrent
2010-01-11 13:00:42 ----D---- D:\Program Files\Spyware Terminator
2010-01-09 16:16:03 ----D---- D:\Program Files\WinRAR
2010-01-09 15:04:22 ----D---- D:\Program Files\QIP
2010-01-09 13:33:52 ----D---- C:\Documents and Settings\Freemen\Data aplikací\WinRAR
2010-01-07 15:25:55 ----D---- D:\Program Files\Crawler
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
2010-01-04 15:22:50 ----A---- C:\WINDOWS\system32\ANGELVDD.DLL
2010-01-03 16:21:41 ----D---- C:\WINDOWS\system32\drivers
2010-01-03 16:20:13 ----D---- C:\WINDOWS\twain_32
2010-01-03 15:51:24 ----HD---- D:\Program Files\InstallShield Installation Information
2009-12-31 00:08:42 ----D---- D:\Program Files\ICQ6.5
2009-12-30 18:34:57 ----D---- D:\Program Files\Malwarebytes' Anti-Malware
2009-12-27 23:36:07 ----D---- C:\Documents and Settings\Freemen\Data aplikací\Real
2009-12-27 23:35:13 ----D---- C:\Program Files\Common Files\Real
2009-12-27 23:34:55 ----A---- C:\WINDOWS\system32\pndx5032.dll
2009-12-27 23:34:54 ----A---- C:\WINDOWS\system32\pndx5016.dll
2009-12-27 23:34:53 ----A---- C:\WINDOWS\system32\msvcr71.dll
2009-12-27 23:34:52 ----A---- C:\WINDOWS\system32\pncrt.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R2 Angelnt;Angelnt; C:\WINDOWS\System32\Drivers\ANGELNT.SYS [2010-01-04 51072]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 LF30FS;LF30FS; \??\D:\Program Files\Everstrike Software\Lock Folder XP 3.6\LF30XP.sys []
R2 tifsfilter;Acronis True Image FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2008-05-31 44384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-05-18 2319680]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-12-05 7435392]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2004-05-17 33280]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2004-05-17 12928]
R3 PAC7302;Media-Tech Camera; C:\WINDOWS\system32\DRIVERS\PAC7302.SYS [2008-05-12 460544]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 ROCKEYNT;Feitian ROCKEY4 Device Service; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [2009-10-12 22016]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
S3 aouv64cb;aouv64cb; C:\WINDOWS\system32\drivers\aouv64cb.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-05-07 16168]
S3 ggsemc;Sony Ericsson USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys []
S3 mbr;mbr; \??\C:\DOCUME~1\Freemen\LOCALS~1\Temp\mbr.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NPF;WinPcap Packet Driver (NPF); C:\WINDOWS\system32\drivers\NPF.sys [2007-11-07 34064]
S3 sea1bus;Sony Ericsson Device 0A1 driver (WDM); C:\WINDOWS\system32\DRIVERS\sea1bus.sys [2007-02-08 61536]
S3 sea1mdfl;Sony Ericsson Device 0A1 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\sea1mdfl.sys [2007-02-08 9360]
S3 sea1mdm;Sony Ericsson Device 0A1 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\sea1mdm.sys [2007-02-08 97088]
S3 sea1mgmt;Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\sea1mgmt.sys [2007-02-08 88624]
S3 sea1nd5;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS); C:\WINDOWS\system32\DRIVERS\sea1nd5.sys [2007-02-08 18704]
S3 sea1obex;Sony Ericsson Device 0A1 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\sea1obex.sys [2007-02-08 86432]
S3 sea1unic;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM); C:\WINDOWS\system32\DRIVERS\sea1unic.sys [2007-02-08 90800]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WimFltr;WimFltr; C:\WINDOWS\system32\DRIVERS\wimfltr.sys [2008-01-19 128104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2007-11-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2007-11-18 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2007-10-23 427288]
R2 Akamai;Akamai NetSession Interface; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 aswUpdSv;avast! iAVS4 Control Service; D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; D:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe [2004-07-14 65536]
R2 HDDlife HDD Access service;HDDlife HDD Access service; C:\Program Files\Common Files\BinarySense\hldasvc.exe [2008-02-15 832760]
R2 ICQ Service;ICQ Service; D:\Program Files\ICQ6Toolbar\ICQ Service.exe [2009-06-01 222968]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; D:\Program Files\Java\jre6\bin\jqs.exe [2009-12-23 153376]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; D:\Program Files\McAfee\SiteAdvisor\McSACore.exe [2009-12-08 93320]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2009-04-08 1377536]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared files\RichVideo.exe [2005-08-08 167936]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; D:\Program Files\Spyware Terminator\sp_rsser.exe [2008-12-19 540672]
R2 TryAndDecideService;Acronis Try And Decide Service; C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe [2007-10-23 495832]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-12-17 604488]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-12-18 1044808]
R2 Uniblue DiskRescue;Uniblue DiskRescue; D:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe [2008-09-10 229648]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; D:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe [2004-07-14 1527887]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2008-11-14 85096]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-01-28 651720]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-02 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; D:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; D:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-01-17 435016]
S3 usnjsvc;Služba Čtení deníku USN sdílených složek programu Messenger; D:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; D:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S4 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-12-05 155716]

-----------------EOF-----------------

freem1 · #2 Příspěvek od **freem1** » 27 led 2010 00:13

DDS (Ver_09-12-01.01) - NTFSx86
Run by Freemen at 23:56:51,37 on 26.01.2010
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_17
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1029.18.1023.303 [GMT 1:00]

AV: avast! antivirus 4.8.1368 [VPS 100126-1] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: COMODO Firewall Pro *disabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
C:\WINDOWS\Explorer.EXE
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\SOUNDMAN.EXE
D:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\SweetIM\Messenger\SweetIM.exe
D:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\PixArt\PAC7302\Monitor.exe
D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\WINDOWS\System32\svchost.exe -k Akamai
C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
C:\Program Files\Common Files\BinarySense\hldasvc.exe
C:\Program Files\Common Files\BinarySense\hldasvc.exe
C:\WINDOWS\system32\CNAB4RPK.EXE
D:\Program Files\ICQ6Toolbar\ICQ Service.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
D:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
C:\WINDOWS\System32\TUProgSt.exe
D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
D:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
D:\Program Files\QIP\qip.exe
D:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\NOTEPAD.EXE
C:\WINDOWS\System32\NOTEPAD.EXE
C:\Documents and Settings\Freemen\Plocha\dds.pif

============== Pseudo HJT Report ===============

uStart Page = about:blank
uSearchAssistant = hxxp://search.qip.ru/ie
uSearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
uURLSearchHooks: H - No File
uURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - d:\program files\icq6toolbar\ICQToolBar.dll
uURLSearchHooks: SweetIM ToolbarURLSearchHook Class: {eee6c35d-6118-11dc-9c72-001320c79847} - d:\program files\sweetim\toolbars\internet explorer\mgHelper.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: : {1cb20bf0-bbae-40a7-93f4-6435ff3d0411} - d:\progra~1\crawler\ctbr.dll
BHO: WebTransBHO Class: {2db66063-bb98-466a-aa0d-3e7acf5ed853} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - d:\program files\real\realplayer\rpbrowserrecordplugin.dll
BHO: Pomocná služba pro přihlášení ke službě Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - d:\program files\google\google toolbar\GoogleToolbar.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - d:\program files\google\googletoolbarnotifier\5.4.4525.1752\swg.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - d:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - d:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SweetIM Toolbar Helper: {eee6c35c-6118-11dc-9c72-001320c79847} - d:\program files\sweetim\toolbars\internet explorer\mgToolbarIE.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: WebTranslator: {bfc32e1d-ee75-4a48-bc60-104e11ee2431} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
TB: &Crawler Toolbar: {4b3803ea-5230-4dc3-a7fc-33638f3d3542} - d:\progra~1\crawler\ctbr.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - d:\program files\google\google toolbar\GoogleToolbar.dll
TB: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - d:\program files\icq6toolbar\ICQToolBar.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - d:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: SweetIM Toolbar for Internet Explorer: {eee6c35b-6118-11dc-9c72-001320c79847} - d:\program files\sweetim\toolbars\internet explorer\mgToolbarIE.dll
uRun: [swg] "d:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /install
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [SpywareTerminator] "d:\progra~1\spywar~1\SpywareTerminatorShield.exe"
mRun: [avast!] d:\progra~1\alwils~1\avast4\ashDisp.exe
mRun: [SweetIM] d:\program files\sweetim\messenger\SweetIM.exe
mRun: [SunJavaUpdateSched] "d:\program files\java\jre6\bin\jusched.exe"
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [PAC7302_Monitor] c:\windows\pixart\pac7302\Monitor.exe
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [nltide_2] regsvr32 /s /n /i:U shell32
dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
uPolicies-explorer: NoStartMenuSubFolders = 0 (0x0)
uPolicies-explorer: NoCommonGroups = 0 (0x0)
uPolicies-explorer: NoPrinters = 0 (0x0)
uPolicies-explorer: NoRecentDocsNetHood = 0 (0x0)
uPolicies-explorer: NoChangeAnimation = 0 (0x0)
dPolicies-explorer: DisallowRun = 0 (0x0)
IE: Crawler Search - tbr:iemenu
IE: E&xportovať do programu Microsoft Excel - d:\progra~1\micros~1\office12\EXCEL.EXE/3000
IE: Previesť cieľ odkazu do formátu Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Previesť do Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html
IE: Pridať cieľ odkazu do existujúceho súboru PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Pridať do existujúceho súboru PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html
IE: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe
IE: {BFC32E1D-EE75-4A48-BC60-104E11EE2431}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {E59EB121-F339-4851-A3BA-FE49C35617C2} - d:\program files\icq6.5\ICQ.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - d:\program files\messenger\msmsgs.exe
IE: {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\progra~1\micros~1\office12\REFIEBAR.DLL
IE: {CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
DPF: {33564D57-0000-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB
DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://download.bitdefender.com/resources/scan8/oscan8.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - d:\program files\google\google toolbar\component\fastsearch_A8904FB862BD9564.dll
Handler: hddlife - {BD758015-47D9-477A-8873-4B688A2BC0E2} - c:\program files\common files\binarysense\hlAPP.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - d:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - d:\progra~1\crawler\ctbr.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - d:\program files\windows desktop search\MSNLNamespaceMgr.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\freemen\dataap~1\mozilla\firefox\profiles\37awxsm7.default\
FF - prefs.js: browser.search.selectedEngine - QIP Search
FF - prefs.js: browser.startup.homepage - hxxp://start.icq.com/
FF - prefs.js: keyword.URL - hxxp://search.qip.ru/search?from=FF&query=
FF - component: d:\program files\mcafee\siteadvisor\components\McFFPlg.dll
FF - component: d:\program files\real\realplayer\browserrecord\components\nprpbrowserrecordplugin.dll
FF - plugin: c:\documents and settings\freemen\data aplikacă\mozilla\firefox\profiles\37awxsm7.default\extensions\npdevalvr@devalvr.com\plugins\npdevalvr.dll
FF - plugin: c:\documents and settings\freemen\data aplikacă\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\freemen\local settings\data aplikacă\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nppl3260.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprjplug.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpjplug.dll
FF - plugin: d:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: d:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dll
FF - plugin: d:\program files\k-lite codec pack\real\browser\plugins\nprpjplug.dll
FF - plugin: d:\program files\microsoft\office live\npOLW.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npbittorrent.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npdrmv2.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npdsplay.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npMaeC3D.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npOGAPlugin.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npwmsdrm.dll
FF - plugin: d:\program files\opera\program\plugins\npMaeC3D.dll
FF - plugin: d:\program files\opera\program\plugins\nppdf32.dll
FF - plugin: d:\program files\opera\program\plugins\nppl3260.dll
FF - plugin: d:\program files\opera\program\plugins\nprpjplug.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - d:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - d:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
d:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.default.XMLHttpRequest.channel", "noAccess");
d:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.jit.chrome", false);
d:\program files\mozilla firefox\greprefs\all.js - pref("security.checkloaduri", true);
d:\program files\mozilla firefox\greprefs\all.js - pref("bidi.characterset", 1);
d:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
d:\program files\mozilla firefox\defaults\pref\channel-prefs.js - pref("app.update.channel", "release");
d:\program files\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");

============= SERVICES / DRIVERS ===============

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-12-19 114768]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2008-12-19 142592]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2004-8-17 14336]
R2 Angelnt;Angelnt;c:\windows\system32\drivers\ANGELNT.SYS [2008-5-15 51072]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-12-19 20560]
R2 avast! Antivirus;avast! Antivirus;d:\program files\alwil software\avast4\ashServ.exe [2008-12-19 138680]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\firebird\firebird_1_5\bin\fbguard.exe -s --> c:\program files\firebird\firebird_1_5\bin\fbguard.exe -s [?]
R2 HDDlife HDD Access service;HDDlife HDD Access service;c:\program files\common files\binarysense\hldasvc.exe [2008-2-15 832760]
R2 ICQ Service;ICQ Service;d:\program files\icq6toolbar\ICQ Service.exe [2009-7-15 222968]
R2 LF30FS;LF30FS;d:\program files\everstrike software\lock folder xp 3.6\LF30XP.sys [2004-11-19 101488]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;d:\program files\mcafee\siteadvisor\McSACore.exe [2009-8-11 93320]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;d:\program files\tuneup utilities 2010\TuneUpUtilitiesService32.exe [2009-12-18 1044808]
R2 Uniblue DiskRescue;Uniblue DiskRescue;d:\program files\uniblue\diskrescue\UBDiskRescueSrv.exe [2008-9-10 229648]
R3 avast! Mail Scanner;avast! Mail Scanner;d:\program files\alwil software\avast4\ashMaiSv.exe [2008-12-19 254040]
R3 avast! Web Scanner;avast! Web Scanner;d:\program files\alwil software\avast4\ashWebSv.exe [2008-12-19 352920]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\firebird\firebird_1_5\bin\fbserver.exe -s --> c:\program files\firebird\firebird_1_5\bin\fbserver.exe -s [?]
R3 PSched;Plánovač paketů technologie QoS;c:\windows\system32\drivers\psched.sys [2004-8-3 69120]
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter;\??\c:\windows\system32\drivers\nsdriver.sys --> c:\windows\system32\drivers\NSDriver.sys [?]
S3 mbr;mbr;\??\c:\docume~1\freemen\locals~1\temp\mbr.sys --> c:\docume~1\freemen\locals~1\temp\mbr.sys [?]
S3 NPF;WinPcap Packet Driver (NPF);c:\windows\system32\drivers\npf.sys [2009-12-27 34064]
S3 sea1bus;Sony Ericsson Device 0A1 driver (WDM);c:\windows\system32\drivers\sea1bus.sys [2008-11-15 61536]
S3 sea1mdfl;Sony Ericsson Device 0A1 USB WMC Modem Filter;c:\windows\system32\drivers\sea1mdfl.sys [2008-11-15 9360]
S3 sea1mdm;Sony Ericsson Device 0A1 USB WMC Modem Driver;c:\windows\system32\drivers\sea1mdm.sys [2008-11-15 97088]
S3 sea1mgmt;Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\sea1mgmt.sys [2008-11-15 88624]
S3 sea1nd5;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS);c:\windows\system32\drivers\sea1nd5.sys [2008-11-15 18704]
S3 sea1obex;Sony Ericsson Device 0A1 USB WMC OBEX Interface;c:\windows\system32\drivers\sea1obex.sys [2008-11-15 86432]
S3 sea1unic;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM);c:\windows\system32\drivers\sea1unic.sys [2008-11-15 90800]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;d:\program files\tuneup utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]

============== File Associations ===============

inifile=%SystemRoot%\System32\NOTEPAD.EXE %1"
JSEFile=NOTEPAD.EXE %1
VBEFile=NOTEPAD.EXE %1
VBSFile=NOTEPAD.EXE %1

=============== Created Last 30 ================

2010-01-24 09:46:09 0 d-----w- c:\docume~1\freemen\dataap~1\RaimaRadioPro
2010-01-24 09:46:03 0 d-----w- d:\program files\RarmaRadio
2010-01-18 13:59:27 0 d-----w- C:\tmpDownload
2010-01-18 12:30:44 0 d-----w- C:\tmp
2010-01-17 22:28:40 30536 ----a-w- c:\windows\system32\TURegOpt.exe
2010-01-17 22:28:38 30024 ----a-w- c:\windows\system32\uxtuneup.dll
2010-01-17 22:27:46 0 d-----w- d:\program files\TuneUp Utilities 2010
2010-01-17 18:37:50 0 d-----w- C:\Demo-2010
2010-01-04 14:24:57 0 d-----w- d:\program files\Elcom
2010-01-04 14:23:02 0 d-----w- c:\windows\Binaries
2010-01-04 14:21:06 0 d-----w- C:\Demo
2010-01-03 15:23:26 921632 ----a-w- C:\PA7302.DAT
2010-01-03 15:10:57 60032 -c--a-w- c:\windows\system32\dllcache\usbaudio.sys
2010-01-03 15:10:57 60032 ----a-w- c:\windows\system32\drivers\USBAUDIO.sys
2010-01-03 14:51:40 48128 ----a-w- c:\windows\system32\Remove.exe
2010-01-03 14:51:40 323 ----a-w- c:\windows\system32\Remover.ini
2010-01-03 14:51:38 6656 ----a-w- c:\windows\system32\CoInst_071029.dll
2010-01-03 14:51:38 460544 ----a-w- c:\windows\system32\drivers\PAC7302.SYS
2010-01-03 14:51:31 0 d-----w- d:\program files\ANC
2010-01-03 14:51:30 885 ----a-w- c:\windows\system32\SP7302.INI
2010-01-03 14:51:29 141824 ----a-w- c:\windows\system32\SP7302.AX
2010-01-03 14:51:27 14336 ----a-w- c:\windows\system32\P7302USD.dll
2010-01-03 14:51:25 0 d-----w- c:\windows\PixArt
2010-01-03 14:51:25 0 d-----w- c:\program files\common files\PAC7302
2009-12-27 23:03:35 34308 ----a-w- c:\docume~1\alluse~1\dataap~1\mazuki.dll
2009-12-27 23:03:08 0 ----a-w- c:\windows\system32\Infob.dat
2009-12-27 23:03:08 0 ----a-w- c:\windows\system32\Infoa.dat
2009-12-27 22:57:47 305 ----a-w- c:\windows\system32\treeinfo.dat

==================== Find3M ====================

2010-01-04 14:22:50 51072 ----a-w- c:\windows\system32\drivers\ANGELNT.SYS
2010-01-04 14:22:50 20480 ----a-w- c:\windows\system32\ANGELVDD.DLL
2010-01-04 14:22:50 11520 ----a-w- c:\windows\system32\drivers\angelusb.sys
2009-12-27 22:34:53 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-12-23 12:24:19 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-12-21 19:08:42 916480 ----a-w- c:\windows\system32\wininet.dll
2009-12-17 13:07:16 604488 ----a-w- c:\windows\system32\TUProgSt.exe
2009-12-17 13:07:15 361288 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-12-11 18:00:00 85504 ----a-w- c:\windows\system32\ff_vfw.dll
2009-12-03 15:14:06 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-03 15:13:56 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-11-14 00:49:00 129784 ------w- c:\windows\system32\pxafs.dll
2009-11-14 00:49:00 120056 ------w- c:\windows\system32\pxcpyi64.exe
2009-11-14 00:49:00 118520 ------w- c:\windows\system32\pxinsi64.exe
2009-11-14 00:47:28 856064 ----a-w- c:\windows\system32\divx_xx0c.dll
2009-11-14 00:47:28 856064 ----a-w- c:\windows\system32\divx_xx07.dll
2009-11-14 00:47:28 847872 ----a-w- c:\windows\system32\divx_xx0a.dll
2009-11-14 00:47:28 843776 ----a-w- c:\windows\system32\divx_xx16.dll
2009-11-14 00:47:28 839680 ----a-w- c:\windows\system32\divx_xx11.dll
2009-11-14 00:47:28 696320 ----a-w- c:\windows\system32\DivX.dll
2009-11-01 20:45:36 489722 ----a-w- c:\windows\system32\perfh005.dat
2009-11-01 20:45:36 106238 ----a-w- c:\windows\system32\perfc005.dat
2006-05-03 10:06:54 163328 --sh--r- c:\windows\system32\flvDX.dll
2007-02-21 11:47:16 31232 --sh--r- c:\windows\system32\msfDX.dll
2008-03-16 13:30:52 216064 --sh--r- c:\windows\system32\nbDX.dll
2008-08-24 09:20:04 16384 --sha-w- c:\windows\system32\config\systemprofile\cookies\index.dat
2008-08-24 09:20:04 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\index.dat
2008-08-24 09:19:55 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008082420080825\index.dat
2008-08-24 09:20:04 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\temporary internet files\content.ie5\index.dat

============= FINISH: 23:57:54,98 ===============

pitimir · #3 Příspěvek od **pitimir** » 27 led 2010 11:16

Ahoj, nejaky problem?

Priznam sa, ze neznasam zbytocne toolbary, mozme ich odstrelit?

freem1 · #4 Příspěvek od **freem1** » 03 úno 2010 09:04

Ano. Mam taky problem , ze sa mi niekedy pocitac vypne a niekedy zase nie.....

pitimir · #5 Příspěvek od **pitimir** » 03 úno 2010 17:30

Trosku lepsie opisat ten problem by sa nedalo?

1) Stiahni SRENG. Spust program, klikni na "System Repair" -> "File Association". Tu zafajknes vsetky, ktore maju Error Status a klik na "Repair".

2) Stiahni OTL. Uloz na plochu a spust dvojklikom subor "OTL.exe". Otvori sa okno programu, v nom zaskrtni "Scan All Users", "Lop" aj "Purity Check" a "File Scan" zmen na 7 dni miesto 30. Do policka pod nazvom "Custom Scans/Fixes" skopiruj:

Kód: Vybrat vše

netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
CREATERESTOREPOINT

Potom klikni na "Run Scan". Zacne scan pocitaca, po jeho ukonceni sa otvoria dva reporty - obsah oboch potrebujem vidiet.

freem1 · #6 Příspěvek od **freem1** » 03 úno 2010 22:17

Takze tu su

OTL Extras logfile created on: 03.02.2010 21:44:34 - Run 1
OTL by OldTimer - Version 3.1.27.1 Folder = C:\Documents and Settings\Freemen\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: dd.MM.yyyy

1 023,00 Mb Total Physical Memory | 356,00 Mb Available Physical Memory | 35,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 29,30 Gb Total Space | 2,68 Gb Free Space | 9,15% Space Free | Partition Type: NTFS
Drive D: | 268,79 Gb Total Space | 1,97 Gb Free Space | 0,73% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: FREEMEN-95805D5
Current User Name: Freemen
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- D:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.scr [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.scr [@ = scrfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "D:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "D:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "D:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "D:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "D:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- D:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Force Uninstall] -- D:\Program Files\Perfect Uninstaller\PU.exe "%1" ()
Directory [JpegResamplerDir] -- "D:\Program Files\JPEG Resampler\JpegResampler.exe" "%1" (David Macek)
Directory [Môj CEWE Fotosvet] -- "D:\Program Files\CEWE Fotosvet\Môj CEWE Fotosvet\Môj CEWE Fotosvet.exe" "%1" ()
Directory [Môj CEWE Fotosvet.exe] -- "D:\Program Files\CEWE Fotosvet\Môj CEWE Fotosvet\Môj CEWE Fotosvet.exe" "%1" ()
Directory [PlayWithVLC] -- D:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "D:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "D:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "D:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "D:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "D:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"5190:TCP" = 5190:TCP:*:Enabled:icq
"5190:UDP" = 5190:UDP:*:Enabled:icq2
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"D:\Program Files\Windows Live\Messenger\livecall.exe" = D:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone) -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = D:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\WINDOWS\system32\CNAB4RPK.EXE" = C:\WINDOWS\system32\CNAB4RPK.EXE:*:Disabled:Canon LBP2900 RPC Server Process -- (CANON INC.)
"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.)
"D:\Program Files\BitTorrent\bittorrent.exe" = D:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)
"D:\Program Files\DNA\btdna.exe" = D:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.)
"D:\Program Files\Winamp Remote\bin\Orb.exe" = D:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb -- (Orb Networks, Inc.)
"D:\Program Files\Winamp Remote\bin\OrbTray.exe" = D:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray -- (Orb Networks)
"D:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe" = D:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client -- (Orb Networks)
"D:\Program Files\Windows Live\Messenger\livecall.exe" = D:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone) -- (Microsoft Corporation)
"D:\Program Files\LimeWire\LimeWire.exe" = D:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC)
"D:\Program Files\Google\Google Talk\googletalk.exe" = D:\Program Files\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk -- (Google)
"D:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe" = D:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager -- (Pinnacle Systems)
"D:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe" = D:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile -- ( )
"D:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe" = D:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:*:Enabled:umi -- (Pinnacle Systems)
"D:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe" = D:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin -- (Pinnacle Systems)
"C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.dll" = C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.dll:*:Enabled:Google Talk Plugin -- (Google)
"C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe" = C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin -- (Google)
"D:\Program Files\ICQ6.5\ICQ.exe" = D:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{02DFF6B1-1654-411C-8D7B-FD6052EF016F}" = Apple Software Update
"{08CA9554-B5FE-4313-938F-D4A417B81175}" = QuickTime
"{0C35EAE4-A535-46B7-B4BF-68952BD94E68}" = Uniblue DiskRescue 2009
"{0DEA94ED-915A-4834-A87E-388D012C8E02}" = Medal of Honor Allied Assault
"{1043E281-B080-4947-9BD7-3F1D233BF6D2}" = WinXP Manager
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Pomocník pro přihlášení ke službě Windows Live ID
"{121634B0-2F4B-11D3-ADA3-00C04F52DD52}" = Windows Installer Clean Up
"{15AFD370-C93B-4295-8849-986E59D17945}" = Nexus Radio
"{17EAD3D5-7E7D-47A3-A63C-C07AB46D468B}" = Windows Live Mail
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1BF66D77-6604-4f3f-B3AE-D640AFB58A88}" = Autodesk Vault 2010 (Client)
"{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs
"{205ACCD7-5342-4694-91F3-3A99E4FD5AA6}" = Mathcad 14 Help
"{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk" = Google Talk (remove only)
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{239BB983-8A2D-4974-B780-2ADAE32752D5}" = Windows Live installer
"{23C3F5C0-566B-478B-AAB6-197ADAD0C945}" = Uniblue SpeedUpMyPC 2009
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
"{280C9F2B-45ED-493B-B406-31C1434CAF7C}" = Survey Link Extension
"{2949F05A-0840-45E9-81AA-DFF630E2679E}" = Freeware PDF Unlocker
"{2F881B56-CBDF-4EC6-A8D2-6412A879C66A}_is1" = AMR Player 1.3
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{327B8A58-747E-4B53-B9F1-BCE209BD46C8}" = STORMWARE REPORT Viewer
"{33D5AD86-F82B-427E-A36B-FCE7773B9DF7}" = OMEGA 12.13.00
"{350ADE44-16B2-4F03-967D-0BA626570AAC}" = STORMWARE REPORT Viewer
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}" = McAfee SiteAdvisor
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3995EF63-2672-458F-88B2-355696C13C07}" = Hydraflow Hydrographs Extension for AutoCAD Civil 3D 2009
"{47A481C1-10BE-4EE9-9C81-879F4ACC9C4E}" = Poradca pre inováciu na systém Windows Vista
"{49FC50FC-F965-40D9-89B4-CBFF80941033}" = Windows Movie Maker 2.0
"{4EDB1CA5-983F-4FC3-A8E3-E34981E05A60}" = Pinnacle VideoSpin
"{5265664F-6128-405C-9225-9782A85954FD}" = USB Scanner
"{52CC5969-BBBF-4752-ACCB-5E835F64AF72}" = Windows Live Fotogalerie
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{547C9628-C490-48AB-94F4-7F2495562930}" = PDF to DWG Converter
"{548EAC70-EE00-11DD-908C-005056806466}" = Google Zem
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{55A29068-F2CE-456C-9148-C869879E2357}" = TuneUp Utilities 2009
"{55D9E026-DCB0-46FF-B60A-68B972228CF6}" = Autodesk Design Review 2010
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5783F2D6-7028-0409-0000-0060B0CE6BBA}" = DWG TrueView 2009
"{5783F2D7-7000-0405-0002-0060B0CE6BBA}" = AutoCAD Civil 3D 2009 - český
"{5783F2D7-7009-0405-0002-0060B0CE6BBA}" = AutoCAD LT 2009 - český
"{5783F2D7-8000-0405-0002-0060B0CE6BBA}" = AutoCAD Civil 3D 2010 - česky
"{5783F2D7-8000-0405-1002-0060B0CE6BBA}" = Jazykový balíček pro aplikaci AutoCAD Civil 3D 2010 – čeština
"{5783F2D7-8028-0409-0000-0060B0CE6BBA}" = DWG TrueView 2010
"{57CDBAE6-0896-4E78-88F0-C673E4BB44FD}" = Lock Folder XP 3.6
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{668B2B3A-4241-409F-A4AE-79B5016A487E}" = Sony Ericsson PC Suite
"{66DCA952-0A6D-46AB-93B9-64379F829FAD}" = Windows Live Writer
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{69E369F1-6A92-47B5-86D5-474A7E06B3DC}" = ALFA 16.02.00
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic
"{6EF72FC6-842E-4FE6-BF88-BFBF03C9DA74}" = Windows Workflow Foundation CS Language Pack
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{723D0010-CA4C-4248-B206-10B80B1EDBCC}" = Jazykový balíček Autodesk Vault 2010 (Client) – čeština
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{7B4D193B-D76D-308B-8B12-5D9BB1CBCE6C}" = Microsoft Visual Basic Power Packs 3.0
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"{7F947BFE-C2DF-4779-9909-5BEE746BD0C4}" = Microsoft .NET Framework 2.0 Language Pack - CSY
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8C13BEE4-E7CE-4E46-BD13-8F41DAD00FEF}" = SweetIM Toolbar for Internet Explorer 3.4
"{90120000-0010-041B-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Slovak) 12
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0015-041B-0000-0000000FF1CE}_PROPLUS_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_PROPLUS_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_PROPLUS_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}_PROPLUS_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_PROPLUS_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_PROPLUS_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_PROPLUS_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_PROPLUS_{573CA1BB-C8A3-46C4-993E-DB4043D9BFCD}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_PROPLUS_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}_PROPLUS_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_PROPLUS_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90F50409-6000-11D3-8CFE-0150048383C9}" = Visual Basic for Applications (R) Core
"{90F60409-6000-11D3-8CFE-0150048383C9}" = Visual Basic for Applications (R) Core - English
"{91C0B95B-B83A-4828-A775-BBE2DD421051}" = Nero 7 Premium
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A040AC77-C1AA-4CC9-8931-9F648AF178F6}" = VC 9.0 Runtime
"{A054FCB8-B570-4941-B37D-E8643E8973CA}" = Hydraflow Storm Sewers Extension for AutoCAD Civil 3D 2009
"{A2F2DFE6-6018-4128-B368-2DA39237309F}" = EasyRecovery Professional
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A59AB961-BE82-41E0-B0FB-648DFA6DDEA4}" = Media-Tech Camera
"{AA1C2742-4732-46BD-A194-018B3FC7CAC4}" = CENKROSplus
"{AAB6D0F8-02B3-4E89-B24C-0BB153C21445}" = Windows Presentation Foundation Language Pack (CSY)
"{AAF80000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 8.0 Professional Edition
"{AC76BA86-1029-4770-7760-000000000004}" = Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak
"{AC76BA86-1029-4770-7760-000000000004}{AC76BA86-1029-4770-7760-000000000004}" = Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B4013E5D-C833-4C8D-A942-AD7BBDFD9389}" = Autodesk Vault 2009 (Client)
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BBE86170-A71D-4B31-B4C9-44B32885901A}" = Website-Blocker
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C427E746-4EC9-4E3C-AACB-C6BB1F714D7F}" = Uniblue DriverScanner 2009
"{C43C1415-3DFC-4089-9A32-0BECF28A6046}" = Age of Empires III - The Asian Dynasties
"{C632591D-D0A8-4E10-BC0C-DC5D3535C416}" = OLYMP 9.31.00
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D3162DFC-7CA1-47A9-AA00-15BE80E3B1F8}" = 602XML Filler
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D8979435-753B-40AE-9318-5E712C160A71}" = Windows Communication Foundation Language Pack - CSY
"{E1A88DE8-BD36-4DEA-8DD8-E35EF475ADC7}" = Opera 9.52
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E5343B27-55DF-40BD-9FCF-A643C1331E8A}" = Acronis True Image Home
"{E63E34A7-E552-412B-9E40-FD6FC5227ABA}" = Uniblue RegistryBooster 2009
"{E666A69B-A76D-43D5-AF28-4B2150A6EDE2}" = Mathcad 14
"{E81D9FF6-B45F-4DD4-9673-86B08AF6F705}" = HDDlife Pro 3.1
"{E848C9C0-E6FF-4A3F-9D67-AE53AC3628FE}" = SweetIM for Messenger 2.7
"{EBD38AE9-D52D-448D-9DB4-4D5F66E1DAFC}" = Mathcad 14 Resource Center
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F530581E-12FE-43B4-A28D-E5257AAD63E6}" = O&O Defrag Professional
"{F62475E6-6F06-4D65-97D3-71D3CB696A1C}" = Windows Live Messenger
"{F6B1D53B-2A68-377D-AC39-C8FD359FF6F1}" = Google Talk Plugin
"{FA200000-0001-0000-0000-074957833700}" = ABBYY PDF Transformer 2.0
"{FB09515C-8E3E-4E0F-A1F2-032F38DEC185}" = Microsoft .NET Framework 3.0 Czech Language Pack
"{FE3997D3-6B56-4AC4-A99C-9DDFC45359BF}" = TuneUp Utilities Language Pack (en-US)
"{FEE5DEDD-2EE8-451B-B8E8-967146E0B569}" = Hydraflow Express Extension for AutoCAD Civil 3D 2009
"3GP Video Converter 3" = 3GP Video Converter 3
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Advanced Task Scheduler" = Advanced Task Scheduler (Remove or Repair)
"Aide PDF to DXF Converter_is1" = Aide PDF to DXF Converter 9.5
"Allok Video to MP4 Converter_is1" = Allok Video to MP4 Converter 5.1.0814
"Auto Mouse_is1" = Auto Mouse 1.3
"AutoCAD Civil 3D 2009 - český" = AutoCAD Civil 3D 2009 - český
"AutoCAD Civil 3D 2010 - česky" = AutoCAD Civil 3D 2010 - česky
"AutoCAD LT 2009 - český" = AutoCAD LT 2009 - český
"Autodesk Design Review 2010" = Autodesk Design Review 2010
"Autodesk Vault 2009 (Client)" = Autodesk Vault 2009 (Client)
"Autodesk Vault 2009 (Client)_C3D_2009_VE_HF1" = C3D_2009_VE_HF1
"Autodesk Vault 2010 (Client)" = Autodesk Vault 2010 (Client)
"Autopark 2008 START" = Autopark 2008 START
"avast!" = avast! Antivirus
"Avidemux 2.4" = Avidemux 2.4
"Balls of Steel: Creature Attack!_is1" = Balls of Steel: Creature Attack! 2.0
"BSPlayerp" = BS.Player PRO
"CAD standardy CAD" = CAD standardy
"Canon LBP2900" = Canon LBP2900
"CCleaner" = CCleaner (remove only)
"CD Recovery Toolbox Free_is1" = CD Recovery Toolbox Free 1.1
"CDex" = CDex extraction audio
"CToolbar_UNINSTALL" = Crawler Toolbar with Web Security Guard
"Cucusoft YouTube Mate (Downloader+Player+Converter)_is1" = Cucusoft YouTube Mate 7.16
"DamageCopier 3.1" = DamageCopier 3.1
"DEMO EKONOMICKÝ SOFTVÉR PROLUC" = DEMO EKONOMICKÝ SOFTVÉR PROLUC
"Derive 6" = Derive 6
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"downloadhotfile.com Free Image Converter_is1" = downloadhotfile.com Free Image Converter
"DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5_is1" = DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5.0.8.5
"DWG TrueView 2009" = DWG TrueView 2009
"DWG TrueView 2010" = DWG TrueView 2010
"Easy MP3 Sound Recorder_is1" = Easy MP3 Sound Recorder version 3.0
"Elcomm" = Elcomm
"EMcalc_is1" = EMcalc 3.6
"Encyklopedie Přírody 2.0" = Encyklopedie Přírody 2.0
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v4.50
"FBDBServer_1_5_is1" = Firebird 1.5.1.4481
"Fine Geo 5.0" = Geo 5 (pouze odstranit)
"FONTY PRE PROLUC" = FONTY PRE PROLUC
"FormEdik_is1" = FormEdik 1.19
"Free YouTube Download_is1" = Free YouTube Download 2.3
"Function Grapher_is1" = Function Grapher 3.0.1
"GameParkClient_is1" = GamePark
"Graphing Calculator 3D_is1" = Graphing Calculator 3D 2.2
"HD Tune Pro_is1" = HD Tune Pro 3.50
"HiCalc Your Trusted Calculator for PC_is1" = HiCalc Your Trusted Calculator for PC version 1.0
"High Quality Photo Resizer_is1" = High Quality Photo Resizer 1.60
"HijackThis" = HijackThis 2.0.2
"ICQToolbar" = ICQ Toolbar
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie8" = Windows Internet Explorer 8
"IL Download Manager" = IL Download Manager
"Image2PDF Add-On library for PDF Creator Pilot_is1" = Image2PDF Add-On
"InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs
"InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0
"InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"InstallShield_{A2F2DFE6-6018-4128-B368-2DA39237309F}" = EasyRecovery Professional Trial
"InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}" = Age of Empires III - The Asian Dynasties
"JLC's Internet TV" = JLC's Internet TV
"JPEG Resampler_is1" = JPEG Resampler Vs 5.0
"jwDuplFiles_is1" = jwDuplFiles 2.0
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 5.5.1
"Konvertor" = Konvertor
"LimeWire" = LimeWire PRO 5.1.2
"Maestro Citrid" = Maestro Citrid - komponent na prezeranie 3D mesta, v1.3
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Marsu-Fix" = Marsu-Fix
"Math Calculator_is1" = Math Calculator 2.1.3
"Mathmatix" = Mathmatix 1.0
"Mega Pinball" = Mega Pinball
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - CSY" = Microsoft .NET Framework 2.0 Language Pack - CSY
"Microsoft .NET Framework 3.0 Czech Language Pack" = Microsoft .NET Framework 3.0 Czech Language Pack
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MOBILedit!" = MOBILedit! 3.0
"Mozilla Firefox (3.5.7)" = Mozilla Firefox (3.5.7)
"Môj CEWE Fotosvet" = Môj CEWE Fotosvet
"MP3Resizer_is1" = MP3Resizer 1.8.4
"MPE" = MyPhoneExplorer
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MultyGraphiX_is1" = MultyGraphiX 1.1
"MyDefrag_is1" = MyDefrag v4.1.2
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Norton Utilities_is1" = Norton Utilities
"NVIDIA Drivers" = NVIDIA Drivers
"Orb" = Winamp Remote
"OziExplorer 3.95_is1" = OziExplorer 3.95
"Part generator csn_is1" = Part generator csn
"Part generator din_is1" = Part generator din
"Part generator prog_is1" = Part generator prog
"PC Translator" = PC Translator
"PDF Password Remover v2.5_is1" = PDF Password Remover v2.5
"PDF Password Remover v3.0_is1" = PDF Password Remover v3.0
"PDF Password Remover v3.1_is1" = PDF Password Remover v3.1
"pdfFactory Pro" = pdfFactory Pro
"Perfect Uninstaller_is1" = Perfect Uninstaller v6.3.3.6
"PhotoFiltre Studio" = PhotoFiltre Studio
"Pinball Arcade Trial Version 1.0" = Microsoft Pinball Arcade Trial
"PROPLUS" = Microsoft Office Professional Plus 2007
"RAM Saver Pro version 7.5" = RAM Saver Pro version 7.5
"RamCleaner" = RamCleaner
"RarmaRadio_is1" = RarmaRadio 2.31.1
"Replay_Converter_1" = Replay Converter 2.50
"SpeedFan" = SpeedFan (remove only)
"SpyEraser_is1" = Uniblue SpyEraser
"Spyware Terminator_is1" = Spyware Terminator
"Squib Ball" = Squib Ball
"SUPER ©" = SUPER © Version 2009.bld.35 (Jan 5, 2009)
"Super Sound Recorder Pro_is1" = Super Sound Recorder Pro 4.0.2
"SystemRequirementsLab" = System Requirements Lab
"Tinynice MP3Recorder_is1" = Tinynice MP3Recorder 1.00 Beta
"Totalcmd" = Total Commander (Remove or Repair)
"TuneUp Utilities" = TuneUp Utilities
"Ultra MP4 Video Converter_is1" = Ultra MP4 Video Converter 4.2.0825
"Uniblue DiskRescue 2009" = Uniblue DiskRescue 2009
"Uniblue DriverScanner 2009" = Uniblue DriverScanner 2009
"Uniblue RegistryBooster 2009" = Uniblue RegistryBooster 2009
"Uniblue SpeedUpMyPC 2009" = Uniblue SpeedUpMyPC 2009
"Uninstall_is1" = Uninstall 1.0.0.1
"VeryPDF Image2PDF v3.2_is1" = VeryPDF Image2PDF v3.2
"VLC media player" = VLC media player 0.9.4
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Doctor_is1" = Windows Doctor 2.0
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archivátor
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xm's Downloader" = Xm's Downloader
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"YouTubeGet_is1" = YouTubeGet 5.4

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"4be18d36df03b2e1" = Map Grabber
"Audio/Video Conference" = Audio/Video Conference 4.2+
"BitTorrent" = BitTorrent
"BitTorrent DNA" = DNA
"Cyklotrasy 2.10 SK" = Cyklotrasy 2.10 SK
"QIP 2005" = QIP 2005 8095

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 31.05.2009 10:25:38 | Computer Name = FREEMEN-95805D5 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://rs361tl.rapidshare.com/files/158 ... amatic.iso failed,
00000084.

Error - 01.09.2009 4:05:08 | Computer Name = FREEMEN-95805D5 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of G:\Download\bulanci.exe failed, 00000005.

Error - 03.09.2009 10:26:20 | Computer Name = FREEMEN-95805D5 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of A:\FAKTÚRA.doc-TUBAU.doc failed, 00000015.

Error - 06.10.2009 16:18:22 | Computer Name = FREEMEN-95805D5 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\Freemen\Data aplikací\Microsoft\Office\Recent\Plocha.LNK
failed, 00000005.

Error - 06.10.2009 16:26:07 | Computer Name = FREEMEN-95805D5 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\Freemen\Data aplikací\Microsoft\Office\Recent\BYTČA-uzemny
plan a legenda.doc.LNK failed, 00000005.

Error - 06.11.2009 14:22:28 | Computer Name = FREEMEN-95805D5 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://suggestqueries.google.com/comple ... &hl=sk&q=g
failed, 0000A413.

Error - 06.11.2009 17:50:09 | Computer Name = FREEMEN-95805D5 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://suggestqueries.google.com/comple ... &hl=sk&q=g
failed, 0000A413.

Error - 10.11.2009 9:02:49 | Computer Name = FREEMEN-95805D5 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Config.Msi\7369c5.rbf failed, 0000A413.

Error - 27.12.2009 18:54:44 | Computer Name = FREEMEN-95805D5 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://dl.s7.uloz.to/Ps;Hs;fid=3173554; ... 4101816&De
failed, 00000084.

Error - 01.01.2010 10:07:05 | Computer Name = FREEMEN-95805D5 | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Documents and Settings\Freemen\Data aplikací\Microsoft\Office\Recent\MI-vypracovane
otazky-vytlacit.doc.LNK failed, 00000005.

[ Application Events ]
Error - 29.01.2010 18:52:58 | Computer Name = FREEMEN-95805D5 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 30.01.2010 9:53:16 | Computer Name = FREEMEN-95805D5 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 30.01.2010 10:57:09 | Computer Name = FREEMEN-95805D5 | Source = PerfNet | ID = 2005
Description = Nelze číst data o výkonu ze služby serveru. V tomto vzorku nebudou
vrácena žádná data o výkonu serveru. Vrácený chybový kód je v datech DWORD 0, IOSB.Status
je DWORD 1 a IOSB.Information je DWORD 2.

Error - 30.01.2010 10:57:09 | Computer Name = FREEMEN-95805D5 | Source = PerfNet | ID = 2006
Description = Nelze číst data o výkonu fronty ze služby serveru. V tomto vzorku nebudou
vrácena žádná data o výkonu fronty serveru. Vrácený chybový kód je v datech DWORD
0, IOSB.Status je DWORD 1 a IOSB.Information je DWORD 2.

Error - 01.02.2010 6:28:31 | Computer Name = FREEMEN-95805D5 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 01.02.2010 9:39:23 | Computer Name = FREEMEN-95805D5 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 03.02.2010 5:01:55 | Computer Name = FREEMEN-95805D5 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
ntdll.dll, verze 5.1.2600.5755, adresa chyby 0x00010a1b.

Error - 03.02.2010 6:37:12 | Computer Name = FREEMEN-95805D5 | Source = ioloServiceManager.exe | ID = 0
Description =

Error - 03.02.2010 7:04:17 | Computer Name = FREEMEN-95805D5 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 03.02.2010 13:11:43 | Computer Name = FREEMEN-95805D5 | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

[ OSession Events ]
Error - 20.04.2008 4:33:06 | Computer Name = FREEMEN-95805D5 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 3623
seconds with 1080 seconds of active time. This session ended with a crash.

Error - 24.04.2008 3:17:38 | Computer Name = FREEMEN-95805D5 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 26
seconds with 0 seconds of active time. This session ended with a crash.

Error - 02.10.2008 13:51:54 | Computer Name = FREEMEN-95805D5 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6308.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 213
seconds with 180 seconds of active time. This session ended with a crash.

Error - 02.12.2008 10:45:05 | Computer Name = FREEMEN-95805D5 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6324.5001, Microsoft Office Version: 12.0.6215.1000. This session lasted 1162
seconds with 900 seconds of active time. This session ended with a crash.

Error - 15.06.2009 3:49:41 | Computer Name = FREEMEN-95805D5 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 9
seconds with 0 seconds of active time. This session ended with a crash.

Error - 15.06.2009 3:52:10 | Computer Name = FREEMEN-95805D5 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 1
seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 03.02.2010 4:08:48 | Computer Name = FREEMEN-95805D5 | Source = Service Control Manager | ID = 7006
Description = Volání ScRegSetValueExW skončilo neúspěšné pro ImagePath s touto chybou:
%%5

Error - 03.02.2010 6:29:54 | Computer Name = FREEMEN-95805D5 | Source = Service Control Manager | ID = 7034
Description = Služba iolo System Service byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 03.02.2010 6:29:54 | Computer Name = FREEMEN-95805D5 | Source = Service Control Manager | ID = 7034
Description = Služba iolo FileInfoList Service byla neočekávaně ukončena. Tento
stav nastal již 1krát.

Error - 03.02.2010 7:04:23 | Computer Name = FREEMEN-95805D5 | Source = Print | ID = 19
Description = Došlo k chybě sdílení tiskárny + 1722, tiskárna pdfFactory Pro název
sdílení Tiskárna.

Error - 03.02.2010 7:04:48 | Computer Name = FREEMEN-95805D5 | Source = Service Control Manager | ID = 7000
Description = Služba iolo FileInfoList Service neuspěla při spuštění v důsledku
následující chyby: %%2

Error - 03.02.2010 7:04:48 | Computer Name = FREEMEN-95805D5 | Source = Service Control Manager | ID = 7000
Description = Služba iolo System Service neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 03.02.2010 13:12:13 | Computer Name = FREEMEN-95805D5 | Source = Service Control Manager | ID = 7000
Description = Služba iolo FileInfoList Service neuspěla při spuštění v důsledku
následující chyby: %%2

Error - 03.02.2010 13:12:13 | Computer Name = FREEMEN-95805D5 | Source = Service Control Manager | ID = 7000
Description = Služba iolo System Service neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 03.02.2010 16:26:19 | Computer Name = FREEMEN-95805D5 | Source = Service Control Manager | ID = 7000
Description = Služba iolo FileInfoList Service neuspěla při spuštění v důsledku
následující chyby: %%2

Error - 03.02.2010 16:26:20 | Computer Name = FREEMEN-95805D5 | Source = Service Control Manager | ID = 7000
Description = Služba iolo System Service neuspěla při spuštění v důsledku následující
chyby: %%2

[ TuneUp Events ]
Error - 01.02.2010 6:29:21 | Computer Name = FREEMEN-95805D5 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 01.02.2010 9:40:12 | Computer Name = FREEMEN-95805D5 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 01.02.2010 15:05:54 | Computer Name = FREEMEN-95805D5 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 01.02.2010 17:52:22 | Computer Name = FREEMEN-95805D5 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 02.02.2010 4:53:18 | Computer Name = FREEMEN-95805D5 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 02.02.2010 13:24:34 | Computer Name = FREEMEN-95805D5 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 02.02.2010 16:25:45 | Computer Name = FREEMEN-95805D5 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 03.02.2010 3:29:16 | Computer Name = FREEMEN-95805D5 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 03.02.2010 7:04:55 | Computer Name = FREEMEN-95805D5 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 03.02.2010 13:12:32 | Computer Name = FREEMEN-95805D5 | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

< End of report >

freem1 · #7 Příspěvek od **freem1** » 03 úno 2010 22:23

OTL logfile created on: 03.02.2010 21:44:34 - Run 1
OTL by OldTimer - Version 3.1.27.1 Folder = C:\Documents and Settings\Freemen\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: dd.MM.yyyy

1 023,00 Mb Total Physical Memory | 356,00 Mb Available Physical Memory | 35,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 29,30 Gb Total Space | 2,68 Gb Free Space | 9,15% Space Free | Partition Type: NTFS
Drive D: | 268,79 Gb Total Space | 1,97 Gb Free Space | 0,73% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: FREEMEN-95805D5
Current User Name: Freemen
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.02.03 21:40:13 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Freemen\Plocha\OTL.exe
PRC - [2010.01.24 10:47:04 | 009,575,936 | ---- | M] (Raimersoft) -- D:\Program Files\RarmaRadio\RarmaRadio.exe
PRC - [2010.01.07 09:30:52 | 000,908,248 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.12.27 23:34:47 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009.12.23 13:24:24 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009.12.23 13:24:23 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009.12.18 00:14:00 | 000,713,544 | ---- | M] (TuneUp Software) -- D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
PRC - [2009.12.18 00:12:10 | 001,044,808 | ---- | M] (TuneUp Software) -- D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
PRC - [2009.12.17 14:07:16 | 000,604,488 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\TUProgSt.exe
PRC - [2009.12.08 14:25:28 | 000,093,320 | ---- | M] (McAfee, Inc.) -- D:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2009.11.25 00:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- D:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009.11.25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- D:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009.11.25 00:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009.11.25 00:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009.11.25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009.08.13 11:43:54 | 003,276,288 | ---- | M] (The Author of QIP) -- D:\Program Files\QIP\qip.exe
PRC - [2009.06.22 13:57:54 | 000,083,440 | ---- | M] (Google) -- C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe
PRC - [2009.06.01 21:20:12 | 000,222,968 | ---- | M] () -- D:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2009.05.20 14:11:40 | 000,111,928 | R--- | M] (SweetIM Technologies Ltd.) -- D:\Program Files\SweetIM\Messenger\SweetIM.exe
PRC - [2009.04.08 00:40:52 | 001,377,536 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\system32\oodag.exe
PRC - [2009.03.30 16:28:36 | 001,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
PRC - [2009.03.30 16:28:36 | 000,183,152 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
PRC - [2008.12.19 14:22:59 | 002,267,136 | ---- | M] (Crawler.com) -- D:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
PRC - [2008.12.19 14:22:59 | 000,540,672 | ---- | M] (Crawler.com) -- D:\Program Files\Spyware Terminator\sp_rsser.exe
PRC - [2008.09.14 10:10:19 | 000,068,856 | ---- | M] (Google Inc.) -- D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2008.09.10 16:22:32 | 000,229,648 | ---- | M] (Uniblue) -- D:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.02.15 13:17:00 | 000,832,760 | ---- | M] (BinarySense, Inc.) -- C:\Program Files\Common Files\BinarySense\hldasvc.exe
PRC - [2007.12.10 15:55:26 | 000,323,584 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\PixArt\PAC7302\Monitor.exe
PRC - [2007.10.23 18:41:36 | 000,495,832 | ---- | M] () -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
PRC - [2007.10.23 15:10:38 | 000,427,288 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2007.01.11 13:26:56 | 000,063,112 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\CNAB4RPK.EXE
PRC - [2006.10.26 12:40:34 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
PRC - [2005.08.08 13:54:00 | 000,167,936 | ---- | M] () -- C:\Program Files\Cyberlink\Shared files\RichVideo.exe
PRC - [2005.05.17 11:48:00 | 000,077,824 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2004.07.14 00:05:10 | 001,527,887 | ---- | M] (The Firebird Project) -- C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
PRC - [2004.07.14 00:05:10 | 000,065,536 | ---- | M] (The Firebird Project) -- C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe

========== Modules (SafeList) ==========

MOD - [2010.02.03 21:40:13 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Freemen\Plocha\OTL.exe
MOD - [2009.12.08 13:12:24 | 000,014,544 | ---- | M] (McAfee, Inc.) -- d:\Program Files\McAfee\SiteAdvisor\sahook.dll
MOD - [2009.05.20 14:11:06 | 000,023,864 | R--- | M] (SweetIM Technologies Ltd.) -- D:\Program Files\SweetIM\Messenger\mgAdaptersProxy.dll
MOD - [2006.07.11 17:35:38 | 000,348,160 | ---- | M] (Microsoft Corporation) -- D:\Program Files\SweetIM\Messenger\msvcr71.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (ioloSystemService)
SRV - File not found [Auto | Stopped] -- -- (ioloFileInfoList)
SRV - [2010.02.01 14:29:10 | 002,431,024 | ---- | M] () [Auto | Running] -- c:\Program Files\Common Files\Akamai\rswin_3647.dll -- (Akamai)
SRV - [2010.01.17 23:28:37 | 000,435,016 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- D:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009.12.23 13:24:23 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- D:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009.12.18 00:12:10 | 001,044,808 | ---- | M] (TuneUp Software) [Auto | Running] -- D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2009.12.18 00:08:54 | 000,030,024 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2009.12.17 14:07:16 | 000,604,488 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2009.12.08 14:25:28 | 000,093,320 | ---- | M] (McAfee, Inc.) [Auto | Running] -- D:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2009.11.25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- D:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009.11.25 00:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009.11.25 00:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- D:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009.11.25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009.06.01 21:20:12 | 000,222,968 | ---- | M] () [Auto | Running] -- D:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009.05.02 10:46:25 | 000,182,768 | ---- | M] (Google) [On_Demand | Stopped] -- D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2009.04.08 00:40:52 | 001,377,536 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\WINDOWS\system32\oodag.exe -- (O&O Defrag)
SRV - [2009.03.30 16:28:36 | 001,533,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2009.01.28 10:32:19 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008.12.19 14:22:59 | 000,540,672 | ---- | M] (Crawler.com) [Auto | Running] -- D:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2008.11.14 12:31:58 | 000,085,096 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2008.11.04 00:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2008.09.10 16:22:32 | 000,229,648 | ---- | M] (Uniblue) [Auto | Running] -- D:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe -- (Uniblue DiskRescue)
SRV - [2008.07.29 18:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2008.04.14 04:21:44 | 000,027,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\irmon.dll -- (Irmon)
SRV - [2008.02.15 13:17:00 | 000,832,760 | ---- | M] (BinarySense, Inc.) [Auto | Running] -- C:\Program Files\Common Files\BinarySense\hldasvc.exe -- (HDDlife HDD Access service)
SRV - [2007.12.05 00:41:00 | 000,155,716 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2007.10.25 14:27:54 | 000,266,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc)
SRV - [2007.10.23 18:41:36 | 000,495,832 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe -- (TryAndDecideService)
SRV - [2007.10.23 15:10:38 | 000,427,288 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2007.10.18 10:31:54 | 000,098,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Program Files\Windows Live\Messenger\usnsvc.exe -- (usnjsvc)
SRV - [2007.06.29 18:16:56 | 000,800,040 | ---- | M] (Nero AG) [On_Demand | Stopped] -- D:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService)
SRV - [2007.06.27 18:04:00 | 000,279,848 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007.01.05 20:57:30 | 000,913,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc)
SRV - [2006.10.26 13:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006.10.26 12:40:34 | 000,335,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe -- (MDM)
SRV - [2005.08.08 13:54:00 | 000,167,936 | ---- | M] () [Auto | Running] -- C:\Program Files\Cyberlink\Shared files\RichVideo.exe -- (RichVideo) Cyberlink RichVideo Service(CRVS)
SRV - [2005.04.03 23:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004.07.14 00:05:10 | 001,527,887 | ---- | M] (The Firebird Project) [On_Demand | Running] -- C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe -- (FirebirdServerDefaultInstance)
SRV - [2004.07.14 00:05:10 | 000,065,536 | ---- | M] (The Firebird Project) [Auto | Running] -- C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe -- (FirebirdGuardianDefaultInstance)

========== Driver Services (SafeList) ==========

DRV - [2010.01.04 15:22:50 | 000,051,072 | ---- | M] (Identcode Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\Drivers\ANGELNT.SYS -- (Angelnt)
DRV - [2009.11.25 00:50:59 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009.11.25 00:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2009.11.25 00:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009.11.25 00:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009.11.25 00:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009.11.25 00:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009.10.14 07:24:44 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2009.10.12 14:44:30 | 000,022,016 | ---- | M] (Feitian Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rockey4.sys -- (ROCKEYNT)
DRV - [2008.12.19 14:22:59 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2008.05.31 10:24:29 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2008.05.31 10:24:28 | 000,441,760 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)
DRV - [2008.05.31 10:23:51 | 000,129,248 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2008.05.31 10:23:29 | 000,368,736 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tdrpman.sys -- (tdrpman)
DRV - [2008.05.12 15:40:48 | 000,460,544 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PAC7302.SYS -- (PAC7302)
DRV - [2008.05.07 15:44:38 | 000,016,168 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2008.04.13 20:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2008.04.13 19:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.03.21 11:33:22 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.01.19 19:12:42 | 000,128,104 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WimFltr.sys -- (WimFltr)
DRV - [2007.12.05 00:41:00 | 007,435,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2007.11.13 11:25:52 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2007.11.07 04:22:06 | 000,034,064 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) WinPcap Packet Driver (NPF)
DRV - [2007.03.08 00:51:00 | 000,043,528 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2007.02.08 12:56:20 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1unic.sys -- (sea1unic) Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM)
DRV - [2007.02.08 12:56:06 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1obex.sys -- (sea1obex)
DRV - [2007.02.08 12:56:02 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1nd5.sys -- (sea1nd5) Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS)
DRV - [2007.02.08 12:56:00 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mgmt.sys -- (sea1mgmt) Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM)
DRV - [2007.02.08 12:55:52 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mdm.sys -- (sea1mdm)
DRV - [2007.02.08 12:55:50 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mdfl.sys -- (sea1mdfl)
DRV - [2007.02.08 12:55:40 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1bus.sys -- (sea1bus) Sony Ericsson Device 0A1 driver (WDM)
DRV - [2006.09.24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2005.05.18 10:50:00 | 002,319,680 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004.11.19 18:07:00 | 000,101,488 | ---- | M] () [Kernel | Auto | Running] -- D:\Program Files\Everstrike Software\Lock Folder XP 3.6\LF30XP.sys -- (LF30FS)
DRV - [2004.06.03 03:40:50 | 000,068,224 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvraid.sys -- (nvraid) NVIDIA NForce(tm)
DRV - [2004.05.17 07:00:54 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2004.05.17 07:00:52 | 000,033,280 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2004.04.02 08:40:00 | 000,021,760 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nv_agp.sys -- (nv_agp)
DRV - [2002.09.16 16:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [2001.10.25 12:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2001.08.17 23:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2001.08.17 22:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
DRV - [2001.08.17 20:56:16 | 000,007,552 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SONYPVU1.SYS -- (SONYPVU1) Sony USB Filter Driver (SONYPVU1)
DRV - [1996.04.03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Local Page = http://www.google.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Local Page Restore =

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = about:blank
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\S-1-5-21-1078081533-1214440339-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "QIP Search"
FF - prefs.js..browser.search.order.1: "Ask"
FF - prefs.js..browser.search.selectedEngine: "QIP Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://start.icq.com/"
FF - prefs.js..extensions.enabledItems: {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}:2.0.0.66311
FF - prefs.js..extensions.enabledItems: npdevalvr@devalvr.com:0.7.7.16
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.6.5
FF - prefs.js..extensions.enabledItems: {6614d11d-d21d-b211-ae23-815234e1ebb5}:1.0.20
FF - prefs.js..extensions.enabledItems: {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}:0.9.10.1
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20091209.4
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {35106bca-6c78-48c7-ac28-56df30b51d2a}:1.3.6
FF - prefs.js..extensions.enabledItems: {8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}:0.15
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.0
FF - prefs.js..extensions.enabledItems: {9D6218B8-03C7-4b91-AA43-680B305DD35C}:1.7.9.7
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.8
FF - prefs.js..keyword.URL: "http://search.qip.ru/search?from=FF&query="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://search.icq.com/search/afe_result ... id=afex&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}: D:\Program Files\Crawler\firefox\ [2008.12.20 09:28:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: D:\Program Files\McAfee\SiteAdvisor [2009.12.17 22:26:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: D:\Program Files\Real\RealPlayer\browserrecord [2009.12.27 23:35:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2010.01.10 14:45:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2010.01.07 09:31:00 | 000,000,000 | ---D | M]

[2008.09.11 14:43:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Extensions
[2010.02.03 09:44:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions
[2008.03.21 22:54:30 | 000,000,000 | ---D | M] (WebTran) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2009.07.25 11:25:13 | 000,000,000 | ---D | M] (Forecastfox) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
[2009.03.29 13:01:57 | 000,000,000 | ---D | M] (Linkification) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{35106bca-6c78-48c7-ac28-56df30b51d2a}
[2009.08.11 10:08:14 | 000,000,000 | ---D | M] (Dr.Web anti-virus link checker) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{6614d11d-d21d-b211-ae23-815234e1ebb5}
[2009.07.25 11:25:14 | 000,000,000 | ---D | M] (Live HTTP Headers) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}
[2009.07.25 11:25:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{9D6218B8-03C7-4b91-AA43-680B305DD35C}
[2009.12.27 15:58:34 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2008.05.23 18:57:40 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}(2)
[2010.02.03 09:44:36 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2009.08.30 10:30:19 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2008.10.17 09:42:50 | 000,000,000 | ---D | M] (Mouse Gestures Redox) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{FFA36170-80B1-4535-B0E3-A4569E497DD0}
[2008.04.30 15:34:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\firebit@firebit
[2009.08.07 12:21:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\npdevalvr@devalvr.com
[2008.03.22 11:46:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\pasteandgo2@holio.lin
[2008.06.09 15:16:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\pbreak.br@gmail.com
[2010.02.03 09:44:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\staged-xpis
[2008.06.03 19:32:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\videodowloader@videodownloader.net
[2008.08.17 23:27:18 | 000,001,622 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\ask.xml
[2010.01.28 16:53:23 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-1.xml
[2010.01.07 09:32:07 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-10.xml
[2008.07.10 09:02:05 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-2.xml
[2009.07.23 16:01:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-3.xml
[2009.08.07 09:07:57 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-4.xml
[2009.08.29 22:13:05 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-5.xml
[2009.08.30 08:42:40 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-6.xml
[2009.09.14 14:53:39 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-7.xml
[2009.11.07 11:12:56 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-8.xml
[2009.11.26 21:15:58 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-9.xml
[2008.03.31 08:52:00 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.gif
[2008.03.31 08:52:00 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.src
[2009.07.13 16:12:02 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.xml
[2010.01.09 15:04:26 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\qipsearch.xml
[2009.08.30 10:30:15 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\sweetim.xml
[2010.02.03 08:46:15 | 000,000,000 | ---D | M] -- D:\Program Files\Mozilla Firefox\extensions
[2009.08.30 08:32:22 | 000,000,000 | ---D | M] (Sukoku) -- D:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}(2)
[2009.07.15 10:12:35 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.08.06 11:46:37 | 000,000,000 | ---D | M] (BearShare MediaBar) -- D:\Program Files\Mozilla Firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}
[2009.11.26 12:16:53 | 000,000,000 | ---D | M] -- D:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com
[2008.09.04 01:11:24 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll
[2004.08.17 14:49:32 | 000,226,816 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Mozilla Firefox\plugins\npdrmv2.dll
[2007.11.18 20:07:54 | 000,364,544 | ---- | M] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- D:\Program Files\Mozilla Firefox\plugins\npdsplay.dll
[2007.04.02 10:14:41 | 000,653,120 | ---- | M] (Maestro software, ltd.) -- D:\Program Files\Mozilla Firefox\plugins\npMaeC3D.dll
[2008.06.30 21:02:00 | 000,663,072 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Mozilla Firefox\plugins\npOGAPlugin.dll
[2004.08.17 14:49:16 | 000,010,240 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Mozilla Firefox\plugins\npwmsdrm.dll
[2009.08.24 20:37:14 | 000,001,583 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\atlas-sk.xml
[2009.08.24 20:37:14 | 000,001,380 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\azet-sk.xml
[2009.08.24 20:37:14 | 000,001,479 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\dunaj-sk.xml
[2009.08.24 20:37:14 | 000,001,473 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\slovnik-sk.xml
[2009.08.24 20:37:14 | 000,001,104 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\wikipedia-sk.xml
[2009.08.24 20:37:14 | 000,000,830 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\zoznam-sk.xml

O1 HOSTS File: ([2009.08.18 11:58:43 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: () - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - D:\Program Files\Crawler\ctbr.dll (Crawler.com)
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - D:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Pomocná služba pro přihlášení ke službě Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - d:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - d:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (&Crawler Toolbar) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - D:\Program Files\Crawler\ctbr.dll (Crawler.com)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\Toolbar\ShellBrowser: (&Crawler Toolbar) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - D:\Program Files\Crawler\ctbr.dll (Crawler.com)
O3 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\Toolbar\WebBrowser: (&Crawler Toolbar) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - D:\Program Files\Crawler\ctbr.dll (Crawler.com)
O3 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [avast!] D:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\PAC7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SpywareTerminator] D:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe (Crawler.com)
O4 - HKLM..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SweetIM] D:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003..\Run: [swg] D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found
O4 - HKU\.DEFAULT..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-18..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0
O7 - HKU\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0
O7 - HKU\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoManageMyComputerVerb = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCommonGroups = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinterTabs = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAddPrinter = 0

freem1 · #8 Příspěvek od **freem1** » 03 úno 2010 22:24

O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinters = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetworkConnections = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileMenu = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeAnimation = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeKeyboardNavigationIndicators = 0
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - D:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Previesť cieľ odkazu do formátu Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Previesť do Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Pridať cieľ odkazu do existujúceho súboru PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Pridať do existujúceho súboru PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O15 - HKLM\..Trusted Domains: 31 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\.DEFAULT\..Trusted Domains: 31 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-18\..Trusted Domains: 31 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..Trusted Domains: 31 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resourc ... oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\hddlife {BD758015-47D9-477A-8873-4B688A2BC0E2} - C:\Program Files\Common Files\BinarySense\hlAPP.dll (BinarySense, Inc.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - D:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - D:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - d:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tbr {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - D:\Program Files\Crawler\ctbr.dll (Crawler.com)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - D:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\x-sdch {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - D:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - D:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.04.14 08:54:55 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.11.10 12:46:03 | 000,000,000 | ---D | M] - D:\AutoCAD Civil 3D 2010 - česky-install -- [ NTFS ]
O32 - AutoRun File - [2008.10.03 21:21:36 | 000,000,000 | ---D | M] - D:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2009.04.14 08:54:55 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (OODBS) - C:\WINDOWS\System32\OODBS.exe (O&O Software GmbH)
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2009.03.21 09:14:54 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - C:\WINDOWS\system32\irmon.dll (Microsoft Corporation)
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (55172488459452416)

========== Files/Folders - Created Within 7 Days ==========

[2010.02.03 21:42:29 | 000,548,864 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Freemen\Plocha\OTL.exe
[2010.02.02 21:41:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Norton Installer
[2010.02.02 21:38:48 | 001,101,824 | ---- | C] (Woodbury Associates Limited) -- C:\WINDOWS\System32\UniBox210.ocx
[2010.02.02 21:38:47 | 000,880,640 | ---- | C] (Woodbury Associates Limited) -- C:\WINDOWS\System32\UniBox10.ocx
[2010.02.02 21:38:47 | 000,212,992 | ---- | C] (Woodbury Associates Limited) -- C:\WINDOWS\System32\UniBoxVB12.ocx
[2010.02.02 21:38:38 | 000,000,000 | ---D | C] -- D:\Program Files\Norton Utilities 14
[2009.11.20 11:22:24 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2009.11.14 19:00:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\TuneUp Software
[2009.11.14 18:55:43 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2009.11.14 18:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Acronis
[2009.11.14 14:00:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2009.11.02 11:44:08 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2009.08.30 10:44:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\SACore
[2008.12.06 19:38:56 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2008.11.17 09:42:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\iolo
[2008.07.11 11:04:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\iolo
[2008.05.31 14:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Acronis
[2008.03.26 09:17:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[1996.11.18 10:00:00 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\IMPLODE.DLL

========== Files - Modified Within 7 Days ==========

[2010.02.03 22:03:00 | 000,223,232 | ---- | M] () -- C:\Documents and Settings\Freemen\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.02.03 21:40:13 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Freemen\Plocha\OTL.exe
[2010.02.03 21:34:11 | 000,000,570 | ---- | M] () -- C:\WINDOWS\tasks\Automatic troubleshooting.job
[2010.02.03 21:26:17 | 000,002,284 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.02.03 21:25:18 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.02.03 21:24:44 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.02.03 21:24:40 | 1073,008,640 | -HS- | M] () -- C:\hiberfil.sys
[2010.02.03 21:24:37 | 000,623,233 | ---- | M] () -- C:\WINDOWS\System32\oodbs.lor
[2010.02.03 20:03:14 | 011,010,048 | ---- | M] () -- C:\Documents and Settings\Freemen\ntuser.dat
[2010.02.03 20:03:14 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Freemen\ntuser.ini
[2010.02.03 18:43:59 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2010.02.03 12:43:46 | 000,078,877 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\hist_448137400.htm
[2010.02.03 10:10:56 | 000,074,703 | ---- | M] () -- C:\WINDOWS\System32\mfc45.dll
[2010.02.03 08:47:35 | 000,000,042 | ---- | M] () -- C:\WINDOWS\System32\Jiii_PNUCT.pnc
[2010.02.02 22:38:21 | 012,320,768 | ---- | M] () -- C:\Documents and Settings\Freemen\ntuser.dat.rmbak
[2010.02.02 21:39:44 | 000,000,623 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Norton Utilities.lnk
[2010.02.02 11:47:29 | 000,033,792 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\Vrábliková Daniela-životopis-n.doc..doc
[2010.02.02 11:42:02 | 000,031,232 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\ATACK-s.r.o..doc
[2010.02.01 16:49:53 | 000,002,443 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\Microsoft Office Word 2007.lnk
[2010.02.01 15:23:53 | 000,032,768 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\Vrábliková Daniela-ČSOB.doc..doc
[2010.02.01 14:04:44 | 003,347,168 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\Hampenberg - Duck Toy.mp3
[2010.01.31 18:29:07 | 000,103,481 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\VYK_P3F.RPT.pdf
[2010.01.29 17:04:04 | 000,004,561 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\ISO3_DVD.nri
[2010.01.28 17:06:40 | 000,004,719 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\ISO1_DVD.nri

========== Files Created - No Company Name ==========

[2010.02.03 12:43:46 | 000,078,877 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\hist_448137400.htm
[2010.02.03 10:10:56 | 000,074,703 | ---- | C] () -- C:\WINDOWS\System32\mfc45.dll
[2010.02.02 21:39:44 | 000,000,623 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Norton Utilities.lnk
[2010.02.02 11:42:00 | 000,031,232 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\ATACK-s.r.o..doc
[2010.02.02 11:19:33 | 000,033,792 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\Vrábliková Daniela-životopis-n.doc..doc
[2010.02.01 15:23:53 | 000,032,768 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\Vrábliková Daniela-ČSOB.doc..doc
[2010.02.01 14:04:07 | 003,347,168 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\Hampenberg - Duck Toy.mp3
[2010.01.31 18:29:07 | 000,103,481 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\VYK_P3F.RPT.pdf
[2010.01.29 17:04:04 | 000,004,561 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\ISO3_DVD.nri
[2010.01.28 17:06:35 | 000,004,719 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\ISO1_DVD.nri
[2010.01.03 15:51:40 | 000,000,323 | ---- | C] () -- C:\WINDOWS\System32\Remover.ini
[2010.01.03 15:51:30 | 000,000,885 | ---- | C] () -- C:\WINDOWS\System32\SP7302.INI
[2009.12.28 00:03:35 | 000,034,308 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\mazuki.dll
[2009.12.27 23:55:41 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009.12.23 15:44:06 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2009.12.23 15:43:59 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009.12.23 15:43:57 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009.11.30 22:48:39 | 000,866,000 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2009.11.26 12:15:38 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2009.10.12 14:44:30 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\Ry4CoInst.dll
[2009.07.29 09:50:00 | 000,076,407 | ---- | C] () -- C:\Documents and Settings\Freemen\Data aplikací\Smiley.ico
[2009.05.16 12:29:11 | 000,000,041 | ---- | C] () -- C:\WINDOWS\System32\img2pdf.ini
[2009.05.16 12:23:28 | 000,000,176 | ---- | C] () -- C:\WINDOWS\Image2PDF.INI
[2009.05.02 16:04:19 | 000,004,973 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2009.04.15 08:43:36 | 000,004,383 | ---- | C] () -- C:\WINDOWS\emcalc.ini
[2009.03.22 20:27:05 | 000,663,552 | ---- | C] () -- C:\WINDOWS\System32\FreeImage.dll
[2009.03.11 13:13:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\prestopm.INI
[2009.03.11 13:07:16 | 000,049,152 | R--- | C] () -- C:\WINDOWS\AutoSet.dll
[2009.03.11 12:50:27 | 000,000,661 | ---- | C] () -- C:\WINDOWS\if40le.ini
[2009.03.11 12:50:26 | 000,000,105 | ---- | C] () -- C:\WINDOWS\SCNDRVU.INI
[2009.03.11 12:49:59 | 000,002,991 | ---- | C] () -- C:\WINDOWS\If42le.ini
[2009.03.11 12:49:58 | 000,000,253 | ---- | C] () -- C:\WINDOWS\PEXPLORE.INI
[2009.03.11 12:49:52 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\pmsbfn32.dll
[2009.03.11 12:49:39 | 000,000,406 | ---- | C] () -- C:\WINDOWS\umxaddin.ini
[2009.02.07 18:38:22 | 000,000,482 | ---- | C] () -- C:\WINDOWS\Setting.ini
[2009.02.04 13:58:12 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009.02.04 13:58:12 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009.01.07 14:01:55 | 000,005,368 | ---- | C] () -- C:\Documents and Settings\Freemen\Data aplikací\froggy_scorebox
[2009.01.07 14:01:55 | 000,000,912 | ---- | C] () -- C:\Documents and Settings\Freemen\Data aplikací\pl_accounts.pl_acc
[2009.01.07 14:01:55 | 000,000,556 | ---- | C] () -- C:\Documents and Settings\Freemen\Data aplikací\Troll.options
[2008.12.19 14:22:59 | 000,142,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2008.12.07 16:53:21 | 000,000,083 | ---- | C] () -- C:\WINDOWS\winDecrypt.INI
[2008.11.19 17:08:15 | 000,000,032 | ---- | C] () -- C:\WINDOWS\GRAPH5.INI
[2008.11.15 21:34:49 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Freemen\Data aplikací\Skin.flk
[2008.11.15 13:08:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2008.10.23 12:56:52 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2008.09.14 10:20:05 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll
[2008.09.14 10:20:05 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\AVEQT.dll
[2008.09.14 09:41:32 | 000,001,298 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008.08.16 14:16:09 | 000,002,048 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
[2008.08.16 14:16:09 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
[2008.08.16 14:16:09 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
[2008.07.11 11:03:59 | 002,169,256 | ---- | C] () -- C:\WINDOWS\System32\Incinerator.dll
[2008.07.03 16:16:39 | 000,000,508 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.06.24 10:25:38 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.05.31 10:18:53 | 000,000,058 | ---- | C] () -- C:\Documents and Settings\Freemen\Local Settings\Data aplikací\DonationCoder_ScreenshotCaptor_InstallInfo.dat
[2008.05.26 22:22:14 | 000,015,552 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008.05.26 22:22:10 | 000,021,464 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008.05.26 22:22:04 | 000,014,910 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008.05.17 09:25:05 | 000,000,074 | ---- | C] () -- C:\WINDOWS\SLEX99.INI
[2008.05.15 17:37:05 | 000,000,405 | ---- | C] () -- C:\WINDOWS\System32\ANGELDOS.SYS
[2008.05.15 17:18:20 | 000,978,432 | ---- | C] () -- C:\WINDOWS\System32\pg32.dll
[2008.05.09 10:50:26 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\BladeEnc.dll
[2008.05.09 10:44:55 | 000,110,080 | ---- | C] () -- C:\WINDOWS\System32\recorder.DLL
[2008.05.01 08:50:39 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\ECRCOMTX.DLL
[2008.04.10 11:25:16 | 000,000,081 | ---- | C] () -- C:\WINDOWS\SuperUtil.ini
[2008.04.03 11:16:11 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2008.04.03 07:21:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oodcnt.INI
[2008.03.21 22:54:09 | 000,002,490 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2008.03.21 14:55:19 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2008.03.21 11:52:53 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\Freemen\Local Settings\Data aplikací\fusioncache.dat
[2008.03.21 11:33:22 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008.03.21 10:53:31 | 000,000,207 | ---- | C] () -- C:\WINDOWS\usdthank.ini
[2008.03.21 10:53:31 | 000,000,031 | ---- | C] () -- C:\WINDOWS\idc.ini
[2008.03.21 01:19:51 | 000,223,232 | ---- | C] () -- C:\Documents and Settings\Freemen\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.03.21 00:35:58 | 000,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2008.03.21 00:32:42 | 000,002,507 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008.03.21 00:32:41 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008.02.04 17:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2008.01.09 14:01:48 | 000,000,453 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2007.12.05 00:41:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2007.12.05 00:41:00 | 001,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2007.12.05 00:41:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2007.12.05 00:41:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2007.12.05 00:41:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2007.01.26 02:04:12 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\mase32.dll
[2007.01.26 02:04:12 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\ma32.dll
[2006.06.02 23:15:44 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\LDecVorbis.dll
[2006.05.24 18:37:27 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2006.02.24 09:41:59 | 000,438,272 | ---- | C] () -- C:\WINDOWS\System32\OpenQuicktimeLib.dll
[2006.02.24 09:41:59 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\libfaac.dll
[2006.02.23 17:36:20 | 001,798,144 | ---- | C] () -- C:\WINDOWS\System32\ltmm_n.dll
[2006.02.23 17:36:20 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\LMOggSpl.dll
[2006.02.23 17:36:20 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\LMOggMux.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2004.11.19 09:56:00 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\RYDLL32.DLL
[2004.10.22 05:43:44 | 000,498,176 | ---- | C] () -- C:\WINDOWS\System32\Synapse.dll
[2004.03.18 22:51:56 | 000,159,744 | R--- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2004.03.18 22:51:16 | 000,843,776 | R--- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2002.11.06 11:16:26 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\angel32.dll
[2002.05.15 03:58:48 | 000,618,496 | ---- | C] () -- C:\WINDOWS\System32\dXQGridEdit.dll
[2000.06.24 05:10:14 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\TSLV.dll
[1997.08.28 09:53:10 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\mapirtf.dll
[1996.04.03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== LOP Check ==========

[2008.06.21 13:09:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Acronis
[2008.08.15 14:02:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ascentive
[2009.11.14 11:51:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Autodesk
[2009.03.05 12:57:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Bentley
[2008.08.16 10:50:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BitDefender
[2009.08.11 09:40:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DriverScanner
[2008.12.11 16:52:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DSNO
[2008.04.24 09:32:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\e-sonopress
[2008.03.25 20:27:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2009.11.26 11:51:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FileOpen
[2009.09.28 14:10:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FINE
[2008.12.23 12:15:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GroupPolicy
[2009.07.15 10:12:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2010.02.03 18:10:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\iolo
[2009.11.05 12:29:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LangSoft
[2009.05.07 10:52:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Maestro software
[2009.08.30 08:48:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MicroWorld
[2009.03.11 13:12:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MSScanAppDataDir
[2008.08.13 12:39:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\OrbNetworks
[2009.02.03 10:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
[2009.02.03 10:23:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle VideoSpin
[2009.12.21 23:35:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2009.03.11 13:12:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SSScanAppDataDir
[2009.08.30 10:30:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SweetIM
[2008.11.15 12:51:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Teleca
[2010.02.03 21:25:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2010.01.17 23:08:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2008.08.16 15:20:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Uniblue
[2009.02.03 10:19:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\VideoSpin
[2008.11.24 22:05:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\vsosdk
[2008.12.23 10:07:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{2840BBCB-9BEC-47F6-BA0F-10D3C34BF151}
[2009.08.05 10:37:20 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
[2008.12.23 10:27:42 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{8A09CD83-59E1-4DB1-AAFC-E25174FC6706}
[2009.08.11 09:22:06 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{A613CA96-150A-4A1D-90CE-67F81379DF8C}
[2009.11.14 13:07:05 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2008.12.23 10:59:14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
[2009.08.30 08:27:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{FB94CE54-2703-4BFF-8E94-A0AD14C0FA22}
[2009.11.10 13:58:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Acronis
[2009.11.14 11:51:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Autodesk
[2009.12.27 12:50:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\avidemux
[2009.03.05 12:57:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Bentley
[2008.05.24 09:16:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\BinarySense
[2008.08.16 10:49:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Bitdefender
[2010.02.03 13:03:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\BitTorrent
[2008.03.23 11:48:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\BSplayer
[2009.01.22 13:51:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\BSplayer PRO
[2008.12.11 17:08:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Check Identical Files
[2008.07.23 20:08:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2008.04.05 10:24:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Cool Record Edit Pro
[2008.03.21 11:33:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\DAEMON Tools
[2008.07.11 12:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\DMCache
[2009.02.17 16:22:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\DNA
[2009.11.26 11:51:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\FileOpen
[2009.09.28 14:09:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\FINE
[2008.04.15 10:44:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\FormEdik
[2009.05.16 12:14:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\GetRightToGo
[2008.08.12 10:34:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\GlarySoft
[2008.05.21 07:25:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\GSC
[2009.12.27 12:59:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\gtk-2.0
[2010.01.21 22:47:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\ICQ
[2008.06.02 16:53:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\ICQ Toolbar
[2008.03.21 11:13:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\ICQLite
[2008.05.11 15:27:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\IDM
[2010.02.03 10:13:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\iolo
[2009.01.14 23:04:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\JLC's Software
[2008.04.09 13:50:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Jpeg Resampler
[2009.11.24 14:37:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\LangSoft
[2009.11.02 21:54:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\LimeWire
[2008.10.12 10:02:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mathsoft
[2009.08.06 11:42:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\MyPhoneExplorer
[2008.10.02 21:04:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Opera
[2010.01.24 10:47:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\RaimaRadioPro
[2008.06.01 21:05:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\SmsDiscount
[2010.02.03 18:12:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Spyware Terminator
[2008.11.15 13:07:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Teleca
[2010.01.19 12:09:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\TrekBuddy Atlas Creator
[2008.03.21 01:21:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\TuneUp Software
[2008.12.23 10:59:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Uniblue
[2008.12.11 16:39:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\URSoft
[2009.01.10 11:52:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Vso
[2009.02.07 10:25:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Weather Clock
[2009.11.10 12:02:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Windows Search
[2009.02.07 10:20:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\WTI
[2008.11.09 10:28:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\zweitgeist
[2008.05.31 14:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Acronis
[2008.07.11 11:04:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\iolo
[2009.08.30 10:44:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\SACore
[2009.11.14 14:00:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2009.11.14 18:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Acronis
[2008.11.17 09:42:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\iolo
[2009.11.14 19:00:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\TuneUp Software
[2010.02.03 21:34:11 | 000,000,570 | ---- | M] () -- C:\WINDOWS\Tasks\Automatic troubleshooting.job
[2008.12.23 10:28:06 | 000,000,382 | ---- | M] () -- C:\WINDOWS\Tasks\Uniblue DiskRescue 2009.job
[2008.12.23 10:35:05 | 000,000,342 | ---- | M] () -- C:\WINDOWS\Tasks\Uniblue SpyEraser.job

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >

< MD5 for: AGP440.SYS >
[2007.11.18 20:21:29 | 016,730,975 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.08.24 10:00:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.08.24 10:00:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\dllcache\agp440.sys
[2008.04.13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2007.11.18 20:21:29 | 016,730,975 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.08.24 10:00:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.08.24 10:00:52 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008.04.14 04:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.17 14:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: NETLOGON.DLL >
[2004.08.17 14:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\dllcache\cache\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2008.04.14 04:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\cache\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

========== Alternate Data Streams ==========

@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:8FF81EB0
@Alternate Data Stream - 200 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0CE7F3C9
@Alternate Data Stream - 185 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:CB0AACC9
@Alternate Data Stream - 179 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0295CBF7
@Alternate Data Stream - 176 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:EEFF768F
@Alternate Data Stream - 162 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:B3D74A13
@Alternate Data Stream - 157 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:DFC5A2B2
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D287FACF
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:ECF54A0E
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:C980DA7D
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2BE9FEFC
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:AC8859EA
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1
< End of report >

pitimir · #9 Příspěvek od **pitimir** » 04 úno 2010 19:32

1) Skopiruj v OTL do policka pod nazvom "Custom Scans/Fixes":

Kód: Vybrat vše

:otl
SRV - File not found [Auto | Stopped] -- -- (ioloSystemService)
SRV - File not found [Auto | Stopped] -- -- (ioloFileInfoList)
SRV - [2009.06.01 21:20:12 | 000,222,968 | ---- | M] () [Auto | Running] -- D:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = about:blank
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
FF - prefs.js..browser.search.defaultenginename: "QIP Search"
FF - prefs.js..browser.search.order.1: "Ask"
FF - prefs.js..browser.search.selectedEngine: "QIP Search"
FF - prefs.js..browser.startup.homepage: "http://start.icq.com/"
FF - prefs.js..keyword.URL: "http://search.qip.ru/search?from=FF&query="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://search.icq.com/search/afe_results.php?ch_id=afex&q="
[2009.08.30 10:30:19 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2008.08.17 23:27:18 | 000,001,622 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\ask.xml
[2010.01.28 16:53:23 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-1.xml
[2010.01.07 09:32:07 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-10.xml
[2008.07.10 09:02:05 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-2.xml
[2009.07.23 16:01:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-3.xml
[2009.08.07 09:07:57 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-4.xml
[2009.08.29 22:13:05 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-5.xml
[2009.08.30 08:42:40 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-6.xml
[2009.09.14 14:53:39 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-7.xml
[2009.11.07 11:12:56 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-8.xml
[2009.11.26 21:15:58 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-9.xml
[2008.03.31 08:52:00 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.gif
[2008.03.31 08:52:00 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.src
[2009.07.13 16:12:02 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.xml
[2010.01.09 15:04:26 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\qipsearch.xml
[2009.08.30 10:30:15 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\sweetim.xml
[2009.08.30 08:32:22 | 000,000,000 | ---D | M] (Sukoku) -- D:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}(2)
[2009.07.15 10:12:35 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.08.06 11:46:37 | 000,000,000 | ---D | M] (BearShare MediaBar) -- D:\Program Files\Mozilla Firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}
[2009.11.26 12:16:53 | 000,000,000 | ---D | M] -- D:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com
[2008.09.04 01:11:24 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - D:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe ()
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resourc ... oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:8FF81EB0
@Alternate Data Stream - 200 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0CE7F3C9
@Alternate Data Stream - 185 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:CB0AACC9
@Alternate Data Stream - 179 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0295CBF7
@Alternate Data Stream - 176 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:EEFF768F
@Alternate Data Stream - 162 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:B3D74A13
@Alternate Data Stream - 157 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:DFC5A2B2
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D287FACF
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:ECF54A0E
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:C980DA7D
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2BE9FEFC
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:AC8859EA
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1

:files
C:\Documents and Settings\Freemen\Data aplikací\ICQ Toolbar
D:\Program Files\ICQ6Toolbar
D:\Program Files\SweetIM\Toolbars

:commands
[emptytemp]
[reboot]

Klikni na "Run Fix". Program zacne pracovat, mozny je restart PC. Po nom by sa ti mal objavit log, ten by som rad videl.

2) Stiahni MbAM. Uloz na plochu, otvor "mbam-setup.exe" a nainstaluj. Updatuj. Potom spravis kompletny scan - co program najde, zmaz. Nasledny log vloz sem.

freem1 · #10 Příspěvek od **freem1** » 04 úno 2010 23:11

OTL logfile created on: 04.02.2010 22:47:13 - Run 2
OTL by OldTimer - Version 3.1.27.1 Folder = C:\Documents and Settings\Freemen\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: dd.MM.yyyy

1 023,00 Mb Total Physical Memory | 398,00 Mb Available Physical Memory | 39,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 29,30 Gb Total Space | 5,78 Gb Free Space | 19,74% Space Free | Partition Type: NTFS
Drive D: | 268,79 Gb Total Space | 2,88 Gb Free Space | 1,07% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: FREEMEN-95805D5
Current User Name: Freemen
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.02.03 21:40:13 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Freemen\Plocha\OTL.exe
PRC - [2010.01.07 09:30:52 | 000,908,248 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.12.27 23:34:47 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009.12.23 13:24:24 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009.12.23 13:24:23 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009.12.18 00:14:00 | 000,713,544 | ---- | M] (TuneUp Software) -- D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
PRC - [2009.12.18 00:12:10 | 001,044,808 | ---- | M] (TuneUp Software) -- D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
PRC - [2009.12.17 14:07:16 | 000,604,488 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\TUProgSt.exe
PRC - [2009.12.08 14:25:28 | 000,093,320 | ---- | M] (McAfee, Inc.) -- D:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2009.11.25 00:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- D:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009.11.25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- D:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009.11.25 00:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009.11.25 00:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009.11.25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009.08.13 11:43:54 | 003,276,288 | ---- | M] (The Author of QIP) -- D:\Program Files\QIP\qip.exe
PRC - [2009.06.01 21:20:12 | 000,222,968 | ---- | M] () -- D:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2009.05.20 14:11:40 | 000,111,928 | R--- | M] (SweetIM Technologies Ltd.) -- D:\Program Files\SweetIM\Messenger\SweetIM.exe
PRC - [2009.04.08 00:40:52 | 001,377,536 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\system32\oodag.exe
PRC - [2009.03.30 16:28:36 | 001,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
PRC - [2009.03.30 16:28:36 | 000,183,152 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
PRC - [2008.12.19 14:22:59 | 002,267,136 | ---- | M] (Crawler.com) -- D:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
PRC - [2008.12.19 14:22:59 | 000,540,672 | ---- | M] (Crawler.com) -- D:\Program Files\Spyware Terminator\sp_rsser.exe
PRC - [2008.09.14 10:10:19 | 000,068,856 | ---- | M] (Google Inc.) -- D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2008.09.10 16:22:32 | 000,229,648 | ---- | M] (Uniblue) -- D:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.02.15 13:17:00 | 000,832,760 | ---- | M] (BinarySense, Inc.) -- C:\Program Files\Common Files\BinarySense\hldasvc.exe
PRC - [2007.12.10 15:55:26 | 000,323,584 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\PixArt\PAC7302\Monitor.exe
PRC - [2007.10.23 18:41:36 | 000,495,832 | ---- | M] () -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
PRC - [2007.10.23 15:10:38 | 000,427,288 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2007.01.11 13:26:56 | 000,063,112 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\CNAB4RPK.EXE
PRC - [2006.10.26 12:40:34 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
PRC - [2005.08.08 13:54:00 | 000,167,936 | ---- | M] () -- C:\Program Files\Cyberlink\Shared files\RichVideo.exe
PRC - [2005.05.17 11:48:00 | 000,077,824 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2004.07.14 00:05:10 | 001,527,887 | ---- | M] (The Firebird Project) -- C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
PRC - [2004.07.14 00:05:10 | 000,065,536 | ---- | M] (The Firebird Project) -- C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe

========== Modules (SafeList) ==========

MOD - [2010.02.03 21:40:13 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Freemen\Plocha\OTL.exe
MOD - [2009.12.08 13:12:24 | 000,014,544 | ---- | M] (McAfee, Inc.) -- d:\Program Files\McAfee\SiteAdvisor\sahook.dll
MOD - [2009.05.20 14:11:06 | 000,023,864 | R--- | M] (SweetIM Technologies Ltd.) -- D:\Program Files\SweetIM\Messenger\mgAdaptersProxy.dll
MOD - [2006.07.11 17:35:38 | 000,348,160 | ---- | M] (Microsoft Corporation) -- D:\Program Files\SweetIM\Messenger\msvcr71.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (ioloSystemService)
SRV - File not found [Auto | Stopped] -- -- (ioloFileInfoList)
SRV - [2010.02.01 14:29:10 | 002,431,024 | ---- | M] () [Auto | Running] -- c:\Program Files\Common Files\Akamai\rswin_3647.dll -- (Akamai)
SRV - [2010.01.17 23:28:37 | 000,435,016 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- D:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009.12.23 13:24:23 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- D:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009.12.18 00:12:10 | 001,044,808 | ---- | M] (TuneUp Software) [Auto | Running] -- D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2009.12.18 00:08:54 | 000,030,024 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2009.12.17 14:07:16 | 000,604,488 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2009.12.08 14:25:28 | 000,093,320 | ---- | M] (McAfee, Inc.) [Auto | Running] -- D:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2009.11.25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- D:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009.11.25 00:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009.11.25 00:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- D:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009.11.25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009.06.01 21:20:12 | 000,222,968 | ---- | M] () [Auto | Running] -- D:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009.05.02 10:46:25 | 000,182,768 | ---- | M] (Google) [On_Demand | Stopped] -- D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2009.04.08 00:40:52 | 001,377,536 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\WINDOWS\system32\oodag.exe -- (O&O Defrag)
SRV - [2009.03.30 16:28:36 | 001,533,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2009.01.28 10:32:19 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008.12.19 14:22:59 | 000,540,672 | ---- | M] (Crawler.com) [Auto | Running] -- D:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2008.11.14 12:31:58 | 000,085,096 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2008.11.04 00:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2008.09.10 16:22:32 | 000,229,648 | ---- | M] (Uniblue) [Auto | Running] -- D:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe -- (Uniblue DiskRescue)
SRV - [2008.07.29 18:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2008.04.14 04:21:44 | 000,027,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\irmon.dll -- (Irmon)
SRV - [2008.02.15 13:17:00 | 000,832,760 | ---- | M] (BinarySense, Inc.) [Auto | Running] -- C:\Program Files\Common Files\BinarySense\hldasvc.exe -- (HDDlife HDD Access service)
SRV - [2007.12.05 00:41:00 | 000,155,716 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2007.10.25 14:27:54 | 000,266,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc)
SRV - [2007.10.23 18:41:36 | 000,495,832 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe -- (TryAndDecideService)
SRV - [2007.10.23 15:10:38 | 000,427,288 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2007.10.18 10:31:54 | 000,098,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Program Files\Windows Live\Messenger\usnsvc.exe -- (usnjsvc)
SRV - [2007.06.29 18:16:56 | 000,800,040 | ---- | M] (Nero AG) [On_Demand | Stopped] -- D:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService)
SRV - [2007.06.27 18:04:00 | 000,279,848 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007.01.05 20:57:30 | 000,913,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc)
SRV - [2006.10.26 13:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006.10.26 12:40:34 | 000,335,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe -- (MDM)
SRV - [2005.08.08 13:54:00 | 000,167,936 | ---- | M] () [Auto | Running] -- C:\Program Files\Cyberlink\Shared files\RichVideo.exe -- (RichVideo) Cyberlink RichVideo Service(CRVS)
SRV - [2005.04.03 23:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004.07.14 00:05:10 | 001,527,887 | ---- | M] (The Firebird Project) [On_Demand | Running] -- C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe -- (FirebirdServerDefaultInstance)
SRV - [2004.07.14 00:05:10 | 000,065,536 | ---- | M] (The Firebird Project) [Auto | Running] -- C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe -- (FirebirdGuardianDefaultInstance)

========== Driver Services (SafeList) ==========

DRV - [2010.01.04 15:22:50 | 000,051,072 | ---- | M] (Identcode Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\Drivers\ANGELNT.SYS -- (Angelnt)
DRV - [2009.11.25 00:50:59 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009.11.25 00:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2009.11.25 00:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009.11.25 00:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009.11.25 00:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009.11.25 00:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009.10.14 07:24:44 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Stopped] -- D:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2009.10.12 14:44:30 | 000,022,016 | ---- | M] (Feitian Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rockey4.sys -- (ROCKEYNT)
DRV - [2008.12.19 14:22:59 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2008.05.31 10:24:29 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2008.05.31 10:24:28 | 000,441,760 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)
DRV - [2008.05.31 10:23:51 | 000,129,248 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2008.05.31 10:23:29 | 000,368,736 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tdrpman.sys -- (tdrpman)
DRV - [2008.05.12 15:40:48 | 000,460,544 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PAC7302.SYS -- (PAC7302)
DRV - [2008.05.07 15:44:38 | 000,016,168 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2008.04.13 20:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2008.04.13 19:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.03.21 11:33:22 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.01.19 19:12:42 | 000,128,104 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WimFltr.sys -- (WimFltr)
DRV - [2007.12.05 00:41:00 | 007,435,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2007.11.13 11:25:52 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2007.11.07 04:22:06 | 000,034,064 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) WinPcap Packet Driver (NPF)
DRV - [2007.03.08 00:51:00 | 000,043,528 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2007.02.08 12:56:20 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1unic.sys -- (sea1unic) Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM)
DRV - [2007.02.08 12:56:06 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1obex.sys -- (sea1obex)
DRV - [2007.02.08 12:56:02 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1nd5.sys -- (sea1nd5) Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS)
DRV - [2007.02.08 12:56:00 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mgmt.sys -- (sea1mgmt) Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM)
DRV - [2007.02.08 12:55:52 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mdm.sys -- (sea1mdm)
DRV - [2007.02.08 12:55:50 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1mdfl.sys -- (sea1mdfl)
DRV - [2007.02.08 12:55:40 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sea1bus.sys -- (sea1bus) Sony Ericsson Device 0A1 driver (WDM)
DRV - [2006.09.24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2005.05.18 10:50:00 | 002,319,680 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004.11.19 18:07:00 | 000,101,488 | ---- | M] () [Kernel | Auto | Running] -- D:\Program Files\Everstrike Software\Lock Folder XP 3.6\LF30XP.sys -- (LF30FS)
DRV - [2004.06.03 03:40:50 | 000,068,224 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvraid.sys -- (nvraid) NVIDIA NForce(tm)
DRV - [2004.05.17 07:00:54 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2004.05.17 07:00:52 | 000,033,280 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2004.04.02 08:40:00 | 000,021,760 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nv_agp.sys -- (nv_agp)
DRV - [2002.09.16 16:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [2001.10.25 12:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2001.08.17 23:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2001.08.17 22:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
DRV - [2001.08.17 20:56:16 | 000,007,552 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SONYPVU1.SYS -- (SONYPVU1) Sony USB Filter Driver (SONYPVU1)
DRV - [1996.04.03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Local Page = http://www.google.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Local Page Restore =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "QIP Search"
FF - prefs.js..browser.search.order.1: "Ask"
FF - prefs.js..browser.search.selectedEngine: "QIP Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://start.icq.com/"
FF - prefs.js..extensions.enabledItems: {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}:2.0.0.66311
FF - prefs.js..extensions.enabledItems: npdevalvr@devalvr.com:0.7.7.16
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.6.5
FF - prefs.js..extensions.enabledItems: {6614d11d-d21d-b211-ae23-815234e1ebb5}:1.0.20
FF - prefs.js..extensions.enabledItems: {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}:0.9.10.1
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20091209.4
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {35106bca-6c78-48c7-ac28-56df30b51d2a}:1.3.6
FF - prefs.js..extensions.enabledItems: {8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}:0.15
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.0
FF - prefs.js..extensions.enabledItems: {9D6218B8-03C7-4b91-AA43-680B305DD35C}:1.7.9.7
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.8
FF - prefs.js..keyword.URL: "http://search.qip.ru/search?from=FF&query="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://search.icq.com/search/afe_result ... id=afex&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}: D:\Program Files\Crawler\firefox\ [2008.12.20 09:28:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: D:\Program Files\McAfee\SiteAdvisor [2009.12.17 22:26:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: D:\Program Files\Real\RealPlayer\browserrecord [2009.12.27 23:35:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2010.01.10 14:45:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2010.01.07 09:31:00 | 000,000,000 | ---D | M]

[2008.09.11 14:43:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Extensions
[2010.02.04 09:41:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions
[2008.03.21 22:54:30 | 000,000,000 | ---D | M] (WebTran) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2009.07.25 11:25:13 | 000,000,000 | ---D | M] (Forecastfox) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
[2009.03.29 13:01:57 | 000,000,000 | ---D | M] (Linkification) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{35106bca-6c78-48c7-ac28-56df30b51d2a}
[2009.08.11 10:08:14 | 000,000,000 | ---D | M] (Dr.Web anti-virus link checker) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{6614d11d-d21d-b211-ae23-815234e1ebb5}
[2009.07.25 11:25:14 | 000,000,000 | ---D | M] (Live HTTP Headers) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}
[2009.07.25 11:25:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{9D6218B8-03C7-4b91-AA43-680B305DD35C}
[2009.12.27 15:58:34 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2008.05.23 18:57:40 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}(2)
[2010.02.03 09:44:36 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2009.08.30 10:30:19 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2008.10.17 09:42:50 | 000,000,000 | ---D | M] (Mouse Gestures Redox) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{FFA36170-80B1-4535-B0E3-A4569E497DD0}
[2008.04.30 15:34:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\firebit@firebit
[2009.08.07 12:21:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\npdevalvr@devalvr.com
[2008.03.22 11:46:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\pasteandgo2@holio.lin
[2008.06.09 15:16:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\pbreak.br@gmail.com
[2010.02.03 09:44:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\staged-xpis
[2008.06.03 19:32:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\videodowloader@videodownloader.net
[2008.08.17 23:27:18 | 000,001,622 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\ask.xml
[2010.02.04 18:20:36 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-1.xml
[2010.01.07 09:32:07 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-10.xml
[2008.07.10 09:02:05 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-2.xml
[2009.07.23 16:01:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-3.xml
[2009.08.07 09:07:57 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-4.xml
[2009.08.29 22:13:05 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-5.xml
[2009.08.30 08:42:40 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-6.xml
[2009.09.14 14:53:39 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-7.xml
[2009.11.07 11:12:56 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-8.xml
[2009.11.26 21:15:58 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-9.xml
[2008.03.31 08:52:00 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.gif
[2008.03.31 08:52:00 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.src
[2009.07.13 16:12:02 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.xml
[2010.01.09 15:04:26 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\qipsearch.xml
[2009.08.30 10:30:15 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\sweetim.xml
[2010.02.04 09:41:54 | 000,000,000 | ---D | M] -- D:\Program Files\Mozilla Firefox\extensions
[2009.08.30 08:32:22 | 000,000,000 | ---D | M] (Sukoku) -- D:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}(2)
[2009.07.15 10:12:35 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.08.06 11:46:37 | 000,000,000 | ---D | M] (BearShare MediaBar) -- D:\Program Files\Mozilla Firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}
[2009.11.26 12:16:53 | 000,000,000 | ---D | M] -- D:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com
[2008.09.04 01:11:24 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll
[2004.08.17 14:49:32 | 000,226,816 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Mozilla Firefox\plugins\npdrmv2.dll
[2007.11.18 20:07:54 | 000,364,544 | ---- | M] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- D:\Program Files\Mozilla Firefox\plugins\npdsplay.dll
[2007.04.02 10:14:41 | 000,653,120 | ---- | M] (Maestro software, ltd.) -- D:\Program Files\Mozilla Firefox\plugins\npMaeC3D.dll
[2008.06.30 21:02:00 | 000,663,072 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Mozilla Firefox\plugins\npOGAPlugin.dll
[2004.08.17 14:49:16 | 000,010,240 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Mozilla Firefox\plugins\npwmsdrm.dll
[2009.08.24 20:37:14 | 000,001,583 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\atlas-sk.xml
[2009.08.24 20:37:14 | 000,001,380 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\azet-sk.xml
[2009.08.24 20:37:14 | 000,001,479 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\dunaj-sk.xml
[2009.08.24 20:37:14 | 000,001,473 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\slovnik-sk.xml
[2009.08.24 20:37:14 | 000,001,104 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\wikipedia-sk.xml
[2009.08.24 20:37:14 | 000,000,830 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\zoznam-sk.xml

O1 HOSTS File: ([2009.08.18 11:58:43 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: () - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - D:\Program Files\Crawler\ctbr.dll (Crawler.com)
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - D:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Pomocná služba pro přihlášení ke službě Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - d:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - d:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (&Crawler Toolbar) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - D:\Program Files\Crawler\ctbr.dll (Crawler.com)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Crawler Toolbar) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - D:\Program Files\Crawler\ctbr.dll (Crawler.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (&Crawler Toolbar) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - D:\Program Files\Crawler\ctbr.dll (Crawler.com)
O3 - HKCU\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKCU\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [avast!] D:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\PAC7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SpywareTerminator] D:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe (Crawler.com)
O4 - HKLM..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SweetIM] D:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [swg] D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoManageMyComputerVerb = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCommonGroups = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinterTabs = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAddPrinter = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPrinters = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetworkConnections = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileMenu = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeAnimation = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeKeyboardNavigationIndicators = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - D:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Previesť cieľ odkazu do formátu Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Previesť do Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Pridať cieľ odkazu do existujúceho súboru PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Pridať do existujúceho súboru PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - D:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O15 - HKLM\..Trusted Domains: 31 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 31 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resourc ... oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\hddlife {BD758015-47D9-477A-8873-4B688A2BC0E2} - C:\Program Files\Common Files\BinarySense\hlAPP.dll (BinarySense, Inc.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

freem1 · #11 Příspěvek od **freem1** » 04 úno 2010 23:11

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - D:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - D:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - d:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tbr {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - D:\Program Files\Crawler\ctbr.dll (Crawler.com)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - D:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\x-sdch {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - D:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Freemen\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - D:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.04.14 08:54:55 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.11.10 12:46:03 | 000,000,000 | ---D | M] - D:\AutoCAD Civil 3D 2010 - česky-install -- [ NTFS ]
O32 - AutoRun File - [2008.10.03 21:21:36 | 000,000,000 | ---D | M] - D:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2009.04.14 08:54:55 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (OODBS) - C:\WINDOWS\System32\OODBS.exe (O&O Software GmbH)
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.02.03 21:42:29 | 000,548,864 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Freemen\Plocha\OTL.exe
[2010.02.02 21:41:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Norton Installer
[2010.02.02 21:38:48 | 001,101,824 | ---- | C] (Woodbury Associates Limited) -- C:\WINDOWS\System32\UniBox210.ocx
[2010.02.02 21:38:47 | 000,880,640 | ---- | C] (Woodbury Associates Limited) -- C:\WINDOWS\System32\UniBox10.ocx
[2010.02.02 21:38:47 | 000,212,992 | ---- | C] (Woodbury Associates Limited) -- C:\WINDOWS\System32\UniBoxVB12.ocx
[2010.02.02 21:38:38 | 000,000,000 | ---D | C] -- D:\Program Files\Norton Utilities 14
[2010.01.24 10:46:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Freemen\Data aplikací\RaimaRadioPro
[2010.01.24 10:46:03 | 000,000,000 | ---D | C] -- D:\Program Files\RarmaRadio
[2010.01.18 14:59:27 | 000,000,000 | ---D | C] -- C:\tmpDownload
[2010.01.18 13:30:44 | 000,000,000 | ---D | C] -- C:\tmp
[2010.01.17 23:28:40 | 000,030,536 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2010.01.17 23:28:38 | 000,030,024 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2010.01.17 23:27:46 | 000,000,000 | ---D | C] -- D:\Program Files\TuneUp Utilities 2010
[2010.01.17 19:37:50 | 000,000,000 | ---D | C] -- C:\Demo-2010
[2010.01.08 16:59:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\p_vzor030.php_subory
[2009.11.20 11:22:24 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2009.11.14 19:00:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\TuneUp Software
[2009.11.14 18:55:43 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2009.11.14 18:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Acronis
[2009.11.14 14:00:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2009.11.02 11:44:08 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2009.08.30 10:44:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\SACore
[2008.12.06 19:38:56 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2008.11.17 09:42:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\iolo
[2008.07.11 11:04:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\iolo
[2008.05.31 14:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\Acronis
[2008.03.26 09:17:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[1996.11.18 10:00:00 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\IMPLODE.DLL

========== Files - Modified Within 30 Days ==========

[2010.02.04 22:27:54 | 000,000,570 | ---- | M] () -- C:\WINDOWS\tasks\Automatic troubleshooting.job
[2010.02.04 22:18:46 | 000,002,284 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.02.04 22:17:42 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.02.04 22:17:17 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.02.04 22:17:16 | 1073,008,640 | -HS- | M] () -- C:\hiberfil.sys
[2010.02.04 22:17:14 | 000,627,064 | ---- | M] () -- C:\WINDOWS\System32\oodbs.lor
[2010.02.04 20:20:55 | 011,534,336 | ---- | M] () -- C:\Documents and Settings\Freemen\ntuser.dat
[2010.02.04 20:20:55 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Freemen\ntuser.ini
[2010.02.04 14:48:29 | 000,004,145 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\ISO12_DVD.nri
[2010.02.04 12:41:59 | 000,045,568 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\Podmienky a pokyny pre vypracovanie prác.doc
[2010.02.04 10:10:57 | 000,094,936 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\Exp2Apl-Fa.rtf
[2010.02.03 22:03:00 | 000,223,232 | ---- | M] () -- C:\Documents and Settings\Freemen\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.02.03 21:40:13 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Freemen\Plocha\OTL.exe
[2010.02.03 18:43:59 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2010.02.03 12:43:46 | 000,078,877 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\hist_448137400.htm
[2010.02.03 10:10:56 | 000,074,703 | ---- | M] () -- C:\WINDOWS\System32\mfc45.dll
[2010.02.03 08:47:35 | 000,000,042 | ---- | M] () -- C:\WINDOWS\System32\Jiii_PNUCT.pnc
[2010.02.02 22:38:21 | 012,320,768 | ---- | M] () -- C:\Documents and Settings\Freemen\ntuser.dat.rmbak
[2010.02.02 21:39:44 | 000,000,623 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Norton Utilities.lnk
[2010.02.02 11:47:29 | 000,033,792 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\Vrábliková Daniela-životopis-n.doc..doc
[2010.02.02 11:42:02 | 000,031,232 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\ATACK-s.r.o..doc
[2010.02.01 16:49:53 | 000,002,443 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\Microsoft Office Word 2007.lnk
[2010.02.01 15:23:53 | 000,032,768 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\Vrábliková Daniela-ČSOB.doc..doc
[2010.02.01 14:04:44 | 003,347,168 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\Hampenberg - Duck Toy.mp3
[2010.01.31 18:29:07 | 000,103,481 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\VYK_P3F.RPT.pdf
[2010.01.29 17:04:04 | 000,004,561 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\ISO3_DVD.nri
[2010.01.28 17:06:40 | 000,004,719 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\ISO1_DVD.nri
[2010.01.26 11:06:15 | 000,000,000 | ---- | M] () -- C:\WINDOWS\XXLGSC
[2010.01.24 10:46:22 | 000,000,552 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\RarmaRadio.lnk
[2010.01.19 16:13:26 | 000,000,795 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\Zástupce - TrekBuddy Atlas Creator.exe.lnk
[2010.01.19 14:46:23 | 000,001,249 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.01.18 09:24:48 | 000,103,363 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\DPHF_08.RPT.pdf
[2010.01.17 23:28:34 | 000,001,615 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\TuneUp 1-Click Maintenance.lnk
[2010.01.17 23:24:23 | 000,000,448 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\YouTubeGet.lnk
[2010.01.17 19:39:32 | 000,001,474 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\ALFA - jednoduché účtovníctvo.lnk
[2010.01.17 13:14:14 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.01.16 12:58:32 | 000,043,133 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\moj zoznam.bsl
[2010.01.14 12:19:59 | 000,921,632 | ---- | M] () -- C:\PA7302.DAT
[2010.01.14 12:14:21 | 000,028,160 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\Odberateľ.122009.doc
[2010.01.13 11:10:44 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.01.10 17:22:04 | 000,144,124 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\dovodova_2-1.rtf
[2010.01.10 17:21:51 | 000,043,520 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\posudzovateľ.doc
[2010.01.09 13:40:26 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\Freemen\Plocha\WinRAR.lnk
[2010.01.08 16:59:53 | 000,038,304 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\p_vzor030.php.htm
[2010.01.07 20:27:16 | 002,169,256 | ---- | M] () -- C:\WINDOWS\System32\Incinerator.dll
[2010.01.07 15:18:16 | 000,000,140 | ---- | M] () -- C:\Documents and Settings\Freemen\default.pls
[2010.01.06 16:14:27 | 000,111,232 | ---- | M] () -- C:\Documents and Settings\Freemen\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.01.06 13:58:45 | 000,028,672 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\SÚPISVP 2-Vráblik.doc

========== Files Created - No Company Name ==========

[2010.02.04 14:48:29 | 000,004,145 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\ISO12_DVD.nri
[2010.02.04 12:41:58 | 000,045,568 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\Podmienky a pokyny pre vypracovanie prác.doc
[2010.02.04 10:10:57 | 000,094,936 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\Exp2Apl-Fa.rtf
[2010.02.03 12:43:46 | 000,078,877 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\hist_448137400.htm
[2010.02.03 10:10:56 | 000,074,703 | ---- | C] () -- C:\WINDOWS\System32\mfc45.dll
[2010.02.02 21:39:44 | 000,000,623 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Norton Utilities.lnk
[2010.02.02 11:42:00 | 000,031,232 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\ATACK-s.r.o..doc
[2010.02.02 11:19:33 | 000,033,792 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\Vrábliková Daniela-životopis-n.doc..doc
[2010.02.01 15:23:53 | 000,032,768 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\Vrábliková Daniela-ČSOB.doc..doc
[2010.02.01 14:04:07 | 003,347,168 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\Hampenberg - Duck Toy.mp3
[2010.01.31 18:29:07 | 000,103,481 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\VYK_P3F.RPT.pdf
[2010.01.29 17:04:04 | 000,004,561 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\ISO3_DVD.nri
[2010.01.28 17:06:35 | 000,004,719 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\ISO1_DVD.nri
[2010.01.24 10:46:22 | 000,000,552 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\RarmaRadio.lnk
[2010.01.19 16:13:26 | 000,000,795 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\Zástupce - TrekBuddy Atlas Creator.exe.lnk
[2010.01.18 09:24:47 | 000,103,363 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\DPHF_08.RPT.pdf
[2010.01.17 23:28:47 | 000,000,570 | ---- | C] () -- C:\WINDOWS\tasks\Automatic troubleshooting.job
[2010.01.17 23:28:34 | 000,001,615 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\TuneUp 1-Click Maintenance.lnk
[2010.01.14 12:14:20 | 000,028,160 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\Odberateľ.122009.doc
[2010.01.10 17:22:04 | 000,144,124 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\dovodova_2-1.rtf
[2010.01.10 17:21:50 | 000,043,520 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\posudzovateľ.doc
[2010.01.09 14:51:01 | 000,043,133 | ---- | C] () -- C:\Documents and Settings\Freemen\Plocha\moj zoznam.bsl
[2010.01.08 16:59:50 | 000,038,304 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\p_vzor030.php.htm
[2010.01.03 15:51:40 | 000,000,323 | ---- | C] () -- C:\WINDOWS\System32\Remover.ini
[2010.01.03 15:51:30 | 000,000,885 | ---- | C] () -- C:\WINDOWS\System32\SP7302.INI
[2009.12.28 00:03:35 | 000,034,308 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\mazuki.dll
[2009.12.27 23:55:41 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009.12.23 15:44:06 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2009.12.23 15:43:59 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009.12.23 15:43:57 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009.11.30 22:48:39 | 000,866,000 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2009.11.26 12:15:38 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2009.10.12 14:44:30 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\Ry4CoInst.dll
[2009.07.29 09:50:00 | 000,076,407 | ---- | C] () -- C:\Documents and Settings\Freemen\Data aplikací\Smiley.ico
[2009.05.16 12:29:11 | 000,000,041 | ---- | C] () -- C:\WINDOWS\System32\img2pdf.ini
[2009.05.16 12:23:28 | 000,000,176 | ---- | C] () -- C:\WINDOWS\Image2PDF.INI
[2009.05.02 16:04:19 | 000,004,973 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2009.04.15 08:43:36 | 000,004,383 | ---- | C] () -- C:\WINDOWS\emcalc.ini
[2009.03.22 20:27:05 | 000,663,552 | ---- | C] () -- C:\WINDOWS\System32\FreeImage.dll
[2009.03.11 13:13:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\prestopm.INI
[2009.03.11 13:07:16 | 000,049,152 | R--- | C] () -- C:\WINDOWS\AutoSet.dll
[2009.03.11 12:50:27 | 000,000,661 | ---- | C] () -- C:\WINDOWS\if40le.ini
[2009.03.11 12:50:26 | 000,000,105 | ---- | C] () -- C:\WINDOWS\SCNDRVU.INI
[2009.03.11 12:49:59 | 000,002,991 | ---- | C] () -- C:\WINDOWS\If42le.ini
[2009.03.11 12:49:58 | 000,000,253 | ---- | C] () -- C:\WINDOWS\PEXPLORE.INI
[2009.03.11 12:49:52 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\pmsbfn32.dll
[2009.03.11 12:49:39 | 000,000,406 | ---- | C] () -- C:\WINDOWS\umxaddin.ini
[2009.02.07 18:38:22 | 000,000,482 | ---- | C] () -- C:\WINDOWS\Setting.ini
[2009.02.04 13:58:12 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009.02.04 13:58:12 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009.01.07 14:01:55 | 000,005,368 | ---- | C] () -- C:\Documents and Settings\Freemen\Data aplikací\froggy_scorebox
[2009.01.07 14:01:55 | 000,000,912 | ---- | C] () -- C:\Documents and Settings\Freemen\Data aplikací\pl_accounts.pl_acc
[2009.01.07 14:01:55 | 000,000,556 | ---- | C] () -- C:\Documents and Settings\Freemen\Data aplikací\Troll.options
[2008.12.19 14:22:59 | 000,142,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2008.12.07 16:53:21 | 000,000,083 | ---- | C] () -- C:\WINDOWS\winDecrypt.INI
[2008.11.19 17:08:15 | 000,000,032 | ---- | C] () -- C:\WINDOWS\GRAPH5.INI
[2008.11.15 21:34:49 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Freemen\Data aplikací\Skin.flk
[2008.11.15 13:08:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2008.10.23 12:56:52 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2008.09.14 10:20:05 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll
[2008.09.14 10:20:05 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\AVEQT.dll
[2008.09.14 09:41:32 | 000,001,298 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008.08.16 14:16:09 | 000,002,048 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll
[2008.08.16 14:16:09 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll
[2008.08.16 14:16:09 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll
[2008.07.11 11:03:59 | 002,169,256 | ---- | C] () -- C:\WINDOWS\System32\Incinerator.dll
[2008.07.03 16:16:39 | 000,000,508 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.06.24 10:25:38 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.05.31 10:18:53 | 000,000,058 | ---- | C] () -- C:\Documents and Settings\Freemen\Local Settings\Data aplikací\DonationCoder_ScreenshotCaptor_InstallInfo.dat
[2008.05.26 22:22:14 | 000,015,552 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008.05.26 22:22:10 | 000,021,464 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008.05.26 22:22:04 | 000,014,910 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008.05.17 09:25:05 | 000,000,074 | ---- | C] () -- C:\WINDOWS\SLEX99.INI
[2008.05.15 17:37:05 | 000,000,405 | ---- | C] () -- C:\WINDOWS\System32\ANGELDOS.SYS
[2008.05.15 17:18:20 | 000,978,432 | ---- | C] () -- C:\WINDOWS\System32\pg32.dll
[2008.05.09 10:50:26 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\BladeEnc.dll
[2008.05.09 10:44:55 | 000,110,080 | ---- | C] () -- C:\WINDOWS\System32\recorder.DLL
[2008.05.01 08:50:39 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\ECRCOMTX.DLL
[2008.04.10 11:25:16 | 000,000,081 | ---- | C] () -- C:\WINDOWS\SuperUtil.ini
[2008.04.03 11:16:11 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2008.04.03 07:21:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oodcnt.INI
[2008.03.21 22:54:09 | 000,002,490 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2008.03.21 14:55:19 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2008.03.21 11:52:53 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\Freemen\Local Settings\Data aplikací\fusioncache.dat
[2008.03.21 11:33:22 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008.03.21 10:53:31 | 000,000,207 | ---- | C] () -- C:\WINDOWS\usdthank.ini
[2008.03.21 10:53:31 | 000,000,031 | ---- | C] () -- C:\WINDOWS\idc.ini
[2008.03.21 01:19:51 | 000,223,232 | ---- | C] () -- C:\Documents and Settings\Freemen\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.03.21 00:35:58 | 000,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2008.03.21 00:32:42 | 000,002,507 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008.03.21 00:32:41 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008.02.04 17:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2008.01.09 14:01:48 | 000,000,453 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2007.12.05 00:41:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2007.12.05 00:41:00 | 001,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2007.12.05 00:41:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2007.12.05 00:41:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2007.12.05 00:41:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2007.01.26 02:04:12 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\mase32.dll
[2007.01.26 02:04:12 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\ma32.dll
[2006.06.02 23:15:44 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\LDecVorbis.dll
[2006.05.24 18:37:27 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2006.02.24 09:41:59 | 000,438,272 | ---- | C] () -- C:\WINDOWS\System32\OpenQuicktimeLib.dll
[2006.02.24 09:41:59 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\libfaac.dll
[2006.02.23 17:36:20 | 001,798,144 | ---- | C] () -- C:\WINDOWS\System32\ltmm_n.dll
[2006.02.23 17:36:20 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\LMOggSpl.dll
[2006.02.23 17:36:20 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\LMOggMux.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2004.11.19 09:56:00 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\RYDLL32.DLL
[2004.10.22 05:43:44 | 000,498,176 | ---- | C] () -- C:\WINDOWS\System32\Synapse.dll
[2004.03.18 22:51:56 | 000,159,744 | R--- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2004.03.18 22:51:16 | 000,843,776 | R--- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2002.11.06 11:16:26 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\angel32.dll
[2002.05.15 03:58:48 | 000,618,496 | ---- | C] () -- C:\WINDOWS\System32\dXQGridEdit.dll
[2000.06.24 05:10:14 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\TSLV.dll
[1997.08.28 09:53:10 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\mapirtf.dll
[1996.04.03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== Custom Scans ==========

< :otl >

< SRV - File not found [Auto | Stopped] -- -- (ioloSystemService) >

< SRV - File not found [Auto | Stopped] -- -- (ioloFileInfoList) >

< SRV - [2009.06.01 21:20:12 | 000,222,968 | ---- | M] () [Auto | Running] -- D:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service) >

< IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank >

< IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = about:blank >

< IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie >
Invalid Switch: ie

< IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\URLSearchHook: - Reg Error: Key error. File not found >

< IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< IE - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.) >

< FF - prefs.js..browser.search.defaultenginename: "QIP Search" >

< FF - prefs.js..browser.search.order.1: "Ask" >

< FF - prefs.js..browser.search.selectedEngine: "QIP Search" >

< FF - prefs.js..browser.startup.homepage: "http://start.icq.com/" >

< FF - prefs.js..keyword.URL: "http://search.qip.ru/search?from=FF&query=" >

< FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://search.icq.com/search/afe_result ... id=afex&q=" >

< [2009.08.30 10:30:19 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847} >

< [2008.08.17 23:27:18 | 000,001,622 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\ask.xml >

< [2010.01.28 16:53:23 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-1.xml >

< [2010.01.07 09:32:07 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-10.xml >

< [2008.07.10 09:02:05 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-2.xml >

< [2009.07.23 16:01:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-3.xml >

< [2009.08.07 09:07:57 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-4.xml >

< [2009.08.29 22:13:05 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-5.xml >

< [2009.08.30 08:42:40 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-6.xml >

< [2009.09.14 14:53:39 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-7.xml >

< [2009.11.07 11:12:56 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-8.xml >

< [2009.11.26 21:15:58 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-9.xml >

< [2008.03.31 08:52:00 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.gif >

< [2008.03.31 08:52:00 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.src >

< [2009.07.13 16:12:02 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.xml >

< [2010.01.09 15:04:26 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\qipsearch.xml >

< [2009.08.30 10:30:15 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\sweetim.xml >

< [2009.08.30 08:32:22 | 000,000,000 | ---D | M] (Sukoku) -- D:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}(2) >

< [2009.07.15 10:12:35 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} >

< [2009.08.06 11:46:37 | 000,000,000 | ---D | M] (BearShare MediaBar) -- D:\Program Files\Mozilla Firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} >

< [2009.11.26 12:16:53 | 000,000,000 | ---D | M] -- D:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com >

< [2008.09.04 01:11:24 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll >

< O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - D:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer) >

< O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) >

< O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) >

< O3 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< O3 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) >

< O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found >

< O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found >

< O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present >

< O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present >

< O7 - HKU\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present >

< O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present >

< O7 - HKU\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present >

< O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present >

< O7 - HKU\S-1-5-21-1078081533-1214440339-725345543-1003_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present >

< O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe () >

< O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.) >
Invalid Switch: ... mv9VCM.CAB (Reg Error: Key error.)

< O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resourc ... oscan8.cab (BDSCANONLINE Control) >
Invalid Switch: resourc ... oscan8.cab (BDSCANONLINE Control)

< O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17) >
Invalid Switch: jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)

< O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.) >
Invalid Switch: fl ... rashim.cab (Reg Error: Key error.)

< O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17) >
Invalid Switch: jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)

< O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17) >
Invalid Switch: jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)

< O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object) >
Invalid Switch: s ... wflash.cab (Shockwave Flash Object)

< O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found >

< @Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:8FF81EB0 >

< @Alternate Data Stream - 200 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0CE7F3C9 >

< @Alternate Data Stream - 185 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:CB0AACC9 >

< @Alternate Data Stream - 179 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0295CBF7 >

< @Alternate Data Stream - 176 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:EEFF768F >

< @Alternate Data Stream - 162 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:B3D74A13 >

< @Alternate Data Stream - 157 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:DFC5A2B2 >

< @Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D287FACF >

< @Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:ECF54A0E >

< @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:C980DA7D >

< @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2BE9FEFC >

< @Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:AC8859EA >

< @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1 >

< >

< :files >

< C:\Documents and Settings\Freemen\Data aplikací\ICQ Toolbar >

< D:\Program Files\ICQ6Toolbar >

< D:\Program Files\SweetIM\Toolbars >

< >

< :commands >

< [emptytemp] >

< [reboot] >

========== Alternate Data Streams ==========

@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:8FF81EB0
@Alternate Data Stream - 200 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0CE7F3C9
@Alternate Data Stream - 185 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:CB0AACC9
@Alternate Data Stream - 179 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0295CBF7
@Alternate Data Stream - 176 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:EEFF768F
@Alternate Data Stream - 162 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:B3D74A13
@Alternate Data Stream - 157 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:DFC5A2B2
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D287FACF
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:ECF54A0E
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:C980DA7D
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2BE9FEFC
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:AC8859EA
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1

< End of report >

pitimir · #12 Příspěvek od **pitimir** » 05 úno 2010 12:48

Zle, pozri si to prosim este raz a pozornejsie

freem1 · #13 Příspěvek od **freem1** » 05 úno 2010 13:36

Jaj uz som to zistil....sory..

freem1 · #14 Příspěvek od **freem1** » 05 úno 2010 13:38

All processes killed
========== OTL ==========
Service ioloSystemService stopped successfully!
Service ioloSystemService deleted successfully!
Service ioloFileInfoList stopped successfully!
Service ioloFileInfoList deleted successfully!
Service ICQ Service stopped successfully!
Service ICQ Service deleted successfully!
D:\Program Files\ICQ6Toolbar\ICQ Service.exe moved successfully.
Unable to set value : HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E!
Unable to set value : HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Restore| /E!
Unable to set value : HKU\S-1-5-21-1078081533-1214440339-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E!
Registry value HKEY_USERS\S-1-5-21-1078081533-1214440339-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1078081533-1214440339-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ deleted successfully.
D:\Program Files\ICQ6Toolbar\ICQToolBar.dll moved successfully.
Registry value HKEY_USERS\S-1-5-21-1078081533-1214440339-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{EEE6C35D-6118-11DC-9C72-001320C79847} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}\ deleted successfully.
D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll moved successfully.
Prefs.js: "QIP Search" removed from browser.search.defaultenginename
Prefs.js: "Ask" removed from browser.search.order.1
Prefs.js: "QIP Search" removed from browser.search.selectedEngine
Prefs.js: "http://start.icq.com/" removed from browser.startup.homepage
Prefs.js: "http://search.qip.ru/search?from=FF&query=" removed from keyword.URL
Prefs.js: "http://search.icq.com/search/afe_result ... id=afex&q=" removed from sweetim.toolbar.previous.keyword.URL
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}\META-INF folder moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}\components folder moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}\chrome folder moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847} folder moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\ask.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.gif moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.src moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\icqplugin.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\qipsearch.xml moved successfully.
C:\Documents and Settings\Freemen\Data aplikací\Mozilla\Firefox\Profiles\37awxsm7.default\searchplugins\sweetim.xml moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}(2)\defaults\preferences folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}(2)\defaults folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}(2)\chrome folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{7AB6D133-2A14-4C11-B3AD-35B1548D38F9}(2) folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}\META-INF folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}\chrome folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com\chrome\skin folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com\chrome folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com folder moved successfully.
D:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3049C3E9-B461-4BC5-8870-4C09146192CA}\ deleted successfully.
D:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}\ deleted successfully.
D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
File D:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ deleted successfully.
File D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll not found.
Registry value HKEY_USERS\S-1-5-21-1078081533-1214440339-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
File D:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
Registry value HKEY_USERS\S-1-5-21-1078081533-1214440339-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found.
File D:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce\\nltide_2 deleted successfully.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce\\nltide_2 not found.
Registry key HKEY_USERS\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-21-1078081533-1214440339-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1078081533-1214440339-725345543-1003_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{85d1f590-48f4-11d9-9669-0800200c9a66}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{85d1f590-48f4-11d9-9669-0800200c9a66}\ not found.
C:\WINDOWS\bdoscandel.exe moved successfully.
Starting removal of ActiveX control {33564D57-0000-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\WMV9VCM.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{33564D57-0000-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {D27CDB6E-AE6D-11CF-96B8-444553540000}
C:\WINDOWS\Downloaded Program Files\swflash.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:8FF81EB0 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:0CE7F3C9 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:CB0AACC9 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:0295CBF7 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:EEFF768F deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:B3D74A13 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:DFC5A2B2 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D287FACF deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:ECF54A0E deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:C980DA7D deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:2BE9FEFC deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:AC8859EA deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1 deleted successfully.
========== FILES ==========
C:\Documents and Settings\Freemen\Data aplikací\ICQ Toolbar folder moved successfully.
D:\Program Files\ICQ6Toolbar folder moved successfully.
D:\Program Files\SweetIM\Toolbars\Internet Explorer\resources folder moved successfully.
D:\Program Files\SweetIM\Toolbars\Internet Explorer\conf folder moved successfully.
D:\Program Files\SweetIM\Toolbars\Internet Explorer folder moved successfully.
D:\Program Files\SweetIM\Toolbars folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Freemen
->Temp folder emptied: 1766821 bytes
->Temporary Internet Files folder emptied: 75920051 bytes
->Java cache emptied: 27618531 bytes
->FireFox cache emptied: 246896837 bytes
->Opera cache emptied: 14196193 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 49353 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 246243 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 3162866 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 7714285 bytes

Total Files Cleaned = 360,00 mb

OTL by OldTimer - Version 3.1.27.1 log created on 02052010_134216

Files\Folders moved on Reboot...
File\Folder C:\WINDOWS\temp\_avast4_\Webshlock.txt not found!
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_5a0.dat not found!
C:\WINDOWS\temp\Perflib_Perfdata_78c.dat moved successfully.

Registry entries deleted on Reboot...

freem1 · #15 Příspěvek od **freem1** » 05 úno 2010 13:40

Malwarebytes' Anti-Malware 1.44
Verzia databázy: 3692
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

05.02.2010 13:14:40
mbam-log-2010-02-05 (13-14-40).txt

Typ kontroly: Úplná (C:\|D:\|)
Objektov kontrolovaných: 416495
Uplynutý cas: 2 hour(s), 58 minute(s), 1 second(s)

Infikovaných procesov pamäte: 0
Infikovaných modulov pamäte: 0
Infikovaných registracných klúcov: 1
Infikovaných registracných hodnôt: 0
Infikovaných registracných údajov položiek: 0
Infikovaných priecinkov: 31
Infikovaných súborov: 192

Infikovaných procesov pamäte:
(Žiadne škodlivé položky)

Infikovaných modulov pamäte:
(Žiadne škodlivé položky)

Infikovaných registracných klúcov:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.

Infikovaných registracných hodnôt:
(Žiadne škodlivé položky)

Infikovaných registracných údajov položiek:
(Žiadne škodlivé položky)

Infikovaných priecinkov:
D:\Program Files\DoubleD (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530 (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Cache (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\chrome (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\chrome\locale (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\chrome\locale\en-US (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\components (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\searchplugins (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Skins (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550 (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\FF (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\FF\chrome (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\FF\chrome\content (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\FF\components (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\System Search Dispatcher (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\System Search Dispatcher\1.4.0.970 (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\System Search Dispatcher\1.4.0.970\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2} (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Nabídka Start\Programy\SpyEraser (Rogue.SpyEraser) -> Quarantined and deleted successfully.

Infikovaných súborov:
D:\Program Files\Google\Google Earth Pro\ge.4.0.xxxx.copyright.remover2.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
D:\Program Files\XmD\ocr\netload\test.exe (Malware.Packer) -> Quarantined and deleted successfully.
D:\Z internetu 2\AutoCAD_Civil_3D_2009_CRACK\XF-ACIVIL3D2k9-KG.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Cache\248d6576afce4ee94af42d7350131106.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Cache\24a70fb875fab686b6b3c217612bc07c.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Cache\2afcf6f3f2e19cc42d7f72f3b18b26ef.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Cache\50bffa6936b3e661971a58e3c8bdf4cb.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Cache\default1.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Cache\loading.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Cache\loading.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Cursor.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_DailyVideo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Game.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Glitter.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Logo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Option.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Recipe.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Ringtone.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Screensaver.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Search.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Smiley.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Smiley_Config.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Smiley_TellAFriend.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Wallpaper.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\Module_Web.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\pixel.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\ProductInfo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\profile.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\SearchEngineList.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\tbcore.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\ToolbarLayout.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\UpdateCentre.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\UpdateCentreBk.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\URLDynamic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Data\URLStatic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\install.rdf (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\chrome\GamingHarborToolbar.jar (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\chrome\locale\en-US\global.dtd (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\components\DDAutoComplete.js (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\components\ISmileyCore.xpt (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\components\TBFFHelper.js (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\components\TBFFHelper.xpt (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\FFToolbar\searchplugins\gamingharborsearchplugins.xml (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\About.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Component_ComboBox.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Cursor.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Cursor.png (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_DailyVideo.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Game.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Glitter.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Glitter.png (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Logo.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Option.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Recipe.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Ringtone.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Screensaver.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Search.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Smiley.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Smiley.png (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Wallpaper.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\Module_Web.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnDefault.png (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnDisplay.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnDisplay.png (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnDisplay18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnDisplay20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnGlitters.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnGlitters.png (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnGlitters18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnGlitters20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnOption.png (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnSmiley.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnSmiley.png (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnSmiley18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnSmiley20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnTellFd.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnTellFd.png (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnTellFd18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnTellFd20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnWink.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnWink.png (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnWink18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Icons\TBBtnWink20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Skins\myskin1.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Skins\myskin2.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Skins\myskin3.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Skins\myskin4.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Skins\TellafriendSkin.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Skins\TellafriendSkin_s.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.3.22530\Skins\ToastSkin.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\Data\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\FF\install.rdf (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\FF\chrome\NPAddOn.jar (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\FF\chrome\content\NPAddOn.js (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\FF\chrome\content\NPAddOn.xul (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\FF\components\NPFFAddOn.xpt (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\Internet Saving Optimizer\3.7.0.4550\FF\components\NPFFHelperComponent.js (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\System Search Dispatcher\1.4.0.970\unins000.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\System Search Dispatcher\1.4.0.970\Data\eacore.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\System Search Dispatcher\1.4.0.970\Data\URLDynamic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
D:\Program Files\System Search Dispatcher\1.4.0.970\Data\URLStatic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\bg.jpg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\CurrentVersion.xml (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\ExtractZipFile.zip (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\icon.ico (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\productinfo.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\Setup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\tdf.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\Data\ProductInfo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\248d6576afce4ee94af42d7350131106.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\24a70fb875fab686b6b3c217612bc07c.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\2afcf6f3f2e19cc42d7f72f3b18b26ef.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\50bffa6936b3e661971a58e3c8bdf4cb.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\default1.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\loading.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\loading.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Cursor.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_DailyVideo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Game.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Glitter.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Logo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Option.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Recipe.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Ringtone.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Screensaver.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Search.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Smiley.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Smiley_Config.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Smiley_TellAFriend.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Wallpaper.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Web.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\pixel.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\ProductInfo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\profile.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\SearchEngineList.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\tbcore.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\ToolbarLayout.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\UpdateCentre.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\UpdateCentreBk.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\URLDynamic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\URLStatic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\About.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Component_ComboBox.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Cursor.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Cursor.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_DailyVideo.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Game.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Glitter.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Glitter.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Logo.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Option.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Recipe.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Ringtone.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Screensaver.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Search.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Smiley.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Smiley.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Wallpaper.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Web.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnDefault.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnDisplay.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnDisplay.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnDisplay18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnDisplay20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnGlitters.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnGlitters.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnGlitters18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnGlitters20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnOption.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnSmiley.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnSmiley.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnSmiley18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnSmiley20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnTellFd.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnTellFd.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnTellFd18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnTellFd20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnWink.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnWink.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnWink18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnWink20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\myskin1.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\myskin2.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\myskin3.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\myskin4.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\TellafriendSkin.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\TellafriendSkin_s.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Freemen\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\ToastSkin.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Nabídka Start\Programy\SpyEraser\SpyEraser Help.lnk (Rogue.SpyEraser) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Nabídka Start\Programy\SpyEraser\SpyEraser.lnk (Rogue.SpyEraser) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Nabídka Start\Programy\SpyEraser\Uninstall SpyEraser.lnk (Rogue.SpyEraser) -> Quarantined and deleted successfully.

VIRY.CZ

Prosim o kontrolu logov

Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov

Re: Prosim o kontrolu logov