Prosim skontrolovať :
Logfile of random's system information tool 1.06 (written by random/random)
Run by matus at 2010-04-13 20:17:59
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 1 GB (3%) free of 40 GB
Total RAM: 1152 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:18:21, on 13.4.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16915)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\windows\system32\PnkBstrA.exe
C:\windows\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\matus\Desktop\RSIT.exe
C:\Program Files\trend micro\matus.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT1814311
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = socks=
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,;*.local
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: TGTSoft Explorer Toolbar Changer - {C333CF63-767F-4831-94AC-E683D962C63C} - C:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [YVIBBBHA8C] C:\DOCUME~1\matus\LOCALS~1\Temp\Sgh.exe
O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP\qip.exe (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6D305A1D-1122-4EFB-914E-8E08A06000B4}: NameServer = 217.119.126.246,217.119.113.244
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate1c9c73de81dca6e) (gupdate1c9c73de81dca6e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MSSQL$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\windows\system32\PnkBstrB.exe
O23 - Service: SQLAgent$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE (file missing)
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
--
End of file - 10023 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\WINDOWS\WebIE.dll [2007-12-16 491520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-09-02 308856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2009-11-25 202080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CB65201-89C4-402c-BA80-02D8C59F9B1D}]
Ask Search Assistant BHO
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-20 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-12-07 764912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C333CF63-767F-4831-94AC-E683D962C63C}]
CoTGT_BHO Class - C:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll [2005-11-30 65536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-08-20 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-21 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-01-21 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\WINDOWS\WebIE.dll [2007-12-16 491520]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2009-06-01 962808]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-20 256112]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2009-11-25 1496408]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"nwiz"=nwiz.exe /installquiet []
"NvCplDaemon"=C:\windows\system32\NvCpl.dll [2010-01-11 13666408]
"NvMediaCenter"=C:\windows\system32\NvMcTray.dll [2010-01-11 110696]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-10-07 1461080]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-09-02 185896]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-03-23 1983816]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2009-03-17 767312]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-09-08 68856]
"YVIBBBHA8C"=C:\DOCUME~1\matus\LOCALS~1\Temp\Sgh.exe []
"STYLEXP"=C:\Program Files\TGTSoft\StyleXP\StyleXP.exe [2006-01-30 1363968]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3]
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-06-30 2329224]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe [2007-10-23 202024]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2009-03-17 767312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
C:\Program Files\DAEMON Tools\daemon.exe [2006-11-12 157592]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dvd43]
C:\Program Files\dvd43\dvd43_tray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FaxCenterServer]
C:\Program Files\Lexmark Fax Solutions\fm3032.exe /s []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Fonts++]
C:\Program Files\Fonts++\Fonts.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe /startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2007-12-11 267048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)]
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe /runcleanupscript []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-09-20 1836328]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
C:\WINDOWS\OETRN.EXE [2007-12-16 26624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuiteTrayApplication]
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2007-12-11 286720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2006-11-24 487424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-09-08 68856]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-09-02 185896]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"TuneUp.Defrag"=3
"ServiceLayer"=3
"ose"=3
"NMIndexingService"=3
"Nero BackItUp Scheduler 3"=2
"lxcg_device"=3
"iPod Service"=3
"IDriverT"=3
"ICQ Service"=2
"gusvc"=3
"GoogleDesktopManager-061008-081103"=3
"Apple Mobile Device"=2
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2001-10-26 3584]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoResolveSearch"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"D:\Program Files\ICQ6.5\ICQ.exe"="D:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\WINDOWS\system32\lxcgcoms.exe"="C:\WINDOWS\system32\lxcgcoms.exe:*:Enabled:2300 Series Server"
"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxcgpswx.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxcgpswx.exe:*:Enabled:2300 Series Printer Status"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"D:\Program Files\rFactor\rFactor.exe"="D:\Program Files\rFactor\rFactor.exe:*:Enabled:rFactor"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"C:\Program Files\Hamachi\hamachi.exe"="C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client"
"D:\Program Files\EA Sports\FIFA 08\FIFA08.exe"="D:\Program Files\EA Sports\FIFA 08\FIFA08.exe:*:Enabled:FIFA08"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\Program Files\Atari\Test Drive Unlimited\TestDriveUnlimited.exe"="D:\Program Files\Atari\Test Drive Unlimited\TestDriveUnlimited.exe:*:Disabled:Test Drive Unlimited"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f95e7c7a-45ee-11df-a5c1-000c6e21613b}]
shell\AutoRun\command - G:\Launcher.exe
======List of files/folders created in the last 1 months======
2060-10-16 19:54:30 ----D---- C:\WINDOWS\ERDNT
2060-10-15 15:46:14 ----D---- C:\Program Files\trend micro
2021-01-05 19:41:13 ----D---- C:\Documents and Settings\matus\Application Data\Hamachi
2021-01-05 19:40:27 ----D---- C:\Program Files\Hamachi
2010-04-13 20:17:59 ----D---- C:\rsit
2010-04-13 05:20:26 ----HD---- C:\Documents and Settings\All Users\Application Data\CanonIJSolutionMenu
2010-04-13 05:20:15 ----HD---- C:\Documents and Settings\All Users\Application Data\CanonIJMyPrinter
2010-04-12 21:02:54 ----A---- C:\WINDOWS\system32\CNC250L.dll
2010-04-12 21:02:54 ----A---- C:\WINDOWS\system32\CNC250I.dll
2010-04-12 21:02:53 ----A---- C:\WINDOWS\system32\CNC250U.dll
2010-04-12 21:02:53 ----A---- C:\WINDOWS\system32\CNC250C.dll
2010-04-12 20:55:23 ----HD---- C:\Documents and Settings\All Users\Application Data\CanonBJ
2010-04-12 20:55:02 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2010-04-12 20:54:53 ----A---- C:\WINDOWS\system32\CNC250O.dll
2010-04-12 20:54:50 ----RA---- C:\WINDOWS\system32\CNMIU9W.DLL
2010-04-12 20:54:31 ----HD---- C:\Program Files\CanonBJ
2010-04-06 13:31:48 ----D---- C:\Program Files\WorldUnlock Codes Calculator
2010-04-06 12:48:56 ----D---- C:\Program Files\NokiaFREE Unlock Codes Calculator
2010-04-01 12:14:22 ----D---- C:\Documents and Settings\matus\Application Data\URSoft
2010-03-26 22:17:19 ----A---- C:\WINDOWS\system32\kernel1.exe
2010-03-26 22:17:19 ----A---- C:\WINDOWS\system32\KERNEL.TMP
2010-03-26 21:55:58 ----A---- C:\boot.ini
2010-03-26 15:56:01 ----A---- C:\WINDOWS\Szenia.exe
2010-03-26 15:39:23 ----D---- C:\Program Files\TGTSoft
2010-03-21 19:46:19 ----D---- C:\Documents and Settings\All Users\Application Data\Real
======List of files/folders modified in the last 1 months======
2011-01-05 20:58:04 ----D---- C:\WINDOWS\system32\Restore
2010-04-13 20:18:24 ----D---- C:\WINDOWS\temp
2010-04-13 20:18:03 ----D---- C:\WINDOWS\Prefetch
2010-04-13 20:18:03 ----D---- C:\WINDOWS
2010-04-13 20:18:03 ----A---- C:\WINDOWS\MAILTRAN.INI
2010-04-13 05:19:50 ----D---- C:\WINDOWS\system32
2010-04-13 05:18:37 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-04-13 05:18:12 ----D---- C:\Program Files\Canon
2010-04-13 05:15:52 ----HD---- C:\WINDOWS\inf
2010-04-13 05:06:05 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-13 02:17:49 ----D---- C:\Program Files\Mozilla Firefox
2010-04-12 21:04:47 ----D---- C:\Documents and Settings\All Users\Application Data\CanonIJPLM
2010-04-12 20:54:31 ----RD---- C:\Program Files
2010-04-12 20:52:24 ----D---- C:\Documents and Settings\matus\Application Data\Canon
2010-04-12 20:52:23 ----D---- C:\WINDOWS\twain_32
2010-04-06 12:02:22 ----D---- C:\WINDOWS\system32\drivers
2010-04-06 12:01:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-04-03 13:58:10 ----SD---- C:\WINDOWS\Tasks
2010-04-01 12:29:56 ----D---- C:\Program Files\Fonts++
2010-04-01 12:28:59 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-04-01 12:28:50 ----SHD---- C:\WINDOWS\Installer
2010-04-01 12:25:33 ----D---- C:\Program Files\Google
2010-03-28 14:15:58 ----D---- C:\Documents and Settings\matus\Application Data\Any Video Converter
2010-03-28 11:07:17 ----A---- C:\WINDOWS\NeroDigital.ini
2010-03-28 11:05:14 ----HD---- C:\Program Files\InstallShield Installation Information
2010-03-28 11:02:11 ----D---- C:\FTP NA FORUM
2010-03-26 22:30:21 ----D---- C:\WINDOWS\Resources
2010-03-26 21:08:45 ----A---- C:\WINDOWS\win.ini
2010-03-26 21:08:45 ----A---- C:\WINDOWS\system.ini
2010-03-26 19:20:39 ----D---- C:\Documents and Settings\matus\Application Data\ICQ
2010-03-26 17:28:48 ----D---- C:\Program Files\SpeedFan
2010-03-26 16:23:46 ----D---- C:\Program Files\Stardock
2010-03-26 16:06:17 ----D---- C:\Fraps
2010-03-26 15:52:03 ----D---- C:\WINDOWS\Cursors
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2009-10-07 54184]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-10-07 35168]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-10-07 80576]
R1 StyleXPHelper;StyleXPHelper; \??\C:\Program Files\TGTSoft\StyleXP\StyleXPHelper.exe []
R1 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2000-01-01 12032]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-08-25 165376]
R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-10-07 40824]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-08-25 18048]
R3 ALCXWDM;Service for Avance AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2002-09-05 667543]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2002-03-21 134784]
R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-09-19 15664]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2021-01-05 25280]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-01-12 10276768]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2007-12-30 47360]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2002-07-03 13780]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Microsoft USB Standard Hub Driver; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 winkey;winkey; C:\WINDOWS\system32\drivers\winkey.sys [2002-12-10 4848]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2005-04-12 10144]
R3 WmXlCore;Logitech WingMan Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2005-04-12 45504]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
S3 acuj2kta;acuj2kta; C:\WINDOWS\system32\drivers\acuj2kta.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\matus\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys []
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2009-03-19 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2009-03-19 8320]
S3 NTACCESS;NTACCESS; \??\E:\NTACCESS.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 SE2Ebus;Sony Ericsson Device 046 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE2Ebus.sys [2006-11-10 61600]
S3 SE2Emdfl;Sony Ericsson Device 046 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE2Emdfl.sys [2006-11-10 9360]
S3 SE2Emdm;Sony Ericsson Device 046 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE2Emdm.sys [2006-11-10 97184]
S3 SE2Emgmt;Sony Ericsson Device 046 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE2Emgmt.sys [2006-11-10 88688]
S3 se2End5;Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (NDIS); C:\WINDOWS\system32\DRIVERS\se2End5.sys [2006-11-10 18704]
S3 SE2Eobex;Sony Ericsson Device 046 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE2Eobex.sys [2006-11-10 86560]
S3 se2Eunic;Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (WDM); C:\WINDOWS\system32\DRIVERS\se2Eunic.sys [2006-11-10 90800]
S3 se45bus;Sony Ericsson Device 069 driver (WDM); C:\WINDOWS\system32\DRIVERS\se45bus.sys [2006-11-30 61536]
S3 se45mdfl;Sony Ericsson Device 069 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se45mdfl.sys [2006-11-30 9360]
S3 se45mdm;Sony Ericsson Device 069 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se45mdm.sys [2006-11-30 97088]
S3 se45mgmt;Sony Ericsson Device 069 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se45mgmt.sys [2006-11-30 88624]
S3 se45nd5;Sony Ericsson Device 069 USB Ethernet Emulation SEMC45 (NDIS); C:\WINDOWS\system32\DRIVERS\se45nd5.sys [2006-11-30 18704]
S3 se45obex;Sony Ericsson Device 069 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se45obex.sys [2006-11-30 86432]
S3 se45unic;Sony Ericsson Device 069 USB Ethernet Emulation SEMC45 (WDM); C:\WINDOWS\system32\DRIVERS\se45unic.sys [2006-11-30 90800]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\E:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 StillCam;Still Serial Digital Camera Driver; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-17 6784]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 usbvideo;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 vaxscsi;vaxscsi; C:\WINDOWS\System32\Drivers\vaxscsi.sys [2008-03-16 223128]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w300bus.sys [2006-03-13 60800]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w300mdfl.sys [2006-03-13 9264]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w300mdm.sys [2006-03-13 96352]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336]
S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064]
S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 wip0204;Wippien Network Adapter 2.4; C:\WINDOWS\system32\DRIVERS\wip0204.sys [2008-12-31 23480]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2005-04-12 22240]
S3 WmHidLo;Logitech Gaming USB Filter Driver; C:\WINDOWS\system32\drivers\WmHidLo.sys [2005-04-12 17632]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2005-04-12 5600]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2004-08-10 18944]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-10-07 472280]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-01-21 153376]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-01-11 154216]
R2 PnkBstrA;PnkBstrA; C:\windows\system32\PnkBstrA.exe [2009-09-19 66872]
R2 PnkBstrB;PnkBstrB; C:\windows\system32\PnkBstrB.exe [2009-09-19 107832]
R2 StyleXPService;StyleXPService; C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe [2006-01-30 368640]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-10 38912]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S2 gupdate1c9c73de81dca6e;Služba Google Update (gupdate1c9c73de81dca6e); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-27 133104]
S2 SSHNAS;SSHNAS; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-08-11 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-10-07 20680]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-10-14 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 idsvc;Windows CardSpace; C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2009-02-10 116104]
S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -sSONY_MEDIAMGR []
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -i SONY_MEDIAMGR []
S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-10 116040]
S4 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe []
S4 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe []
S4 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2009-06-01 222968]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S4 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2007-12-11 504104]
S4 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-10-23 382248]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-03-04 621056]
S4 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-09-09 355584]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o kontrolu logu, vymazuju sa mi subory
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosim o kontrolu logu, vymazuju sa mi subory
Naposledy upravil(a) mato1182 dne 13 dub 2010 19:49, celkem upraveno 4 x.
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu, vymazuju sa mi subory
Zdravím 
Odstraňte log z "Code" a já se na to podívám.
Odstraňte log z "Code" a já se na to podívám.
Re: Prosim o kontrolu logu, vymazuju sa mi subory
Chyba opravena .
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu, vymazuju sa mi subory
Doporučuji odinstalovat (pokud nepoužíváte) toolbary (lišty) v Přidat nebo odebrat programy. Doporučuji odinstalovat Advanced SystemCare 3. Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
- Spusťte program, poté klikněte na Prohledat
- Po dokončení, sem vložte logy OTL.Txt a Extras.txt
Re: Prosim o kontrolu logu, vymazuju sa mi subory
log OTL :
OTL logfile created on: 13.4.2010 21:17:58 - Run 1
OTL by OldTimer - Version 3.2.1.1 Folder = C:\Documents and Settings\matus\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovakia | Language: SKY | Date Format: d.M.yyyy
1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,00% Memory free
3,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): C:\pagefile.sys 1800 2000 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 0,99 Gb Free Space | 2,54% Space Free | Partition Type: NTFS
Drive D: | 35,47 Gb Total Space | 8,58 Gb Free Space | 24,19% Space Free | Partition Type: NTFS
Drive E: | 255,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC
Current User Name: matus
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.04.13 21:17:20 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\matus\Desktop\OTL.exe
PRC - [2009.11.20 20:01:18 | 000,832,296 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2009.10.07 10:16:50 | 000,472,280 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009.10.07 10:15:42 | 001,461,080 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009.03.23 19:00:00 | 001,983,816 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2008.09.08 14:24:24 | 000,068,856 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2008.09.02 13:04:38 | 000,185,896 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2008.04.14 02:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.01.30 18:20:09 | 000,368,640 | ---- | M] () -- C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
========== Modules (SafeList) ==========
MOD - [2010.04.13 21:17:20 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\matus\Desktop\OTL.exe
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (SQLAgent$SONY_MEDIAMGR)
SRV - File not found [On_Demand | Stopped] -- -- (MSSQL$SONY_MEDIAMGR)
SRV - File not found [Disabled | Stopped] -- -- (gusvc)
SRV - File not found [Disabled | Stopped] -- -- (GoogleDesktopManager-061008-081103)
SRV - [2009.11.06 10:20:16 | 000,051,168 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2009.10.14 14:36:32 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.10.07 10:21:14 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009.10.07 10:16:50 | 000,472,280 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2009.09.09 07:01:36 | 000,355,584 | ---- | M] (TuneUp Software GmbH) [Disabled | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009.06.01 22:20:12 | 000,222,968 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009.03.04 12:25:12 | 000,621,056 | ---- | M] (Nokia.) [Disabled | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009.02.10 09:01:49 | 000,116,104 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2008.05.29 09:28:54 | 000,028,416 | ---- | M] (TuneUp Software GmbH) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2006.01.30 18:20:09 | 000,368,640 | ---- | M] () [Auto | Running] -- C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe -- (StyleXPService)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | Unknown | Running] -- -- (BootScreen)
DRV - [2021.01.05 19:40:29 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2010.01.12 06:03:33 | 010,276,768 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009.10.07 10:18:36 | 000,035,168 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009.10.07 10:12:22 | 000,054,184 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\easdrv.sys -- (easdrv)
DRV - [2009.10.07 10:11:10 | 000,040,824 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2009.03.19 14:48:18 | 000,136,704 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2009.03.19 14:48:12 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2009.02.09 08:37:56 | 000,007,808 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2009.02.09 08:37:48 | 000,007,808 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2009.02.09 08:37:46 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2009.02.09 08:37:46 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2008.12.31 00:43:48 | 000,023,480 | ---- | M] (Wippien Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wip0204.sys -- (wip0204)
DRV - [2008.08.26 11:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.08.25 09:58:56 | 000,165,376 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2008.08.25 09:58:55 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2008.08.14 08:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\adfs.sys -- (adfs)
DRV - [2008.04.13 20:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.04.13 20:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008.03.25 15:15:31 | 000,716,272 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.03.16 15:41:38 | 000,223,128 | ---- | M] (Alcohol Soft Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\vaxscsi.sys -- (vaxscsi)
DRV - [2006.11.30 15:14:22 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45unic.sys -- (se45unic) Sony Ericsson Device 069 USB Ethernet Emulation SEMC45 (WDM)
DRV - [2006.11.30 15:14:14 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45obex.sys -- (se45obex)
DRV - [2006.11.30 15:14:10 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mgmt.sys -- (se45mgmt) Sony Ericsson Device 069 USB WMC Device Management Drivers (WDM)
DRV - [2006.11.30 15:14:10 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45nd5.sys -- (se45nd5) Sony Ericsson Device 069 USB Ethernet Emulation SEMC45 (NDIS)
DRV - [2006.11.30 15:14:04 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mdm.sys -- (se45mdm)
DRV - [2006.11.30 15:14:04 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mdfl.sys -- (se45mdfl)
DRV - [2006.11.30 15:13:56 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45bus.sys -- (se45bus) Sony Ericsson Device 069 driver (WDM)
DRV - [2006.11.10 18:24:06 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2Eunic.sys -- (se2Eunic) Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (WDM)
DRV - [2006.11.10 18:23:58 | 000,086,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Eobex.sys -- (SE2Eobex)
DRV - [2006.11.10 18:23:56 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2End5.sys -- (se2End5) Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (NDIS)
DRV - [2006.11.10 18:23:54 | 000,088,688 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emgmt.sys -- (SE2Emgmt) Sony Ericsson Device 046 USB WMC Device Management Drivers (WDM)
DRV - [2006.11.10 18:23:50 | 000,097,184 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emdm.sys -- (SE2Emdm)
DRV - [2006.11.10 18:23:48 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emdfl.sys -- (SE2Emdfl)
DRV - [2006.11.10 18:23:42 | 000,061,600 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Ebus.sys -- (SE2Ebus) Sony Ericsson Device 046 Driver driver (WDM)
DRV - [2006.09.24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2006.03.13 15:50:02 | 000,096,352 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300mdm.sys -- (w300mdm)
DRV - [2006.03.13 15:50:00 | 000,009,264 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300mdfl.sys -- (w300mdfl)
DRV - [2006.03.13 15:49:54 | 000,060,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300bus.sys -- (w300bus) Sony Ericsson W300 Driver driver (WDM)
DRV - [2006.02.20 17:59:36 | 000,083,344 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w810obex.sys -- (w810obex)
DRV - [2006.02.20 17:59:34 | 000,094,064 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w810mdm.sys -- (w810mdm)
DRV - [2006.02.20 17:59:32 | 000,008,336 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w810mdfl.sys -- (w810mdfl)
DRV - [2006.02.20 17:59:28 | 000,058,288 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w810bus.sys -- (w810bus) Sony Ericsson W810 Driver driver (WDM)
DRV - [2005.10.31 23:44:39 | 000,010,880 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | System | Running] -- C:\Program Files\TGTSoft\StyleXP\StyleXPHelper.exe -- (StyleXPHelper)
DRV - [2005.04.12 20:21:32 | 000,022,240 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2005.04.12 20:21:32 | 000,017,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmHidLo.sys -- (WmHidLo)
DRV - [2005.04.12 20:21:28 | 000,010,144 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2005.04.12 20:21:28 | 000,005,600 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2005.04.12 20:21:26 | 000,045,504 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2004.11.29 20:14:30 | 000,019,648 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2004.11.25 18:41:08 | 000,046,080 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2004.10.28 12:47:59 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.10.07 16:09:22 | 000,115,744 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2004.10.07 16:05:05 | 000,080,576 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2004.07.19 16:49:54 | 000,007,040 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\prosync1.sys -- (prosync1)
DRV - [2004.04.30 10:37:02 | 000,160,640 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\a347bus.sys -- (a347bus)
DRV - [2004.04.30 10:33:00 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\a347scsi.sys -- (a347scsi)
DRV - [2003.12.01 17:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp01.sys -- (sfhlp01)
DRV - [2002.12.10 19:28:02 | 000,004,848 | ---- | M] (SoftGear) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\winkey.sys -- (winkey)
DRV - [2002.10.16 04:57:04 | 000,084,529 | R--- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\si3112r.sys -- (Si3112r)
DRV - [2002.09.05 22:41:20 | 000,667,543 | ---- | M] (Avance Logic, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Avance AC97 Audio (WDM)
DRV - [2002.08.14 01:00:00 | 000,093,594 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\IdeChnDr.sys -- (IdeChnDr) Intel(R)
DRV - [2002.08.14 01:00:00 | 000,013,782 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\IdeBusDr.sys -- (IdeBusDr)
DRV - [2002.07.03 15:31:48 | 000,013,780 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2002.03.21 21:21:32 | 000,134,784 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2001.08.17 16:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2001.08.17 15:02:32 | 000,008,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hidgame.sys -- (hidgame)
DRV - [1996.04.03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Page = http://google.icq.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT1814311
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = plimus.com,www.plimus.com,regnow.com,www.regnow.com,;*.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = socks=
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Max EN Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Google Desktop"
FF - prefs.js..browser.startup.homepage: "www.google.sk"
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1
FF - prefs.js..extensions.enabledItems: 6
FF - prefs.js..extensions.enabledItems: 2
FF - prefs.js..extensions.enabledItems: 49
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {867dd841-5bf7-44ca-8426-c5a6eda00735}:2.5.2.13
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.704
FF - prefs.js..extensions.enabledItems: {DB390D2E-0FB4-413F-B039-AE342D1D40BA}:1.0
FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.8
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... 1814311&q="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://search.icq.com/search/afe_result ... id=afex&q="
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2008.09.02 13:05:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2009.11.02 22:49:56 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.04.11 19:12:35 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.04.01 19:33:43 | 000,000,000 | ---D | M]
[2008.09.02 12:38:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matus\Application Data\Mozilla\Extensions
[2010.04.06 20:17:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions
[2060.10.16 15:05:37 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.01.09 18:14:37 | 000,000,000 | ---D | M] (Max EN Toolbar) -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{867dd841-5bf7-44ca-8426-c5a6eda00735}
[2009.11.12 18:52:21 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2009.01.10 17:44:51 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2009.12.23 11:56:08 | 000,000,915 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\conduit.xml
[2094.11.16 20:24:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-1.xml
[2009.03.14 18:39:32 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-10.xml
[2009.04.06 18:43:19 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-11.xml
[2009.04.29 16:38:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-12.xml
[2009.05.01 13:31:47 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-13.xml
[2009.06.20 23:55:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-14.xml
[2009.08.03 14:52:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-15.xml
[2008.08.09 18:14:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-16.xml
[2009.09.17 21:07:05 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-17.xml
[2009.11.02 18:02:50 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-18.xml
[2009.12.18 15:41:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-19.xml
[2008.04.18 14:40:21 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-2.xml
[2010.01.19 18:37:53 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-20.xml
[2010.02.20 18:31:01 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-21.xml
[2008.05.27 18:33:58 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-3.xml
[2008.07.02 19:24:39 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-4.xml
[2008.07.16 17:34:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-5.xml
[2008.09.02 12:39:06 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-6.xml
[2008.12.13 15:17:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-7.xml
[2008.12.21 10:50:07 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-8.xml
[2009.01.25 13:12:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-9.xml
[2008.03.26 17:22:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin.xml
[2009.09.13 19:41:42 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\qipsearch.xml
[2009.01.10 17:44:48 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\sweetim.xml
[2010.04.09 19:28:53 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.09.09 20:19:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2008.12.23 11:31:06 | 000,000,000 | ---D | M] (Seekeen) -- C:\Program Files\Mozilla Firefox\extensions\{DB390D2E-0FB4-413F-B039-AE342D1D40BA}
[2007.12.19 14:57:38 | 000,310,272 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll
[2008.09.02 13:03:30 | 000,000,686 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\GoogleDesktopMozilla.png
[2008.09.02 13:03:30 | 000,000,531 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\GoogleDesktopMozilla.src
[2010.02.05 17:37:15 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.02.05 17:37:15 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2008.12.23 11:31:03 | 000,002,386 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seekeen.xml
[2009.01.14 20:53:02 | 000,002,386 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seekeen140.xml
[2010.02.05 17:37:15 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.02.05 17:37:15 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.02.05 17:37:15 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2009.10.20 20:51:20 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll ()
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - Reg Error: Value error. File not found
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (CoTGT_BHO Class) - {C333CF63-767F-4831-94AC-E683D962C63C} - C:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll ()
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll ()
O3 - HKCU\..\Toolbar\ShellBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] File not found
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe ()
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [YVIBBBHA8C] C:\DOCUME~1\matus\LOCALS~1\Temp\Sgh.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://icq.oberon-media.com/Gameshell/G ... meHost.cab (Oberon Flash Game Host)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (C:\Program Files\TGTSoft\StyleXP\Logon\CurrentLogon.EXE) - C:\Program Files\TGTSoft\StyleXP\Logon\CurrentLogon.EXE (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\matus\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\matus\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.11.13 09:20:10 | 000,000,170 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{49597c36-abda-11dc-9e4f-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{49597c36-abda-11dc-9e4f-806d6172696f}\Shell\AutoRun\command - "" = E:\MSETUP4.EXE -- [2009.02.09 11:07:42 | 000,333,136 | R--- | M] (CANON INC.)
O33 - MountPoints2\{f95e7c7a-45ee-11df-a5c1-000c6e21613b}\Shell\AutoRun\command - "" = G:\Launcher.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2095.08.09 15:09:08 | 000,025,280 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys
[2060.10.16 19:54:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2060.10.15 15:46:14 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2021.01.05 19:41:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matus\Application Data\Hamachi
[2021.01.05 19:40:27 | 000,000,000 | ---D | C] -- C:\Program Files\Hamachi
[2010.04.13 21:16:59 | 000,561,664 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\matus\Desktop\OTL.exe
[2010.04.13 20:17:59 | 000,000,000 | ---D | C] -- C:\rsit
[2010.04.13 05:20:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJSolutionMenu
[2010.04.13 05:20:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJMyPrinter
[2010.04.12 21:02:54 | 000,303,104 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC250L.dll
[2010.04.12 21:02:54 | 000,110,592 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC250I.dll
[2010.04.12 21:02:53 | 001,310,720 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC250C.dll
[2010.04.12 21:02:53 | 000,106,496 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC250U.dll
[2010.04.12 20:55:23 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2010.04.12 20:55:02 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information
[2010.04.12 20:54:53 | 000,090,112 | ---- | C] (Canon Inc.) -- C:\WINDOWS\System32\CNC250O.dll
[2010.04.12 20:54:50 | 000,178,176 | R--- | C] (CANON INC.) -- C:\WINDOWS\System32\CNMIU9W.DLL
[2010.04.12 20:54:31 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2010.04.06 13:31:48 | 000,000,000 | ---D | C] -- C:\Program Files\WorldUnlock Codes Calculator
[2010.04.06 12:48:56 | 000,000,000 | ---D | C] -- C:\Program Files\NokiaFREE Unlock Codes Calculator
[2010.04.04 09:42:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matus\My Documents\18 WoS Haulin
[2010.04.01 12:14:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matus\Application Data\URSoft
[2010.03.26 22:17:19 | 002,329,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kernel1.exe
[2010.03.26 16:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matus\Local Settings\Application Data\Stardock
[2010.03.26 15:39:23 | 000,000,000 | ---D | C] -- C:\Program Files\TGTSoft
[2010.03.21 19:46:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010.03.15 20:54:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matus\Desktop\mobil
[2010.01.05 16:58:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\LogMeIn Hamachi
[2009.04.27 21:11:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2009.04.27 15:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2008.12.25 16:03:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Peer2Peer-EN
[2008.12.23 11:31:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Mozilla
[2008.12.23 11:28:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Mozilla
[2008.12.11 19:33:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2008.06.12 18:23:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Help
[2008.06.12 18:23:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Help
[2008.03.25 15:17:57 | 000,160,640 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\a347bus.sys
[2008.03.25 15:17:57 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\a347scsi.sys
[2008.02.07 14:27:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2007.12.30 22:17:12 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\matus\Application Data\pcouffin.sys
[2007.12.29 18:40:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\ESET
[2007.12.24 20:14:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\ICQ Toolbar
[2007.12.16 15:11:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2007.12.16 15:05:59 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2007.12.16 15:05:59 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2021.01.05 19:40:29 | 000,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys
[2021.01.05 19:40:29 | 000,000,632 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\hamachi.lnk
[2010.04.13 21:20:00 | 000,000,282 | -H-- | M] () -- C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
[2010.04.13 21:17:20 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\matus\Desktop\OTL.exe
[2010.04.13 21:08:57 | 000,001,774 | ---- | M] () -- C:\WINDOWS\MAILTRAN.INI
[2010.04.13 21:04:00 | 000,000,246 | -H-- | M] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010.04.13 21:00:00 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2010.04.13 20:52:01 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.04.13 20:17:46 | 000,781,909 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\RSIT.exe
[2010.04.13 06:28:42 | 000,179,687 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\skolska uloha 3.jpg
[2010.04.13 05:20:42 | 000,000,045 | ---- | M] () -- C:\TEST.XML
[2010.04.13 05:20:20 | 000,270,688 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010.04.13 05:20:12 | 000,000,996 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.04.13 05:20:10 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.04.13 05:19:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.04.13 05:19:52 | 1207,537,664 | -HS- | M] () -- C:\hiberfil.sys
[2010.04.13 05:18:13 | 000,001,685 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon MP250 series User Registration.LNK
[2010.04.13 05:15:38 | 000,001,680 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon Solution Menu.lnk
[2010.04.13 05:15:20 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon Easy-PhotoPrint EX.lnk
[2010.04.13 05:14:00 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon MP Navigator EX 3.0.lnk
[2010.04.13 05:13:25 | 000,001,652 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon My Printer.lnk
[2010.04.13 05:13:00 | 000,001,965 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon MP250 series On-screen Manual.lnk
[2010.04.13 04:59:54 | 011,272,192 | ---- | M] () -- C:\Documents and Settings\matus\NTUSER.DAT
[2010.04.13 04:59:44 | 009,124,786 | -H-- | M] () -- C:\Documents and Settings\matus\Local Settings\Application Data\IconCache.db
[2010.04.13 02:47:16 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2010.04.12 15:37:50 | 000,734,680 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\12042010033.jpg
[2010.04.11 10:43:23 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\matus\ntuser.ini
[2010.04.11 01:25:15 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.04.06 16:34:46 | 000,000,874 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\WorldUnlock Calculator.lnk
[2010.04.06 13:22:46 | 000,000,899 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\NokiaFREE Calculator.lnk
[2010.04.06 12:01:59 | 000,547,718 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.04.06 12:01:59 | 000,458,514 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.04.06 12:01:59 | 000,078,686 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.04.04 14:48:52 | 007,700,506 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\obs_jawa-20,21,23,23a_(1971).zip
[2010.04.04 14:48:46 | 000,604,592 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\manual_jawa-20,21,23,23a_(eng).zip
[2010.04.04 09:42:00 | 000,000,659 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\18 Wheels of Steel Haulin.lnk
[2010.04.02 12:04:11 | 002,329,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kernel1.exe
[2010.04.02 08:47:38 | 000,001,125 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\truck_storage.sii
[2010.04.02 08:46:48 | 000,001,261 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\trailer_storage.sii
[2010.04.01 12:27:31 | 000,001,915 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Zem.lnk
[2010.04.01 12:19:05 | 013,785,790 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\GoogleEarth_3D_2010.rar
[2010.03.28 11:07:17 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.03.26 22:12:39 | 000,000,320 | ---- | M] () -- C:\boot.ini
[2010.03.26 21:55:59 | 000,000,192 | ---- | M] () -- C:\BOOT.BKK
[2010.03.26 21:08:45 | 000,000,678 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.03.26 21:08:45 | 000,000,256 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.03.26 17:27:22 | 000,055,808 | ---- | M] () -- C:\Documents and Settings\matus\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.26 15:55:50 | 000,180,224 | ---- | M] () -- C:\WINDOWS\Szenia.exe
[2010.03.24 15:20:23 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2010.03.20 19:58:00 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2010.03.15 16:26:37 | 000,001,747 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2021.01.05 19:40:29 | 000,000,632 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\hamachi.lnk
[2010.04.13 20:18:26 | 000,179,687 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\skolska uloha 3.jpg
[2010.04.13 20:17:40 | 000,781,909 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\RSIT.exe
[2010.04.13 05:15:20 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon Easy-PhotoPrint EX.lnk
[2010.04.13 05:14:00 | 000,001,736 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon MP Navigator EX 3.0.lnk
[2010.04.12 20:59:29 | 000,001,685 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon MP250 series User Registration.LNK
[2010.04.12 20:58:55 | 000,001,680 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon Solution Menu.lnk
[2010.04.12 20:56:47 | 000,001,652 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon My Printer.lnk
[2010.04.12 20:56:22 | 000,001,965 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon MP250 series On-screen Manual.lnk
[2010.04.12 20:47:56 | 000,734,680 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\12042010033.jpg
[2010.04.06 16:34:46 | 000,000,874 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\WorldUnlock Calculator.lnk
[2010.04.06 13:22:46 | 000,000,899 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\NokiaFREE Calculator.lnk
[2010.04.04 14:48:44 | 000,604,592 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\manual_jawa-20,21,23,23a_(eng).zip
[2010.04.04 14:48:14 | 007,700,506 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\obs_jawa-20,21,23,23a_(1971).zip
[2010.04.04 09:42:00 | 000,000,659 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\18 Wheels of Steel Haulin.lnk
[2010.04.04 09:40:06 | 000,001,261 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\trailer_storage.sii
[2010.04.01 21:11:18 | 000,001,125 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\truck_storage.sii
[2010.04.01 12:27:31 | 000,001,915 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Zem.lnk
[2010.04.01 12:12:33 | 013,785,790 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\GoogleEarth_3D_2010.rar
[2010.03.26 22:12:25 | 000,000,192 | ---- | C] () -- C:\BOOT.BKK
[2010.03.26 21:55:58 | 000,000,320 | ---- | C] () -- C:\boot.ini
[2010.03.26 16:05:56 | 000,000,045 | ---- | C] () -- C:\TEST.XML
[2010.03.26 15:56:01 | 000,180,224 | ---- | C] () -- C:\WINDOWS\Szenia.exe
[2010.03.26 15:56:01 | 000,000,282 | -H-- | C] () -- C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
[2010.03.26 15:55:52 | 000,000,246 | -H-- | C] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010.03.20 19:58:00 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2010.03.20 19:58:00 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2009.12.22 20:50:45 | 000,004,505 | ---- | C] () -- C:\WINDOWS\System32\drivers\tihid.sys
[2009.11.02 21:10:15 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXPRMON.DLL
[2009.11.02 21:10:15 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\LXPMONUI.DLL
[2009.10.31 15:15:33 | 000,006,513 | ---- | C] () -- C:\WINDOWS\System32\drivers\softgears.dll
[2009.10.31 15:15:33 | 000,006,513 | ---- | C] () -- C:\WINDOWS\System32\drivers\keycreator.dll
[2009.08.21 19:18:22 | 000,131,072 | R--- | C] () -- C:\WINDOWS\System32\smdll.dll
[2009.08.21 19:18:12 | 000,266,240 | R--- | C] () -- C:\WINDOWS\System32\HookShield.dll
[2009.08.21 19:18:12 | 000,262,144 | R--- | C] () -- C:\WINDOWS\System32\HookMAp.dll
[2009.08.21 19:18:12 | 000,032,768 | R--- | C] () -- C:\WINDOWS\System32\Auxiliary.dll
[2009.08.21 19:18:11 | 000,009,728 | R--- | C] () -- C:\WINDOWS\System32\sysinfoX64.sys
[2009.08.21 19:18:11 | 000,008,192 | R--- | C] () -- C:\WINDOWS\System32\sysinfo.sys
[2009.06.01 15:04:30 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.06.01 15:04:30 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\matus\Application Data\PnkBstrK.sys
[2009.05.19 16:52:35 | 000,000,789 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009.04.14 11:36:17 | 000,009,728 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009.03.31 20:38:55 | 000,000,062 | ---- | C] () -- C:\WINDOWS\pcvcdbr.INI
[2009.03.31 20:37:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\pcvcdvw.INI
[2008.12.30 19:57:38 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.11.21 23:47:52 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008.11.21 23:45:16 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2008.11.21 23:45:16 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2008.11.21 23:44:16 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2008.11.17 14:01:27 | 000,000,917 | ---- | C] () -- C:\WINDOWS\GTA-SA_Trn_Settings.ini
[2008.11.14 19:18:31 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\libssl32.dll
[2008.10.07 10:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008.10.07 10:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008.08.25 09:58:56 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2008.08.25 09:58:55 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2008.08.25 09:57:20 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2008.08.18 13:27:42 | 000,035,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\epfwtdir.sys
[2008.07.04 16:37:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2008.04.17 14:21:39 | 000,000,121 | ---- | C] () -- C:\WINDOWS\disney.ini
[2008.04.17 14:21:17 | 000,000,201 | ---- | C] () -- C:\WINDOWS\disneysy.ini
[2008.04.05 15:40:57 | 000,000,077 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2008.03.22 11:15:02 | 000,000,835 | ---- | C] () -- C:\WINDOWS\wnsetup.ini
[2008.03.22 11:10:27 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2008.03.22 11:09:59 | 000,000,032 | ---- | C] () -- C:\WINDOWS\Sierra.ini
[2008.03.19 17:58:42 | 000,000,113 | ---- | C] () -- C:\Documents and Settings\matus\default.pls
[2008.03.03 13:11:53 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\sysmwwod.dll
[2008.02.19 18:32:32 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2008.01.30 16:26:17 | 000,000,226 | ---- | C] () -- C:\WINDOWS\bienemaja.ini
[2007.12.30 22:17:27 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\matus\Application Data\pcouffin.log
[2007.12.30 22:17:12 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\matus\Application Data\pcouffin.cat
[2007.12.30 22:17:12 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\matus\Application Data\pcouffin.inf
[2007.12.26 14:21:25 | 000,001,747 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2007.12.21 19:37:58 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007.12.17 21:11:15 | 000,716,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007.12.17 16:42:32 | 000,055,808 | ---- | C] () -- C:\Documents and Settings\matus\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007.12.17 15:48:04 | 000,303,104 | ---- | C] () -- C:\WINDOWS\System32\FXStudioDLL.dll
[2007.12.17 15:48:04 | 000,235,532 | ---- | C] () -- C:\WINDOWS\System32\loadimage.dll
[2007.12.17 15:48:04 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\RapBoxDSP.dll
[2007.12.17 15:48:04 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\NewWaveAnzeige.dll
[2007.12.17 15:48:04 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\eJ_Tool.dll
[2007.12.17 15:48:04 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\fader.dll
[2007.12.17 15:48:01 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\fxstudio.dll
[2007.12.17 15:48:01 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\WndRgn.dll
[2007.12.17 15:48:00 | 000,075,976 | ---- | C] () -- C:\WINDOWS\System32\Bassdec.dll
[2007.12.17 15:47:59 | 000,360,448 | ---- | C] () -- C:\WINDOWS\System32\pxd32d5.dll
[2007.12.17 15:47:59 | 000,029,696 | ---- | C] () -- C:\WINDOWS\System32\pthread.dll
[2007.12.17 15:47:57 | 000,796,672 | ---- | C] () -- C:\WINDOWS\System32\LTRTN13n.DLL
[2007.12.17 15:47:57 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\lttls13n.dll
[2007.12.17 15:47:52 | 000,708,608 | ---- | C] () -- C:\WINDOWS\System32\ltcry13n.dll
[2007.12.17 15:47:51 | 000,031,744 | ---- | C] () -- C:\WINDOWS\System32\lfvec13n.dll
[2007.12.17 15:47:50 | 000,338,944 | ---- | C] () -- C:\WINDOWS\System32\lffpx7.dll
[2007.12.17 15:47:50 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\lfkodak.dll
[2007.12.16 15:51:39 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007.12.16 15:43:21 | 000,003,290 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2007.12.16 15:37:58 | 000,491,520 | ---- | C] () -- C:\WINDOWS\WebIE.dll
[2007.12.16 15:37:57 | 000,200,704 | ---- | C] () -- C:\WINDOWS\TRNOET.DLL
[2007.12.16 15:37:57 | 000,045,056 | ---- | C] () -- C:\WINDOWS\TRNOEH.DLL
[2007.12.16 15:37:46 | 000,000,041 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2007.12.16 15:37:24 | 000,002,753 | ---- | C] () -- C:\WINDOWS\UN32P.INI
[2007.12.16 15:36:57 | 000,001,774 | ---- | C] () -- C:\WINDOWS\MAILTRAN.INI
[2007.12.16 15:36:56 | 000,002,776 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2007.12.16 15:36:46 | 000,006,921 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2007.12.16 15:36:46 | 000,002,431 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2007.12.16 15:31:22 | 000,000,139 | ---- | C] () -- C:\WINDOWS\msicpl.ini
[2007.12.16 15:28:17 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\memtest.dll
[2007.12.16 15:28:15 | 000,036,076 | R--- | C] () -- C:\WINDOWS\System32\drivers\vgauti.sys
[2007.12.16 15:28:15 | 000,036,076 | R--- | C] () -- C:\WINDOWS\System32\drivers\msicpl.sys
[2007.12.16 15:22:25 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2007.12.16 15:21:55 | 000,093,594 | ---- | C] () -- C:\WINDOWS\System32\drivers\IdeChnDr.sys
[2007.12.16 15:20:55 | 000,003,796 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2007.12.16 15:20:51 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2007.12.16 15:13:33 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\matus\ntuser.dat.LOG
[2007.12.16 15:13:33 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\matus\ntuser.ini
[2007.12.16 15:13:31 | 011,272,192 | ---- | C] () -- C:\Documents and Settings\matus\NTUSER.DAT
[2007.08.10 11:30:20 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI
[2007.06.28 18:43:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2005.10.14 12:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 12:56:50 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 12:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 12:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 12:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 12:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 12:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005.01.19 19:23:28 | 000,032,256 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2004.03.18 19:40:32 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2004.03.18 19:40:24 | 000,667,648 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[1996.04.03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
========== Files - Unicode (All) ==========
[2010.02.26 18:06:55 | 000,141,020 | ---- | M] ()(C:\Documents and Settings\matus\Desktop\Ro?n? z??tovanie poistn?ho na verejn? zdravotn? poistenie samostatne z?robkovo ?innej osoby za rok 2009 ? _b_TYP .pdf) -- C:\Documents and Settings\matus\Desktop\Ro�n� z��tovanie poistn�ho na verejn� zdravotn� poistenie samostatne z�robkovo �innej osoby za rok 2009 � _b_TYP .pdf
[2010.02.26 18:06:55 | 000,141,020 | ---- | C] ()(C:\Documents and Settings\matus\Desktop\Ro?n? z??tovanie poistn?ho na verejn? zdravotn? poistenie samostatne z?robkovo ?innej osoby za rok 2009 ? _b_TYP .pdf) -- C:\Documents and Settings\matus\Desktop\Ro�n� z��tovanie poistn�ho na verejn� zdravotn� poistenie samostatne z�robkovo �innej osoby za rok 2009 � _b_TYP .pdf
========== Alternate Data Streams ==========
@Alternate Data Stream - 500 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:05EE1EEF
@Alternate Data Stream - 168 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1CE11B51
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:18B7103A
< End of report >
OTL logfile created on: 13.4.2010 21:17:58 - Run 1
OTL by OldTimer - Version 3.2.1.1 Folder = C:\Documents and Settings\matus\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovakia | Language: SKY | Date Format: d.M.yyyy
1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,00% Memory free
3,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): C:\pagefile.sys 1800 2000 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 0,99 Gb Free Space | 2,54% Space Free | Partition Type: NTFS
Drive D: | 35,47 Gb Total Space | 8,58 Gb Free Space | 24,19% Space Free | Partition Type: NTFS
Drive E: | 255,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC
Current User Name: matus
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.04.13 21:17:20 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\matus\Desktop\OTL.exe
PRC - [2009.11.20 20:01:18 | 000,832,296 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2009.10.07 10:16:50 | 000,472,280 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009.10.07 10:15:42 | 001,461,080 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009.03.23 19:00:00 | 001,983,816 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2008.09.08 14:24:24 | 000,068,856 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2008.09.02 13:04:38 | 000,185,896 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2008.04.14 02:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.01.30 18:20:09 | 000,368,640 | ---- | M] () -- C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
========== Modules (SafeList) ==========
MOD - [2010.04.13 21:17:20 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\matus\Desktop\OTL.exe
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (SQLAgent$SONY_MEDIAMGR)
SRV - File not found [On_Demand | Stopped] -- -- (MSSQL$SONY_MEDIAMGR)
SRV - File not found [Disabled | Stopped] -- -- (gusvc)
SRV - File not found [Disabled | Stopped] -- -- (GoogleDesktopManager-061008-081103)
SRV - [2009.11.06 10:20:16 | 000,051,168 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2009.10.14 14:36:32 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.10.07 10:21:14 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009.10.07 10:16:50 | 000,472,280 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2009.09.09 07:01:36 | 000,355,584 | ---- | M] (TuneUp Software GmbH) [Disabled | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009.06.01 22:20:12 | 000,222,968 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009.03.04 12:25:12 | 000,621,056 | ---- | M] (Nokia.) [Disabled | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009.02.10 09:01:49 | 000,116,104 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2008.05.29 09:28:54 | 000,028,416 | ---- | M] (TuneUp Software GmbH) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2006.01.30 18:20:09 | 000,368,640 | ---- | M] () [Auto | Running] -- C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe -- (StyleXPService)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | Unknown | Running] -- -- (BootScreen)
DRV - [2021.01.05 19:40:29 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2010.01.12 06:03:33 | 010,276,768 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009.10.07 10:18:36 | 000,035,168 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009.10.07 10:12:22 | 000,054,184 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\easdrv.sys -- (easdrv)
DRV - [2009.10.07 10:11:10 | 000,040,824 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2009.03.19 14:48:18 | 000,136,704 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2009.03.19 14:48:12 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2009.02.09 08:37:56 | 000,007,808 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2009.02.09 08:37:48 | 000,007,808 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2009.02.09 08:37:46 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2009.02.09 08:37:46 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2008.12.31 00:43:48 | 000,023,480 | ---- | M] (Wippien Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wip0204.sys -- (wip0204)
DRV - [2008.08.26 11:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.08.25 09:58:56 | 000,165,376 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2008.08.25 09:58:55 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2008.08.14 08:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\adfs.sys -- (adfs)
DRV - [2008.04.13 20:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.04.13 20:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008.03.25 15:15:31 | 000,716,272 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.03.16 15:41:38 | 000,223,128 | ---- | M] (Alcohol Soft Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\vaxscsi.sys -- (vaxscsi)
DRV - [2006.11.30 15:14:22 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45unic.sys -- (se45unic) Sony Ericsson Device 069 USB Ethernet Emulation SEMC45 (WDM)
DRV - [2006.11.30 15:14:14 | 000,086,432 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45obex.sys -- (se45obex)
DRV - [2006.11.30 15:14:10 | 000,088,624 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mgmt.sys -- (se45mgmt) Sony Ericsson Device 069 USB WMC Device Management Drivers (WDM)
DRV - [2006.11.30 15:14:10 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45nd5.sys -- (se45nd5) Sony Ericsson Device 069 USB Ethernet Emulation SEMC45 (NDIS)
DRV - [2006.11.30 15:14:04 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mdm.sys -- (se45mdm)
DRV - [2006.11.30 15:14:04 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mdfl.sys -- (se45mdfl)
DRV - [2006.11.30 15:13:56 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45bus.sys -- (se45bus) Sony Ericsson Device 069 driver (WDM)
DRV - [2006.11.10 18:24:06 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2Eunic.sys -- (se2Eunic) Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (WDM)
DRV - [2006.11.10 18:23:58 | 000,086,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Eobex.sys -- (SE2Eobex)
DRV - [2006.11.10 18:23:56 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se2End5.sys -- (se2End5) Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (NDIS)
DRV - [2006.11.10 18:23:54 | 000,088,688 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emgmt.sys -- (SE2Emgmt) Sony Ericsson Device 046 USB WMC Device Management Drivers (WDM)
DRV - [2006.11.10 18:23:50 | 000,097,184 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emdm.sys -- (SE2Emdm)
DRV - [2006.11.10 18:23:48 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Emdfl.sys -- (SE2Emdfl)
DRV - [2006.11.10 18:23:42 | 000,061,600 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE2Ebus.sys -- (SE2Ebus) Sony Ericsson Device 046 Driver driver (WDM)
DRV - [2006.09.24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2006.03.13 15:50:02 | 000,096,352 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300mdm.sys -- (w300mdm)
DRV - [2006.03.13 15:50:00 | 000,009,264 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300mdfl.sys -- (w300mdfl)
DRV - [2006.03.13 15:49:54 | 000,060,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w300bus.sys -- (w300bus) Sony Ericsson W300 Driver driver (WDM)
DRV - [2006.02.20 17:59:36 | 000,083,344 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w810obex.sys -- (w810obex)
DRV - [2006.02.20 17:59:34 | 000,094,064 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w810mdm.sys -- (w810mdm)
DRV - [2006.02.20 17:59:32 | 000,008,336 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w810mdfl.sys -- (w810mdfl)
DRV - [2006.02.20 17:59:28 | 000,058,288 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w810bus.sys -- (w810bus) Sony Ericsson W810 Driver driver (WDM)
DRV - [2005.10.31 23:44:39 | 000,010,880 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | System | Running] -- C:\Program Files\TGTSoft\StyleXP\StyleXPHelper.exe -- (StyleXPHelper)
DRV - [2005.04.12 20:21:32 | 000,022,240 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2005.04.12 20:21:32 | 000,017,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmHidLo.sys -- (WmHidLo)
DRV - [2005.04.12 20:21:28 | 000,010,144 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2005.04.12 20:21:28 | 000,005,600 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2005.04.12 20:21:26 | 000,045,504 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2004.11.29 20:14:30 | 000,019,648 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2004.11.25 18:41:08 | 000,046,080 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2004.10.28 12:47:59 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.10.07 16:09:22 | 000,115,744 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2004.10.07 16:05:05 | 000,080,576 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2004.07.19 16:49:54 | 000,007,040 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\prosync1.sys -- (prosync1)
DRV - [2004.04.30 10:37:02 | 000,160,640 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\a347bus.sys -- (a347bus)
DRV - [2004.04.30 10:33:00 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\a347scsi.sys -- (a347scsi)
DRV - [2003.12.01 17:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp01.sys -- (sfhlp01)
DRV - [2002.12.10 19:28:02 | 000,004,848 | ---- | M] (SoftGear) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\winkey.sys -- (winkey)
DRV - [2002.10.16 04:57:04 | 000,084,529 | R--- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\si3112r.sys -- (Si3112r)
DRV - [2002.09.05 22:41:20 | 000,667,543 | ---- | M] (Avance Logic, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Avance AC97 Audio (WDM)
DRV - [2002.08.14 01:00:00 | 000,093,594 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\IdeChnDr.sys -- (IdeChnDr) Intel(R)
DRV - [2002.08.14 01:00:00 | 000,013,782 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\IdeBusDr.sys -- (IdeBusDr)
DRV - [2002.07.03 15:31:48 | 000,013,780 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2002.03.21 21:21:32 | 000,134,784 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2001.08.17 16:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2001.08.17 15:02:32 | 000,008,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hidgame.sys -- (hidgame)
DRV - [1996.04.03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Page = http://google.icq.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT1814311
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = plimus.com,www.plimus.com,regnow.com,www.regnow.com,;*.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = socks=
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Max EN Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Google Desktop"
FF - prefs.js..browser.startup.homepage: "www.google.sk"
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1
FF - prefs.js..extensions.enabledItems: 6
FF - prefs.js..extensions.enabledItems: 2
FF - prefs.js..extensions.enabledItems: 49
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {867dd841-5bf7-44ca-8426-c5a6eda00735}:2.5.2.13
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.704
FF - prefs.js..extensions.enabledItems: {DB390D2E-0FB4-413F-B039-AE342D1D40BA}:1.0
FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.8
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.as ... 1814311&q="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://search.icq.com/search/afe_result ... id=afex&q="
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2008.09.02 13:05:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2009.11.02 22:49:56 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.04.11 19:12:35 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.04.01 19:33:43 | 000,000,000 | ---D | M]
[2008.09.02 12:38:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matus\Application Data\Mozilla\Extensions
[2010.04.06 20:17:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions
[2060.10.16 15:05:37 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.01.09 18:14:37 | 000,000,000 | ---D | M] (Max EN Toolbar) -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{867dd841-5bf7-44ca-8426-c5a6eda00735}
[2009.11.12 18:52:21 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2009.01.10 17:44:51 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2009.12.23 11:56:08 | 000,000,915 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\conduit.xml
[2094.11.16 20:24:08 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-1.xml
[2009.03.14 18:39:32 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-10.xml
[2009.04.06 18:43:19 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-11.xml
[2009.04.29 16:38:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-12.xml
[2009.05.01 13:31:47 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-13.xml
[2009.06.20 23:55:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-14.xml
[2009.08.03 14:52:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-15.xml
[2008.08.09 18:14:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-16.xml
[2009.09.17 21:07:05 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-17.xml
[2009.11.02 18:02:50 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-18.xml
[2009.12.18 15:41:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-19.xml
[2008.04.18 14:40:21 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-2.xml
[2010.01.19 18:37:53 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-20.xml
[2010.02.20 18:31:01 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-21.xml
[2008.05.27 18:33:58 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-3.xml
[2008.07.02 19:24:39 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-4.xml
[2008.07.16 17:34:56 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-5.xml
[2008.09.02 12:39:06 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-6.xml
[2008.12.13 15:17:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-7.xml
[2008.12.21 10:50:07 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-8.xml
[2009.01.25 13:12:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin-9.xml
[2008.03.26 17:22:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\icqplugin.xml
[2009.09.13 19:41:42 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\qipsearch.xml
[2009.01.10 17:44:48 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\searchplugins\sweetim.xml
[2010.04.09 19:28:53 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.09.09 20:19:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2008.12.23 11:31:06 | 000,000,000 | ---D | M] (Seekeen) -- C:\Program Files\Mozilla Firefox\extensions\{DB390D2E-0FB4-413F-B039-AE342D1D40BA}
[2007.12.19 14:57:38 | 000,310,272 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll
[2008.09.02 13:03:30 | 000,000,686 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\GoogleDesktopMozilla.png
[2008.09.02 13:03:30 | 000,000,531 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\GoogleDesktopMozilla.src
[2010.02.05 17:37:15 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.02.05 17:37:15 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2008.12.23 11:31:03 | 000,002,386 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seekeen.xml
[2009.01.14 20:53:02 | 000,002,386 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seekeen140.xml
[2010.02.05 17:37:15 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.02.05 17:37:15 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.02.05 17:37:15 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2009.10.20 20:51:20 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll ()
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Ask Search Assistant BHO) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - Reg Error: Value error. File not found
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (CoTGT_BHO Class) - {C333CF63-767F-4831-94AC-E683D962C63C} - C:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll ()
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll ()
O3 - HKCU\..\Toolbar\ShellBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] File not found
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe ()
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [YVIBBBHA8C] C:\DOCUME~1\matus\LOCALS~1\Temp\Sgh.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll ()
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://icq.oberon-media.com/Gameshell/G ... meHost.cab (Oberon Flash Game Host)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (C:\Program Files\TGTSoft\StyleXP\Logon\CurrentLogon.EXE) - C:\Program Files\TGTSoft\StyleXP\Logon\CurrentLogon.EXE (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\matus\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\matus\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.11.13 09:20:10 | 000,000,170 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{49597c36-abda-11dc-9e4f-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{49597c36-abda-11dc-9e4f-806d6172696f}\Shell\AutoRun\command - "" = E:\MSETUP4.EXE -- [2009.02.09 11:07:42 | 000,333,136 | R--- | M] (CANON INC.)
O33 - MountPoints2\{f95e7c7a-45ee-11df-a5c1-000c6e21613b}\Shell\AutoRun\command - "" = G:\Launcher.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2095.08.09 15:09:08 | 000,025,280 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys
[2060.10.16 19:54:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2060.10.15 15:46:14 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2021.01.05 19:41:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matus\Application Data\Hamachi
[2021.01.05 19:40:27 | 000,000,000 | ---D | C] -- C:\Program Files\Hamachi
[2010.04.13 21:16:59 | 000,561,664 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\matus\Desktop\OTL.exe
[2010.04.13 20:17:59 | 000,000,000 | ---D | C] -- C:\rsit
[2010.04.13 05:20:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJSolutionMenu
[2010.04.13 05:20:15 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJMyPrinter
[2010.04.12 21:02:54 | 000,303,104 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC250L.dll
[2010.04.12 21:02:54 | 000,110,592 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC250I.dll
[2010.04.12 21:02:53 | 001,310,720 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC250C.dll
[2010.04.12 21:02:53 | 000,106,496 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNC250U.dll
[2010.04.12 20:55:23 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2010.04.12 20:55:02 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information
[2010.04.12 20:54:53 | 000,090,112 | ---- | C] (Canon Inc.) -- C:\WINDOWS\System32\CNC250O.dll
[2010.04.12 20:54:50 | 000,178,176 | R--- | C] (CANON INC.) -- C:\WINDOWS\System32\CNMIU9W.DLL
[2010.04.12 20:54:31 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2010.04.06 13:31:48 | 000,000,000 | ---D | C] -- C:\Program Files\WorldUnlock Codes Calculator
[2010.04.06 12:48:56 | 000,000,000 | ---D | C] -- C:\Program Files\NokiaFREE Unlock Codes Calculator
[2010.04.04 09:42:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matus\My Documents\18 WoS Haulin
[2010.04.01 12:14:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matus\Application Data\URSoft
[2010.03.26 22:17:19 | 002,329,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kernel1.exe
[2010.03.26 16:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matus\Local Settings\Application Data\Stardock
[2010.03.26 15:39:23 | 000,000,000 | ---D | C] -- C:\Program Files\TGTSoft
[2010.03.21 19:46:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010.03.15 20:54:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matus\Desktop\mobil
[2010.01.05 16:58:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\LogMeIn Hamachi
[2009.04.27 21:11:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2009.04.27 15:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2008.12.25 16:03:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Peer2Peer-EN
[2008.12.23 11:31:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Mozilla
[2008.12.23 11:28:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Mozilla
[2008.12.11 19:33:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2008.06.12 18:23:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Help
[2008.06.12 18:23:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Help
[2008.03.25 15:17:57 | 000,160,640 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\a347bus.sys
[2008.03.25 15:17:57 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\a347scsi.sys
[2008.02.07 14:27:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2007.12.30 22:17:12 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\matus\Application Data\pcouffin.sys
[2007.12.29 18:40:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\ESET
[2007.12.24 20:14:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\ICQ Toolbar
[2007.12.16 15:11:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2007.12.16 15:05:59 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2007.12.16 15:05:59 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2021.01.05 19:40:29 | 000,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys
[2021.01.05 19:40:29 | 000,000,632 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\hamachi.lnk
[2010.04.13 21:20:00 | 000,000,282 | -H-- | M] () -- C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
[2010.04.13 21:17:20 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\matus\Desktop\OTL.exe
[2010.04.13 21:08:57 | 000,001,774 | ---- | M] () -- C:\WINDOWS\MAILTRAN.INI
[2010.04.13 21:04:00 | 000,000,246 | -H-- | M] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010.04.13 21:00:00 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2010.04.13 20:52:01 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.04.13 20:17:46 | 000,781,909 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\RSIT.exe
[2010.04.13 06:28:42 | 000,179,687 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\skolska uloha 3.jpg
[2010.04.13 05:20:42 | 000,000,045 | ---- | M] () -- C:\TEST.XML
[2010.04.13 05:20:20 | 000,270,688 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010.04.13 05:20:12 | 000,000,996 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.04.13 05:20:10 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.04.13 05:19:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.04.13 05:19:52 | 1207,537,664 | -HS- | M] () -- C:\hiberfil.sys
[2010.04.13 05:18:13 | 000,001,685 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon MP250 series User Registration.LNK
[2010.04.13 05:15:38 | 000,001,680 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon Solution Menu.lnk
[2010.04.13 05:15:20 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon Easy-PhotoPrint EX.lnk
[2010.04.13 05:14:00 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon MP Navigator EX 3.0.lnk
[2010.04.13 05:13:25 | 000,001,652 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon My Printer.lnk
[2010.04.13 05:13:00 | 000,001,965 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon MP250 series On-screen Manual.lnk
[2010.04.13 04:59:54 | 011,272,192 | ---- | M] () -- C:\Documents and Settings\matus\NTUSER.DAT
[2010.04.13 04:59:44 | 009,124,786 | -H-- | M] () -- C:\Documents and Settings\matus\Local Settings\Application Data\IconCache.db
[2010.04.13 02:47:16 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2010.04.12 15:37:50 | 000,734,680 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\12042010033.jpg
[2010.04.11 10:43:23 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\matus\ntuser.ini
[2010.04.11 01:25:15 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.04.06 16:34:46 | 000,000,874 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\WorldUnlock Calculator.lnk
[2010.04.06 13:22:46 | 000,000,899 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\NokiaFREE Calculator.lnk
[2010.04.06 12:01:59 | 000,547,718 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.04.06 12:01:59 | 000,458,514 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.04.06 12:01:59 | 000,078,686 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.04.04 14:48:52 | 007,700,506 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\obs_jawa-20,21,23,23a_(1971).zip
[2010.04.04 14:48:46 | 000,604,592 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\manual_jawa-20,21,23,23a_(eng).zip
[2010.04.04 09:42:00 | 000,000,659 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\18 Wheels of Steel Haulin.lnk
[2010.04.02 12:04:11 | 002,329,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kernel1.exe
[2010.04.02 08:47:38 | 000,001,125 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\truck_storage.sii
[2010.04.02 08:46:48 | 000,001,261 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\trailer_storage.sii
[2010.04.01 12:27:31 | 000,001,915 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Zem.lnk
[2010.04.01 12:19:05 | 013,785,790 | ---- | M] () -- C:\Documents and Settings\matus\Desktop\GoogleEarth_3D_2010.rar
[2010.03.28 11:07:17 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.03.26 22:12:39 | 000,000,320 | ---- | M] () -- C:\boot.ini
[2010.03.26 21:55:59 | 000,000,192 | ---- | M] () -- C:\BOOT.BKK
[2010.03.26 21:08:45 | 000,000,678 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.03.26 21:08:45 | 000,000,256 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.03.26 17:27:22 | 000,055,808 | ---- | M] () -- C:\Documents and Settings\matus\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.26 15:55:50 | 000,180,224 | ---- | M] () -- C:\WINDOWS\Szenia.exe
[2010.03.24 15:20:23 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
[2010.03.20 19:58:00 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2010.03.15 16:26:37 | 000,001,747 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2021.01.05 19:40:29 | 000,000,632 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\hamachi.lnk
[2010.04.13 20:18:26 | 000,179,687 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\skolska uloha 3.jpg
[2010.04.13 20:17:40 | 000,781,909 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\RSIT.exe
[2010.04.13 05:15:20 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon Easy-PhotoPrint EX.lnk
[2010.04.13 05:14:00 | 000,001,736 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon MP Navigator EX 3.0.lnk
[2010.04.12 20:59:29 | 000,001,685 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon MP250 series User Registration.LNK
[2010.04.12 20:58:55 | 000,001,680 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon Solution Menu.lnk
[2010.04.12 20:56:47 | 000,001,652 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon My Printer.lnk
[2010.04.12 20:56:22 | 000,001,965 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon MP250 series On-screen Manual.lnk
[2010.04.12 20:47:56 | 000,734,680 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\12042010033.jpg
[2010.04.06 16:34:46 | 000,000,874 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\WorldUnlock Calculator.lnk
[2010.04.06 13:22:46 | 000,000,899 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\NokiaFREE Calculator.lnk
[2010.04.04 14:48:44 | 000,604,592 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\manual_jawa-20,21,23,23a_(eng).zip
[2010.04.04 14:48:14 | 007,700,506 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\obs_jawa-20,21,23,23a_(1971).zip
[2010.04.04 09:42:00 | 000,000,659 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\18 Wheels of Steel Haulin.lnk
[2010.04.04 09:40:06 | 000,001,261 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\trailer_storage.sii
[2010.04.01 21:11:18 | 000,001,125 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\truck_storage.sii
[2010.04.01 12:27:31 | 000,001,915 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Zem.lnk
[2010.04.01 12:12:33 | 013,785,790 | ---- | C] () -- C:\Documents and Settings\matus\Desktop\GoogleEarth_3D_2010.rar
[2010.03.26 22:12:25 | 000,000,192 | ---- | C] () -- C:\BOOT.BKK
[2010.03.26 21:55:58 | 000,000,320 | ---- | C] () -- C:\boot.ini
[2010.03.26 16:05:56 | 000,000,045 | ---- | C] () -- C:\TEST.XML
[2010.03.26 15:56:01 | 000,180,224 | ---- | C] () -- C:\WINDOWS\Szenia.exe
[2010.03.26 15:56:01 | 000,000,282 | -H-- | C] () -- C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
[2010.03.26 15:55:52 | 000,000,246 | -H-- | C] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010.03.20 19:58:00 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2010.03.20 19:58:00 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2009.12.22 20:50:45 | 000,004,505 | ---- | C] () -- C:\WINDOWS\System32\drivers\tihid.sys
[2009.11.02 21:10:15 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXPRMON.DLL
[2009.11.02 21:10:15 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\LXPMONUI.DLL
[2009.10.31 15:15:33 | 000,006,513 | ---- | C] () -- C:\WINDOWS\System32\drivers\softgears.dll
[2009.10.31 15:15:33 | 000,006,513 | ---- | C] () -- C:\WINDOWS\System32\drivers\keycreator.dll
[2009.08.21 19:18:22 | 000,131,072 | R--- | C] () -- C:\WINDOWS\System32\smdll.dll
[2009.08.21 19:18:12 | 000,266,240 | R--- | C] () -- C:\WINDOWS\System32\HookShield.dll
[2009.08.21 19:18:12 | 000,262,144 | R--- | C] () -- C:\WINDOWS\System32\HookMAp.dll
[2009.08.21 19:18:12 | 000,032,768 | R--- | C] () -- C:\WINDOWS\System32\Auxiliary.dll
[2009.08.21 19:18:11 | 000,009,728 | R--- | C] () -- C:\WINDOWS\System32\sysinfoX64.sys
[2009.08.21 19:18:11 | 000,008,192 | R--- | C] () -- C:\WINDOWS\System32\sysinfo.sys
[2009.06.01 15:04:30 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.06.01 15:04:30 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\matus\Application Data\PnkBstrK.sys
[2009.05.19 16:52:35 | 000,000,789 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009.04.14 11:36:17 | 000,009,728 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009.03.31 20:38:55 | 000,000,062 | ---- | C] () -- C:\WINDOWS\pcvcdbr.INI
[2009.03.31 20:37:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\pcvcdvw.INI
[2008.12.30 19:57:38 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.11.21 23:47:52 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008.11.21 23:45:16 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2008.11.21 23:45:16 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2008.11.21 23:44:16 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2008.11.17 14:01:27 | 000,000,917 | ---- | C] () -- C:\WINDOWS\GTA-SA_Trn_Settings.ini
[2008.11.14 19:18:31 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\libssl32.dll
[2008.10.07 10:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008.10.07 10:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008.08.25 09:58:56 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2008.08.25 09:58:55 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2008.08.25 09:57:20 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2008.08.18 13:27:42 | 000,035,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\epfwtdir.sys
[2008.07.04 16:37:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI
[2008.04.17 14:21:39 | 000,000,121 | ---- | C] () -- C:\WINDOWS\disney.ini
[2008.04.17 14:21:17 | 000,000,201 | ---- | C] () -- C:\WINDOWS\disneysy.ini
[2008.04.05 15:40:57 | 000,000,077 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2008.03.22 11:15:02 | 000,000,835 | ---- | C] () -- C:\WINDOWS\wnsetup.ini
[2008.03.22 11:10:27 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2008.03.22 11:09:59 | 000,000,032 | ---- | C] () -- C:\WINDOWS\Sierra.ini
[2008.03.19 17:58:42 | 000,000,113 | ---- | C] () -- C:\Documents and Settings\matus\default.pls
[2008.03.03 13:11:53 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\sysmwwod.dll
[2008.02.19 18:32:32 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2008.01.30 16:26:17 | 000,000,226 | ---- | C] () -- C:\WINDOWS\bienemaja.ini
[2007.12.30 22:17:27 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\matus\Application Data\pcouffin.log
[2007.12.30 22:17:12 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\matus\Application Data\pcouffin.cat
[2007.12.30 22:17:12 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\matus\Application Data\pcouffin.inf
[2007.12.26 14:21:25 | 000,001,747 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2007.12.21 19:37:58 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007.12.17 21:11:15 | 000,716,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007.12.17 16:42:32 | 000,055,808 | ---- | C] () -- C:\Documents and Settings\matus\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007.12.17 15:48:04 | 000,303,104 | ---- | C] () -- C:\WINDOWS\System32\FXStudioDLL.dll
[2007.12.17 15:48:04 | 000,235,532 | ---- | C] () -- C:\WINDOWS\System32\loadimage.dll
[2007.12.17 15:48:04 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\RapBoxDSP.dll
[2007.12.17 15:48:04 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\NewWaveAnzeige.dll
[2007.12.17 15:48:04 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\eJ_Tool.dll
[2007.12.17 15:48:04 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\fader.dll
[2007.12.17 15:48:01 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\fxstudio.dll
[2007.12.17 15:48:01 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\WndRgn.dll
[2007.12.17 15:48:00 | 000,075,976 | ---- | C] () -- C:\WINDOWS\System32\Bassdec.dll
[2007.12.17 15:47:59 | 000,360,448 | ---- | C] () -- C:\WINDOWS\System32\pxd32d5.dll
[2007.12.17 15:47:59 | 000,029,696 | ---- | C] () -- C:\WINDOWS\System32\pthread.dll
[2007.12.17 15:47:57 | 000,796,672 | ---- | C] () -- C:\WINDOWS\System32\LTRTN13n.DLL
[2007.12.17 15:47:57 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\lttls13n.dll
[2007.12.17 15:47:52 | 000,708,608 | ---- | C] () -- C:\WINDOWS\System32\ltcry13n.dll
[2007.12.17 15:47:51 | 000,031,744 | ---- | C] () -- C:\WINDOWS\System32\lfvec13n.dll
[2007.12.17 15:47:50 | 000,338,944 | ---- | C] () -- C:\WINDOWS\System32\lffpx7.dll
[2007.12.17 15:47:50 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\lfkodak.dll
[2007.12.16 15:51:39 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007.12.16 15:43:21 | 000,003,290 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2007.12.16 15:37:58 | 000,491,520 | ---- | C] () -- C:\WINDOWS\WebIE.dll
[2007.12.16 15:37:57 | 000,200,704 | ---- | C] () -- C:\WINDOWS\TRNOET.DLL
[2007.12.16 15:37:57 | 000,045,056 | ---- | C] () -- C:\WINDOWS\TRNOEH.DLL
[2007.12.16 15:37:46 | 000,000,041 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2007.12.16 15:37:24 | 000,002,753 | ---- | C] () -- C:\WINDOWS\UN32P.INI
[2007.12.16 15:36:57 | 000,001,774 | ---- | C] () -- C:\WINDOWS\MAILTRAN.INI
[2007.12.16 15:36:56 | 000,002,776 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2007.12.16 15:36:46 | 000,006,921 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2007.12.16 15:36:46 | 000,002,431 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2007.12.16 15:31:22 | 000,000,139 | ---- | C] () -- C:\WINDOWS\msicpl.ini
[2007.12.16 15:28:17 | 000,045,056 | R--- | C] () -- C:\WINDOWS\System32\memtest.dll
[2007.12.16 15:28:15 | 000,036,076 | R--- | C] () -- C:\WINDOWS\System32\drivers\vgauti.sys
[2007.12.16 15:28:15 | 000,036,076 | R--- | C] () -- C:\WINDOWS\System32\drivers\msicpl.sys
[2007.12.16 15:22:25 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2007.12.16 15:21:55 | 000,093,594 | ---- | C] () -- C:\WINDOWS\System32\drivers\IdeChnDr.sys
[2007.12.16 15:20:55 | 000,003,796 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2007.12.16 15:20:51 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2007.12.16 15:13:33 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\matus\ntuser.dat.LOG
[2007.12.16 15:13:33 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\matus\ntuser.ini
[2007.12.16 15:13:31 | 011,272,192 | ---- | C] () -- C:\Documents and Settings\matus\NTUSER.DAT
[2007.08.10 11:30:20 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI
[2007.06.28 18:43:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2005.10.14 12:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 12:56:50 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 12:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 12:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 12:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 12:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 12:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005.01.19 19:23:28 | 000,032,256 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2004.03.18 19:40:32 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2004.03.18 19:40:24 | 000,667,648 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[1996.04.03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
========== Files - Unicode (All) ==========
[2010.02.26 18:06:55 | 000,141,020 | ---- | M] ()(C:\Documents and Settings\matus\Desktop\Ro?n? z??tovanie poistn?ho na verejn? zdravotn? poistenie samostatne z?robkovo ?innej osoby za rok 2009 ? _b_TYP .pdf) -- C:\Documents and Settings\matus\Desktop\Ro�n� z��tovanie poistn�ho na verejn� zdravotn� poistenie samostatne z�robkovo �innej osoby za rok 2009 � _b_TYP .pdf
[2010.02.26 18:06:55 | 000,141,020 | ---- | C] ()(C:\Documents and Settings\matus\Desktop\Ro?n? z??tovanie poistn?ho na verejn? zdravotn? poistenie samostatne z?robkovo ?innej osoby za rok 2009 ? _b_TYP .pdf) -- C:\Documents and Settings\matus\Desktop\Ro�n� z��tovanie poistn�ho na verejn� zdravotn� poistenie samostatne z�robkovo �innej osoby za rok 2009 � _b_TYP .pdf
========== Alternate Data Streams ==========
@Alternate Data Stream - 500 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:05EE1EEF
@Alternate Data Stream - 168 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1CE11B51
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:18B7103A
< End of report >
Re: Prosim o kontrolu logu, vymazuju sa mi subory
log Extras :
OTL Extras logfile created on: 13.4.2010 21:17:58 - Run 1
OTL by OldTimer - Version 3.2.1.1 Folder = C:\Documents and Settings\matus\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovakia | Language: SKY | Date Format: d.M.yyyy
1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,00% Memory free
3,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): C:\pagefile.sys 1800 2000 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 0,99 Gb Free Space | 2,54% Space Free | Partition Type: NTFS
Drive D: | 35,47 Gb Total Space | 8,58 Gb Free Space | 24,19% Space Free | Partition Type: NTFS
Drive E: | 255,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC
Current User Name: matus
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Prehliadať v XnView] -- "C:\PROGRA~1\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724
"135:TCP" = 135:TCP:*:Enabled:TCP Port 135
"5000:TCP" = 5000:TCP:*:Enabled:TCP Port 5000
"5001:TCP" = 5001:TCP:*:Enabled:TCP Port 5001
"5002:TCP" = 5002:TCP:*:Enabled:TCP Port 5002
"5003:TCP" = 5003:TCP:*:Enabled:TCP Port 5003
"5004:TCP" = 5004:TCP:*:Enabled:TCP Port 5004
"5005:TCP" = 5005:TCP:*:Enabled:TCP Port 5005
"5006:TCP" = 5006:TCP:*:Enabled:TCP Port 5006
"5007:TCP" = 5007:TCP:*:Enabled:TCP Port 5007
"5008:TCP" = 5008:TCP:*:Enabled:TCP Port 5008
"5009:TCP" = 5009:TCP:*:Enabled:TCP Port 5009
"5010:TCP" = 5010:TCP:*:Enabled:TCP Port 5010
"5011:TCP" = 5011:TCP:*:Enabled:TCP Port 5011
"5012:TCP" = 5012:TCP:*:Enabled:TCP Port 5012
"5013:TCP" = 5013:TCP:*:Enabled:TCP Port 5013
"5014:TCP" = 5014:TCP:*:Enabled:TCP Port 5014
"5015:TCP" = 5015:TCP:*:Enabled:TCP Port 5015
"5016:TCP" = 5016:TCP:*:Enabled:TCP Port 5016
"5017:TCP" = 5017:TCP:*:Enabled:TCP Port 5017
"5018:TCP" = 5018:TCP:*:Enabled:TCP Port 5018
"5019:TCP" = 5019:TCP:*:Enabled:TCP Port 5019
"5020:TCP" = 5020:TCP:*:Enabled:TCP Port 5020
"5353:TCP" = 5353:TCP:*:Enabled:Adobe CSI CS4
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\Valve\hl.exe" = C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"D:\Program Files\ICQ6.5\ICQ.exe" = D:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"C:\Program Files\totalcmd\TOTALCMD.EXE" = C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"C:\WINDOWS\system32\lxcgcoms.exe" = C:\WINDOWS\system32\lxcgcoms.exe:*:Enabled:2300 Series Server -- File not found
"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxcgpswx.exe" = C:\WINDOWS\system32\spool\drivers\w32x86\3\lxcgpswx.exe:*:Enabled:2300 Series Printer Status -- File not found
"D:\Program Files\rFactor\rFactor.exe" = D:\Program Files\rFactor\rFactor.exe:*:Enabled:rFactor -- (Image Space Incorporated)
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" = C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4 -- (Adobe Systems Incorporated)
"C:\Program Files\Hamachi\hamachi.exe" = C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client -- (LogMeIn Inc.)
"D:\Program Files\EA Sports\FIFA 08\FIFA08.exe" = D:\Program Files\EA Sports\FIFA 08\FIFA08.exe:*:Enabled:FIFA08 -- File not found
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"D:\Program Files\Atari\Test Drive Unlimited\TestDriveUnlimited.exe" = D:\Program Files\Atari\Test Drive Unlimited\TestDriveUnlimited.exe:*:Disabled:Test Drive Unlimited -- File not found
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{02DFF6B1-1654-411C-8D7B-FD6052EF016F}" = Apple Software Update
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{0901FCE8-5415-4499-BBC8-1AA106DD66E2}" = Adobe Setup
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{0A2A5039-B37F-489D-B1DC-A5258DF9E697}" = FIFA 08
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series" = Canon MP250 series MP Drivers
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{18388EF8-E0A3-442B-8BFE-E2F1B3D05C91}" = iTunes
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1ADE23D7-7A1E-4AEC-BA5D-EB8A21BED943}" = Video DVD Maker Free v1.8.0.46
"{1C4551A6-4743-4093-91E4-1477CD655043}" = NVIDIA PhysX
"{21199F32-B676-4FE2-A443-EF7DB6B8FD4F}" = Opera 10.10
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{266C7330-C0F4-49E5-8F20-A56F9F822875}" = SweetIM Toolbar for Internet Explorer 3.3
"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 15
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2BAB1020-A03C-11D4-86F6-0001031E5712}" = InterVideo WinCoder
"{2EAF7E61-068E-11DF-953C-005056806466}" = Google Zem
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{36592557-65CE-4A4D-9970-764F17E0AFD3}" = MSI v2 to redistribute Rigs of Rods
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5888428E-699C-4E71-BF71-94EE06B497DA}" = TuneUp Utilities 2008
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75EC824D-3B68-442C-BC8D-E50065074720}" = OpenOffice.org 3.0
"{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}" = Nokia PC Suite
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{82427977-8776-4087-90CA-9F65174D3C4D}" = Nokia Connectivity Cable Driver
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{878D2EB2-2D55-42A9-955E-1E08F28529FD}" = Sony Media Manager 2.2
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{9011041B-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{90B73122-6D92-44D2-BBD4-811F98DA88B1}" = Team Players Corvette C6R
"{919635D1-5C0D-4B64-B724-BDDB31D11051}" = Nero 8
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{9984DF60-1C5B-11D3-ACA1-908A4FC10801}" = Intel Application Accelerator
"{9A68CB46-C79E-4F0D-86D5-5C9A3CAA0FD5}" = InterVideo WinProducer
"{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}" = Counter-Strike 1.6
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A126E617-63F0-4E57-BFA4-7190F5845C39}" = Guitar Hero World Tour
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA9768AA-FF0B-4C66-A085-31E934F77841}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1029-7B44-A91000000001}" = Adobe Reader 9.1 - Czech
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B7CB0BF3-791E-44D3-9F04-786E36D51C9D}" = PC Connectivity Solution
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1939820-A945-11D4-86F6-0001031E5712}" = InterVideo WinDVD
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D32D4182-DE6C-457E-838C-8D7B9CE332BA}" = InterVideo WinRip
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)
"{E0D51394-1D45-460A-B62D-383BC4F8B335}" = QuickTime
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E9F81423-211E-46B6-9AE0-38568BC5CF6F}" =
"{EA084D6F-5911-4B4D-985B-F4B422E33671}" = ESET NOD32 Antivirus
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{F93D7C85-D246-40CA-B4D7-5D7B9F73C7AF}_is1" = Sprengmeister 1.3.11
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Avance AC'97 Audio
"{FC906D5C-91F9-4DA4-A765-6DCBB669F317}" = Sony Ericsson PC Suite
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"0852D05415AB9A4F1EF451E342267F76C776ED2F" = Windows Driver Package - Nokia Modem (11/03/2006 6.82.0.1)
"0C5EDC3653FED5B121F464339EAC12534D253B25" = Windows Driver Package - Nokia Modem (02/15/2007 3.1)
"18 Wheels of Steel: Haulin'" = 18 Wheels of Steel: Haulin' (remove only)
"504244733D18C8F63FF584AEB290E3904E791693" = Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"ActiveXControlPad" = Microsoft ActiveX Control Pad
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"ALSong_is1" = ALSong
"Any Video Converter_is1" = Any Video Converter 2.7.8
"ATF" = ATF
"Canon MP250 series User Registration" = Canon MP250 series User Registration
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner (remove only)
"CityBars Mod v1.0" = CityBars Mod v1.0
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"Czech Soccer Manager 2002 Final Editionverze 4.0 (31.3.2006)" = Czech Soccer Manager 2002 Final Edition
"D978F69D5F15B845BD6BC6F8BF9BCD36982A2087" = Windows Driver Package - Nokia Modem (02/24/2009 4.0)
"Double Vibration Controller 5" = Double Vibration Controller 5
"DTM 2007 Realistic Sound Pack_is1" = DTM 2007 Realistic Sound Pack 1.0
"E7F682214B951640C9C539C41FDA1A7F836FF7B6" = Windows Driver Package - Nokia Modem (02/23/2009 7.01.0.2)
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"Euro Truck Simulator" = Euro Truck Simulator
"F1RFT 2008 V3.1 FINAL" = F1RFT 2008 V3.1 FINAL 3.1
"Fraps" = Fraps
"Game Booster_is1" = Game Booster
"Google Desktop" = Google Desktop
"Google Chrome" = Google Chrome
"Guitar Pro 5_is1" = Guitar Pro 5.2
"Hamachi" = Hamachi 1.0.2.5
"HTML kódy 1.0" = HTML kódy 1.0
"ICQToolbar" = ICQ Toolbar
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"Indeo® Software" = Indeo® Software
"Mafia Game" = Mafia Game
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mouse Joypad V1.0" = Mouse Joypad V1.0
"Mozilla Firefox (3.0.19)" = Mozilla Firefox (3.0.19)
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"MPE" = MyPhoneExplorer
"Need For Speed Most Wanted SK" = Need For Speed Most Wanted SK
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia PC Suite" = Nokia PC Suite
"NokiaFREE Unlock Codes Calculator" = NokiaFREE Unlock Codes Calculator
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenSSL_is1" = OpenSSL 0.9.6m
"PC Translator" = PC Translator
"Polda IV_is1" = Polda IV
"PunkBusterSvc" = PunkBuster Services
"RealPlayer 6.0" = RealPlayer
"rF Tv Style_is1" = Tv Style Beta 0.9
"rFactor" = rFactor (remove only)
"Shockwave" = Shockwave
"Sony Ericsson Themes Creator" = Sony Ericsson Themes Creator 3.19
"SpeedFan" = SpeedFan (remove only)
"StyleXP" = StyleXP (remove only)
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Total Video Converter 3.21_is1" = Total Video Converter 3.21 090220
"Totalcmd" = Total Commander (Remove or Repair)
"Traktor Simulátor_is1" = Traktor Simulátor
"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WorldUnlock Codes Calculator" = WorldUnlock Codes Calculator
"Xbox_360_CC_Driver" = Xbox 360 Controller for Windows
"XnView_is1" = XnView 1.96
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"2009 Mitsubishi Lancer Ralliart addition for rFactor game" = 2009 Mitsubishi Lancer Ralliart addition for rFactor game
"2010 IZOD IndyCar Series 1.0" = 2010 IZOD IndyCar Series 1.0
"F1 2009 F1RL-KERS V.1.4.0" = F1 2009 F1RL-KERS V.1.4.0
"QIP 2005" = QIP 2005 8095
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 19.9.2009 12:26:24 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\CoreGraphics.XmlSerializers.dll
. Error code = 0x80131047
Error - 19.9.2009 12:26:45 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\CorePrimitives.dll . Error
code = 0x80131047
Error - 19.9.2009 12:27:05 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\CoreUI.dll . Error code
= 0x80131047
Error - 19.9.2009 12:27:26 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\CoreUI.XmlSerializers.dll
. Error code = 0x80131047
Error - 19.9.2009 12:27:46 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\Interop.dll . Error code
= 0x80131047
Error - 19.9.2009 12:28:07 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\Sony.Capture.dll . Error
code = 0x80131047
Error - 19.9.2009 12:28:28 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\Sony.MediaSoftware.ExternalVideoDevice.dll
. Error code = 0x80131047
Error - 19.9.2009 12:28:48 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\Sony.Vegas.dll . Error
code = 0x80131047
Error - 19.9.2009 12:29:09 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\Sony.Vegas.NetRender.dll
. Error code = 0x80131047
Error - 19.9.2009 12:29:29 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\WidgetLibrary.dll . Error
code = 0x80131047
[ System Events ]
Error - 16.8.2009 11:06:15 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:06:15 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:06:22 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:06:22 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:06:22 | Computer Name = PC | Source = Print | ID = 6161
Description = Dokument gašpar.xls, ktorý vlastní Bombik, sa nepodarilo vytlačiť
na tlačiarni Lexmark 2300 Series. Typ údajov: LEMF. Veľkosť súboru frontu tlače
v bajtoch: 347308. Počet vytlačených bajtov: 347308. Celkový počet strán v dokumente:
1. Počet vytlačených strán: 0. Klientsky počítač: \\PC. Kód chyby Win32 vrátaný
tlačovým procesorom: 0 (0x0).
Error - 16.8.2009 11:06:22 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:07:54 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:07:55 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:07:55 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:07:58 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
< End of report >
Advance system core som odinštaloval , toolbary ,ktoré som poznal som vymazal ale nešlo vymazať SweetIM tollbar pri odinštalácii naskočila kritická chyba .
OTL Extras logfile created on: 13.4.2010 21:17:58 - Run 1
OTL by OldTimer - Version 3.2.1.1 Folder = C:\Documents and Settings\matus\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000041B | Country: Slovakia | Language: SKY | Date Format: d.M.yyyy
1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,00% Memory free
3,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): C:\pagefile.sys 1800 2000 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 0,99 Gb Free Space | 2,54% Space Free | Partition Type: NTFS
Drive D: | 35,47 Gb Total Space | 8,58 Gb Free Space | 24,19% Space Free | Partition Type: NTFS
Drive E: | 255,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC
Current User Name: matus
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Prehliadať v XnView] -- "C:\PROGRA~1\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724
"135:TCP" = 135:TCP:*:Enabled:TCP Port 135
"5000:TCP" = 5000:TCP:*:Enabled:TCP Port 5000
"5001:TCP" = 5001:TCP:*:Enabled:TCP Port 5001
"5002:TCP" = 5002:TCP:*:Enabled:TCP Port 5002
"5003:TCP" = 5003:TCP:*:Enabled:TCP Port 5003
"5004:TCP" = 5004:TCP:*:Enabled:TCP Port 5004
"5005:TCP" = 5005:TCP:*:Enabled:TCP Port 5005
"5006:TCP" = 5006:TCP:*:Enabled:TCP Port 5006
"5007:TCP" = 5007:TCP:*:Enabled:TCP Port 5007
"5008:TCP" = 5008:TCP:*:Enabled:TCP Port 5008
"5009:TCP" = 5009:TCP:*:Enabled:TCP Port 5009
"5010:TCP" = 5010:TCP:*:Enabled:TCP Port 5010
"5011:TCP" = 5011:TCP:*:Enabled:TCP Port 5011
"5012:TCP" = 5012:TCP:*:Enabled:TCP Port 5012
"5013:TCP" = 5013:TCP:*:Enabled:TCP Port 5013
"5014:TCP" = 5014:TCP:*:Enabled:TCP Port 5014
"5015:TCP" = 5015:TCP:*:Enabled:TCP Port 5015
"5016:TCP" = 5016:TCP:*:Enabled:TCP Port 5016
"5017:TCP" = 5017:TCP:*:Enabled:TCP Port 5017
"5018:TCP" = 5018:TCP:*:Enabled:TCP Port 5018
"5019:TCP" = 5019:TCP:*:Enabled:TCP Port 5019
"5020:TCP" = 5020:TCP:*:Enabled:TCP Port 5020
"5353:TCP" = 5353:TCP:*:Enabled:Adobe CSI CS4
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\Valve\hl.exe" = C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"D:\Program Files\ICQ6.5\ICQ.exe" = D:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"C:\Program Files\totalcmd\TOTALCMD.EXE" = C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"C:\WINDOWS\system32\lxcgcoms.exe" = C:\WINDOWS\system32\lxcgcoms.exe:*:Enabled:2300 Series Server -- File not found
"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxcgpswx.exe" = C:\WINDOWS\system32\spool\drivers\w32x86\3\lxcgpswx.exe:*:Enabled:2300 Series Printer Status -- File not found
"D:\Program Files\rFactor\rFactor.exe" = D:\Program Files\rFactor\rFactor.exe:*:Enabled:rFactor -- (Image Space Incorporated)
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" = C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4 -- (Adobe Systems Incorporated)
"C:\Program Files\Hamachi\hamachi.exe" = C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client -- (LogMeIn Inc.)
"D:\Program Files\EA Sports\FIFA 08\FIFA08.exe" = D:\Program Files\EA Sports\FIFA 08\FIFA08.exe:*:Enabled:FIFA08 -- File not found
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"D:\Program Files\Atari\Test Drive Unlimited\TestDriveUnlimited.exe" = D:\Program Files\Atari\Test Drive Unlimited\TestDriveUnlimited.exe:*:Disabled:Test Drive Unlimited -- File not found
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{02DFF6B1-1654-411C-8D7B-FD6052EF016F}" = Apple Software Update
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{0901FCE8-5415-4499-BBC8-1AA106DD66E2}" = Adobe Setup
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{0A2A5039-B37F-489D-B1DC-A5258DF9E697}" = FIFA 08
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series" = Canon MP250 series MP Drivers
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{18388EF8-E0A3-442B-8BFE-E2F1B3D05C91}" = iTunes
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1ADE23D7-7A1E-4AEC-BA5D-EB8A21BED943}" = Video DVD Maker Free v1.8.0.46
"{1C4551A6-4743-4093-91E4-1477CD655043}" = NVIDIA PhysX
"{21199F32-B676-4FE2-A443-EF7DB6B8FD4F}" = Opera 10.10
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{266C7330-C0F4-49E5-8F20-A56F9F822875}" = SweetIM Toolbar for Internet Explorer 3.3
"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 15
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2BAB1020-A03C-11D4-86F6-0001031E5712}" = InterVideo WinCoder
"{2EAF7E61-068E-11DF-953C-005056806466}" = Google Zem
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{36592557-65CE-4A4D-9970-764F17E0AFD3}" = MSI v2 to redistribute Rigs of Rods
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5888428E-699C-4E71-BF71-94EE06B497DA}" = TuneUp Utilities 2008
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75EC824D-3B68-442C-BC8D-E50065074720}" = OpenOffice.org 3.0
"{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}" = Nokia PC Suite
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{82427977-8776-4087-90CA-9F65174D3C4D}" = Nokia Connectivity Cable Driver
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{878D2EB2-2D55-42A9-955E-1E08F28529FD}" = Sony Media Manager 2.2
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{9011041B-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{90B73122-6D92-44D2-BBD4-811F98DA88B1}" = Team Players Corvette C6R
"{919635D1-5C0D-4B64-B724-BDDB31D11051}" = Nero 8
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{9984DF60-1C5B-11D3-ACA1-908A4FC10801}" = Intel Application Accelerator
"{9A68CB46-C79E-4F0D-86D5-5C9A3CAA0FD5}" = InterVideo WinProducer
"{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}" = Counter-Strike 1.6
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A126E617-63F0-4E57-BFA4-7190F5845C39}" = Guitar Hero World Tour
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA9768AA-FF0B-4C66-A085-31E934F77841}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1029-7B44-A91000000001}" = Adobe Reader 9.1 - Czech
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B7CB0BF3-791E-44D3-9F04-786E36D51C9D}" = PC Connectivity Solution
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1939820-A945-11D4-86F6-0001031E5712}" = InterVideo WinDVD
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D32D4182-DE6C-457E-838C-8D7B9CE332BA}" = InterVideo WinRip
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)
"{E0D51394-1D45-460A-B62D-383BC4F8B335}" = QuickTime
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E9F81423-211E-46B6-9AE0-38568BC5CF6F}" =
"{EA084D6F-5911-4B4D-985B-F4B422E33671}" = ESET NOD32 Antivirus
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{F93D7C85-D246-40CA-B4D7-5D7B9F73C7AF}_is1" = Sprengmeister 1.3.11
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Avance AC'97 Audio
"{FC906D5C-91F9-4DA4-A765-6DCBB669F317}" = Sony Ericsson PC Suite
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"0852D05415AB9A4F1EF451E342267F76C776ED2F" = Windows Driver Package - Nokia Modem (11/03/2006 6.82.0.1)
"0C5EDC3653FED5B121F464339EAC12534D253B25" = Windows Driver Package - Nokia Modem (02/15/2007 3.1)
"18 Wheels of Steel: Haulin'" = 18 Wheels of Steel: Haulin' (remove only)
"504244733D18C8F63FF584AEB290E3904E791693" = Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"ActiveXControlPad" = Microsoft ActiveX Control Pad
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"ALSong_is1" = ALSong
"Any Video Converter_is1" = Any Video Converter 2.7.8
"ATF" = ATF
"Canon MP250 series User Registration" = Canon MP250 series User Registration
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner (remove only)
"CityBars Mod v1.0" = CityBars Mod v1.0
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"Czech Soccer Manager 2002 Final Editionverze 4.0 (31.3.2006)" = Czech Soccer Manager 2002 Final Edition
"D978F69D5F15B845BD6BC6F8BF9BCD36982A2087" = Windows Driver Package - Nokia Modem (02/24/2009 4.0)
"Double Vibration Controller 5" = Double Vibration Controller 5
"DTM 2007 Realistic Sound Pack_is1" = DTM 2007 Realistic Sound Pack 1.0
"E7F682214B951640C9C539C41FDA1A7F836FF7B6" = Windows Driver Package - Nokia Modem (02/23/2009 7.01.0.2)
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"Euro Truck Simulator" = Euro Truck Simulator
"F1RFT 2008 V3.1 FINAL" = F1RFT 2008 V3.1 FINAL 3.1
"Fraps" = Fraps
"Game Booster_is1" = Game Booster
"Google Desktop" = Google Desktop
"Google Chrome" = Google Chrome
"Guitar Pro 5_is1" = Guitar Pro 5.2
"Hamachi" = Hamachi 1.0.2.5
"HTML kódy 1.0" = HTML kódy 1.0
"ICQToolbar" = ICQ Toolbar
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"Indeo® Software" = Indeo® Software
"Mafia Game" = Mafia Game
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mouse Joypad V1.0" = Mouse Joypad V1.0
"Mozilla Firefox (3.0.19)" = Mozilla Firefox (3.0.19)
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"MPE" = MyPhoneExplorer
"Need For Speed Most Wanted SK" = Need For Speed Most Wanted SK
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia PC Suite" = Nokia PC Suite
"NokiaFREE Unlock Codes Calculator" = NokiaFREE Unlock Codes Calculator
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenSSL_is1" = OpenSSL 0.9.6m
"PC Translator" = PC Translator
"Polda IV_is1" = Polda IV
"PunkBusterSvc" = PunkBuster Services
"RealPlayer 6.0" = RealPlayer
"rF Tv Style_is1" = Tv Style Beta 0.9
"rFactor" = rFactor (remove only)
"Shockwave" = Shockwave
"Sony Ericsson Themes Creator" = Sony Ericsson Themes Creator 3.19
"SpeedFan" = SpeedFan (remove only)
"StyleXP" = StyleXP (remove only)
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Total Video Converter 3.21_is1" = Total Video Converter 3.21 090220
"Totalcmd" = Total Commander (Remove or Repair)
"Traktor Simulátor_is1" = Traktor Simulátor
"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WorldUnlock Codes Calculator" = WorldUnlock Codes Calculator
"Xbox_360_CC_Driver" = Xbox 360 Controller for Windows
"XnView_is1" = XnView 1.96
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"2009 Mitsubishi Lancer Ralliart addition for rFactor game" = 2009 Mitsubishi Lancer Ralliart addition for rFactor game
"2010 IZOD IndyCar Series 1.0" = 2010 IZOD IndyCar Series 1.0
"F1 2009 F1RL-KERS V.1.4.0" = F1 2009 F1RL-KERS V.1.4.0
"QIP 2005" = QIP 2005 8095
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 19.9.2009 12:26:24 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\CoreGraphics.XmlSerializers.dll
. Error code = 0x80131047
Error - 19.9.2009 12:26:45 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\CorePrimitives.dll . Error
code = 0x80131047
Error - 19.9.2009 12:27:05 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\CoreUI.dll . Error code
= 0x80131047
Error - 19.9.2009 12:27:26 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\CoreUI.XmlSerializers.dll
. Error code = 0x80131047
Error - 19.9.2009 12:27:46 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\Interop.dll . Error code
= 0x80131047
Error - 19.9.2009 12:28:07 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\Sony.Capture.dll . Error
code = 0x80131047
Error - 19.9.2009 12:28:28 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\Sony.MediaSoftware.ExternalVideoDevice.dll
. Error code = 0x80131047
Error - 19.9.2009 12:28:48 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\Sony.Vegas.dll . Error
code = 0x80131047
Error - 19.9.2009 12:29:09 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\Sony.Vegas.NetRender.dll
. Error code = 0x80131047
Error - 19.9.2009 12:29:29 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: D:\Program Files\Sony\Vegas Pro 8.0\WidgetLibrary.dll . Error
code = 0x80131047
[ System Events ]
Error - 16.8.2009 11:06:15 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:06:15 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:06:22 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:06:22 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:06:22 | Computer Name = PC | Source = Print | ID = 6161
Description = Dokument gašpar.xls, ktorý vlastní Bombik, sa nepodarilo vytlačiť
na tlačiarni Lexmark 2300 Series. Typ údajov: LEMF. Veľkosť súboru frontu tlače
v bajtoch: 347308. Počet vytlačených bajtov: 347308. Celkový počet strán v dokumente:
1. Počet vytlačených strán: 0. Klientsky počítač: \\PC. Kód chyby Win32 vrátaný
tlačovým procesorom: 0 (0x0).
Error - 16.8.2009 11:06:22 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:07:54 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:07:55 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:07:55 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
Error - 16.8.2009 11:07:58 | Computer Name = PC | Source = DCOM | ID = 10005
Description = Server DCOM zistil chybu %1058 pri pokuse spustiť službu lxcg_device
s argumentmi potrebnú na spustenie servera: {323CE21C-A448-40AA-BA74-7FCF1E44106E}
< End of report >
Advance system core som odinštaloval , toolbary ,ktoré som poznal som vymazal ale nešlo vymazať SweetIM tollbar pri odinštalácii naskočila kritická chyba .
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu, vymazuju sa mi subory
Spusťte OTL a do spodního okna vložte následující skript.
Kód: Vybrat vše
:OTL
SRV - File not found [On_Demand | Stopped] -- -- (SQLAgent$SONY_MEDIAMGR)
SRV - File not found [On_Demand | Stopped] -- -- (MSSQL$SONY_MEDIAMGR)
SRV - File not found [Disabled | Stopped] -- -- (gusvc)
SRV - File not found [Disabled | Stopped] -- -- (GoogleDesktopManager-061008-081103)
SRV - [2009.06.01 22:20:12 | 000,222,968 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
DRV - File not found [Kernel | Unknown | Running] -- -- (BootScreen)
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
O4 - HKCU..\Run: [YVIBBBHA8C] C:\DOCUME~1\matus\LOCALS~1\Temp\Sgh.exe File not found
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2010.04.13 21:20:00 | 000,000,282 | -H-- | M] () -- C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
[2010.04.13 21:04:00 | 000,000,246 | -H-- | M] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010.03.26 17:27:22 | 000,055,808 | ---- | M] () -- C:\Documents and Settings\matus\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.26 15:55:50 | 000,180,224 | ---- | M] () -- C:\WINDOWS\Szenia.exe
@Alternate Data Stream - 500 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:05EE1EEF
@Alternate Data Stream - 168 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1CE11B51
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:18B7103A
:Commands
[EMPTYTEMP]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[CREATERESTOREPOINT]
[REBOOT]
"135:TCP" = 135:TCP:*:Enabled:TCP Port 135
"5000:TCP" = 5000:TCP:*:Enabled:TCP Port 5000
"5001:TCP" = 5001:TCP:*:Enabled:TCP Port 5001
"5002:TCP" = 5002:TCP:*:Enabled:TCP Port 5002
"5003:TCP" = 5003:TCP:*:Enabled:TCP Port 5003
"5004:TCP" = 5004:TCP:*:Enabled:TCP Port 5004
"5005:TCP" = 5005:TCP:*:Enabled:TCP Port 5005
"5006:TCP" = 5006:TCP:*:Enabled:TCP Port 5006
"5007:TCP" = 5007:TCP:*:Enabled:TCP Port 5007
"5008:TCP" = 5008:TCP:*:Enabled:TCP Port 5008
"5009:TCP" = 5009:TCP:*:Enabled:TCP Port 5009
"5010:TCP" = 5010:TCP:*:Enabled:TCP Port 5010
"5011:TCP" = 5011:TCP:*:Enabled:TCP Port 5011
"5012:TCP" = 5012:TCP:*:Enabled:TCP Port 5012
"5013:TCP" = 5013:TCP:*:Enabled:TCP Port 5013
"5014:TCP" = 5014:TCP:*:Enabled:TCP Port 5014
"5015:TCP" = 5015:TCP:*:Enabled:TCP Port 5015
"5016:TCP" = 5016:TCP:*:Enabled:TCP Port 5016
"5017:TCP" = 5017:TCP:*:Enabled:TCP Port 5017
"5018:TCP" = 5018:TCP:*:Enabled:TCP Port 5018
"5019:TCP" = 5019:TCP:*:Enabled:TCP Port 5019
"5020:TCP" = 5020:TCP:*:Enabled:TCP Port 5020
Re: Prosim o kontrolu logu, vymazuju sa mi subory
All processes killed
========== OTL ==========
Service SQLAgent$SONY_MEDIAMGR stopped successfully!
Service SQLAgent$SONY_MEDIAMGR deleted successfully!
Service MSSQL$SONY_MEDIAMGR stopped successfully!
Service MSSQL$SONY_MEDIAMGR deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
Service GoogleDesktopManager-061008-081103 stopped successfully!
Service GoogleDesktopManager-061008-081103 deleted successfully!
Service ICQ Service stopped successfully!
Service ICQ Service deleted successfully!
C:\Program Files\ICQ6Toolbar\ICQ Service.exe moved successfully.
Error: No service named BootScreen was found to stop!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BootScreen deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\YVIBBBHA8C deleted successfully.
C:\WINDOWS\003040_.tmp deleted successfully.
C:\WINDOWS\DUMP5c68.tmp deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\KERNEL.TMP deleted successfully.
C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job moved successfully.
C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job moved successfully.
C:\Documents and Settings\matus\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\WINDOWS\Szenia.exe moved successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:05EE1EEF deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:1CE11B51 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:18B7103A deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: All Users
User: Bombik
->Temp folder emptied: 7420454 bytes
->Temporary Internet Files folder emptied: 1412190 bytes
->Java cache emptied: 21546 bytes
->FireFox cache emptied: 38031562 bytes
->Apple Safari cache emptied: 1017316 bytes
->Opera cache emptied: 17071700 bytes
->Flash cache emptied: 23574 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
->FireFox cache emptied: 1965056 bytes
User: matus
->Temp folder emptied: 1344432220 bytes
->Temporary Internet Files folder emptied: 43203671 bytes
->Java cache emptied: 13690439 bytes
->FireFox cache emptied: 77023897 bytes
->Google Chrome cache emptied: 0 bytes
->Apple Safari cache emptied: 330249 bytes
->Opera cache emptied: 38181774 bytes
->Flash cache emptied: 33936 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Paťka
->Temp folder emptied: 40529548 bytes
->Temporary Internet Files folder emptied: 6472425 bytes
->FireFox cache emptied: 76853478 bytes
->Opera cache emptied: 21228050 bytes
->Flash cache emptied: 32403 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 21560807 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 1 670,00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: Bombik
->Flash cache emptied: 0 bytes
User: Default User
User: LocalService
User: matus
->Flash cache emptied: 0 bytes
User: NetworkService
User: Paťka
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
Restore points cleared and new OTL Restore Point set!
Error starting restore point: System Restore is disabled.
Error closing restore point: System Restore is disabled.
OTL by OldTimer - Version 3.2.1.1 log created on 04142010_141224
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
Tie porty nepoznam .
========== OTL ==========
Service SQLAgent$SONY_MEDIAMGR stopped successfully!
Service SQLAgent$SONY_MEDIAMGR deleted successfully!
Service MSSQL$SONY_MEDIAMGR stopped successfully!
Service MSSQL$SONY_MEDIAMGR deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
Service GoogleDesktopManager-061008-081103 stopped successfully!
Service GoogleDesktopManager-061008-081103 deleted successfully!
Service ICQ Service stopped successfully!
Service ICQ Service deleted successfully!
C:\Program Files\ICQ6Toolbar\ICQ Service.exe moved successfully.
Error: No service named BootScreen was found to stop!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BootScreen deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\YVIBBBHA8C deleted successfully.
C:\WINDOWS\003040_.tmp deleted successfully.
C:\WINDOWS\DUMP5c68.tmp deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\KERNEL.TMP deleted successfully.
C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job moved successfully.
C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job moved successfully.
C:\Documents and Settings\matus\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\WINDOWS\Szenia.exe moved successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:05EE1EEF deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:1CE11B51 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:18B7103A deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: All Users
User: Bombik
->Temp folder emptied: 7420454 bytes
->Temporary Internet Files folder emptied: 1412190 bytes
->Java cache emptied: 21546 bytes
->FireFox cache emptied: 38031562 bytes
->Apple Safari cache emptied: 1017316 bytes
->Opera cache emptied: 17071700 bytes
->Flash cache emptied: 23574 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
->FireFox cache emptied: 1965056 bytes
User: matus
->Temp folder emptied: 1344432220 bytes
->Temporary Internet Files folder emptied: 43203671 bytes
->Java cache emptied: 13690439 bytes
->FireFox cache emptied: 77023897 bytes
->Google Chrome cache emptied: 0 bytes
->Apple Safari cache emptied: 330249 bytes
->Opera cache emptied: 38181774 bytes
->Flash cache emptied: 33936 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Paťka
->Temp folder emptied: 40529548 bytes
->Temporary Internet Files folder emptied: 6472425 bytes
->FireFox cache emptied: 76853478 bytes
->Opera cache emptied: 21228050 bytes
->Flash cache emptied: 32403 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 21560807 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 1 670,00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: Bombik
->Flash cache emptied: 0 bytes
User: Default User
User: LocalService
User: matus
->Flash cache emptied: 0 bytes
User: NetworkService
User: Paťka
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
Restore points cleared and new OTL Restore Point set!
Error starting restore point: System Restore is disabled.
Error closing restore point: System Restore is disabled.
OTL by OldTimer - Version 3.2.1.1 log created on 04142010_141224
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
Tie porty nepoznam .
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu, vymazuju sa mi subory
Spusťte OTL a do spodního okna vložte následující skript.
Kód: Vybrat vše
:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"135:TCP" =-
"5000:TCP" =-
"5001:TCP" =-
"5002:TCP" =-
"5003:TCP" =-
"5004:TCP" =-
"5005:TCP" =-
"5006:TCP" =-
"5007:TCP" =-
"5008:TCP" =-
"5009:TCP" =-
"5010:TCP" =-
"5011:TCP" =-
"5012:TCP" =-
"5013:TCP" =-
"5014:TCP" =-
"5015:TCP" =-
"5016:TCP" =-
"5017:TCP" =-
"5018:TCP" =-
"5019:TCP" =-
"5020:TCP" =-
:Commands
[REBOOT] Re: Prosim o kontrolu logu, vymazuju sa mi subory
Žiadny log po reštarte nenaskočil a za každý subor nadobudol príponu a keď ju vymažem ,tak subor mi neotvorí .
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu, vymazuju sa mi subory
Nič sa nezmenilo . Na ploche je nejaky skrytý súbor Thumbs.db . Log nenaskočil .
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu, vymazuju sa mi subory
Stáhněte a uložte, nejlépe na plochu http://download.bleepingcomputer.com/sUBs/ComboFix.exe- Vypněte všechny rezidentní bezpečnostní programy - firewally, antiviry, antispywary
- Spusťte aplikaci pod účtem s oprávněním Administrátora (Správce), ihned po startu se zobrazí stránka s licenčními podmínkami, pokračujte stisknutím tlačítka "Ano"
- Dále postupujte dle pokynů, během scanu nespouštějte jiné aplikace a neklikejte do zobrazujícího se okna
- Scan by měl trvat okolo 5 - 10 minut, po dokončení Combofix zobrazí log C:\ComboFix.txt , který sem vložte.
- Během skenování může být počítač restartován.
Re: Prosim o kontrolu logu, vymazuju sa mi subory
ComboFix 10-04-13.04 - matus 14.04.2010 15:49:14.6.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.1152.754 [GMT 2:00]
Running from: c:\documents and settings\matus\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
* Created a new restore point
* Resident AV is active
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\system32\kernel1.exe
c:\windows\system32\winsys.exe
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_SSHNAS
-------\Service_SSHNAS
((((((((((((((((((((((((( Files Created from 2010-03-14 to 2010-04-14 )))))))))))))))))))))))))))))))
.
2095-08-09 13:09 . 2021-01-05 17:40 25280 ----a-w- c:\windows\system32\drivers\hamachi.sys
2060-10-15 13:46 . 2010-04-13 18:18 -------- d-----w- c:\program files\trend micro
2021-01-05 17:41 . 2010-03-23 20:13 -------- d-----w- c:\documents and settings\matus\Application Data\Hamachi
2021-01-05 17:40 . 2021-01-05 17:41 -------- d-----w- c:\program files\Hamachi
2010-04-14 12:35 . 2010-04-14 12:35 -------- d-----w- c:\documents and settings\matus\Local Settings\Application Data\AOL
2010-04-14 12:34 . 2010-04-14 12:37 -------- d-----w- c:\program files\ICQ7.1
2010-04-14 12:12 . 2010-04-14 12:12 -------- d-----w- C:\_OTL
2010-04-13 18:17 . 2010-04-13 18:18 -------- d-----w- C:\rsit
2010-04-13 03:20 . 2010-04-13 03:20 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonIJSolutionMenu
2010-04-13 03:20 . 2010-04-13 03:20 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonIJMyPrinter
2010-04-13 03:02 . 2010-04-13 03:02 -------- d-----w- c:\documents and settings\Bombik\Application Data\DivX
2010-04-12 19:02 . 2009-03-13 07:31 110592 ----a-w- c:\windows\system32\CNC250I.dll
2010-04-12 19:02 . 2009-03-11 09:34 303104 ----a-w- c:\windows\system32\CNC250L.dll
2010-04-12 19:02 . 2009-03-13 07:31 1310720 ----a-w- c:\windows\system32\CNC250C.dll
2010-04-12 19:02 . 2009-03-13 07:27 106496 ----a-w- c:\windows\system32\CNC250U.dll
2010-04-12 18:55 . 2010-04-12 18:55 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonBJ
2010-04-12 18:55 . 2010-04-12 18:55 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information
2010-04-12 18:54 . 2009-02-04 04:17 90112 ----a-w- c:\windows\system32\CNC250O.dll
2010-04-12 18:54 . 2009-03-18 00:09 178176 ----a-r- c:\windows\system32\CNMIU9W.DLL
2010-04-12 18:54 . 2010-04-12 18:54 -------- d--h--w- c:\program files\CanonBJ
2010-04-12 18:47 . 2010-04-12 18:49 20841968 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\rp\RealPlayerSPGold.exe
2010-04-06 11:31 . 2010-04-06 11:31 -------- d-----w- c:\program files\WorldUnlock Codes Calculator
2010-04-06 10:48 . 2010-04-06 10:50 -------- d-----w- c:\program files\NokiaFREE Unlock Codes Calculator
2010-04-01 15:52 . 2010-04-01 15:52 -------- d-----w- c:\documents and settings\Bombik\Local Settings\Application Data\Temp
2010-04-01 10:14 . 2010-04-01 10:14 -------- d-----w- c:\documents and settings\matus\Application Data\URSoft
2010-03-26 14:24 . 2010-03-26 14:24 -------- d-----w- c:\documents and settings\matus\Local Settings\Application Data\Stardock
2010-03-26 13:39 . 2010-03-26 13:39 -------- d-----w- c:\program files\TGTSoft
2010-03-22 15:08 . 2010-03-22 15:08 8405312 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\gtb\GOOGLE_TOOLBAR\GoogleToolbarInstaller.exe
2010-03-22 15:07 . 2010-03-22 15:07 149000 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\chr_helper\LaunchHelper.exe
2010-03-22 15:07 . 2010-03-22 15:07 10309448 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\chr\ChromeInstaller.exe
2010-03-22 15:06 . 2010-03-22 15:06 79368 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\vista.exe
2010-03-22 15:06 . 2010-03-22 15:06 64000 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\inst_config\gcapi_dll.dll
2010-03-22 15:06 . 2010-03-22 15:06 52288 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\inst_config\gtapi.dll
2010-03-22 15:06 . 2010-03-22 15:06 50688 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\inst_config\fftbapi.dll
2010-03-22 15:06 . 2010-03-22 15:06 49152 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\inst_config\CarboniteCompatibility.dll
2010-03-22 15:06 . 2010-03-22 15:06 118784 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\inst_config\compat.dll
2010-03-21 17:46 . 2010-04-05 17:38 439816 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\setup.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-14 12:37 . 2007-12-16 13:35 -------- d-----w- c:\documents and settings\matus\Application Data\ICQ
2010-04-14 12:36 . 2008-09-08 18:15 -------- d-----w- c:\program files\ICQ6Toolbar
2010-04-14 12:36 . 2007-12-16 13:21 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-04-14 12:36 . 2008-09-08 18:15 -------- d-----w- c:\documents and settings\All Users\Application Data\ICQ
2010-04-13 19:13 . 2010-02-26 14:43 -------- d-----w- c:\program files\Stardock
2010-04-13 19:12 . 2008-11-19 11:20 -------- d-----w- c:\program files\RSL
2010-04-13 03:18 . 2009-12-13 19:09 -------- d-----w- c:\program files\Canon
2010-04-13 03:08 . 2008-01-04 17:03 70312 ----a-w- c:\documents and settings\Bombik\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-04-12 19:04 . 2009-12-13 19:21 -------- d-----w- c:\documents and settings\All Users\Application Data\CanonIJPLM
2010-04-12 18:52 . 2009-12-13 19:43 -------- d-----w- c:\documents and settings\matus\Application Data\Canon
2010-04-12 18:52 . 2009-12-13 19:43 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonIJScan
2010-04-02 10:04 . 2010-03-26 20:17 2329856 ----a-w- c:\windows\system32\KERNEL.TMP
2010-04-01 10:29 . 2010-01-09 18:15 -------- d-----w- c:\program files\Fonts++
2010-04-01 10:28 . 2007-12-25 14:10 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-04-01 10:25 . 2008-02-13 17:24 -------- d-----w- c:\program files\Google
2010-03-28 12:15 . 2008-12-19 16:07 -------- d-----w- c:\documents and settings\matus\Application Data\Any Video Converter
2010-03-26 15:28 . 2008-12-09 14:17 -------- d-----w- c:\program files\SpeedFan
2010-03-22 15:07 . 2010-03-22 15:07 149000 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\chr_helper\LaunchHelper.exe
2010-03-22 15:07 . 2010-03-22 15:07 10309448 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\chr\ChromeInstaller.exe
2010-03-21 15:03 . 2009-01-15 16:03 1 ----a-w- c:\documents and settings\matus\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2010-03-06 10:41 . 2010-03-06 10:40 -------- d-----w- c:\program files\Guitar Pro 5
2010-03-01 19:28 . 2010-03-01 19:25 -------- d-----w- c:\program files\NVIDIA Corporation
2010-03-01 19:26 . 2010-03-01 19:26 -------- d-----w- c:\documents and settings\All Users\Application Data\NVIDIA Corporation
2010-02-26 18:24 . 2008-06-13 10:30 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-02-26 18:18 . 2008-12-22 21:18 -------- d-----w- c:\program files\AGEIA Technologies
2010-02-24 17:31 . 2009-12-13 19:44 -------- d-----w- c:\documents and settings\All Users\Application Data\CanonIJ
2010-02-20 17:25 . 2008-12-20 20:14 -------- d-----w- c:\documents and settings\matus\Application Data\Skype
2010-02-20 17:03 . 2008-02-19 16:32 -------- d-----w- c:\documents and settings\matus\Application Data\skypePM
2010-02-18 12:42 . 2010-02-18 12:42 10134 ----a-r- c:\documents and settings\matus\Application Data\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
2010-02-18 12:42 . 2010-02-18 12:42 -------- d-----w- c:\program files\Microsoft WSE
2010-02-18 12:18 . 2010-02-18 12:18 -------- d-----w- c:\program files\Electronic Arts
2010-02-13 14:22 . 2007-12-30 11:35 -------- d-----w- c:\program files\Mafia
2010-01-21 19:06 . 2010-01-21 19:06 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-01-21 19:06 . 2010-01-21 19:06 152576 ----a-w- c:\documents and settings\matus\Application Data\Sun\Java\jre1.6.0_15\lzma.dll
2008-09-02 11:03 . 2008-09-02 11:02 122880 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-09-08 68856]
"STYLEXP"="c:\program files\TGTSoft\StyleXP\StyleXP.exe" [2006-01-30 1363968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-01-11 13666408]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-01-11 110696]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-10-07 1461080]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-09-02 185896]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-03-23 1983816]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2009-03-17 767312]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="c:\program files\TGTSoft\StyleXP\Logon\CurrentLogon.EXE"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-02-27 15:10 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
2008-08-14 06:58 611712 ----a-w- c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
2007-10-23 13:18 202024 ----a-w- c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
2009-03-17 16:40 767312 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
2006-11-12 10:48 157592 ----a-w- c:\program files\DAEMON Tools\daemon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2007-12-11 11:10 267048 ----a-w- c:\program files\iTunes\iTunesHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
2007-09-20 07:51 1836328 ----a-w- c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 13:57 153136 ----a-w- c:\program files\Common Files\Nero\Lib\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
2007-12-16 13:37 26624 -c--a-w- c:\windows\OETRN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2007-12-11 09:56 286720 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
2004-11-02 19:24 32768 ----a-w- c:\program files\CyberLink\PowerDVD\PDVDServ.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
2006-11-23 23:06 487424 ----a-r- c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2008-09-08 12:24 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
2008-09-02 11:04 185896 ----a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"TuneUp.Defrag"=3 (0x3)
"ServiceLayer"=3 (0x3)
"ose"=3 (0x3)
"NMIndexingService"=3 (0x3)
"Nero BackItUp Scheduler 3"=2 (0x2)
"lxcg_device"=3 (0x3)
"iPod Service"=3 (0x3)
"IDriverT"=3 (0x3)
"ICQ Service"=2 (0x2)
"gusvc"=3 (0x3)
"GoogleDesktopManager-061008-081103"=3 (0x3)
"Apple Mobile Device"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"d:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"d:\\Program Files\\rFactor\\rFactor.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Program Files\\Hamachi\\hamachi.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.1\\ICQ.exe"=
"c:\\Program Files\\ICQ7.1\\aolload.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R0 a347bus;a347bus;c:\windows\system32\drivers\a347bus.sys [25.3.2008 15:17 160640]
R0 a347scsi;a347scsi;c:\windows\system32\drivers\a347scsi.sys [25.3.2008 15:17 5248]
R0 Si3112r;Silicon Image SiI 3112 SATARaid Controller;c:\windows\system32\drivers\Si3112r.sys [16.12.2007 15:24 84529]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [17.12.2007 21:11 716272]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [18.8.2008 13:27 35168]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [7.10.2009 10:16 472280]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [14.4.2010 14:36 246520]
R3 winkey;winkey;c:\windows\system32\drivers\winkey.sys [31.10.2009 15:15 4848]
S2 gupdate1c9c73de81dca6e;Služba Google Update (gupdate1c9c73de81dca6e);c:\program files\Google\Update\GoogleUpdate.exe [27.4.2009 15:41 133104]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2.11.2009 22:46 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2.11.2009 22:46 8320]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\e:\ntglm7x.sys --> e:\NTGLM7X.sys [?]
S3 vaxscsi;vaxscsi;c:\windows\system32\drivers\vaxscsi.sys [16.3.2008 15:41 223128]
S3 wip0204;Wippien Network Adapter 2.4;c:\windows\system32\drivers\wip0204.sys [9.8.2009 10:13 23480]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contents of the 'Scheduled Tasks' folder
2010-04-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-27 13:41]
2010-04-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-27 13:41]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://start.icq.com/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
uDefault_Search_URL =
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyServer = socks=
uInternet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,;*.local
uSearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files\ICQ7.1\ICQ.exe
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
TCP: {6D305A1D-1122-4EFB-914E-8E08A06000B4} = 217.119.126.246,217.119.113.244
FF - ProfilePath - c:\documents and settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1814311&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://start.icq.com/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.2&q=
FF - component: c:\documents and settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{867dd841-5bf7-44ca-8426-c5a6eda00735}\components\FFExternalAlert.dll
FF - component: c:\documents and settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{867dd841-5bf7-44ca-8426-c5a6eda00735}\components\RadioWMPCore.dll
FF - component: c:\program files\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
FF - plugin: c:\documents and settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\plugins\np_gp.dll
FF - plugin: c:\program files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll
FF - plugin: c:\program files\Opera\program\plugins\np_gp.dll
FF - plugin: c:\program files\Opera\program\plugins\npdivx32.dll
FF - plugin: c:\program files\Opera\program\plugins\Npindeo.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- FIREFOX POLICIES ----
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - fales
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - ORPHANS REMOVED - - - -
HKCU-Run-AdobeBridge - (no file)
HKLM-Run-nwiz - nwiz.exe
MSConfigStartUp-Advanced SystemCare 3 - c:\program files\IObit\Advanced SystemCare 3\AWC.exe
MSConfigStartUp-dvd43 - c:\program files\dvd43\dvd43_tray.exe
MSConfigStartUp-FaxCenterServer - c:\program files\Lexmark Fax Solutions\fm3032.exe
MSConfigStartUp-Fonts++ - c:\program files\Fonts++\Fonts.exe
MSConfigStartUp-Google Desktop Search - c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
MSConfigStartUp-Malwarebytes Anti-Malware (reboot) - c:\program files\Malwarebytes' Anti-Malware\mbam.exe
MSConfigStartUp-PCSuiteTrayApplication - c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
MSConfigStartUp-SunJavaUpdateSched - c:\program files\Java\jre1.6.0_02\bin\jusched.exe
AddRemove-0852D05415AB9A4F1EF451E342267F76C776ED2F - c:\progra~1\DIFX\270581355A767BF1\dpinst.exe
AddRemove-0C5EDC3653FED5B121F464339EAC12534D253B25 - c:\progra~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\dpinst.exe
AddRemove-504244733D18C8F63FF584AEB290E3904E791693 - c:\progra~1\DIFX\270581355A767BF1\dpinst.exe
AddRemove-D978F69D5F15B845BD6BC6F8BF9BCD36982A2087 - c:\progra~1\DIFX\270581355A767BF1\dpinst.exe
AddRemove-E7F682214B951640C9C539C41FDA1A7F836FF7B6 - c:\progra~1\DIFX\270581355A767BF1\dpinst.exe
AddRemove-Google Desktop - c:\program files\Google\Google Desktop Search\GoogleDesktopSetup.exe
AddRemove-GTA San Andreas SK - d:\program files\Rockstar Games\GTA San Andreas\Uninstall GTA_SA_SK.exe
AddRemove-Mouse Joypad V1.0 - c:\progra~1\MOUSEJ~1.0\UNWISE.EXE
AddRemove-Need For Speed Most Wanted SK - d:\progra~1\EAGAME~1\NEEDFO~1\Odinštalovať NFS-MW_SK.exe
AddRemove-NVIDIA Display Control Panel - c:\program files\NVIDIA Corporation\Uninstall\nvuninst.exe
AddRemove-rF Tv Style_is1 - d:\program files\rFactor\TvStyleUnistall\unins000.exe
AddRemove-F1 2009 F1RL-KERS V.1.4.0 - d:\program files\rFactor\Uninstalmodf1rl140.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-14 15:58
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net
device: opened successfully
user: MBR read successfully
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x88B04D40]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xb810cf28
\Driver\ACPI -> ACPI.sys @ 0xb7f22cb8
\Driver\atapi -> atapi.sys @ 0xb7eb7b40
IoDeviceObjectType -> DeleteProcedure -> ntoskrnl.exe @ 0x805a05a9
ParseProcedure -> ntoskrnl.exe @ 0x8056ea15
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntoskrnl.exe @ 0x805a05a9
ParseProcedure -> ntoskrnl.exe @ 0x8056ea15
NDIS: Broadcom NetXtreme Gigabit Ethernet -> SendCompleteHandler -> NDIS.sys @ 0xb7d96bb0
PacketIndicateHandler -> NDIS.sys @ 0xb7da3a21
SendHandler -> NDIS.sys @ 0xb7d8187b
user & kernel MBR OK
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_USERS\S-1-5-21-73586283-1844823847-725345543-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
[HKEY_USERS\S-1-5-21-73586283-1844823847-725345543-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:02,27,ea,d0,66,d5,aa,70,16,2a,a8,55,84,6f,6b,63,24,f1,22,0e,51,2a,c5,
86,2f,47,a1,ee,f2,47,29,e4,a0,4f,5a,ef,90,2b,77,1b,00,57,cf,59,f9,1c,e7,04,\
"??"=hex:69,3e,43,58,9f,64,ba,75,fe,6b,77,07,2a,78,dd,74
[HKEY_USERS\S-1-5-21-73586283-1844823847-725345543-1003\Software\SecuROM\License information*]
"datasecu"=hex:50,20,c5,07,51,31,f6,6b,0a,76,87,69,82,fb,81,34,88,ca,f6,37,e6,
12,8a,cd,a7,c5,de,56,02,c1,cd,4a,81,8b,52,4b,24,a1,bd,37,d6,66,df,6f,e7,d0,\
"rkeysecu"=hex:5e,f1,a6,2b,dc,78,45,ec,00,1a,7a,3b,87,6b,18,f2
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(828)
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
- - - - - - - > 'explorer.exe'(3184)
c:\windows\system32\WININET.dll
c:\progra~1\WINDOW~2\wmpband.dll
c:\program files\iTunes\iTunesMiniPlayer.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\en.lproj\iTunesMiniPlayerLocalized.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll
c:\program files\ESTsoft\ALSong\asBand.dll
c:\windows\system32\msi.dll
c:\windows\system32\ieframe.dll
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\TGTSoft\StyleXP\StyleXPService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\RUNDLL32.EXE
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2010-04-14 16:06:07 - machine was rebooted
ComboFix-quarantined-files.txt 2010-04-14 14:06
Pre-Run: 3 116 072 960 bytes free
Post-Run: 3 028 480 000 voľných bajtov
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional (bootscreen)" /fastdetect /KERNEL=kernel1.exe
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect
- - End Of File - - FA6DCC8AE8F03A67A27748C5322A67FB
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.421.1033.18.1152.754 [GMT 2:00]
Running from: c:\documents and settings\matus\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
* Created a new restore point
* Resident AV is active
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\system32\kernel1.exe
c:\windows\system32\winsys.exe
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_SSHNAS
-------\Service_SSHNAS
((((((((((((((((((((((((( Files Created from 2010-03-14 to 2010-04-14 )))))))))))))))))))))))))))))))
.
2095-08-09 13:09 . 2021-01-05 17:40 25280 ----a-w- c:\windows\system32\drivers\hamachi.sys
2060-10-15 13:46 . 2010-04-13 18:18 -------- d-----w- c:\program files\trend micro
2021-01-05 17:41 . 2010-03-23 20:13 -------- d-----w- c:\documents and settings\matus\Application Data\Hamachi
2021-01-05 17:40 . 2021-01-05 17:41 -------- d-----w- c:\program files\Hamachi
2010-04-14 12:35 . 2010-04-14 12:35 -------- d-----w- c:\documents and settings\matus\Local Settings\Application Data\AOL
2010-04-14 12:34 . 2010-04-14 12:37 -------- d-----w- c:\program files\ICQ7.1
2010-04-14 12:12 . 2010-04-14 12:12 -------- d-----w- C:\_OTL
2010-04-13 18:17 . 2010-04-13 18:18 -------- d-----w- C:\rsit
2010-04-13 03:20 . 2010-04-13 03:20 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonIJSolutionMenu
2010-04-13 03:20 . 2010-04-13 03:20 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonIJMyPrinter
2010-04-13 03:02 . 2010-04-13 03:02 -------- d-----w- c:\documents and settings\Bombik\Application Data\DivX
2010-04-12 19:02 . 2009-03-13 07:31 110592 ----a-w- c:\windows\system32\CNC250I.dll
2010-04-12 19:02 . 2009-03-11 09:34 303104 ----a-w- c:\windows\system32\CNC250L.dll
2010-04-12 19:02 . 2009-03-13 07:31 1310720 ----a-w- c:\windows\system32\CNC250C.dll
2010-04-12 19:02 . 2009-03-13 07:27 106496 ----a-w- c:\windows\system32\CNC250U.dll
2010-04-12 18:55 . 2010-04-12 18:55 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonBJ
2010-04-12 18:55 . 2010-04-12 18:55 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information
2010-04-12 18:54 . 2009-02-04 04:17 90112 ----a-w- c:\windows\system32\CNC250O.dll
2010-04-12 18:54 . 2009-03-18 00:09 178176 ----a-r- c:\windows\system32\CNMIU9W.DLL
2010-04-12 18:54 . 2010-04-12 18:54 -------- d--h--w- c:\program files\CanonBJ
2010-04-12 18:47 . 2010-04-12 18:49 20841968 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\rp\RealPlayerSPGold.exe
2010-04-06 11:31 . 2010-04-06 11:31 -------- d-----w- c:\program files\WorldUnlock Codes Calculator
2010-04-06 10:48 . 2010-04-06 10:50 -------- d-----w- c:\program files\NokiaFREE Unlock Codes Calculator
2010-04-01 15:52 . 2010-04-01 15:52 -------- d-----w- c:\documents and settings\Bombik\Local Settings\Application Data\Temp
2010-04-01 10:14 . 2010-04-01 10:14 -------- d-----w- c:\documents and settings\matus\Application Data\URSoft
2010-03-26 14:24 . 2010-03-26 14:24 -------- d-----w- c:\documents and settings\matus\Local Settings\Application Data\Stardock
2010-03-26 13:39 . 2010-03-26 13:39 -------- d-----w- c:\program files\TGTSoft
2010-03-22 15:08 . 2010-03-22 15:08 8405312 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\gtb\GOOGLE_TOOLBAR\GoogleToolbarInstaller.exe
2010-03-22 15:07 . 2010-03-22 15:07 149000 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\chr_helper\LaunchHelper.exe
2010-03-22 15:07 . 2010-03-22 15:07 10309448 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\chr\ChromeInstaller.exe
2010-03-22 15:06 . 2010-03-22 15:06 79368 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\vista.exe
2010-03-22 15:06 . 2010-03-22 15:06 64000 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\inst_config\gcapi_dll.dll
2010-03-22 15:06 . 2010-03-22 15:06 52288 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\inst_config\gtapi.dll
2010-03-22 15:06 . 2010-03-22 15:06 50688 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\inst_config\fftbapi.dll
2010-03-22 15:06 . 2010-03-22 15:06 49152 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\inst_config\CarboniteCompatibility.dll
2010-03-22 15:06 . 2010-03-22 15:06 118784 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\RUP\inst_config\compat.dll
2010-03-21 17:46 . 2010-04-05 17:38 439816 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\setup.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-14 12:37 . 2007-12-16 13:35 -------- d-----w- c:\documents and settings\matus\Application Data\ICQ
2010-04-14 12:36 . 2008-09-08 18:15 -------- d-----w- c:\program files\ICQ6Toolbar
2010-04-14 12:36 . 2007-12-16 13:21 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-04-14 12:36 . 2008-09-08 18:15 -------- d-----w- c:\documents and settings\All Users\Application Data\ICQ
2010-04-13 19:13 . 2010-02-26 14:43 -------- d-----w- c:\program files\Stardock
2010-04-13 19:12 . 2008-11-19 11:20 -------- d-----w- c:\program files\RSL
2010-04-13 03:18 . 2009-12-13 19:09 -------- d-----w- c:\program files\Canon
2010-04-13 03:08 . 2008-01-04 17:03 70312 ----a-w- c:\documents and settings\Bombik\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-04-12 19:04 . 2009-12-13 19:21 -------- d-----w- c:\documents and settings\All Users\Application Data\CanonIJPLM
2010-04-12 18:52 . 2009-12-13 19:43 -------- d-----w- c:\documents and settings\matus\Application Data\Canon
2010-04-12 18:52 . 2009-12-13 19:43 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonIJScan
2010-04-02 10:04 . 2010-03-26 20:17 2329856 ----a-w- c:\windows\system32\KERNEL.TMP
2010-04-01 10:29 . 2010-01-09 18:15 -------- d-----w- c:\program files\Fonts++
2010-04-01 10:28 . 2007-12-25 14:10 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-04-01 10:25 . 2008-02-13 17:24 -------- d-----w- c:\program files\Google
2010-03-28 12:15 . 2008-12-19 16:07 -------- d-----w- c:\documents and settings\matus\Application Data\Any Video Converter
2010-03-26 15:28 . 2008-12-09 14:17 -------- d-----w- c:\program files\SpeedFan
2010-03-22 15:07 . 2010-03-22 15:07 149000 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\chr_helper\LaunchHelper.exe
2010-03-22 15:07 . 2010-03-22 15:07 10309448 ----a-w- c:\documents and settings\matus\Application Data\Real\Update\setup3.10\chr\ChromeInstaller.exe
2010-03-21 15:03 . 2009-01-15 16:03 1 ----a-w- c:\documents and settings\matus\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2010-03-06 10:41 . 2010-03-06 10:40 -------- d-----w- c:\program files\Guitar Pro 5
2010-03-01 19:28 . 2010-03-01 19:25 -------- d-----w- c:\program files\NVIDIA Corporation
2010-03-01 19:26 . 2010-03-01 19:26 -------- d-----w- c:\documents and settings\All Users\Application Data\NVIDIA Corporation
2010-02-26 18:24 . 2008-06-13 10:30 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-02-26 18:18 . 2008-12-22 21:18 -------- d-----w- c:\program files\AGEIA Technologies
2010-02-24 17:31 . 2009-12-13 19:44 -------- d-----w- c:\documents and settings\All Users\Application Data\CanonIJ
2010-02-20 17:25 . 2008-12-20 20:14 -------- d-----w- c:\documents and settings\matus\Application Data\Skype
2010-02-20 17:03 . 2008-02-19 16:32 -------- d-----w- c:\documents and settings\matus\Application Data\skypePM
2010-02-18 12:42 . 2010-02-18 12:42 10134 ----a-r- c:\documents and settings\matus\Application Data\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
2010-02-18 12:42 . 2010-02-18 12:42 -------- d-----w- c:\program files\Microsoft WSE
2010-02-18 12:18 . 2010-02-18 12:18 -------- d-----w- c:\program files\Electronic Arts
2010-02-13 14:22 . 2007-12-30 11:35 -------- d-----w- c:\program files\Mafia
2010-01-21 19:06 . 2010-01-21 19:06 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-01-21 19:06 . 2010-01-21 19:06 152576 ----a-w- c:\documents and settings\matus\Application Data\Sun\Java\jre1.6.0_15\lzma.dll
2008-09-02 11:03 . 2008-09-02 11:02 122880 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-09-08 68856]
"STYLEXP"="c:\program files\TGTSoft\StyleXP\StyleXP.exe" [2006-01-30 1363968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-01-11 13666408]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-01-11 110696]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-10-07 1461080]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-09-02 185896]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-03-23 1983816]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2009-03-17 767312]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="c:\program files\TGTSoft\StyleXP\Logon\CurrentLogon.EXE"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-02-27 15:10 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
2008-08-14 06:58 611712 ----a-w- c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
2007-10-23 13:18 202024 ----a-w- c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
2009-03-17 16:40 767312 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
2006-11-12 10:48 157592 ----a-w- c:\program files\DAEMON Tools\daemon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2007-12-11 11:10 267048 ----a-w- c:\program files\iTunes\iTunesHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
2007-09-20 07:51 1836328 ----a-w- c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 13:57 153136 ----a-w- c:\program files\Common Files\Nero\Lib\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
2007-12-16 13:37 26624 -c--a-w- c:\windows\OETRN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2007-12-11 09:56 286720 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
2004-11-02 19:24 32768 ----a-w- c:\program files\CyberLink\PowerDVD\PDVDServ.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
2006-11-23 23:06 487424 ----a-r- c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2008-09-08 12:24 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
2008-09-02 11:04 185896 ----a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"TuneUp.Defrag"=3 (0x3)
"ServiceLayer"=3 (0x3)
"ose"=3 (0x3)
"NMIndexingService"=3 (0x3)
"Nero BackItUp Scheduler 3"=2 (0x2)
"lxcg_device"=3 (0x3)
"iPod Service"=3 (0x3)
"IDriverT"=3 (0x3)
"ICQ Service"=2 (0x2)
"gusvc"=3 (0x3)
"GoogleDesktopManager-061008-081103"=3 (0x3)
"Apple Mobile Device"=2 (0x2)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"d:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"d:\\Program Files\\rFactor\\rFactor.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Program Files\\Hamachi\\hamachi.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\ICQ7.1\\ICQ.exe"=
"c:\\Program Files\\ICQ7.1\\aolload.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R0 a347bus;a347bus;c:\windows\system32\drivers\a347bus.sys [25.3.2008 15:17 160640]
R0 a347scsi;a347scsi;c:\windows\system32\drivers\a347scsi.sys [25.3.2008 15:17 5248]
R0 Si3112r;Silicon Image SiI 3112 SATARaid Controller;c:\windows\system32\drivers\Si3112r.sys [16.12.2007 15:24 84529]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [17.12.2007 21:11 716272]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [18.8.2008 13:27 35168]
R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [7.10.2009 10:16 472280]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [14.4.2010 14:36 246520]
R3 winkey;winkey;c:\windows\system32\drivers\winkey.sys [31.10.2009 15:15 4848]
S2 gupdate1c9c73de81dca6e;Služba Google Update (gupdate1c9c73de81dca6e);c:\program files\Google\Update\GoogleUpdate.exe [27.4.2009 15:41 133104]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2.11.2009 22:46 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2.11.2009 22:46 8320]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\e:\ntglm7x.sys --> e:\NTGLM7X.sys [?]
S3 vaxscsi;vaxscsi;c:\windows\system32\drivers\vaxscsi.sys [16.3.2008 15:41 223128]
S3 wip0204;Wippien Network Adapter 2.4;c:\windows\system32\drivers\wip0204.sys [9.8.2009 10:13 23480]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contents of the 'Scheduled Tasks' folder
2010-04-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-27 13:41]
2010-04-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-27 13:41]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://start.icq.com/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
uDefault_Search_URL =
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyServer = socks=
uInternet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,;*.local
uSearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files\ICQ7.1\ICQ.exe
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
TCP: {6D305A1D-1122-4EFB-914E-8E08A06000B4} = 217.119.126.246,217.119.113.244
FF - ProfilePath - c:\documents and settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1814311&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://start.icq.com/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.2&q=
FF - component: c:\documents and settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{867dd841-5bf7-44ca-8426-c5a6eda00735}\components\FFExternalAlert.dll
FF - component: c:\documents and settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{867dd841-5bf7-44ca-8426-c5a6eda00735}\components\RadioWMPCore.dll
FF - component: c:\program files\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
FF - plugin: c:\documents and settings\matus\Application Data\Mozilla\Firefox\Profiles\5t77yjpv.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\plugins\np_gp.dll
FF - plugin: c:\program files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npGoogleGadgetPluginFirefoxWin.dll
FF - plugin: c:\program files\Opera\program\plugins\np_gp.dll
FF - plugin: c:\program files\Opera\program\plugins\npdivx32.dll
FF - plugin: c:\program files\Opera\program\plugins\Npindeo.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- FIREFOX POLICIES ----
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - fales
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - ORPHANS REMOVED - - - -
HKCU-Run-AdobeBridge - (no file)
HKLM-Run-nwiz - nwiz.exe
MSConfigStartUp-Advanced SystemCare 3 - c:\program files\IObit\Advanced SystemCare 3\AWC.exe
MSConfigStartUp-dvd43 - c:\program files\dvd43\dvd43_tray.exe
MSConfigStartUp-FaxCenterServer - c:\program files\Lexmark Fax Solutions\fm3032.exe
MSConfigStartUp-Fonts++ - c:\program files\Fonts++\Fonts.exe
MSConfigStartUp-Google Desktop Search - c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
MSConfigStartUp-Malwarebytes Anti-Malware (reboot) - c:\program files\Malwarebytes' Anti-Malware\mbam.exe
MSConfigStartUp-PCSuiteTrayApplication - c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
MSConfigStartUp-SunJavaUpdateSched - c:\program files\Java\jre1.6.0_02\bin\jusched.exe
AddRemove-0852D05415AB9A4F1EF451E342267F76C776ED2F - c:\progra~1\DIFX\270581355A767BF1\dpinst.exe
AddRemove-0C5EDC3653FED5B121F464339EAC12534D253B25 - c:\progra~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\dpinst.exe
AddRemove-504244733D18C8F63FF584AEB290E3904E791693 - c:\progra~1\DIFX\270581355A767BF1\dpinst.exe
AddRemove-D978F69D5F15B845BD6BC6F8BF9BCD36982A2087 - c:\progra~1\DIFX\270581355A767BF1\dpinst.exe
AddRemove-E7F682214B951640C9C539C41FDA1A7F836FF7B6 - c:\progra~1\DIFX\270581355A767BF1\dpinst.exe
AddRemove-Google Desktop - c:\program files\Google\Google Desktop Search\GoogleDesktopSetup.exe
AddRemove-GTA San Andreas SK - d:\program files\Rockstar Games\GTA San Andreas\Uninstall GTA_SA_SK.exe
AddRemove-Mouse Joypad V1.0 - c:\progra~1\MOUSEJ~1.0\UNWISE.EXE
AddRemove-Need For Speed Most Wanted SK - d:\progra~1\EAGAME~1\NEEDFO~1\Odinštalovať NFS-MW_SK.exe
AddRemove-NVIDIA Display Control Panel - c:\program files\NVIDIA Corporation\Uninstall\nvuninst.exe
AddRemove-rF Tv Style_is1 - d:\program files\rFactor\TvStyleUnistall\unins000.exe
AddRemove-F1 2009 F1RL-KERS V.1.4.0 - d:\program files\rFactor\Uninstalmodf1rl140.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-14 15:58
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net
device: opened successfully
user: MBR read successfully
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x88B04D40]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xb810cf28
\Driver\ACPI -> ACPI.sys @ 0xb7f22cb8
\Driver\atapi -> atapi.sys @ 0xb7eb7b40
IoDeviceObjectType -> DeleteProcedure -> ntoskrnl.exe @ 0x805a05a9
ParseProcedure -> ntoskrnl.exe @ 0x8056ea15
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntoskrnl.exe @ 0x805a05a9
ParseProcedure -> ntoskrnl.exe @ 0x8056ea15
NDIS: Broadcom NetXtreme Gigabit Ethernet -> SendCompleteHandler -> NDIS.sys @ 0xb7d96bb0
PacketIndicateHandler -> NDIS.sys @ 0xb7da3a21
SendHandler -> NDIS.sys @ 0xb7d8187b
user & kernel MBR OK
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_USERS\S-1-5-21-73586283-1844823847-725345543-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
[HKEY_USERS\S-1-5-21-73586283-1844823847-725345543-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:02,27,ea,d0,66,d5,aa,70,16,2a,a8,55,84,6f,6b,63,24,f1,22,0e,51,2a,c5,
86,2f,47,a1,ee,f2,47,29,e4,a0,4f,5a,ef,90,2b,77,1b,00,57,cf,59,f9,1c,e7,04,\
"??"=hex:69,3e,43,58,9f,64,ba,75,fe,6b,77,07,2a,78,dd,74
[HKEY_USERS\S-1-5-21-73586283-1844823847-725345543-1003\Software\SecuROM\License information*]
"datasecu"=hex:50,20,c5,07,51,31,f6,6b,0a,76,87,69,82,fb,81,34,88,ca,f6,37,e6,
12,8a,cd,a7,c5,de,56,02,c1,cd,4a,81,8b,52,4b,24,a1,bd,37,d6,66,df,6f,e7,d0,\
"rkeysecu"=hex:5e,f1,a6,2b,dc,78,45,ec,00,1a,7a,3b,87,6b,18,f2
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(828)
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
- - - - - - - > 'explorer.exe'(3184)
c:\windows\system32\WININET.dll
c:\progra~1\WINDOW~2\wmpband.dll
c:\program files\iTunes\iTunesMiniPlayer.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\en.lproj\iTunesMiniPlayerLocalized.dll
c:\program files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll
c:\program files\ESTsoft\ALSong\asBand.dll
c:\windows\system32\msi.dll
c:\windows\system32\ieframe.dll
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\TGTSoft\StyleXP\StyleXPService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\RUNDLL32.EXE
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2010-04-14 16:06:07 - machine was rebooted
ComboFix-quarantined-files.txt 2010-04-14 14:06
Pre-Run: 3 116 072 960 bytes free
Post-Run: 3 028 480 000 voľných bajtov
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional (bootscreen)" /fastdetect /KERNEL=kernel1.exe
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect
- - End Of File - - FA6DCC8AE8F03A67A27748C5322A67FB
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Prosim o kontrolu logu, vymazuju sa mi subory
Odinstalujte všechny emulátory virtuálních mechanik. Stáhněte SPTD http://www.duplexsecure.com/en/downloads
- Vyberte verzi podle svého operačního systému (64 & 32b). Uložte na plochu a spusťte.
- zvolte možnost Uninstall a restartujte PC.
Stáhněte a spusťte http://www.jpshortstuff.247fixes.com/Defogger.exe
- Klikněte na "Disable" a restartujte PC.
Stáhněte MBR na plochu http://www2.gmer.net/mbr/mbr.exe Start > Spustit (Win + R)- Vyskočí okénko, zkopírujte do něj:
Kód: Vybrat vše
"%userprofile%\plocha\mbr" -t- Klikněte na OK
- Vytvoří se log s názvem mbr.log, vložte ho sem.
Tohle otestujte na http://www.virustotal.com/cs/ c:\windows\system32\CNC250L.dll
c:\windows\system32\drivers\winkey.sys
(Soubor nehledejte, jenom vložíte tučně označenou cestu, v případě hlášky "Soubor již byl testován" dejte otestovat znovu. Výsledek analýzy sem v podobě odkazu vložte.)
Přispějete na provoz fóra?