Dobrý den prosím Vás o pomoc.
Logfile of random's system information tool 1.06 (written by random/random)
Run by Admin at 2010-04-16 20:12:49
Microsoft® Windows Vista™ Home Basic
System drive C: has 2 GB (4%) free of 53 GB
Total RAM: 766 MB (24% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:13:31, on 16.4.2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer\Acer Arcade\PCMService.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\Admin\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Admin\Downloads\RSIT.exe
C:\Program Files\trend micro\Admin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://cs.intl.acer.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://uk.rd.yahoo.com/customize/ycomp/ ... .yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - (no file)
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Acer\Acer Arcade\PCMService.exe"
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0
O4 - HKCU\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
O4 - HKCU\..\Run: [Google Update] "C:\Users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Empowering Technology Launcher.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O13 - Gopher Prefix:
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... oader5.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540001} - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {DF9C24D1-030E-49ED-5EB5-D6610086C313} (ChatRepublicPlayer ActiveX) - http://www.superstarracing.net/miniclip ... Player.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {FD47E0E7-D528-4D72-9386-E608448119C6} (ChatRepublicPlayer ActiveX) - http://www.superstarracing.net/miniclip ... Player.cab
O20 - AppInit_DLLs: C:\Windows\System32\eNetHook.dll
O23 - Service: Application Driver Auto Removal Service (01) (appdrvrem01) - Protection Technology - C:\Windows\System32\appdrvrem01.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - Unknown owner - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: eLock Service (eLockService) - Unknown owner - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe (file missing)
O23 - Service: eNet Service - Unknown owner - C:\Acer\Empowering Technology\eNet\eNet Service.exe (file missing)
O23 - Service: eRecovery Service (eRecoveryService) - Unknown owner - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe (file missing)
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ePower Service (WMIService) - Unknown owner - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe (file missing)
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 9434 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3033275478-1219882260-4262735771-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3033275478-1219882260-4262735771-1000UA.job
C:\Windows\tasks\User_Feed_Synchronization-{12186A30-3C57-4A0E-82D9-87D899EC8257}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}]
ShowBarObj Class - C:\Windows\system32\ActiveToolBand.dll [2007-01-02 299008]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2009-06-16 1144712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-14 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Windows\system32\eDStoolbar.dll [2007-01-02 151552]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2009-06-01 962808]
{2318C2B1-4965-11d4-9B18-009027A5CD4F}
{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2009-06-16 1144712]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2007-04-24 1006264]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2006-12-01 4186112]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-10-27 815104]
"PCMService"=C:\Program Files\Acer\Acer Arcade\PCMService.exe [2007-01-09 151552]
"LManager"=C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE [2007-01-09 483328]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-02-06 2021400]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-12-30 1389904]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-14 1232896]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"updateMgr"=C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe [2004-11-22 307200]
"ISUSPM Startup"=C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2005-08-11 249856]
"Google Update"=C:\Users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-13 135664]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Empowering Technology Launcher.lnk - C:\Acer\Empowering Technology\eAPLauncher.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\Windows\System32\eNetHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\Pro Cycling Manager 2008\PCM.exe"="C:\Program Files\Pro Cycling Manager 2008\PCM.exe:*:Enabled:Pro Cycling Manager - Season 2008"
"C:\Program Files\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe"="C:\Program Files\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe:*:Enabled:Pro Cycling Manager - Season 2008 - AutoRun"
"D:\Bike\Pro Cycling Manager 2008\PCM.exe"="D:\Bike\Pro Cycling Manager 2008\PCM.exe:*:Enabled:Pro Cycling Manager - Season 2008"
"D:\Bike\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe"="D:\Bike\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe:*:Enabled:Pro Cycling Manager - Season 2008 - AutoRun"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dc279f29-2ecf-11df-9f19-480000000000}]
shell\AutoRun\command - G:\autorun.exe
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-04-14 14:36:51 ----D---- C:\ProgramData\Sun
2010-04-14 14:36:48 ----D---- C:\Program Files\Common Files\Java
2010-04-14 14:34:58 ----A---- C:\Windows\system32\javaws.exe
2010-04-14 14:34:58 ----A---- C:\Windows\system32\javaw.exe
2010-04-14 14:34:57 ----A---- C:\Windows\system32\java.exe
2010-04-14 14:33:43 ----D---- C:\Program Files\Java
2010-04-14 14:14:17 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-04-14 14:14:15 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-04-14 14:13:58 ----A---- C:\Windows\system32\vbscript.dll
2010-04-14 14:12:56 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-04-14 14:12:48 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-04-14 14:12:48 ----A---- C:\Windows\system32\netiougc.exe
2010-04-14 14:10:31 ----A---- C:\Windows\system32\wintrust.dll
2010-04-14 14:08:57 ----A---- C:\Windows\system32\cabview.dll
2010-03-31 19:14:54 ----A---- C:\Windows\system32\mshtml.dll
2010-03-31 19:14:48 ----A---- C:\Windows\system32\ieframe.dll
2010-03-31 19:14:46 ----A---- C:\Windows\system32\iertutil.dll
2010-03-31 19:14:44 ----A---- C:\Windows\system32\wininet.dll
2010-03-31 19:14:44 ----A---- C:\Windows\system32\urlmon.dll
2010-03-31 19:14:43 ----A---- C:\Windows\system32\msfeeds.dll
2010-03-31 19:14:42 ----A---- C:\Windows\system32\occache.dll
2010-03-31 19:14:42 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-31 19:14:41 ----A---- C:\Windows\system32\mstime.dll
2010-03-31 19:14:37 ----A---- C:\Windows\system32\ieui.dll
2010-03-31 19:14:35 ----A---- C:\Windows\system32\iepeers.dll
2010-03-31 19:14:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-31 19:14:34 ----A---- C:\Windows\system32\ieUnatt.exe
2010-03-31 19:14:33 ----A---- C:\Windows\system32\iesysprep.dll
2010-03-31 19:14:32 ----A---- C:\Windows\system32\jsproxy.dll
2010-03-31 19:14:31 ----A---- C:\Windows\system32\ie4uinit.exe
2010-03-31 19:14:30 ----A---- C:\Windows\system32\msfeedssync.exe
2010-03-31 19:14:29 ----A---- C:\Windows\system32\iesetup.dll
2010-03-31 19:14:27 ----A---- C:\Windows\system32\iernonce.dll
2010-03-25 16:25:22 ----D---- C:\Program Files\Cycling Diary 2006
2010-03-25 16:18:07 ----D---- C:\Program Files\Cyklotrasy
======List of files/folders modified in the last 1 months======
2010-04-16 20:13:34 ----D---- C:\Windows\Temp
2010-04-16 20:12:59 ----D---- C:\Program Files\trend micro
2010-04-16 19:58:25 ----SHD---- C:\System Volume Information
2010-04-16 19:15:56 ----D---- C:\Windows\winsxs
2010-04-16 19:15:42 ----D---- C:\Windows\system32\catroot
2010-04-15 20:47:37 ----D---- C:\Windows\system32\drivers
2010-04-15 20:47:36 ----D---- C:\Windows\System32
2010-04-15 20:47:36 ----D---- C:\Program Files\Windows Mail
2010-04-15 20:47:32 ----D---- C:\Windows\system32\migration
2010-04-15 19:16:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-04-15 19:16:52 ----D---- C:\Windows\inf
2010-04-15 17:40:17 ----D---- C:\Users\Admin\AppData\Roaming\ICQ
2010-04-15 15:52:47 ----SHD---- C:\Windows\Installer
2010-04-15 15:52:47 ----HD---- C:\Config.Msi
2010-04-15 15:49:09 ----D---- C:\Windows\Prefetch
2010-04-14 14:36:51 ----HD---- C:\ProgramData
2010-04-14 14:36:48 ----D---- C:\Program Files\Common Files
2010-04-14 14:33:55 ----A---- C:\Windows\system32\deploytk.dll
2010-04-14 14:33:43 ----RD---- C:\Program Files
2010-04-14 14:11:15 ----D---- C:\Windows\system32\catroot2
2010-04-09 13:21:42 ----D---- C:\Windows\Minidump
2010-04-09 13:21:19 ----D---- C:\Windows
2010-04-07 21:00:02 ----D---- C:\Program Files\YouTube Downloader
2010-04-06 19:52:54 ----A---- C:\Windows\system32\mrt.exe
2010-04-03 10:28:15 ----D---- C:\Program Files\Mozilla Firefox
2010-04-01 07:57:10 ----D---- C:\Program Files\Internet Explorer
2010-03-27 23:56:05 ----D---- C:\Windows\system32\Macromed
2010-03-19 18:47:42 ----D---- C:\Games
2010-03-19 12:25:27 ----D---- C:\Program Files\EA SPORTS
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 appdrv01;Application Driver (01); C:\Windows\System32\Drivers\appdrv01.sys [2010-02-28 2915944]
R1 ASPI32;ASPI32; C:\Windows\system32\drivers\ASPI32.sys [1999-09-10 25244]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-02-06 106208]
R1 vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2007-06-04 270488]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-02-06 113448]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2009-02-06 92800]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-11-13 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-11-13 8192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2008-02-20 765440]
R3 CmBatt;Ovladač baterie Microsoft ACPI Control Method Battery; C:\Windows\system32\DRIVERS\CmBatt.sys [2007-11-14 14208]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2006-11-02 21264]
R3 EMSCR;EMSCR; C:\Windows\system32\DRIVERS\EMS7SK.sys [2006-11-13 62208]
R3 ESDCR;ESDCR; C:\Windows\system32\DRIVERS\ESD7SK.sys [2006-11-13 42240]
R3 ESMCR;ESMCR; C:\Windows\system32\DRIVERS\ESM7SK.sys [2006-11-13 76928]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-11-13 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-11-13 206848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2006-12-01 1655464]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2007-01-25 6144]
R3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf.sys [2009-06-17 12648]
R3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-01-08 2313216]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2006-11-02 47104]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2007-09-21 82432]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2006-10-27 179896]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2006-11-02 132352]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-11-13 659968]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2007-11-14 11264]
S2 int15;int15; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys []
S3 abo4hxbd;abo4hxbd; C:\Windows\system32\drivers\abo4hxbd.sys []
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 catchme;catchme; \??\C:\Users\Admin\AppData\Local\Temp\catchme.sys []
S3 Dot4;Ovladač MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2006-11-02 131584]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2006-11-02 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2006-11-02 36864]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 UIUSys;Conexant Setup API; C:\Windows\system32\DRIVERS\UIUSYS.SYS []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2006-11-02 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-01-08 557056]
R2 CLCapSvc;CyberLink Background Capture Service (CBCS); C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe [2007-01-09 254014]
R2 CLSched;CyberLink Task Scheduler (CTS); C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe [2007-01-09 114748]
R2 CyberLink Media Library Service;CyberLink Media Library Service; C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe [2007-01-09 1073152]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-02-06 727720]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2006-11-02 22016]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-12-14 61440]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2006-11-02 22016]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2006-11-02 22016]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2006-11-23 143360]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-11-13 386560]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S2 appdrvrem01;Application Driver Auto Removal Service (01); C:\Windows\System32\appdrvrem01.exe [2010-02-28 304528]
S2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe /h ccCommon []
S2 eDataSecurity Service;eDSService.exe; C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe []
S2 eLockService;eLock Service; C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe []
S2 eNet Service;eNet Service; C:\Acer\Empowering Technology\eNet\eNet Service.exe []
S2 eRecoveryService;eRecovery Service; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe []
S2 eSettingsService;eSettings Service; C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe []
S2 MobilityService;MobilityService; C:\Acer\Mobility Center\MobilityService.exe -p []
S2 WMIService;ePower Service; C:\Acer\Empowering Technology\ePower\ePowerSvc.exe []
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-02-06 20680]
S3 getPlusHelper;@C:\Program Files\NOS\bin\getPlus_Helper.dll,-101; C:\Windows\System32\svchost.exe [2006-11-02 22016]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Sekání internetu, pomalejší chod ntb
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Sekání internetu, pomalejší chod ntb
Zdravím 
Doporučuji odinstalovat (pokud nepoužíváte) toolbary (lišty) v Přidat nebo odebrat programy.
Doporučuji odinstalovat:
C:\Program Files\BitTorrent\bittorrent.exe
P2P sítě a jejich klienti jsou potenciálním bezpečnostním rizikem, prakticky neustále jsou zdrojem virů, zbytečně se vystavujete riziku.
Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
K čemu používáte jednotku G: 
Doporučuji odinstalovat (pokud nepoužíváte) toolbary (lišty) v Přidat nebo odebrat programy. Doporučuji odinstalovat:C:\Program Files\BitTorrent\bittorrent.exe
P2P sítě a jejich klienti jsou potenciálním bezpečnostním rizikem, prakticky neustále jsou zdrojem virů, zbytečně se vystavujete riziku.
Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
- Spusťte program, poté klikněte na Prohledat
- Po dokončení, sem vložte logy OTL.Txt a Extras.txt
K čemu používáte jednotku G: 
Re: Sekání internetu, pomalejší chod ntb
Dobrý den, děkuji za pomoc. Co se týče toho bittorrentu,tak toho jsem nikde na disku nenašel. Co vím,už dávno jsem ho smazal. Géčko nepoužívám na nic. Někde jsem se náhodou dostal k recentzi na daemon tools,ale nějak nechápu princip toho programu,no a tak jsem zkoušel,co to umí ,až sem ,vytvořil g" ( přes pc techniku jsem naprostý amatér, ani nevím co to je firewar 
) . Nýní jdu tedy na ten scan.
) . Nýní jdu tedy na ten scan.Re: Sekání internetu, pomalejší chod ntb
Tak už jsem nad tím dloubal, až sem konečně přišel na to,jak tu jednotku odstranit ( stejně mi byla k ničemu ) .
Re: Sekání internetu, pomalejší chod ntb
OTL logfile created on: 17.4.2010 8:27:02 - Run 1
OTL by OldTimer - Version 3.2.1.1 Folder = C:\Users\Admin\Downloads
Windows Vista Home Basic Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
766,00 Mb Total Physical Memory | 144,00 Mb Available Physical Memory | 19,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 52,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 52,14 Gb Total Space | 1,89 Gb Free Space | 3,62% Space Free | Partition Type: NTFS
Drive D: | 51,84 Gb Total Space | 48,81 Gb Free Space | 94,15% Space Free | Partition Type: NTFS
Drive E: | 4,38 Gb Total Space | 4,08 Gb Free Space | 93,12% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ADMIN-PC
Current User Name: Admin
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.04.17 08:15:33 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Downloads\OTL.exe
PRC - [2010.04.03 10:27:52 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.10.30 13:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2009.08.04 21:03:32 | 000,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Admin\AppData\Local\temp\RtkBtMnt.exe
PRC - [2009.02.06 14:23:36 | 000,727,720 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009.02.06 14:23:12 | 002,021,400 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2007.04.24 12:49:06 | 001,006,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007.01.09 14:02:08 | 000,483,328 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\QtZgAcer.EXE
PRC - [2007.01.09 01:56:18 | 000,254,014 | ---- | M] () -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
PRC - [2007.01.09 01:56:18 | 000,114,748 | ---- | M] () -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
PRC - [2007.01.09 01:55:58 | 000,151,552 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Acer\Acer Arcade\PCMService.exe
PRC - [2007.01.09 01:55:38 | 001,073,152 | ---- | M] (Cyberlink) -- C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
PRC - [2006.12.01 07:37:00 | 004,186,112 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
========== Modules (SafeList) ==========
MOD - [2010.04.17 08:15:33 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Downloads\OTL.exe
MOD - [2006.11.02 11:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- -- (WMIService)
SRV - File not found [Auto | Stopped] -- -- (MobilityService)
SRV - File not found [Auto | Stopped] -- -- (eSettingsService)
SRV - File not found [Auto | Stopped] -- -- (eRecoveryService)
SRV - File not found [Auto | Stopped] -- -- (eNet Service)
SRV - File not found [Auto | Stopped] -- -- (eLockService)
SRV - File not found [Auto | Stopped] -- -- (eDataSecurity Service)
SRV - File not found [Auto | Stopped] -- -- (CLTNetCnService)
SRV - [2010.02.28 21:42:46 | 000,304,528 | ---- | M] (Protection Technology) [Auto | Stopped] -- C:\Windows\System32\appdrvrem01.exe -- (appdrvrem01) Application Driver Auto Removal Service (01)
SRV - [2009.12.01 20:41:40 | 000,051,384 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2009.02.06 14:27:06 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009.02.06 14:23:36 | 000,727,720 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2008.06.20 03:17:50 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2007.04.24 12:49:06 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007.01.09 01:56:18 | 000,254,014 | ---- | M] () [Auto | Running] -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe -- (CLCapSvc) CyberLink Background Capture Service (CBCS)
SRV - [2007.01.09 01:56:18 | 000,114,748 | ---- | M] () [Auto | Running] -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe -- (CLSched) CyberLink Task Scheduler (CTS)
SRV - [2007.01.09 01:55:38 | 001,073,152 | ---- | M] (Cyberlink) [Auto | Running] -- C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe -- (CyberLink Media Library Service)
========== Driver Services (SafeList) ==========
DRV - [2010.03.13 20:34:45 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.02.28 21:42:48 | 002,915,944 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\Windows\System32\drivers\appdrv01.sys -- (appdrv01) Application Driver (01)
DRV - [2009.06.17 14:20:34 | 000,012,648 | ---- | M] (Secunia) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\psi_mf.sys -- (PSI)
DRV - [2009.02.06 14:24:26 | 000,092,800 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2009.02.06 14:23:18 | 000,106,208 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009.02.06 14:19:52 | 000,113,448 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\System32\drivers\eamon.sys -- (eamon)
DRV - [2008.02.20 07:47:44 | 000,765,440 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2007.06.04 06:28:58 | 000,270,488 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\Windows\System32\drivers\vsdatant.sys -- (vsdatant)
DRV - [2007.02.08 19:44:43 | 000,083,320 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2007.01.25 19:05:52 | 000,006,144 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV - [2007.01.08 22:16:50 | 002,313,216 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007.01.02 19:59:24 | 000,016,680 | ---- | M] (HiTRUST) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\PSDNServ.sys -- (PSDNServ)
DRV - [2007.01.02 19:59:20 | 000,060,712 | ---- | M] (HiTRUST) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\psdvdisk.sys -- (psdvdisk)
DRV - [2007.01.02 19:59:18 | 000,020,264 | ---- | M] (HiTRUST) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\psdfilter.sys -- (PSDFilter)
DRV - [2007.01.02 17:43:34 | 000,076,584 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\int15.sys -- (int15)
DRV - [2006.12.01 07:38:00 | 001,655,464 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.11.13 04:11:00 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2006.11.13 04:10:00 | 000,986,624 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_DPV.sys -- (HSF_DPV)
DRV - [2006.11.13 04:10:00 | 000,659,968 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_CNXT.sys -- (winachsf)
DRV - [2006.11.13 04:10:00 | 000,206,848 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWAZL.sys -- (HSXHWAZL)
DRV - [2006.11.13 04:02:00 | 000,076,928 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ESM7SK.sys -- (ESMCR)
DRV - [2006.11.13 04:02:00 | 000,062,208 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\EMS7SK.sys -- (EMSCR)
DRV - [2006.11.13 04:02:00 | 000,042,240 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ESD7SK.sys -- (ESDCR)
DRV - [2006.11.02 15:29:38 | 000,021,264 | ---- | M] (Dritek System Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DKbFltr.sys -- (DKbFltr)
DRV - [2006.11.02 11:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006.11.02 11:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006.11.02 11:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006.11.02 11:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006.11.02 11:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006.11.02 11:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006.11.02 11:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006.11.02 11:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006.11.02 11:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006.11.02 11:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006.11.02 11:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006.11.02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006.11.02 11:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006.11.02 11:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006.11.02 11:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006.11.02 11:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006.11.02 11:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006.11.02 11:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006.11.02 11:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006.11.02 11:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006.11.02 11:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006.11.02 11:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006.11.02 11:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006.11.02 11:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006.11.02 11:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006.11.02 11:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006.11.02 11:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006.11.02 11:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006.11.02 11:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006.11.02 11:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006.11.02 11:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006.11.02 11:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006.11.02 11:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006.11.02 10:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006.11.02 10:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006.11.02 10:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006.11.02 10:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006.11.02 10:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006.11.02 10:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006.11.02 09:41:49 | 000,200,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (HSFHWAZL)
DRV - [2006.11.02 09:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006.11.02 09:30:56 | 000,047,104 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2006.11.02 09:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2006.11.02 09:30:53 | 000,464,384 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XV)
DRV - [2006.10.27 08:14:22 | 000,179,896 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2006.07.10 18:19:58 | 000,027,032 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2006.07.05 14:46:06 | 000,063,352 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfdrv01a.sys -- (sfdrv01a) StarForce Protection Environment Driver (version 1.x.a)
DRV - [2006.07.05 14:39:29 | 000,059,256 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2006.06.14 16:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2005.12.06 17:11:18 | 000,035,328 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfsync03.sys -- (sfsync03) StarForce Protection Synchronization Driver (version 3.x)
DRV - [1999.09.10 13:06:00 | 000,025,244 | ---- | M] (Adaptec) [Kernel | System | Running] -- C:\Windows\System32\drivers\ASPI32.SYS -- (ASPI32)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://cs.intl.acer.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "www.bike-forum.cz"
FF - prefs.js..extensions.enabledItems: {29c4afe1-db19-4298-8785-fcc94d1d6c1d}:0.6.2009110501
FF - prefs.js..extensions.enabledItems: smarterwiki@wikiatic.com:4.0.3
FF - prefs.js..extensions.enabledItems: piclens@cooliris.com:1.11.6
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.04.03 10:28:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.04.14 14:34:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009.07.24 09:35:54 | 000,000,000 | ---D | M]
[2010.02.13 17:28:26 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Extensions
[2008.12.07 14:14:07 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\extensions
[2008.12.07 14:14:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2010.04.16 19:29:40 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions
[2010.02.13 20:09:30 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.03.31 18:58:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions\{29c4afe1-db19-4298-8785-fcc94d1d6c1d}
[2010.03.31 20:01:59 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions\piclens@cooliris.com
[2010.03.31 18:58:05 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions\smarterwiki@wikiatic.com
[2010.03.31 20:01:59 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions\staged-xpis
[2010.04.14 14:35:08 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.01.16 02:50:40 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.01.16 02:50:40 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.01.16 02:50:40 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.01.16 02:50:40 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.01.16 02:50:40 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2009.07.30 20:51:59 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\System32\ActiveToolBand.dll (HiTRUST)
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - No CLSID value found.
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKCU\..\Toolbar\WebBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKCU\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PCMService] C:\Program Files\Acer\Acer Arcade\PCMService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKCU..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKCU..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe (Adobe Systems Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O13 - gopher Prefix: missing
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/200 ... oader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resourc ... oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540001} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Reg Error: Key error.)
O16 - DPF: {DF9C24D1-030E-49ED-5EB5-D6610086C313} http://www.superstarracing.net/miniclip ... Player.cab (ChatRepublicPlayer ActiveX)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class)
O16 - DPF: {FD47E0E7-D528-4D72-9386-E608448119C6} http://www.superstarracing.net/miniclip ... Player.cab (ChatRepublicPlayer ActiveX)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\Windows\System32\eNetHook.dll) - C:\Windows\System32\eNetHook.dll (acer)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
O24 - Desktop BackupWallPaper: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{dc279f29-2ecf-11df-9f19-480000000000}\Shell\AutoRun\command - "" = G:\autorun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.04.14 14:36:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.04.14 14:36:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010.04.14 14:34:58 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.04.14 14:34:58 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.04.14 14:34:57 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.04.14 14:33:43 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010.04.14 14:14:17 | 003,502,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.04.14 14:14:15 | 003,468,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.04.14 14:13:58 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.04.14 14:13:38 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2010.04.14 14:13:37 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2010.04.14 14:12:48 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2010.04.14 14:12:48 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2010.03.31 20:03:26 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Cooliris
[2010.03.31 19:14:43 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.03.31 19:14:42 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.03.31 19:14:41 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.03.31 19:14:38 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010.03.31 19:14:37 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.03.31 19:14:35 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.03.31 19:14:34 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010.03.31 19:14:34 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010.03.31 19:14:33 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2010.03.31 19:14:32 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.03.31 19:14:31 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010.03.31 19:14:30 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2010.03.31 19:14:29 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010.03.31 19:14:27 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010.03.31 19:14:26 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010.03.25 16:25:22 | 000,000,000 | ---D | C] -- C:\Program Files\Cycling Diary 2006
[2010.03.25 16:18:07 | 000,000,000 | ---D | C] -- C:\Program Files\Cyklotrasy
[2010.03.19 12:32:04 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\NHL08
[2010.03.19 11:35:49 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\treninkovy_plan
[2007.01.25 18:52:18 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll
[1 C:\Users\Admin\Desktop\*.tmp files -> C:\Users\Admin\Desktop\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.04.17 08:31:39 | 004,194,304 | -HS- | M] () -- C:\Users\Admin\ntuser.dat
[2010.04.17 08:09:01 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3033275478-1219882260-4262735771-1000UA.job
[2010.04.17 07:56:37 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.04.17 07:56:37 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.04.17 07:56:19 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.04.17 07:56:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.04.17 07:55:49 | 803,389,440 | -HS- | M] () -- C:\hiberfil.sys
[2010.04.16 21:42:21 | 003,904,664 | -H-- | M] () -- C:\Users\Admin\AppData\Local\IconCache.db
[2010.04.16 19:19:06 | 000,000,422 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{12186A30-3C57-4A0E-82D9-87D899EC8257}.job
[2010.04.15 19:50:39 | 000,033,280 | ---- | M] () -- C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.15 19:16:53 | 000,045,226 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2010.04.15 19:16:53 | 000,044,364 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.04.15 19:16:53 | 000,011,232 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2010.04.15 19:16:53 | 000,004,696 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.04.15 19:16:53 | 000,004,504 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.04.14 14:33:58 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.04.14 14:33:57 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.04.14 14:33:56 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.04.14 14:33:55 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2010.04.14 13:39:12 | 000,007,376 | ---- | M] () -- C:\Users\Admin\AppData\Local\d3d9caps.dat
[2010.04.11 21:54:35 | 000,037,888 | ---- | M] () -- C:\Users\Admin\Documents\Kryštof Kolumbus.doc
[2010.04.11 13:09:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3033275478-1219882260-4262735771-1000Core.job
[2010.04.09 13:21:19 | 111,208,604 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.04.07 21:00:02 | 000,000,923 | ---- | M] () -- C:\Users\Admin\Desktop\YouTube Downloader.lnk
[2010.03.25 16:18:13 | 000,000,832 | ---- | M] () -- C:\Users\Admin\Desktop\Cyklotrasy 2.18.lnk
[2010.03.21 19:01:38 | 003,062,661 | ---- | M] () -- C:\Users\Admin\Documents\dgmůdxmbv§ůxb§lxf§b,xf§ů.wma
[2010.03.20 23:12:05 | 001,060,121 | ---- | M] () -- C:\Users\Admin\Documents\Bez názvu (2).wma
[2010.03.20 07:50:26 | 000,296,821 | ---- | M] () -- C:\Users\Admin\Documents\Bez názvu.wma
[2010.03.19 18:48:59 | 000,001,634 | ---- | M] () -- C:\Users\Admin\Desktop\Run Ski Challenge 2010 (SF).lnk
[1 C:\Users\Admin\Desktop\*.tmp files -> C:\Users\Admin\Desktop\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.04.11 21:54:34 | 000,037,888 | ---- | C] () -- C:\Users\Admin\Documents\Kryštof Kolumbus.doc
[2010.04.07 21:00:02 | 000,000,923 | ---- | C] () -- C:\Users\Admin\Desktop\YouTube Downloader.lnk
[2010.03.25 16:18:13 | 000,000,832 | ---- | C] () -- C:\Users\Admin\Desktop\Cyklotrasy 2.18.lnk
[2010.03.21 19:01:38 | 003,062,661 | ---- | C] () -- C:\Users\Admin\Documents\dgmůdxmbv§ůxb§lxf§b,xf§ů.wma
[2010.03.20 23:12:04 | 001,060,121 | ---- | C] () -- C:\Users\Admin\Documents\Bez názvu (2).wma
[2010.03.20 07:50:25 | 000,296,821 | ---- | C] () -- C:\Users\Admin\Documents\Bez názvu.wma
[2010.03.19 18:48:59 | 000,001,634 | ---- | C] () -- C:\Users\Admin\Desktop\Run Ski Challenge 2010 (SF).lnk
[2010.03.19 11:36:35 | 000,000,889 | ---- | C] () -- C:\Users\Admin\Documents\Pro Cycling Manager 2008.lnk
[2010.03.19 11:36:11 | 000,000,808 | ---- | C] () -- C:\Users\Admin\Documents\FlatOut2.lnk
[2010.03.19 11:35:03 | 000,002,046 | ---- | C] () -- C:\Users\Admin\Documents\Google Chrome.lnk
[2010.03.13 20:34:43 | 000,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2010.02.16 21:18:15 | 000,109,853 | ---- | C] () -- C:\Users\Admin\viktor-zapletal-trener-mtbs-5.jpg
[2010.02.06 10:36:30 | 000,001,024 | ---- | C] () -- C:\Users\Admin\Centrum řešení HP.lnk
[2009.12.31 13:03:01 | 000,000,822 | ---- | C] () -- C:\Users\Admin\Malwarebytes' Anti-Malware.lnk
[2009.07.17 21:18:38 | 000,001,613 | ---- | C] () -- C:\Users\Admin\ICQ6.5.lnk
[2009.04.12 20:58:30 | 000,005,349 | ---- | C] () -- C:\Users\Admin\.recently-used.xbel
[2009.01.05 15:44:10 | 000,000,453 | ---- | C] () -- C:\Windows\bdoscandellang.ini
[2008.12.06 12:11:56 | 000,004,096 | -H-- | C] () -- C:\Users\Admin\AppData\Local\keyfile3.drm
[2008.11.14 19:11:35 | 000,037,811 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2008.08.27 09:12:14 | 000,000,012 | ---- | C] () -- C:\Users\Admin\intlname.ols
[2008.04.28 18:51:51 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008.04.27 21:33:41 | 000,000,093 | ---- | C] () -- C:\Users\Admin\AppData\Local\fusioncache.dat
[2008.02.29 18:49:50 | 000,023,552 | ---- | C] () -- C:\Windows\System32\jesterss.dll
[2008.02.15 16:22:10 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
[2007.11.23 22:15:13 | 000,001,462 | ---- | C] () -- C:\Users\Admin\server.cfg
[2007.11.23 22:12:43 | 000,386,312 | ---- | C] () -- C:\Windows\System32\server.dll
[2007.11.11 15:27:17 | 000,007,376 | ---- | C] () -- C:\Users\Admin\AppData\Local\d3d9caps.dat
[2007.09.21 19:05:30 | 000,033,280 | ---- | C] () -- C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007.09.21 16:13:21 | 000,002,401 | ---- | C] () -- C:\Users\Admin\Nero Home.lnk
[2007.09.21 15:31:44 | 000,000,384 | ---- | C] () -- C:\Windows\ODBC.INI
[2007.04.25 03:02:50 | 000,000,094 | ---- | C] () -- C:\Windows\CLEANUP.INI
[2007.04.24 12:29:29 | 000,000,567 | ---- | C] () -- C:\Users\Admin\Acer OrbiCam.lnk
[2007.04.24 12:21:33 | 000,000,037 | ---- | C] () -- C:\Windows\Acer.ini
[2007.04.24 12:20:22 | 000,000,020 | -HS- | C] () -- C:\Users\Admin\ntuser.ini
[2007.04.24 12:20:19 | 000,524,288 | -HS- | C] () -- C:\Users\Admin\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000002.regtrans-ms
[2007.04.24 12:20:19 | 000,524,288 | -HS- | C] () -- C:\Users\Admin\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000001.regtrans-ms
[2007.04.24 12:20:19 | 000,262,144 | -H-- | C] () -- C:\Users\Admin\ntuser.dat.LOG2
[2007.04.24 12:20:19 | 000,262,144 | -H-- | C] () -- C:\Users\Admin\ntuser.dat.LOG1
[2007.04.24 12:20:19 | 000,065,536 | -HS- | C] () -- C:\Users\Admin\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TM.blf
[2007.04.24 12:20:18 | 004,194,304 | -HS- | C] () -- C:\Users\Admin\ntuser.dat
[2007.04.24 12:20:18 | 001,572,864 | -HS- | C] () -- C:\Users\Admin\ntuser.dat_previous
[2007.01.26 03:51:16 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2007.01.26 02:06:22 | 000,000,111 | ---- | C] () -- C:\Windows\Alaunch.ini
[2007.01.26 02:06:06 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2007.01.25 19:10:36 | 000,001,902 | ---- | C] () -- C:\Users\Admin\Adobe Reader 7.0.lnk
[2007.01.25 18:58:31 | 000,076,584 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2007.01.25 18:58:31 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2007.01.25 18:57:40 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2007.01.25 18:52:18 | 000,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2007.01.25 18:45:25 | 000,356,352 | ---- | C] () -- C:\Windows\EMCRI.dll
[2007.01.02 19:54:14 | 000,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll
[2007.01.02 19:53:54 | 000,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll
[2007.01.02 19:53:20 | 000,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll
[2007.01.02 19:52:40 | 000,037,376 | ---- | C] () -- C:\Windows\System32\MSNChatHook.dll
[2007.01.02 19:52:28 | 000,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll
[2007.01.02 19:52:26 | 000,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll
[2007.01.02 19:52:18 | 000,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll
[2006.12.25 16:44:48 | 000,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll
[2006.11.02 12:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2003.04.09 15:38:04 | 000,005,664 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI
[2002.09.10 17:10:05 | 000,495,616 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2001.12.26 16:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001.09.03 23:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001.07.30 16:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001.07.23 22:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:9FA5EC55
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:58B11540
< End of report >
OTL by OldTimer - Version 3.2.1.1 Folder = C:\Users\Admin\Downloads
Windows Vista Home Basic Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
766,00 Mb Total Physical Memory | 144,00 Mb Available Physical Memory | 19,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 52,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 52,14 Gb Total Space | 1,89 Gb Free Space | 3,62% Space Free | Partition Type: NTFS
Drive D: | 51,84 Gb Total Space | 48,81 Gb Free Space | 94,15% Space Free | Partition Type: NTFS
Drive E: | 4,38 Gb Total Space | 4,08 Gb Free Space | 93,12% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ADMIN-PC
Current User Name: Admin
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.04.17 08:15:33 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Downloads\OTL.exe
PRC - [2010.04.03 10:27:52 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.10.30 13:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2009.08.04 21:03:32 | 000,208,896 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Admin\AppData\Local\temp\RtkBtMnt.exe
PRC - [2009.02.06 14:23:36 | 000,727,720 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009.02.06 14:23:12 | 002,021,400 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2007.04.24 12:49:06 | 001,006,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007.01.09 14:02:08 | 000,483,328 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\QtZgAcer.EXE
PRC - [2007.01.09 01:56:18 | 000,254,014 | ---- | M] () -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
PRC - [2007.01.09 01:56:18 | 000,114,748 | ---- | M] () -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
PRC - [2007.01.09 01:55:58 | 000,151,552 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Acer\Acer Arcade\PCMService.exe
PRC - [2007.01.09 01:55:38 | 001,073,152 | ---- | M] (Cyberlink) -- C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
PRC - [2006.12.01 07:37:00 | 004,186,112 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
========== Modules (SafeList) ==========
MOD - [2010.04.17 08:15:33 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Downloads\OTL.exe
MOD - [2006.11.02 11:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- -- (WMIService)
SRV - File not found [Auto | Stopped] -- -- (MobilityService)
SRV - File not found [Auto | Stopped] -- -- (eSettingsService)
SRV - File not found [Auto | Stopped] -- -- (eRecoveryService)
SRV - File not found [Auto | Stopped] -- -- (eNet Service)
SRV - File not found [Auto | Stopped] -- -- (eLockService)
SRV - File not found [Auto | Stopped] -- -- (eDataSecurity Service)
SRV - File not found [Auto | Stopped] -- -- (CLTNetCnService)
SRV - [2010.02.28 21:42:46 | 000,304,528 | ---- | M] (Protection Technology) [Auto | Stopped] -- C:\Windows\System32\appdrvrem01.exe -- (appdrvrem01) Application Driver Auto Removal Service (01)
SRV - [2009.12.01 20:41:40 | 000,051,384 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2009.02.06 14:27:06 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009.02.06 14:23:36 | 000,727,720 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2008.06.20 03:17:50 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2007.04.24 12:49:06 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007.01.09 01:56:18 | 000,254,014 | ---- | M] () [Auto | Running] -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe -- (CLCapSvc) CyberLink Background Capture Service (CBCS)
SRV - [2007.01.09 01:56:18 | 000,114,748 | ---- | M] () [Auto | Running] -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe -- (CLSched) CyberLink Task Scheduler (CTS)
SRV - [2007.01.09 01:55:38 | 001,073,152 | ---- | M] (Cyberlink) [Auto | Running] -- C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe -- (CyberLink Media Library Service)
========== Driver Services (SafeList) ==========
DRV - [2010.03.13 20:34:45 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.02.28 21:42:48 | 002,915,944 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\Windows\System32\drivers\appdrv01.sys -- (appdrv01) Application Driver (01)
DRV - [2009.06.17 14:20:34 | 000,012,648 | ---- | M] (Secunia) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\psi_mf.sys -- (PSI)
DRV - [2009.02.06 14:24:26 | 000,092,800 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2009.02.06 14:23:18 | 000,106,208 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009.02.06 14:19:52 | 000,113,448 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\System32\drivers\eamon.sys -- (eamon)
DRV - [2008.02.20 07:47:44 | 000,765,440 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2007.06.04 06:28:58 | 000,270,488 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\Windows\System32\drivers\vsdatant.sys -- (vsdatant)
DRV - [2007.02.08 19:44:43 | 000,083,320 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2007.01.25 19:05:52 | 000,006,144 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV - [2007.01.08 22:16:50 | 002,313,216 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007.01.02 19:59:24 | 000,016,680 | ---- | M] (HiTRUST) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\PSDNServ.sys -- (PSDNServ)
DRV - [2007.01.02 19:59:20 | 000,060,712 | ---- | M] (HiTRUST) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\psdvdisk.sys -- (psdvdisk)
DRV - [2007.01.02 19:59:18 | 000,020,264 | ---- | M] (HiTRUST) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\psdfilter.sys -- (PSDFilter)
DRV - [2007.01.02 17:43:34 | 000,076,584 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\int15.sys -- (int15)
DRV - [2006.12.01 07:38:00 | 001,655,464 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.11.13 04:11:00 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2006.11.13 04:10:00 | 000,986,624 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_DPV.sys -- (HSF_DPV)
DRV - [2006.11.13 04:10:00 | 000,659,968 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_CNXT.sys -- (winachsf)
DRV - [2006.11.13 04:10:00 | 000,206,848 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWAZL.sys -- (HSXHWAZL)
DRV - [2006.11.13 04:02:00 | 000,076,928 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ESM7SK.sys -- (ESMCR)
DRV - [2006.11.13 04:02:00 | 000,062,208 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\EMS7SK.sys -- (EMSCR)
DRV - [2006.11.13 04:02:00 | 000,042,240 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ESD7SK.sys -- (ESDCR)
DRV - [2006.11.02 15:29:38 | 000,021,264 | ---- | M] (Dritek System Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\DKbFltr.sys -- (DKbFltr)
DRV - [2006.11.02 11:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006.11.02 11:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006.11.02 11:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006.11.02 11:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006.11.02 11:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006.11.02 11:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006.11.02 11:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006.11.02 11:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006.11.02 11:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006.11.02 11:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006.11.02 11:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006.11.02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006.11.02 11:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006.11.02 11:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006.11.02 11:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006.11.02 11:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006.11.02 11:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006.11.02 11:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006.11.02 11:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006.11.02 11:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006.11.02 11:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006.11.02 11:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006.11.02 11:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006.11.02 11:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006.11.02 11:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006.11.02 11:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006.11.02 11:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006.11.02 11:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006.11.02 11:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006.11.02 11:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006.11.02 11:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006.11.02 11:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006.11.02 11:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006.11.02 10:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006.11.02 10:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006.11.02 10:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006.11.02 10:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006.11.02 10:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006.11.02 10:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006.11.02 09:41:49 | 000,200,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (HSFHWAZL)
DRV - [2006.11.02 09:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006.11.02 09:30:56 | 000,047,104 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2006.11.02 09:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2006.11.02 09:30:53 | 000,464,384 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XV)
DRV - [2006.10.27 08:14:22 | 000,179,896 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2006.07.10 18:19:58 | 000,027,032 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2006.07.05 14:46:06 | 000,063,352 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfdrv01a.sys -- (sfdrv01a) StarForce Protection Environment Driver (version 1.x.a)
DRV - [2006.07.05 14:39:29 | 000,059,256 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2006.06.14 16:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2005.12.06 17:11:18 | 000,035,328 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfsync03.sys -- (sfsync03) StarForce Protection Synchronization Driver (version 3.x)
DRV - [1999.09.10 13:06:00 | 000,025,244 | ---- | M] (Adaptec) [Kernel | System | Running] -- C:\Windows\System32\drivers\ASPI32.SYS -- (ASPI32)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://cs.intl.acer.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "www.bike-forum.cz"
FF - prefs.js..extensions.enabledItems: {29c4afe1-db19-4298-8785-fcc94d1d6c1d}:0.6.2009110501
FF - prefs.js..extensions.enabledItems: smarterwiki@wikiatic.com:4.0.3
FF - prefs.js..extensions.enabledItems: piclens@cooliris.com:1.11.6
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.04.03 10:28:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.04.14 14:34:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009.07.24 09:35:54 | 000,000,000 | ---D | M]
[2010.02.13 17:28:26 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Extensions
[2008.12.07 14:14:07 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\extensions
[2008.12.07 14:14:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2010.04.16 19:29:40 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions
[2010.02.13 20:09:30 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.03.31 18:58:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions\{29c4afe1-db19-4298-8785-fcc94d1d6c1d}
[2010.03.31 20:01:59 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions\piclens@cooliris.com
[2010.03.31 18:58:05 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions\smarterwiki@wikiatic.com
[2010.03.31 20:01:59 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\fqti724v.default\extensions\staged-xpis
[2010.04.14 14:35:08 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.01.16 02:50:40 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.01.16 02:50:40 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.01.16 02:50:40 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.01.16 02:50:40 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.01.16 02:50:40 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2009.07.30 20:51:59 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\System32\ActiveToolBand.dll (HiTRUST)
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - No CLSID value found.
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKCU\..\Toolbar\WebBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKCU\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PCMService] C:\Program Files\Acer\Acer Arcade\PCMService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKCU..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKCU..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe (Adobe Systems Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Kniha klipů HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: HP Chytrý výběr - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O13 - gopher Prefix: missing
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/200 ... oader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resourc ... oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540001} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Reg Error: Key error.)
O16 - DPF: {DF9C24D1-030E-49ED-5EB5-D6610086C313} http://www.superstarracing.net/miniclip ... Player.cab (ChatRepublicPlayer ActiveX)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class)
O16 - DPF: {FD47E0E7-D528-4D72-9386-E608448119C6} http://www.superstarracing.net/miniclip ... Player.cab (ChatRepublicPlayer ActiveX)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\Windows\System32\eNetHook.dll) - C:\Windows\System32\eNetHook.dll (acer)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
O24 - Desktop BackupWallPaper: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{dc279f29-2ecf-11df-9f19-480000000000}\Shell\AutoRun\command - "" = G:\autorun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.04.14 14:36:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.04.14 14:36:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010.04.14 14:34:58 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.04.14 14:34:58 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.04.14 14:34:57 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.04.14 14:33:43 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010.04.14 14:14:17 | 003,502,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.04.14 14:14:15 | 003,468,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.04.14 14:13:58 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.04.14 14:13:38 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2010.04.14 14:13:37 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2010.04.14 14:12:48 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2010.04.14 14:12:48 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2010.03.31 20:03:26 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\Cooliris
[2010.03.31 19:14:43 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.03.31 19:14:42 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.03.31 19:14:41 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.03.31 19:14:38 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010.03.31 19:14:37 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.03.31 19:14:35 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.03.31 19:14:34 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010.03.31 19:14:34 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010.03.31 19:14:33 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2010.03.31 19:14:32 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.03.31 19:14:31 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010.03.31 19:14:30 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2010.03.31 19:14:29 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010.03.31 19:14:27 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010.03.31 19:14:26 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010.03.25 16:25:22 | 000,000,000 | ---D | C] -- C:\Program Files\Cycling Diary 2006
[2010.03.25 16:18:07 | 000,000,000 | ---D | C] -- C:\Program Files\Cyklotrasy
[2010.03.19 12:32:04 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\NHL08
[2010.03.19 11:35:49 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\treninkovy_plan
[2007.01.25 18:52:18 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll
[1 C:\Users\Admin\Desktop\*.tmp files -> C:\Users\Admin\Desktop\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.04.17 08:31:39 | 004,194,304 | -HS- | M] () -- C:\Users\Admin\ntuser.dat
[2010.04.17 08:09:01 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3033275478-1219882260-4262735771-1000UA.job
[2010.04.17 07:56:37 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.04.17 07:56:37 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.04.17 07:56:19 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.04.17 07:56:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.04.17 07:55:49 | 803,389,440 | -HS- | M] () -- C:\hiberfil.sys
[2010.04.16 21:42:21 | 003,904,664 | -H-- | M] () -- C:\Users\Admin\AppData\Local\IconCache.db
[2010.04.16 19:19:06 | 000,000,422 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{12186A30-3C57-4A0E-82D9-87D899EC8257}.job
[2010.04.15 19:50:39 | 000,033,280 | ---- | M] () -- C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.15 19:16:53 | 000,045,226 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2010.04.15 19:16:53 | 000,044,364 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.04.15 19:16:53 | 000,011,232 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2010.04.15 19:16:53 | 000,004,696 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.04.15 19:16:53 | 000,004,504 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.04.14 14:33:58 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.04.14 14:33:57 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.04.14 14:33:56 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.04.14 14:33:55 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2010.04.14 13:39:12 | 000,007,376 | ---- | M] () -- C:\Users\Admin\AppData\Local\d3d9caps.dat
[2010.04.11 21:54:35 | 000,037,888 | ---- | M] () -- C:\Users\Admin\Documents\Kryštof Kolumbus.doc
[2010.04.11 13:09:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3033275478-1219882260-4262735771-1000Core.job
[2010.04.09 13:21:19 | 111,208,604 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.04.07 21:00:02 | 000,000,923 | ---- | M] () -- C:\Users\Admin\Desktop\YouTube Downloader.lnk
[2010.03.25 16:18:13 | 000,000,832 | ---- | M] () -- C:\Users\Admin\Desktop\Cyklotrasy 2.18.lnk
[2010.03.21 19:01:38 | 003,062,661 | ---- | M] () -- C:\Users\Admin\Documents\dgmůdxmbv§ůxb§lxf§b,xf§ů.wma
[2010.03.20 23:12:05 | 001,060,121 | ---- | M] () -- C:\Users\Admin\Documents\Bez názvu (2).wma
[2010.03.20 07:50:26 | 000,296,821 | ---- | M] () -- C:\Users\Admin\Documents\Bez názvu.wma
[2010.03.19 18:48:59 | 000,001,634 | ---- | M] () -- C:\Users\Admin\Desktop\Run Ski Challenge 2010 (SF).lnk
[1 C:\Users\Admin\Desktop\*.tmp files -> C:\Users\Admin\Desktop\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.04.11 21:54:34 | 000,037,888 | ---- | C] () -- C:\Users\Admin\Documents\Kryštof Kolumbus.doc
[2010.04.07 21:00:02 | 000,000,923 | ---- | C] () -- C:\Users\Admin\Desktop\YouTube Downloader.lnk
[2010.03.25 16:18:13 | 000,000,832 | ---- | C] () -- C:\Users\Admin\Desktop\Cyklotrasy 2.18.lnk
[2010.03.21 19:01:38 | 003,062,661 | ---- | C] () -- C:\Users\Admin\Documents\dgmůdxmbv§ůxb§lxf§b,xf§ů.wma
[2010.03.20 23:12:04 | 001,060,121 | ---- | C] () -- C:\Users\Admin\Documents\Bez názvu (2).wma
[2010.03.20 07:50:25 | 000,296,821 | ---- | C] () -- C:\Users\Admin\Documents\Bez názvu.wma
[2010.03.19 18:48:59 | 000,001,634 | ---- | C] () -- C:\Users\Admin\Desktop\Run Ski Challenge 2010 (SF).lnk
[2010.03.19 11:36:35 | 000,000,889 | ---- | C] () -- C:\Users\Admin\Documents\Pro Cycling Manager 2008.lnk
[2010.03.19 11:36:11 | 000,000,808 | ---- | C] () -- C:\Users\Admin\Documents\FlatOut2.lnk
[2010.03.19 11:35:03 | 000,002,046 | ---- | C] () -- C:\Users\Admin\Documents\Google Chrome.lnk
[2010.03.13 20:34:43 | 000,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2010.02.16 21:18:15 | 000,109,853 | ---- | C] () -- C:\Users\Admin\viktor-zapletal-trener-mtbs-5.jpg
[2010.02.06 10:36:30 | 000,001,024 | ---- | C] () -- C:\Users\Admin\Centrum řešení HP.lnk
[2009.12.31 13:03:01 | 000,000,822 | ---- | C] () -- C:\Users\Admin\Malwarebytes' Anti-Malware.lnk
[2009.07.17 21:18:38 | 000,001,613 | ---- | C] () -- C:\Users\Admin\ICQ6.5.lnk
[2009.04.12 20:58:30 | 000,005,349 | ---- | C] () -- C:\Users\Admin\.recently-used.xbel
[2009.01.05 15:44:10 | 000,000,453 | ---- | C] () -- C:\Windows\bdoscandellang.ini
[2008.12.06 12:11:56 | 000,004,096 | -H-- | C] () -- C:\Users\Admin\AppData\Local\keyfile3.drm
[2008.11.14 19:11:35 | 000,037,811 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2008.08.27 09:12:14 | 000,000,012 | ---- | C] () -- C:\Users\Admin\intlname.ols
[2008.04.28 18:51:51 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008.04.27 21:33:41 | 000,000,093 | ---- | C] () -- C:\Users\Admin\AppData\Local\fusioncache.dat
[2008.02.29 18:49:50 | 000,023,552 | ---- | C] () -- C:\Windows\System32\jesterss.dll
[2008.02.15 16:22:10 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
[2007.11.23 22:15:13 | 000,001,462 | ---- | C] () -- C:\Users\Admin\server.cfg
[2007.11.23 22:12:43 | 000,386,312 | ---- | C] () -- C:\Windows\System32\server.dll
[2007.11.11 15:27:17 | 000,007,376 | ---- | C] () -- C:\Users\Admin\AppData\Local\d3d9caps.dat
[2007.09.21 19:05:30 | 000,033,280 | ---- | C] () -- C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007.09.21 16:13:21 | 000,002,401 | ---- | C] () -- C:\Users\Admin\Nero Home.lnk
[2007.09.21 15:31:44 | 000,000,384 | ---- | C] () -- C:\Windows\ODBC.INI
[2007.04.25 03:02:50 | 000,000,094 | ---- | C] () -- C:\Windows\CLEANUP.INI
[2007.04.24 12:29:29 | 000,000,567 | ---- | C] () -- C:\Users\Admin\Acer OrbiCam.lnk
[2007.04.24 12:21:33 | 000,000,037 | ---- | C] () -- C:\Windows\Acer.ini
[2007.04.24 12:20:22 | 000,000,020 | -HS- | C] () -- C:\Users\Admin\ntuser.ini
[2007.04.24 12:20:19 | 000,524,288 | -HS- | C] () -- C:\Users\Admin\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000002.regtrans-ms
[2007.04.24 12:20:19 | 000,524,288 | -HS- | C] () -- C:\Users\Admin\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000001.regtrans-ms
[2007.04.24 12:20:19 | 000,262,144 | -H-- | C] () -- C:\Users\Admin\ntuser.dat.LOG2
[2007.04.24 12:20:19 | 000,262,144 | -H-- | C] () -- C:\Users\Admin\ntuser.dat.LOG1
[2007.04.24 12:20:19 | 000,065,536 | -HS- | C] () -- C:\Users\Admin\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TM.blf
[2007.04.24 12:20:18 | 004,194,304 | -HS- | C] () -- C:\Users\Admin\ntuser.dat
[2007.04.24 12:20:18 | 001,572,864 | -HS- | C] () -- C:\Users\Admin\ntuser.dat_previous
[2007.01.26 03:51:16 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2007.01.26 02:06:22 | 000,000,111 | ---- | C] () -- C:\Windows\Alaunch.ini
[2007.01.26 02:06:06 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2007.01.25 19:10:36 | 000,001,902 | ---- | C] () -- C:\Users\Admin\Adobe Reader 7.0.lnk
[2007.01.25 18:58:31 | 000,076,584 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2007.01.25 18:58:31 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2007.01.25 18:57:40 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2007.01.25 18:52:18 | 000,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2007.01.25 18:45:25 | 000,356,352 | ---- | C] () -- C:\Windows\EMCRI.dll
[2007.01.02 19:54:14 | 000,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll
[2007.01.02 19:53:54 | 000,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll
[2007.01.02 19:53:20 | 000,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll
[2007.01.02 19:52:40 | 000,037,376 | ---- | C] () -- C:\Windows\System32\MSNChatHook.dll
[2007.01.02 19:52:28 | 000,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll
[2007.01.02 19:52:26 | 000,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll
[2007.01.02 19:52:18 | 000,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll
[2006.12.25 16:44:48 | 000,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll
[2006.11.02 12:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2003.04.09 15:38:04 | 000,005,664 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI
[2002.09.10 17:10:05 | 000,495,616 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2001.12.26 16:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001.09.03 23:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001.07.30 16:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001.07.23 22:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:9FA5EC55
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:58B11540
< End of report >
Re: Sekání internetu, pomalejší chod ntb
OTL Extras logfile created on: 17.4.2010 8:27:02 - Run 1
OTL by OldTimer - Version 3.2.1.1 Folder = C:\Users\Admin\Downloads
Windows Vista Home Basic Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
766,00 Mb Total Physical Memory | 144,00 Mb Available Physical Memory | 19,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 52,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 52,14 Gb Total Space | 1,89 Gb Free Space | 3,62% Space Free | Partition Type: NTFS
Drive D: | 51,84 Gb Total Space | 48,81 Gb Free Space | 94,15% Space Free | Partition Type: NTFS
Drive E: | 4,38 Gb Total Space | 4,08 Gb Free Space | 93,12% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ADMIN-PC
Current User Name: Admin
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with PhotoLine 32...] -- Reg Error: Key error.
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 0
"InternetSettingsDisableNotify" = 0
"AutoUpdateDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- File not found
"C:\Program Files\Pro Cycling Manager 2008\PCM.exe" = C:\Program Files\Pro Cycling Manager 2008\PCM.exe:*:Enabled:Pro Cycling Manager - Season 2008 -- (Cyanide)
"C:\Program Files\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe" = C:\Program Files\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe:*:Enabled:Pro Cycling Manager - Season 2008 - AutoRun -- ()
"D:\Bike\Pro Cycling Manager 2008\PCM.exe" = D:\Bike\Pro Cycling Manager 2008\PCM.exe:*:Enabled:Pro Cycling Manager - Season 2008 -- File not found
"D:\Bike\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe" = D:\Bike\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe:*:Enabled:Pro Cycling Manager - Season 2008 - AutoRun -- File not found
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{8290EA2D-1EB5-4A8B-8B5E-12BD1AA093DC}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{AA586C88-916D-4766-BCC6-600B3D4A255B}" = lport=2869 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1AFDCA79-25FF-4C61-BF55-7564E2A6327A}" = protocol=17 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{434D9C32-F319-4EC1-B3F3-86C54C1BE59C}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{67C0C82B-9B99-4DB6-B3B6-3D27F1053E1C}" = protocol=6 | dir=in | app=c:\program files\dna\btdna.exe |
"{7A92565C-C7FD-4054-B48C-200EAFB11149}" = protocol=6 | dir=in | app=c:\program files\electronic arts\crytek\crysis sp demo\bin32\crysis.exe |
"{82A308DB-966D-48D8-905D-59586C346DAA}" = protocol=17 | dir=in | app=c:\program files\dna\btdna.exe |
"{D1C93827-EE86-4161-866E-BBAF427EEA61}" = protocol=17 | dir=in | app=c:\program files\electronic arts\crytek\crysis sp demo\bin32\crysis.exe |
"{ED8ED261-974C-46E1-9CF6-05B40497051A}" = protocol=6 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"TCP Query User{00A8BC4E-1CB9-4D6F-B135-4800545AB79B}C:\program files\ea sports\nhl08\nhl2008pal.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\nhl08\nhl2008pal.exe |
"TCP Query User{02E305A8-9F70-496A-A808-D72E54BD540F}C:\program files\icq6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6\icq.exe |
"TCP Query User{03A54739-5971-450F-9EDE-D8B50E9572C2}C:\program files\trackmania nations eswc\tmnationseswc.exe" = protocol=6 | dir=in | app=c:\program files\trackmania nations eswc\tmnationseswc.exe |
"TCP Query User{0484805E-266E-42FA-A90B-5B767B2D9C2C}C:\program files\metin2_tester\metin2.bin" = protocol=6 | dir=in | app=c:\program files\metin2_tester\metin2.bin |
"TCP Query User{0770B09F-8F78-42C5-894E-DAEA1DCC0503}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{129E3D92-1BF6-4CB9-951E-054E39419BBC}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{13BF130F-7A82-4AE5-A4F8-CCD99862D64C}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"TCP Query User{26F19D3B-31BF-4A5F-B818-253B7999AC3F}C:\program files\icq6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6\icq.exe |
"TCP Query User{284CD4E9-98B8-4382-B9ED-6BCCB934D4A2}C:\program files\windows sidebar\sidebar.exe" = protocol=6 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"TCP Query User{2BC6671E-48FC-4326-9E90-92C889AD3C12}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{3D69A837-9220-41A5-A541-6454CC5BC2E9}C:\users\admin\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\admin\program files\dna\btdna.exe |
"TCP Query User{46104E4A-B71B-408C-990D-84D87C2FC542}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{463F0B0E-F07B-4A35-B108-FD9F0C59317F}C:\program files\flatout2\flatout2.exe" = protocol=6 | dir=in | app=c:\program files\flatout2\flatout2.exe |
"TCP Query User{5A3A3EA5-C7F3-48C0-973E-4C91CCCCD93C}C:\program files\pro cycling manager 2008\pcm.exe" = protocol=6 | dir=in | app=c:\program files\pro cycling manager 2008\pcm.exe |
"TCP Query User{5CD7A626-B357-43D0-8F36-063E7D9D1E84}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{67D6DB60-F1E4-4D97-A943-BC5A947A890B}C:\program files\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe |
"TCP Query User{6D3480F5-8BEF-4365-8C9E-A3F74BA2FFA9}C:\program files\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe |
"TCP Query User{79999787-D922-4947-8AF1-1FFEA1F3B700}D:\ea sports\nhl08\nhl2008pal.exe" = protocol=6 | dir=in | app=d:\ea sports\nhl08\nhl2008pal.exe |
"TCP Query User{7B45BA5D-1A03-4EC7-9371-CF15694DB5DF}C:\program files\flatout2\flatout2.exe" = protocol=6 | dir=in | app=c:\program files\flatout2\flatout2.exe |
"TCP Query User{986CCF51-C387-436B-ACC0-4EDB0773B411}C:\games\trackmania sunrise\tmsunrise.exe" = protocol=6 | dir=in | app=c:\games\trackmania sunrise\tmsunrise.exe |
"TCP Query User{A544E3A6-4418-4528-AA8A-402CF3088725}C:\program files\nero\nero 7\nero showtime\showtime.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero 7\nero showtime\showtime.exe |
"TCP Query User{B0545D80-F65E-4155-9686-9DDD30A71E13}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{B0EFF24A-0848-4ED3-A91A-3C8D056C2715}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{BFDAE5E8-50AE-4F17-A020-146CFE8CFF00}C:\program files\pro cycling manager 2008\pcm.exe" = protocol=6 | dir=in | app=c:\program files\pro cycling manager 2008\pcm.exe |
"TCP Query User{D3C2371D-43EB-4292-BBEA-97AD288B5553}C:\program files\ea sports\nhl08\nhl2008pal.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\nhl08\nhl2008pal.exe |
"TCP Query User{D59AF738-B845-4BC2-A0EB-3846DBBC632A}C:\program files\trackmania sunrise\tmsunrise.exe" = protocol=6 | dir=in | app=c:\program files\trackmania sunrise\tmsunrise.exe |
"TCP Query User{D6A40C38-1CB1-424E-A1DB-C333320F0B29}C:\program files\trackmania sunrise\tmsunrise.exe" = protocol=6 | dir=in | app=c:\program files\trackmania sunrise\tmsunrise.exe |
"TCP Query User{D7EB77AE-1DF1-42E3-AFE4-54C06CBAC68A}C:\users\admin\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\admin\program files\dna\btdna.exe |
"TCP Query User{E0834DF5-53A9-46B1-B1BF-E0EAF8E649E6}C:\program files\windows sidebar\sidebar.exe" = protocol=6 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"TCP Query User{EA5738BE-9AA5-4179-87CF-3838A4D20DB6}C:\program files\hlsw\hlsw.exe" = protocol=6 | dir=in | app=c:\program files\hlsw\hlsw.exe |
"TCP Query User{EC57B4B4-062F-46D5-B8A3-4166B2EB10CC}C:\program files\trackmania nations eswc\tmnationseswc.exe" = protocol=6 | dir=in | app=c:\program files\trackmania nations eswc\tmnationseswc.exe |
"TCP Query User{F286F2CE-B731-48DB-ADA1-4E132F6CC335}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"UDP Query User{08686E31-EF05-4B5F-8CFA-CCCDC85C5711}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{0AE00D36-D595-4CC1-9864-4987CCEEE93C}C:\program files\ea sports\nhl08\nhl2008pal.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\nhl08\nhl2008pal.exe |
"UDP Query User{12D7CBA8-0582-481C-BE1B-CFF1FF66F6B3}C:\program files\windows sidebar\sidebar.exe" = protocol=17 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"UDP Query User{25D4F455-8498-4ACD-920C-A2BB0DAE78E6}D:\ea sports\nhl08\nhl2008pal.exe" = protocol=17 | dir=in | app=d:\ea sports\nhl08\nhl2008pal.exe |
"UDP Query User{2CD43073-8AC7-4F32-9E01-3BF517320890}C:\program files\ea sports\nhl08\nhl2008pal.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\nhl08\nhl2008pal.exe |
"UDP Query User{30463691-2A3E-47CE-B5A6-EAFC12431AB5}C:\program files\metin2_tester\metin2.bin" = protocol=17 | dir=in | app=c:\program files\metin2_tester\metin2.bin |
"UDP Query User{31FBE891-F158-45A2-B030-CB32B93FA9DB}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{36275AC0-0ABA-4E93-9CA9-47F1214A5E7A}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{382BF276-8276-44C2-ABAA-AB95EE679AEC}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{393116F3-B685-43BD-9537-844C273F4F43}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"UDP Query User{446D5689-1EFE-4558-888D-86A4257DE3CD}C:\games\trackmania sunrise\tmsunrise.exe" = protocol=17 | dir=in | app=c:\games\trackmania sunrise\tmsunrise.exe |
"UDP Query User{55005505-0269-4C48-9AF4-7DA077B31B64}C:\program files\windows sidebar\sidebar.exe" = protocol=17 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"UDP Query User{55D1986A-B433-4544-9159-C9F792B32F36}C:\program files\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe |
"UDP Query User{591DC194-A05A-4E61-B8C1-D09AC0013924}C:\program files\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe |
"UDP Query User{59B8CBB9-4757-4729-878A-92659F5E56A3}C:\program files\trackmania sunrise\tmsunrise.exe" = protocol=17 | dir=in | app=c:\program files\trackmania sunrise\tmsunrise.exe |
"UDP Query User{5A61AD87-1064-453C-AC72-E219619D8491}C:\program files\flatout2\flatout2.exe" = protocol=17 | dir=in | app=c:\program files\flatout2\flatout2.exe |
"UDP Query User{76413F0C-08DE-46EF-A0CC-618DF6961383}C:\program files\pro cycling manager 2008\pcm.exe" = protocol=17 | dir=in | app=c:\program files\pro cycling manager 2008\pcm.exe |
"UDP Query User{804B7AD9-4CF7-4D17-AF0E-A21362E93F9D}C:\users\admin\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\admin\program files\dna\btdna.exe |
"UDP Query User{83E69754-0FE0-435E-9D25-5339755FB241}C:\program files\trackmania sunrise\tmsunrise.exe" = protocol=17 | dir=in | app=c:\program files\trackmania sunrise\tmsunrise.exe |
"UDP Query User{8C37A9C2-9D38-4546-8985-BE11EEE7E71C}C:\program files\hlsw\hlsw.exe" = protocol=17 | dir=in | app=c:\program files\hlsw\hlsw.exe |
"UDP Query User{93BD5177-C892-4165-93E0-78E79CB3439E}C:\program files\nero\nero 7\nero showtime\showtime.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero 7\nero showtime\showtime.exe |
"UDP Query User{9C66586F-EFAB-45C3-BBDA-A94109751305}C:\users\admin\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\admin\program files\dna\btdna.exe |
"UDP Query User{9DC7CFCD-A470-4E9E-B320-7B4132CE3A50}C:\program files\trackmania nations eswc\tmnationseswc.exe" = protocol=17 | dir=in | app=c:\program files\trackmania nations eswc\tmnationseswc.exe |
"UDP Query User{B3A563CF-C9D1-4CEF-8C0C-6191491B005F}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{B6158E07-3598-4BA3-AF1F-097E1A88A237}C:\program files\trackmania nations eswc\tmnationseswc.exe" = protocol=17 | dir=in | app=c:\program files\trackmania nations eswc\tmnationseswc.exe |
"UDP Query User{B647CDD9-E62C-404A-9A82-A36D35847971}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{BCC29830-CCEE-4F64-B368-9A818907C91E}C:\program files\pro cycling manager 2008\pcm.exe" = protocol=17 | dir=in | app=c:\program files\pro cycling manager 2008\pcm.exe |
"UDP Query User{CC8B1FC5-542B-4120-89E9-FD23B681BCE4}C:\program files\flatout2\flatout2.exe" = protocol=17 | dir=in | app=c:\program files\flatout2\flatout2.exe |
"UDP Query User{D37DD122-CFF6-4523-862E-397547C980BF}C:\program files\icq6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6\icq.exe |
"UDP Query User{E79C604B-C5A0-4E4B-A914-3015DC725F93}C:\program files\icq6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6\icq.exe |
"UDP Query User{F3973E75-92FB-4EB7-A9BE-A3EE4F89BFE6}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"UDP Query User{F566B97F-7022-4811-B229-9CCC99CECE90}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0BE8E6DE-BCCD-645F-781A-E25D46523C69}" = Catalyst Control Center Localization Chinese Standard
"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp
"{11316260-6666-467B-AC34-183FCB5D4335}" = Acer Mobility Center Plug-In
"{116FF17B-1A30-4FC2-9B01-5BC5BD46B0B3}" = Acer eLock Management
"{12BC816B-8F68-CAB4-867E-FA0FEF15FB36}" = ccc-core-static
"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
"{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{1947BE8A-015E-054A-4C2B-2D1F70594DD4}" = CCC Help Japanese
"{1B182EF5-011E-A0EC-D22F-8D279763A921}" = ccc-utility
"{1D4B8F37-30C6-F67B-A812-60CBCE6471D8}" = Catalyst Control Center Core Implementation
"{1EF76089-FEEC-9FEA-AE75-E67BF9015F8B}" = Catalyst Control Center Localization German
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
"{20D0CDB1-5F03-4A5D-86EB-7C218053B157}" = Windows Live Messenger
"{222DF257-8272-435C-A859-0C456F6713EA}_is1" = Pro Cycling Manager 2008
"{22466889-7642-488d-AA0E-F619704CF7AB}" = DeviceDiscovery
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{234C4E43-A53D-435A-A8EA-13A7CB21816F}" = Catalyst Control Center Localization Arabic
"{24256DFB-ECCE-45D3-3A6C-33FC947AFC6A}" = CCC Help Spanish
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade
"{26A24AE4-039D-4CA4-87B4-2F83216019FF}" = Java(TM) 6 Update 19
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2DADCB1C-D758-AB6A-D523-A6F021BD32B4}" = CCC Help Korean
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{305C7D69-18C1-5219-E6AF-09F4AB2B470A}" = CCC Help Chinese Traditional
"{32655698-54AE-0061-A662-2EC34B7E5F24}" = CCC Help German
"{35F63BBB-0D00-FD76-96C6-66D9B4126788}" = Catalyst Control Center Localization Arabic
"{36F0C5CD-C50B-F098-22F1-E1822B83F008}" = CCC Help English
"{38126AC8-D7B0-7DA1-CBB0-30E56AE0F428}" = Catalyst Control Center Localization Arabic
"{3864FA17-51A6-7CBB-EB67-84A6B9BE6867}" = CCC Help Swedish
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3BE5D166-0AC6-E8F6-DB61-BB32BDD418C4}" = Catalyst Control Center Graphics Light
"{3D7A11F6-72F6-DFB3-05CF-9A6D0336251E}" = Catalyst Control Center Localization Greek
"{415CDA53-9100-476F-A7B2-476691E117C7}" = HP Smart Web Printing
"{4160DC5B-4C56-D0C3-C5FD-F5BDAD3C882B}" = ATI Catalyst Install Manager
"{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}" = HPSSupply
"{4908C75E-E5E2-43F7-B1DF-023CBA831029}" = Nero 7 Ultra Edition
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{507F635D-CCB8-B8E1-9278-8B4AC1D43DC9}" = Catalyst Control Center Localization Italian
"{5228179A-6DA6-12F1-1287-322E38FFEBCA}" = CCC Help Turkish
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{58E5844B-7CE2-413D-83D1-99294BF6C74F}" = Acer ePower Management
"{5E0B99FE-DA5E-A31F-EDB8-62605F2292A6}" = Catalyst Control Center Localization Chinese Traditional
"{5E513EF7-69F4-E458-E777-7BBACB7FAE0D}" = CCC Help Dutch
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{61A1E611-2039-E14F-7842-6BF89370DDC1}" = Catalyst Control Center Localization Korean
"{630CC87A-57A3-45DC-A5A4-08CE98E0BCB7}" = Branding
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67820D1D-7387-F081-D90C-EE12D28BCF00}" = CCC Help Portuguese
"{67ADE9AF-5CD9-4089-8825-55DE4B366799}" = NTI Backup NOW! 4.7
"{68A0D07E-0F93-AAB4-9F79-184CA54963DE}" = Catalyst Control Center Localization Arabic
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B3AD9C7-9B15-881E-B132-B924334DE57C}" = Catalyst Control Center Localization Arabic
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{6F74557B-9B57-A942-235D-EEC40FA5009A}" = CCC Help French
"{70A23B86-F5C9-FD1C-1F1B-FB37715442DB}" = Catalyst Control Center Localization French
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{788261EE-204C-BE01-F02D-51B89A1BB929}" = Catalyst Control Center Localization Spanish
"{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}" = Acer ScreenSaver
"{7B577E09-C0C6-7C31-7E3B-9EAE6D2F477B}" = CCC Help Thai
"{7FFDACF9-FB80-B850-FD13-9282CBEDB146}" = CCC Help Russian
"{80A6D4BB-63C1-3DFD-DA6E-EE690812284D}" = Catalyst Control Center Graphics Full Existing
"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
"{849E535E-9603-8142-9B2C-4EE38DEE8008}" = CCC Help Danish
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{86E3BF8E-5F49-F4CD-3B82-B91A73B0BC74}" = Catalyst Control Center Localization Arabic
"{8765A391-F170-107B-7893-8529F226672E}" = CCC Help Czech
"{882181E4-9102-A1C0-27B3-56A83C363583}" = Catalyst Control Center Graphics Previews Vista
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E4FF8EF-94E3-E9F8-B01D-31082ED9EED2}" = CCC Help Italian
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90C5B334-AC20-C1C4-8C3C-BF74A3087D03}" = CCC Help Finnish
"{93028F9A-1EC0-467A-981B-DE93D96897C6}" = Windows Live Essentials
"{94389919-B0AA-4882-9BE8-9F0B004ECA35}" = Acer Tour
"{94C8432D-9C75-03E9-3AB0-C5B0709D95CF}" = Catalyst Control Center Localization Finnish
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95BFF219-80F6-AD1D-22F9-A1722A37055D}" = Catalyst Control Center Graphics Full New
"{9CB7F92D-B82D-4A51-5551-33F6E967E5F8}" = CCC Help Chinese Standard
"{A51080B6-6564-3246-F105-01CD96B6CA27}" = Catalyst Control Center Localization Hungarian
"{A6B90148-02C5-4fd3-8D7A-EF2386835CB9}" = F4100_Help
"{A6C265BE-E2C1-483e-843D-6B4C1E912AE0}" = F4100
"{A7AA93B6-6909-4073-B4EC-45CCDEFD4665}" = NHL® 08
"{A87B11AC-4344-4E5D-8B12-8F471A87DAD9}" = LightScribe 1.4.136.1
"{AB40272D-92AB-4F30-B36B-22EDE16F8FE5}" = HP Update
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB6097D9-D722-4987-BD9E-A076E2848EE2}" = Acer Empowering Technology
"{AC76BA86-7AD7-1033-7B44-A70000000000}" = Adobe Reader 7.0
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{AF047B93-85B5-4F54-AD10-EFE092F57C01}}_is1" = Cycling Diary 2006
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B4509BCE-7BAD-4a8c-B1AE-4D0CE7467C42}" = F4100_doccd
"{B4F35A00-24FD-4fb3-BF5E-413D5423434D}" = DJ_AIO_Software_min
"{B607E77A-5B42-BA12-F51E-433C7370D376}" = Catalyst Control Center Localization Czech
"{B695C12D-427E-7E00-2EF8-00EE77E58DA0}" = CCC Help Greek
"{B8BCC092-DCD1-A3CF-9A24-1A96C7E44F0F}" = Skins
"{BB6928B4-1C6F-695E-2EF3-4AC539B077FA}" = Catalyst Control Center Localization Arabic
"{BBB34DD8-A775-548B-B87E-7C493A364918}" = CCC Help Norwegian
"{BBC8862B-BFC8-475D-9BB8-93289703BD33}" = ESET NOD32 Antivirus
"{BCBC2A14-9AD7-E067-B925-D400B945B0C5}" = ccc-localization-da
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{BF839132-BD43-4056-ACBF-4377F4A88E2A}" = Acer ePresentation Management
"{C06554A1-2C1E-4D20-B613-EE62C79927CC}" = Acer eNet Management
"{C13E90B0-4E1C-11DB-6784-0152EAA218BE}" = Call of Duty(R) 2 Patch 1.3
"{CA50045C-5119-48e7-9BA7-6B317379857A}" = DJ_AIO_Software
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE65A9A0-9686-45C6-9098-3C9543A412F0}" = Acer eSettings Management
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1" = FlatOut2
"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer
"{DD1DED37-2486-4F56-8F89-56AA814003F5}" = Acer OrbiCam
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E548726E-F4E8-459f-BAB8-45551BC071E9}" = DJ_AIO_ProductContext
"{E8C95FCB-88B3-B83D-E825-0CEDE5135940}" = Catalyst Control Center Localization Japanese
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F23C105B-582C-8A9F-88F2-B5E9B1124C4B}" = CCC Help Polish
"{F463F699-2B14-2B53-C7CC-0B7F220F7450}" = Catalyst Control Center Localization Arabic
"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
"{FA8A44D7-3E8A-4034-9C4F-088FA6B72BC4}" = HP Deskjet All-In-One Software 9.0
"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status
"{FDFA99CA-B5F9-13EF-8DCA-58257C3CED79}" = CCC Help Hungarian
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"82A44D22-9452-49FB-00FB-CEC7DCAF7E23" = EA SPORTS online 2008
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"ATI Uninstaller" = ATI Uninstaller
"AVI MPEG WMV Joiner_is1" = AVI MPEG WMV Joiner
"AviSynth" = AviSynth 2.5
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118" = HDAUDIO Soft Data Fax Modem with SmartCP
"Combined Community Codec Pack BETA_is1" = Combined Community Codec Pack BETA 2009-09-19
"FIFA 99" = FIFA 99
"GridVista" = Acer GridVista
"HijackThis" = HijackThis 2.0.2
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Photosmart Essential" = HP Photosmart Essential 2.01
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"HPExtendedCapabilities" = HP Customer Participation Program 9.0
"ICQToolbar" = ICQ Toolbar
"InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"OpenAL" = OpenAL
"rajče.net_is1" = rajče beta50
"Secunia PSI" = Secunia PSI
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"XviD" = XviD MPEG-4 Codec
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"sc10-CH_SF" = Ski Challenge 2010 (SF)
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 16.3.2010 9:53:20 | Computer Name = Admin-PC | Source = Google Update | ID = 20
Description =
Error - 16.3.2010 15:13:23 | Computer Name = Admin-PC | Source = EventSystem | ID = 4621
Description =
Error - 17.3.2010 10:07:39 | Computer Name = Admin-PC | Source = Application Error | ID = 1000
Description = Chybující aplikace psi.exe, verze 1.5.0.1, časové razítko 0x4a8d4779,
chybující modul ntdll.dll, verze 6.0.6000.16386, časové razítko 0x4549bdc9, kód
výjimky 0xc0000005, posun chyby 0x0003b15f, ID procesu 0x9ec, čas spuštění aplikace
0x01cac5d8675b3575.
Error - 17.3.2010 13:11:45 | Computer Name = Admin-PC | Source = EventSystem | ID = 4621
Description =
Error - 18.3.2010 7:35:07 | Computer Name = Admin-PC | Source = Google Update | ID = 20
Description =
Error - 18.3.2010 11:12:37 | Computer Name = Admin-PC | Source = Application Hang | ID = 1002
Description = Program firefox.exe verze 1.9.2.3667 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID
procesu: 324 Čas zahájení: 01cac6a581fd20d3 Čas ukončení: 1346
Error - 18.3.2010 13:09:11 | Computer Name = Admin-PC | Source = Google Update | ID = 20
Description =
Error - 18.3.2010 14:09:09 | Computer Name = Admin-PC | Source = Google Update | ID = 20
Description =
Error - 19.3.2010 11:25:49 | Computer Name = Admin-PC | Source = Application Hang | ID = 1002
Description = Program firefox.exe verze 1.9.2.3667 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID
procesu: c74 Čas zahájení: 01cac775c7a9e75f Čas ukončení: 2946
Error - 19.3.2010 13:24:59 | Computer Name = Admin-PC | Source = Application Hang | ID = 1002
Description = Program firefox.exe verze 1.9.2.3667 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID
procesu: e88 Čas zahájení: 01cac77bf6183fbb Čas ukončení: 2463
[ System Events ]
Error - 17.4.2010 1:55:21 | Computer Name = Admin-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 5 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 17.4.2010 1:55:21 | Computer Name = Admin-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 6 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 17.4.2010 1:55:21 | Computer Name = Admin-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 7 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 17.4.2010 1:59:22 | Computer Name = Admin-PC | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 10.0.0.1 pro síťovou kartu s adresou 00197DBEDBB1
byla serverem DHCP 10.0.0.138 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).
< End of report >
OTL by OldTimer - Version 3.2.1.1 Folder = C:\Users\Admin\Downloads
Windows Vista Home Basic Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
766,00 Mb Total Physical Memory | 144,00 Mb Available Physical Memory | 19,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 52,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 52,14 Gb Total Space | 1,89 Gb Free Space | 3,62% Space Free | Partition Type: NTFS
Drive D: | 51,84 Gb Total Space | 48,81 Gb Free Space | 94,15% Space Free | Partition Type: NTFS
Drive E: | 4,38 Gb Total Space | 4,08 Gb Free Space | 93,12% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ADMIN-PC
Current User Name: Admin
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with PhotoLine 32...] -- Reg Error: Key error.
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 0
"InternetSettingsDisableNotify" = 0
"AutoUpdateDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- File not found
"C:\Program Files\Pro Cycling Manager 2008\PCM.exe" = C:\Program Files\Pro Cycling Manager 2008\PCM.exe:*:Enabled:Pro Cycling Manager - Season 2008 -- (Cyanide)
"C:\Program Files\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe" = C:\Program Files\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe:*:Enabled:Pro Cycling Manager - Season 2008 - AutoRun -- ()
"D:\Bike\Pro Cycling Manager 2008\PCM.exe" = D:\Bike\Pro Cycling Manager 2008\PCM.exe:*:Enabled:Pro Cycling Manager - Season 2008 -- File not found
"D:\Bike\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe" = D:\Bike\Pro Cycling Manager 2008\AutoRun\Exe\Autorun.exe:*:Enabled:Pro Cycling Manager - Season 2008 - AutoRun -- File not found
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{8290EA2D-1EB5-4A8B-8B5E-12BD1AA093DC}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{AA586C88-916D-4766-BCC6-600B3D4A255B}" = lport=2869 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1AFDCA79-25FF-4C61-BF55-7564E2A6327A}" = protocol=17 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{434D9C32-F319-4EC1-B3F3-86C54C1BE59C}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{67C0C82B-9B99-4DB6-B3B6-3D27F1053E1C}" = protocol=6 | dir=in | app=c:\program files\dna\btdna.exe |
"{7A92565C-C7FD-4054-B48C-200EAFB11149}" = protocol=6 | dir=in | app=c:\program files\electronic arts\crytek\crysis sp demo\bin32\crysis.exe |
"{82A308DB-966D-48D8-905D-59586C346DAA}" = protocol=17 | dir=in | app=c:\program files\dna\btdna.exe |
"{D1C93827-EE86-4161-866E-BBAF427EEA61}" = protocol=17 | dir=in | app=c:\program files\electronic arts\crytek\crysis sp demo\bin32\crysis.exe |
"{ED8ED261-974C-46E1-9CF6-05B40497051A}" = protocol=6 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"TCP Query User{00A8BC4E-1CB9-4D6F-B135-4800545AB79B}C:\program files\ea sports\nhl08\nhl2008pal.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\nhl08\nhl2008pal.exe |
"TCP Query User{02E305A8-9F70-496A-A808-D72E54BD540F}C:\program files\icq6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6\icq.exe |
"TCP Query User{03A54739-5971-450F-9EDE-D8B50E9572C2}C:\program files\trackmania nations eswc\tmnationseswc.exe" = protocol=6 | dir=in | app=c:\program files\trackmania nations eswc\tmnationseswc.exe |
"TCP Query User{0484805E-266E-42FA-A90B-5B767B2D9C2C}C:\program files\metin2_tester\metin2.bin" = protocol=6 | dir=in | app=c:\program files\metin2_tester\metin2.bin |
"TCP Query User{0770B09F-8F78-42C5-894E-DAEA1DCC0503}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{129E3D92-1BF6-4CB9-951E-054E39419BBC}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{13BF130F-7A82-4AE5-A4F8-CCD99862D64C}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"TCP Query User{26F19D3B-31BF-4A5F-B818-253B7999AC3F}C:\program files\icq6\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6\icq.exe |
"TCP Query User{284CD4E9-98B8-4382-B9ED-6BCCB934D4A2}C:\program files\windows sidebar\sidebar.exe" = protocol=6 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"TCP Query User{2BC6671E-48FC-4326-9E90-92C889AD3C12}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{3D69A837-9220-41A5-A541-6454CC5BC2E9}C:\users\admin\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\admin\program files\dna\btdna.exe |
"TCP Query User{46104E4A-B71B-408C-990D-84D87C2FC542}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{463F0B0E-F07B-4A35-B108-FD9F0C59317F}C:\program files\flatout2\flatout2.exe" = protocol=6 | dir=in | app=c:\program files\flatout2\flatout2.exe |
"TCP Query User{5A3A3EA5-C7F3-48C0-973E-4C91CCCCD93C}C:\program files\pro cycling manager 2008\pcm.exe" = protocol=6 | dir=in | app=c:\program files\pro cycling manager 2008\pcm.exe |
"TCP Query User{5CD7A626-B357-43D0-8F36-063E7D9D1E84}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{67D6DB60-F1E4-4D97-A943-BC5A947A890B}C:\program files\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe |
"TCP Query User{6D3480F5-8BEF-4365-8C9E-A3F74BA2FFA9}C:\program files\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe |
"TCP Query User{79999787-D922-4947-8AF1-1FFEA1F3B700}D:\ea sports\nhl08\nhl2008pal.exe" = protocol=6 | dir=in | app=d:\ea sports\nhl08\nhl2008pal.exe |
"TCP Query User{7B45BA5D-1A03-4EC7-9371-CF15694DB5DF}C:\program files\flatout2\flatout2.exe" = protocol=6 | dir=in | app=c:\program files\flatout2\flatout2.exe |
"TCP Query User{986CCF51-C387-436B-ACC0-4EDB0773B411}C:\games\trackmania sunrise\tmsunrise.exe" = protocol=6 | dir=in | app=c:\games\trackmania sunrise\tmsunrise.exe |
"TCP Query User{A544E3A6-4418-4528-AA8A-402CF3088725}C:\program files\nero\nero 7\nero showtime\showtime.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero 7\nero showtime\showtime.exe |
"TCP Query User{B0545D80-F65E-4155-9686-9DDD30A71E13}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{B0EFF24A-0848-4ED3-A91A-3C8D056C2715}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{BFDAE5E8-50AE-4F17-A020-146CFE8CFF00}C:\program files\pro cycling manager 2008\pcm.exe" = protocol=6 | dir=in | app=c:\program files\pro cycling manager 2008\pcm.exe |
"TCP Query User{D3C2371D-43EB-4292-BBEA-97AD288B5553}C:\program files\ea sports\nhl08\nhl2008pal.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\nhl08\nhl2008pal.exe |
"TCP Query User{D59AF738-B845-4BC2-A0EB-3846DBBC632A}C:\program files\trackmania sunrise\tmsunrise.exe" = protocol=6 | dir=in | app=c:\program files\trackmania sunrise\tmsunrise.exe |
"TCP Query User{D6A40C38-1CB1-424E-A1DB-C333320F0B29}C:\program files\trackmania sunrise\tmsunrise.exe" = protocol=6 | dir=in | app=c:\program files\trackmania sunrise\tmsunrise.exe |
"TCP Query User{D7EB77AE-1DF1-42E3-AFE4-54C06CBAC68A}C:\users\admin\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\admin\program files\dna\btdna.exe |
"TCP Query User{E0834DF5-53A9-46B1-B1BF-E0EAF8E649E6}C:\program files\windows sidebar\sidebar.exe" = protocol=6 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"TCP Query User{EA5738BE-9AA5-4179-87CF-3838A4D20DB6}C:\program files\hlsw\hlsw.exe" = protocol=6 | dir=in | app=c:\program files\hlsw\hlsw.exe |
"TCP Query User{EC57B4B4-062F-46D5-B8A3-4166B2EB10CC}C:\program files\trackmania nations eswc\tmnationseswc.exe" = protocol=6 | dir=in | app=c:\program files\trackmania nations eswc\tmnationseswc.exe |
"TCP Query User{F286F2CE-B731-48DB-ADA1-4E132F6CC335}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"UDP Query User{08686E31-EF05-4B5F-8CFA-CCCDC85C5711}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{0AE00D36-D595-4CC1-9864-4987CCEEE93C}C:\program files\ea sports\nhl08\nhl2008pal.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\nhl08\nhl2008pal.exe |
"UDP Query User{12D7CBA8-0582-481C-BE1B-CFF1FF66F6B3}C:\program files\windows sidebar\sidebar.exe" = protocol=17 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"UDP Query User{25D4F455-8498-4ACD-920C-A2BB0DAE78E6}D:\ea sports\nhl08\nhl2008pal.exe" = protocol=17 | dir=in | app=d:\ea sports\nhl08\nhl2008pal.exe |
"UDP Query User{2CD43073-8AC7-4F32-9E01-3BF517320890}C:\program files\ea sports\nhl08\nhl2008pal.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\nhl08\nhl2008pal.exe |
"UDP Query User{30463691-2A3E-47CE-B5A6-EAFC12431AB5}C:\program files\metin2_tester\metin2.bin" = protocol=17 | dir=in | app=c:\program files\metin2_tester\metin2.bin |
"UDP Query User{31FBE891-F158-45A2-B030-CB32B93FA9DB}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{36275AC0-0ABA-4E93-9CA9-47F1214A5E7A}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{382BF276-8276-44C2-ABAA-AB95EE679AEC}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{393116F3-B685-43BD-9537-844C273F4F43}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"UDP Query User{446D5689-1EFE-4558-888D-86A4257DE3CD}C:\games\trackmania sunrise\tmsunrise.exe" = protocol=17 | dir=in | app=c:\games\trackmania sunrise\tmsunrise.exe |
"UDP Query User{55005505-0269-4C48-9AF4-7DA077B31B64}C:\program files\windows sidebar\sidebar.exe" = protocol=17 | dir=in | app=c:\program files\windows sidebar\sidebar.exe |
"UDP Query User{55D1986A-B433-4544-9159-C9F792B32F36}C:\program files\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe |
"UDP Query User{591DC194-A05A-4E61-B8C1-D09AC0013924}C:\program files\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=c:\program files\tmnationsforever\tmforever.exe |
"UDP Query User{59B8CBB9-4757-4729-878A-92659F5E56A3}C:\program files\trackmania sunrise\tmsunrise.exe" = protocol=17 | dir=in | app=c:\program files\trackmania sunrise\tmsunrise.exe |
"UDP Query User{5A61AD87-1064-453C-AC72-E219619D8491}C:\program files\flatout2\flatout2.exe" = protocol=17 | dir=in | app=c:\program files\flatout2\flatout2.exe |
"UDP Query User{76413F0C-08DE-46EF-A0CC-618DF6961383}C:\program files\pro cycling manager 2008\pcm.exe" = protocol=17 | dir=in | app=c:\program files\pro cycling manager 2008\pcm.exe |
"UDP Query User{804B7AD9-4CF7-4D17-AF0E-A21362E93F9D}C:\users\admin\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\admin\program files\dna\btdna.exe |
"UDP Query User{83E69754-0FE0-435E-9D25-5339755FB241}C:\program files\trackmania sunrise\tmsunrise.exe" = protocol=17 | dir=in | app=c:\program files\trackmania sunrise\tmsunrise.exe |
"UDP Query User{8C37A9C2-9D38-4546-8985-BE11EEE7E71C}C:\program files\hlsw\hlsw.exe" = protocol=17 | dir=in | app=c:\program files\hlsw\hlsw.exe |
"UDP Query User{93BD5177-C892-4165-93E0-78E79CB3439E}C:\program files\nero\nero 7\nero showtime\showtime.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero 7\nero showtime\showtime.exe |
"UDP Query User{9C66586F-EFAB-45C3-BBDA-A94109751305}C:\users\admin\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\admin\program files\dna\btdna.exe |
"UDP Query User{9DC7CFCD-A470-4E9E-B320-7B4132CE3A50}C:\program files\trackmania nations eswc\tmnationseswc.exe" = protocol=17 | dir=in | app=c:\program files\trackmania nations eswc\tmnationseswc.exe |
"UDP Query User{B3A563CF-C9D1-4CEF-8C0C-6191491B005F}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{B6158E07-3598-4BA3-AF1F-097E1A88A237}C:\program files\trackmania nations eswc\tmnationseswc.exe" = protocol=17 | dir=in | app=c:\program files\trackmania nations eswc\tmnationseswc.exe |
"UDP Query User{B647CDD9-E62C-404A-9A82-A36D35847971}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{BCC29830-CCEE-4F64-B368-9A818907C91E}C:\program files\pro cycling manager 2008\pcm.exe" = protocol=17 | dir=in | app=c:\program files\pro cycling manager 2008\pcm.exe |
"UDP Query User{CC8B1FC5-542B-4120-89E9-FD23B681BCE4}C:\program files\flatout2\flatout2.exe" = protocol=17 | dir=in | app=c:\program files\flatout2\flatout2.exe |
"UDP Query User{D37DD122-CFF6-4523-862E-397547C980BF}C:\program files\icq6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6\icq.exe |
"UDP Query User{E79C604B-C5A0-4E4B-A914-3015DC725F93}C:\program files\icq6\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6\icq.exe |
"UDP Query User{F3973E75-92FB-4EB7-A9BE-A3EE4F89BFE6}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"UDP Query User{F566B97F-7022-4811-B229-9CCC99CECE90}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0BE8E6DE-BCCD-645F-781A-E25D46523C69}" = Catalyst Control Center Localization Chinese Standard
"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp
"{11316260-6666-467B-AC34-183FCB5D4335}" = Acer Mobility Center Plug-In
"{116FF17B-1A30-4FC2-9B01-5BC5BD46B0B3}" = Acer eLock Management
"{12BC816B-8F68-CAB4-867E-FA0FEF15FB36}" = ccc-core-static
"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
"{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{1947BE8A-015E-054A-4C2B-2D1F70594DD4}" = CCC Help Japanese
"{1B182EF5-011E-A0EC-D22F-8D279763A921}" = ccc-utility
"{1D4B8F37-30C6-F67B-A812-60CBCE6471D8}" = Catalyst Control Center Core Implementation
"{1EF76089-FEEC-9FEA-AE75-E67BF9015F8B}" = Catalyst Control Center Localization German
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
"{20D0CDB1-5F03-4A5D-86EB-7C218053B157}" = Windows Live Messenger
"{222DF257-8272-435C-A859-0C456F6713EA}_is1" = Pro Cycling Manager 2008
"{22466889-7642-488d-AA0E-F619704CF7AB}" = DeviceDiscovery
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{234C4E43-A53D-435A-A8EA-13A7CB21816F}" = Catalyst Control Center Localization Arabic
"{24256DFB-ECCE-45D3-3A6C-33FC947AFC6A}" = CCC Help Spanish
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade
"{26A24AE4-039D-4CA4-87B4-2F83216019FF}" = Java(TM) 6 Update 19
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2DADCB1C-D758-AB6A-D523-A6F021BD32B4}" = CCC Help Korean
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{305C7D69-18C1-5219-E6AF-09F4AB2B470A}" = CCC Help Chinese Traditional
"{32655698-54AE-0061-A662-2EC34B7E5F24}" = CCC Help German
"{35F63BBB-0D00-FD76-96C6-66D9B4126788}" = Catalyst Control Center Localization Arabic
"{36F0C5CD-C50B-F098-22F1-E1822B83F008}" = CCC Help English
"{38126AC8-D7B0-7DA1-CBB0-30E56AE0F428}" = Catalyst Control Center Localization Arabic
"{3864FA17-51A6-7CBB-EB67-84A6B9BE6867}" = CCC Help Swedish
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3BE5D166-0AC6-E8F6-DB61-BB32BDD418C4}" = Catalyst Control Center Graphics Light
"{3D7A11F6-72F6-DFB3-05CF-9A6D0336251E}" = Catalyst Control Center Localization Greek
"{415CDA53-9100-476F-A7B2-476691E117C7}" = HP Smart Web Printing
"{4160DC5B-4C56-D0C3-C5FD-F5BDAD3C882B}" = ATI Catalyst Install Manager
"{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}" = HPSSupply
"{4908C75E-E5E2-43F7-B1DF-023CBA831029}" = Nero 7 Ultra Edition
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{507F635D-CCB8-B8E1-9278-8B4AC1D43DC9}" = Catalyst Control Center Localization Italian
"{5228179A-6DA6-12F1-1287-322E38FFEBCA}" = CCC Help Turkish
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{58E5844B-7CE2-413D-83D1-99294BF6C74F}" = Acer ePower Management
"{5E0B99FE-DA5E-A31F-EDB8-62605F2292A6}" = Catalyst Control Center Localization Chinese Traditional
"{5E513EF7-69F4-E458-E777-7BBACB7FAE0D}" = CCC Help Dutch
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{61A1E611-2039-E14F-7842-6BF89370DDC1}" = Catalyst Control Center Localization Korean
"{630CC87A-57A3-45DC-A5A4-08CE98E0BCB7}" = Branding
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{67820D1D-7387-F081-D90C-EE12D28BCF00}" = CCC Help Portuguese
"{67ADE9AF-5CD9-4089-8825-55DE4B366799}" = NTI Backup NOW! 4.7
"{68A0D07E-0F93-AAB4-9F79-184CA54963DE}" = Catalyst Control Center Localization Arabic
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B3AD9C7-9B15-881E-B132-B924334DE57C}" = Catalyst Control Center Localization Arabic
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{6F74557B-9B57-A942-235D-EEC40FA5009A}" = CCC Help French
"{70A23B86-F5C9-FD1C-1F1B-FB37715442DB}" = Catalyst Control Center Localization French
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{788261EE-204C-BE01-F02D-51B89A1BB929}" = Catalyst Control Center Localization Spanish
"{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}" = Acer ScreenSaver
"{7B577E09-C0C6-7C31-7E3B-9EAE6D2F477B}" = CCC Help Thai
"{7FFDACF9-FB80-B850-FD13-9282CBEDB146}" = CCC Help Russian
"{80A6D4BB-63C1-3DFD-DA6E-EE690812284D}" = Catalyst Control Center Graphics Full Existing
"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
"{849E535E-9603-8142-9B2C-4EE38DEE8008}" = CCC Help Danish
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{86E3BF8E-5F49-F4CD-3B82-B91A73B0BC74}" = Catalyst Control Center Localization Arabic
"{8765A391-F170-107B-7893-8529F226672E}" = CCC Help Czech
"{882181E4-9102-A1C0-27B3-56A83C363583}" = Catalyst Control Center Graphics Previews Vista
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E4FF8EF-94E3-E9F8-B01D-31082ED9EED2}" = CCC Help Italian
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90C5B334-AC20-C1C4-8C3C-BF74A3087D03}" = CCC Help Finnish
"{93028F9A-1EC0-467A-981B-DE93D96897C6}" = Windows Live Essentials
"{94389919-B0AA-4882-9BE8-9F0B004ECA35}" = Acer Tour
"{94C8432D-9C75-03E9-3AB0-C5B0709D95CF}" = Catalyst Control Center Localization Finnish
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95BFF219-80F6-AD1D-22F9-A1722A37055D}" = Catalyst Control Center Graphics Full New
"{9CB7F92D-B82D-4A51-5551-33F6E967E5F8}" = CCC Help Chinese Standard
"{A51080B6-6564-3246-F105-01CD96B6CA27}" = Catalyst Control Center Localization Hungarian
"{A6B90148-02C5-4fd3-8D7A-EF2386835CB9}" = F4100_Help
"{A6C265BE-E2C1-483e-843D-6B4C1E912AE0}" = F4100
"{A7AA93B6-6909-4073-B4EC-45CCDEFD4665}" = NHL® 08
"{A87B11AC-4344-4E5D-8B12-8F471A87DAD9}" = LightScribe 1.4.136.1
"{AB40272D-92AB-4F30-B36B-22EDE16F8FE5}" = HP Update
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB6097D9-D722-4987-BD9E-A076E2848EE2}" = Acer Empowering Technology
"{AC76BA86-7AD7-1033-7B44-A70000000000}" = Adobe Reader 7.0
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{AF047B93-85B5-4F54-AD10-EFE092F57C01}}_is1" = Cycling Diary 2006
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B4509BCE-7BAD-4a8c-B1AE-4D0CE7467C42}" = F4100_doccd
"{B4F35A00-24FD-4fb3-BF5E-413D5423434D}" = DJ_AIO_Software_min
"{B607E77A-5B42-BA12-F51E-433C7370D376}" = Catalyst Control Center Localization Czech
"{B695C12D-427E-7E00-2EF8-00EE77E58DA0}" = CCC Help Greek
"{B8BCC092-DCD1-A3CF-9A24-1A96C7E44F0F}" = Skins
"{BB6928B4-1C6F-695E-2EF3-4AC539B077FA}" = Catalyst Control Center Localization Arabic
"{BBB34DD8-A775-548B-B87E-7C493A364918}" = CCC Help Norwegian
"{BBC8862B-BFC8-475D-9BB8-93289703BD33}" = ESET NOD32 Antivirus
"{BCBC2A14-9AD7-E067-B925-D400B945B0C5}" = ccc-localization-da
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{BF839132-BD43-4056-ACBF-4377F4A88E2A}" = Acer ePresentation Management
"{C06554A1-2C1E-4D20-B613-EE62C79927CC}" = Acer eNet Management
"{C13E90B0-4E1C-11DB-6784-0152EAA218BE}" = Call of Duty(R) 2 Patch 1.3
"{CA50045C-5119-48e7-9BA7-6B317379857A}" = DJ_AIO_Software
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE65A9A0-9686-45C6-9098-3C9543A412F0}" = Acer eSettings Management
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1" = FlatOut2
"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer
"{DD1DED37-2486-4F56-8F89-56AA814003F5}" = Acer OrbiCam
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E548726E-F4E8-459f-BAB8-45551BC071E9}" = DJ_AIO_ProductContext
"{E8C95FCB-88B3-B83D-E825-0CEDE5135940}" = Catalyst Control Center Localization Japanese
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F23C105B-582C-8A9F-88F2-B5E9B1124C4B}" = CCC Help Polish
"{F463F699-2B14-2B53-C7CC-0B7F220F7450}" = Catalyst Control Center Localization Arabic
"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
"{FA8A44D7-3E8A-4034-9C4F-088FA6B72BC4}" = HP Deskjet All-In-One Software 9.0
"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status
"{FDFA99CA-B5F9-13EF-8DCA-58257C3CED79}" = CCC Help Hungarian
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"82A44D22-9452-49FB-00FB-CEC7DCAF7E23" = EA SPORTS online 2008
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"ATI Uninstaller" = ATI Uninstaller
"AVI MPEG WMV Joiner_is1" = AVI MPEG WMV Joiner
"AviSynth" = AviSynth 2.5
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118" = HDAUDIO Soft Data Fax Modem with SmartCP
"Combined Community Codec Pack BETA_is1" = Combined Community Codec Pack BETA 2009-09-19
"FIFA 99" = FIFA 99
"GridVista" = Acer GridVista
"HijackThis" = HijackThis 2.0.2
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Photosmart Essential" = HP Photosmart Essential 2.01
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"HPExtendedCapabilities" = HP Customer Participation Program 9.0
"ICQToolbar" = ICQ Toolbar
"InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"OpenAL" = OpenAL
"rajče.net_is1" = rajče beta50
"Secunia PSI" = Secunia PSI
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"XviD" = XviD MPEG-4 Codec
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"sc10-CH_SF" = Ski Challenge 2010 (SF)
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 16.3.2010 9:53:20 | Computer Name = Admin-PC | Source = Google Update | ID = 20
Description =
Error - 16.3.2010 15:13:23 | Computer Name = Admin-PC | Source = EventSystem | ID = 4621
Description =
Error - 17.3.2010 10:07:39 | Computer Name = Admin-PC | Source = Application Error | ID = 1000
Description = Chybující aplikace psi.exe, verze 1.5.0.1, časové razítko 0x4a8d4779,
chybující modul ntdll.dll, verze 6.0.6000.16386, časové razítko 0x4549bdc9, kód
výjimky 0xc0000005, posun chyby 0x0003b15f, ID procesu 0x9ec, čas spuštění aplikace
0x01cac5d8675b3575.
Error - 17.3.2010 13:11:45 | Computer Name = Admin-PC | Source = EventSystem | ID = 4621
Description =
Error - 18.3.2010 7:35:07 | Computer Name = Admin-PC | Source = Google Update | ID = 20
Description =
Error - 18.3.2010 11:12:37 | Computer Name = Admin-PC | Source = Application Hang | ID = 1002
Description = Program firefox.exe verze 1.9.2.3667 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID
procesu: 324 Čas zahájení: 01cac6a581fd20d3 Čas ukončení: 1346
Error - 18.3.2010 13:09:11 | Computer Name = Admin-PC | Source = Google Update | ID = 20
Description =
Error - 18.3.2010 14:09:09 | Computer Name = Admin-PC | Source = Google Update | ID = 20
Description =
Error - 19.3.2010 11:25:49 | Computer Name = Admin-PC | Source = Application Hang | ID = 1002
Description = Program firefox.exe verze 1.9.2.3667 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID
procesu: c74 Čas zahájení: 01cac775c7a9e75f Čas ukončení: 2946
Error - 19.3.2010 13:24:59 | Computer Name = Admin-PC | Source = Application Hang | ID = 1002
Description = Program firefox.exe verze 1.9.2.3667 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID
procesu: e88 Čas zahájení: 01cac77bf6183fbb Čas ukončení: 2463
[ System Events ]
Error - 17.4.2010 1:55:21 | Computer Name = Admin-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 5 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 17.4.2010 1:55:21 | Computer Name = Admin-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 6 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 17.4.2010 1:55:21 | Computer Name = Admin-PC | Source = ACPI | ID = 327686
Description = IRQARB: Systém ACPI BIOS neobsahuje přerušení IRQ pro zařízení v patici
PCI 7 s funkcí 0. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 17.4.2010 1:57:24 | Computer Name = Admin-PC | Source = Service Control Manager | ID = 7001
Description =
Error - 17.4.2010 1:59:22 | Computer Name = Admin-PC | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 10.0.0.1 pro síťovou kartu s adresou 00197DBEDBB1
byla serverem DHCP 10.0.0.138 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).
< End of report >
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Sekání internetu, pomalejší chod ntb
Spusťte OTL a do spodního okna vložte následující skript.
Kód: Vybrat vše
:OTL
SRV - File not found [Auto | Stopped] -- -- (WMIService)
SRV - File not found [Auto | Stopped] -- -- (MobilityService)
SRV - File not found [Auto | Stopped] -- -- (eSettingsService)
SRV - File not found [Auto | Stopped] -- -- (eRecoveryService)
SRV - File not found [Auto | Stopped] -- -- (eNet Service)
SRV - File not found [Auto | Stopped] -- -- (eLockService)
SRV - File not found [Auto | Stopped] -- -- (eDataSecurity Service)
SRV - File not found [Auto | Stopped] -- -- (CLTNetCnService)
O2 - BHO: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - No CLSID value found.
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O13 - gopher Prefix: missing
O33 - MountPoints2\{dc279f29-2ecf-11df-9f19-480000000000}\Shell\AutoRun\command - "" = G:\autorun.exe -- File not found
[1 C:\Users\Admin\Desktop\*.tmp files -> C:\Users\Admin\Desktop\*.tmp -> ]
[2007.11.23 22:12:43 | 000,386,312 | ---- | C] () -- C:\Windows\System32\server.dll
[2008.02.29 18:49:50 | 000,023,552 | ---- | C] () -- C:\Windows\System32\jesterss.dll
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:9FA5EC55
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:58B11540
:Files
C:\Program Files\Ask.com
:Commands
[EMPTYTEMP]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[CREATERESTOREPOINT]C:\Windows\EMCRI.dll
C:\Windows\System32\HMPV2_ENC.dll
C:\Windows\System32\APISlice.dll
C:\Windows\System32\NotesActnMenu.dll
C:\Windows\System32\MSNSpook.dll
(Soubor nehledejte, jenom vložíte tučně označenou cestu, v případě hlášky "Soubor již byl testován" dejte otestovat znovu. Výsledek analýzy sem v podobě odkazu vložte.)
Re: Sekání internetu, pomalejší chod ntb
Dobrý den, děkuji za rady. Zde je ten log.
All processes killed
========== OTL ==========
Service WMIService stopped successfully!
Service WMIService deleted successfully!
Service MobilityService stopped successfully!
Service MobilityService deleted successfully!
Service eSettingsService stopped successfully!
Service eSettingsService deleted successfully!
Service eRecoveryService stopped successfully!
Service eRecoveryService deleted successfully!
Service eNet Service stopped successfully!
Service eNet Service deleted successfully!
Service eLockService stopped successfully!
Service eLockService deleted successfully!
Service eDataSecurity Service stopped successfully!
Service eDataSecurity Service deleted successfully!
Service CLTNetCnService stopped successfully!
Service CLTNetCnService deleted successfully!
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
C:\Program Files\Ask.com\GenericAskToolbar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{dc279f29-2ecf-11df-9f19-480000000000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dc279f29-2ecf-11df-9f19-480000000000}\ not found.
File G:\autorun.exe not found.
C:\Users\Admin\Desktop\~WRL3471.tmp deleted successfully.
C:\Windows\System32\server.dll moved successfully.
C:\Windows\System32\jesterss.dll moved successfully.
ADS C:\ProgramData\TEMP:9FA5EC55 deleted successfully.
ADS C:\ProgramData\TEMP:58B11540 deleted successfully.
========== FILES ==========
C:\Program Files\Ask.com folder moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: Admin
->Temp folder emptied: 1125126653 bytes
->Temporary Internet Files folder emptied: 346035034 bytes
->Java cache emptied: 39424546 bytes
->FireFox cache emptied: 36597829 bytes
->Google Chrome cache emptied: 155116263 bytes
->Flash cache emptied: 192631 bytes
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1981880489 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 3 514,00 mb
[EMPTYFLASH]
User: Admin
->Flash cache emptied: 0 bytes
User: All Users
User: Default
User: Default User
User: Public
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.1.1 log created on 04172010_204842
Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\CLML_AGENT_LOG1.txt scheduled to be moved on reboot.
File\Folder C:\Windows\temp\sqlite_qCMdGPv6qWYLeMR not found!
C:\Windows\temp\TMP0000000142CE5229CB21024A moved successfully.
Registry entries deleted on Reboot...
All processes killed
========== OTL ==========
Service WMIService stopped successfully!
Service WMIService deleted successfully!
Service MobilityService stopped successfully!
Service MobilityService deleted successfully!
Service eSettingsService stopped successfully!
Service eSettingsService deleted successfully!
Service eRecoveryService stopped successfully!
Service eRecoveryService deleted successfully!
Service eNet Service stopped successfully!
Service eNet Service deleted successfully!
Service eLockService stopped successfully!
Service eLockService deleted successfully!
Service eDataSecurity Service stopped successfully!
Service eDataSecurity Service deleted successfully!
Service CLTNetCnService stopped successfully!
Service CLTNetCnService deleted successfully!
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
C:\Program Files\Ask.com\GenericAskToolbar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{dc279f29-2ecf-11df-9f19-480000000000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dc279f29-2ecf-11df-9f19-480000000000}\ not found.
File G:\autorun.exe not found.
C:\Users\Admin\Desktop\~WRL3471.tmp deleted successfully.
C:\Windows\System32\server.dll moved successfully.
C:\Windows\System32\jesterss.dll moved successfully.
ADS C:\ProgramData\TEMP:9FA5EC55 deleted successfully.
ADS C:\ProgramData\TEMP:58B11540 deleted successfully.
========== FILES ==========
C:\Program Files\Ask.com folder moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: Admin
->Temp folder emptied: 1125126653 bytes
->Temporary Internet Files folder emptied: 346035034 bytes
->Java cache emptied: 39424546 bytes
->FireFox cache emptied: 36597829 bytes
->Google Chrome cache emptied: 155116263 bytes
->Flash cache emptied: 192631 bytes
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1981880489 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 3 514,00 mb
[EMPTYFLASH]
User: Admin
->Flash cache emptied: 0 bytes
User: All Users
User: Default
User: Default User
User: Public
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.1.1 log created on 04172010_204842
Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\CLML_AGENT_LOG1.txt scheduled to be moved on reboot.
File\Folder C:\Windows\temp\sqlite_qCMdGPv6qWYLeMR not found!
C:\Windows\temp\TMP0000000142CE5229CB21024A moved successfully.
Registry entries deleted on Reboot...
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Sekání internetu, pomalejší chod ntb
Prominte,jak to tam mám otestovat? Kde mám vložit ty "hesla" ?
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Sekání internetu, pomalejší chod ntb
Asi ve středu stránky máte bílé políčko, tam vložíte cesty. http://www.virustotal.com/cs/
Re: Sekání internetu, pomalejší chod ntb
Takže dám to sem podle pořadí,ve kterém jste mi ty soubory vypsal.Snad jsem scan provedl správně.
http://www.virustotal.com/cs/analisis/b ... 1271427150
http://www.virustotal.com/cs/analisis/2 ... 1271427852
http://www.virustotal.com/cs/analisis/6 ... 1271533819
http://www.virustotal.com/cs/analisis/a ... 1271533936
http://www.virustotal.com/cs/analisis/f ... 1271534970
http://www.virustotal.com/cs/analisis/b ... 1271427150
http://www.virustotal.com/cs/analisis/2 ... 1271427852
http://www.virustotal.com/cs/analisis/6 ... 1271533819
http://www.virustotal.com/cs/analisis/a ... 1271533936
http://www.virustotal.com/cs/analisis/f ... 1271534970
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Sekání internetu, pomalejší chod ntb
Už se zdá být v pořádku.
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Přispějete na provoz fóra?