Prosím o kontrolu děkuji
Logfile of random's system information tool 1.07 (written by random/random)
Run by Martin at 2010-06-07 19:06:03
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 8 GB (41%) free of 20 GB
Total RAM: 1023 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:06:05, on 7.6.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Multimedia\main\ATIDtct.EXE
C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe
C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Alwil Software\Avast5\setup\avast.setup
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Martin\Plocha\RSIT.exe
C:\Program Files\trend micro\Martin.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60327
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ATI DeviceDetect] C:\Program Files\ATI Multimedia\main\ATIDtct.EXE
O4 - HKCU\..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{CC7286DC-48C7-4BD4-8BBB-949F1E362A8B}: NameServer = 10.0.0.1
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing)
--
End of file - 7964 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2007-11-06 322880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar2.dll [2007-10-26 2403392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2007-11-06 542016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar2.dll [2007-10-26 2403392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-10-22 86016]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-02-01 339968]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2005-02-01 32768]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-05-06 2815192]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-10-14 49152]
"hpqSRMon"= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"ATI Launchpad"= []
"ATI DeviceDetect"=C:\Program Files\ATI Multimedia\main\ATIDtct.EXE [2004-12-01 69709]
"ATI Remote Control"=C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe [2004-08-26 200704]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe [2005-11-24 94208]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
ATI CATALYST System Tray.lnk - C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-02-02 61440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\AOL\Active Virus Shield\avp.exe"="C:\Program Files\AOL\Active Virus Shield\avp.exe:*:Enabled:Active Virus Shield"
"C:\Documents and Settings\Martin\Plocha\WoW-enGB-Installer-downloader.exe"="C:\Documents and Settings\Martin\Plocha\WoW-enGB-Installer-downloader.exe:*:Enabled:Blizzard Downloader"
"G:\Games\World of Warcraft\BackgroundDownloader.exe"="G:\Games\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"G:\Games\World of Warcraft\WoW-2.0.3-enGB-downloader.exe"="G:\Games\World of Warcraft\WoW-2.0.3-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"G:\Games\World of Warcraft\WoW-2.0.3.6299-to-2.0.5.6320-enGB-downloader.exe"="G:\Games\World of Warcraft\WoW-2.0.3.6299-to-2.0.5.6320-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"G:\Games\World of Warcraft\WoW-2.0.5.6320-to-2.0.6.6337-enGB-downloader.exe"="G:\Games\World of Warcraft\WoW-2.0.5.6320-to-2.0.6.6337-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client"
"C:\Program Files\Common Files\aol\acs\AOLDial.exe"="C:\Program Files\Common Files\aol\acs\AOLDial.exe:*:Enabled:AOL Connectivity Service Dialer"
"C:\Program Files\Common Files\aol\acs\AOLacsd.exe"="C:\Program Files\Common Files\aol\acs\AOLacsd.exe:*:Enabled:AOL Connectivity Service"
"C:\Program Files\Common Files\aol\1198335350\ee\aolsoftware.exe"="C:\Program Files\Common Files\aol\1198335350\ee\aolsoftware.exe:*:Enabled:AOL Shared Components"
"C:\Program Files\AOL 9.0\waol.exe"="C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL"
"C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe"="C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe:*:Enabled:AOL TopSpeed"
"C:\Program Files\Common Files\aol\Loader\aolload.exe"="C:\Program Files\Common Files\aol\Loader\aolload.exe:*:Enabled:AOL Loader"
"C:\Program Files\Common Files\aol\System Information\sinf.exe"="C:\Program Files\Common Files\aol\System Information\sinf.exe:*:Enabled:AOL System Information"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQLite\ICQLite.exe"="C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4d691d3e-059f-11dd-8d64-000c763daf07}]
shell\AutoRun\command - H:\Installer.exe
======List of files/folders created in the last 1 months======
2010-06-07 19:03:22 ----D---- C:\rsit
2010-06-07 19:03:22 ----D---- C:\Program Files\trend micro
2010-06-01 20:49:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP Product Assistant
2010-06-01 20:46:43 ----HD---- C:\Config.Msi
2010-06-01 18:00:24 ----D---- C:\Program Files\MSXML 4.0
2010-05-31 19:28:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\WEBREG
2010-05-31 19:21:43 ----D---- C:\Documents and Settings\Martin\Data aplikací\HP
2010-05-31 19:11:56 ----RA---- C:\WINDOWS\system32\hppldcoi.dll
2010-05-31 19:11:56 ----RA---- C:\WINDOWS\system32\hpowiax5.dll
2010-05-31 19:11:56 ----RA---- C:\WINDOWS\system32\hpovst12.dll
2010-05-31 19:11:56 ----RA---- C:\WINDOWS\system32\hpotiop5.dll
2010-05-31 19:11:56 ----RA---- C:\WINDOWS\system32\difxapi.dll
2010-05-31 19:10:56 ----D---- C:\WINDOWS\ie8updates
2010-05-31 19:09:56 ----N---- C:\WINDOWS\system32\SET23E.tmp
2010-05-31 19:09:55 ----N---- C:\WINDOWS\system32\SET23F.tmp
2010-05-31 19:09:54 ----N---- C:\WINDOWS\system32\SET247.tmp
2010-05-31 19:09:54 ----N---- C:\WINDOWS\system32\SET246.tmp
2010-05-31 19:09:54 ----N---- C:\WINDOWS\system32\SET244.tmp
2010-05-31 19:09:54 ----N---- C:\WINDOWS\system32\SET242.tmp
2010-05-31 19:09:53 ----N---- C:\WINDOWS\system32\SET24A.tmp
2010-05-31 19:09:51 ----N---- C:\WINDOWS\system32\SET24C.tmp
2010-05-31 19:06:57 ----HDC---- C:\WINDOWS\ie8
2010-05-31 19:04:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP
2010-05-31 19:03:39 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2010-05-31 19:03:37 ----D---- C:\Program Files\Hewlett-Packard
2010-05-31 19:03:06 ----D---- C:\Program Files\Common Files\HP
2010-05-31 19:01:54 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-05-31 19:01:25 ----D---- C:\Program Files\HP
2010-05-31 18:58:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Hewlett-Packard
2010-05-31 18:57:42 ----RA---- C:\WINDOWS\system32\hpzids01.dll
2010-05-31 18:57:38 ----A---- C:\WINDOWS\system32\hpz3l5ha.dll
2010-05-30 16:25:03 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-05-30 16:24:30 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2010-05-28 18:55:15 ----D---- C:\WINDOWS\system32\XPSViewer
2010-05-28 18:55:09 ----D---- C:\Program Files\MSBuild
2010-05-28 18:55:07 ----D---- C:\WINDOWS\system32\en-US
2010-05-28 18:55:00 ----D---- C:\Program Files\Reference Assemblies
2010-05-28 18:54:31 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-05-28 18:54:31 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-05-28 18:54:31 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-05-28 18:51:49 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2010-05-28 18:51:43 ----D---- C:\Program Files\MSXML 6.0
2010-05-28 18:02:29 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-05-28 18:01:52 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-05-27 21:20:37 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-05-27 21:20:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-05-27 21:20:26 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-05-27 21:20:19 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-05-27 21:20:13 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-05-27 21:20:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-05-27 21:20:01 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-05-27 21:19:55 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-05-27 21:19:45 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-05-27 21:19:39 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-05-27 21:19:34 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-05-27 21:19:29 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-05-27 21:19:21 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-05-27 21:19:14 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-05-27 21:19:08 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-05-27 21:19:01 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2010-05-27 21:18:56 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-05-27 21:18:50 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-05-27 21:18:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-05-27 21:18:31 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-05-27 21:18:25 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-05-27 21:18:19 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-05-27 21:18:11 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-05-27 21:18:06 ----HDC---- C:\WINDOWS\$NtUninstallKB954156_WM9L$
2010-05-27 21:17:58 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-05-27 21:17:43 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-05-27 21:17:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-05-27 21:17:28 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-05-27 21:17:23 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-05-27 21:17:17 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-05-27 21:17:11 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-05-27 21:17:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-05-27 21:17:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-05-27 21:16:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2010-05-27 21:16:45 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-05-27 21:16:39 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-05-27 21:16:32 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-05-27 21:16:24 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-05-27 21:16:18 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-05-27 21:15:57 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-05-27 21:15:50 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-05-27 21:15:44 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-05-27 21:15:37 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-05-27 21:15:33 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-05-27 21:15:28 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-05-27 21:15:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-05-27 21:15:11 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-05-27 21:15:04 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-05-27 21:14:58 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-05-27 21:14:48 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-05-27 21:14:37 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-05-27 21:14:29 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-05-27 21:14:20 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-05-27 21:14:14 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-05-27 21:14:06 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-05-27 21:13:58 ----D---- C:\WINDOWS\ServicePackFiles
2010-05-27 21:13:56 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2010-05-27 21:13:47 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-05-27 21:13:41 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-05-27 21:11:58 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2010-05-27 21:11:51 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-05-27 21:11:45 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-05-27 21:11:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-05-27 21:11:32 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-05-27 21:11:26 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-05-27 21:10:55 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-05-27 21:10:47 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-05-27 21:10:38 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-05-27 18:29:06 ----D---- C:\WINDOWS\system32\CatRoot_bak
2010-05-27 18:20:55 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-05-27 18:12:01 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-05-27 16:26:18 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2010-05-27 16:25:59 ----D---- C:\WINDOWS\system32\PreInstall
2010-05-27 16:25:58 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-05-27 16:20:00 ----A---- C:\WINDOWS\system32\wpa.bak
2010-05-27 16:19:56 ----A---- C:\WINDOWS\system32\pidgen.dll.wga
2010-05-27 16:19:55 ----A---- C:\WINDOWS\system32\dpcdll.dll.wga
2010-05-26 18:03:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
2010-05-26 18:03:03 ----D---- C:\Program Files\DVD Shrink
2010-05-26 17:31:52 ----D---- C:\Documents and Settings\Martin\Data aplikací\Ahead
2010-05-26 17:31:38 ----D---- C:\Documents and Settings\Martin\Data aplikací\X10 Commander
2010-05-26 17:29:52 ----D---- C:\Program Files\Nero
2010-05-26 17:29:52 ----D---- C:\Program Files\Common Files\Ahead
2010-05-22 19:57:10 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-05-22 19:57:03 ----D---- C:\Program Files\Alwil Software
2010-05-22 19:57:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2010-05-22 19:54:24 ----D---- C:\Program Files\SMPlayer
2010-05-22 19:53:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-05-22 19:52:58 ----D---- C:\Program Files\Common Files\Adobe
2010-05-22 19:52:58 ----D---- C:\Program Files\Adobe
2010-05-22 19:52:58 ----A---- C:\WINDOWS\ATIMMC.INI
2010-05-22 19:52:47 ----D---- C:\Documents and Settings\Martin\Data aplikací\ATI MMC
2010-05-22 19:50:44 ----D---- C:\Documents and Settings\Martin\Data aplikací\Mozilla
2010-05-22 19:50:28 ----D---- C:\Program Files\Mozilla Firefox
2010-05-22 15:01:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI MMC
2010-05-22 14:43:16 ----D---- C:\Program Files\ATI Multimedia
2010-05-22 14:42:32 ----D---- C:\Program Files\Common Files\ATI Technologies
2010-05-22 14:41:56 ----D---- C:\Program Files\msaccrt
2010-05-22 14:41:31 ----D---- C:\WINDOWS\system32\windows media
2010-05-22 14:41:28 ----HD---- C:\WINDOWS\msdownld.tmp
2010-05-22 14:41:26 ----D---- C:\Program Files\Windows Media Components
2010-05-22 14:39:54 ----D---- C:\WINDOWS\system32\URTTEMP
2010-05-22 14:37:55 ----D---- C:\Program Files\Common Files\CyberLink
2010-05-22 14:37:55 ----D---- C:\Program Files\Common Files\ATI
2010-05-22 14:36:46 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2010-05-22 14:36:40 ----RA---- C:\WINDOWS\system32\atiiiexx.dll
======List of files/folders modified in the last 1 months======
2010-06-07 19:04:28 ----D---- C:\WINDOWS\Temp
2010-06-07 19:03:49 ----D---- C:\WINDOWS\Prefetch
2010-06-07 19:03:22 ----RD---- C:\Program Files
2010-06-07 18:50:22 ----D---- C:\WINDOWS
2010-06-06 21:22:06 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-06-02 18:00:29 ----SHD---- C:\WINDOWS\Installer
2010-06-02 18:00:28 ----D---- C:\WINDOWS\WinSxS
2010-06-02 18:00:28 ----D---- C:\WINDOWS\system32
2010-06-01 23:05:17 ----D---- C:\WINDOWS\system32\CatRoot2
2010-06-01 21:12:05 ----HD---- C:\WINDOWS\inf
2010-06-01 20:49:53 ----RSD---- C:\WINDOWS\Fonts
2010-06-01 18:01:17 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-06-01 18:01:11 ----HD---- C:\WINDOWS\$hf_mig$
2010-06-01 18:01:08 ----A---- C:\WINDOWS\imsins.BAK
2010-05-31 19:42:29 ----D---- C:\WINDOWS\system32\CatRoot
2010-05-31 19:30:21 ----D---- C:\WINDOWS\system32\cs-cz
2010-05-31 19:30:20 ----D---- C:\WINDOWS\Media
2010-05-31 19:30:20 ----D---- C:\WINDOWS\Help
2010-05-31 19:30:20 ----D---- C:\Program Files\Internet Explorer
2010-05-31 19:20:13 ----A---- C:\WINDOWS\win.ini
2010-05-31 19:18:03 ----D---- C:\WINDOWS\twain_32
2010-05-31 19:13:56 ----A---- C:\WINDOWS\WININIT.INI
2010-05-31 19:13:32 ----D---- C:\WINDOWS\system32\drivers
2010-05-31 19:03:39 ----D---- C:\Program Files\Common Files
2010-05-31 18:17:49 ----D---- C:\Documents and Settings\Martin\Data aplikací\MxBoost
2010-05-31 18:15:46 ----SD---- C:\WINDOWS\Tasks
2010-05-30 21:13:48 ----D---- C:\WINDOWS\Microsoft.NET
2010-05-30 21:13:47 ----RSD---- C:\WINDOWS\assembly
2010-05-30 16:27:58 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-05-28 18:54:42 ----D---- C:\WINDOWS\system32\spool
2010-05-28 16:09:35 ----SD---- C:\Documents and Settings\Martin\Data aplikací\Microsoft
2010-05-28 16:08:59 ----D---- C:\WINDOWS\system32\wbem
2010-05-28 16:08:59 ----D---- C:\WINDOWS\AppPatch
2010-05-28 16:08:58 ----D---- C:\WINDOWS\system32\Setup
2010-05-27 21:20:15 ----D---- C:\Program Files\Messenger
2010-05-27 21:18:38 ----D---- C:\WINDOWS\ie7updates
2010-05-27 21:17:19 ----D---- C:\Program Files\Movie Maker
2010-05-27 21:14:32 ----D---- C:\Program Files\Outlook Express
2010-05-27 21:13:35 ----D---- C:\WINDOWS\Registration
2010-05-27 18:29:06 ----D---- C:\WINDOWS\Debug
2010-05-27 16:23:43 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-05-27 16:20:03 ----A---- C:\WINDOWS\setuplog.txt
2010-05-26 17:54:40 ----D---- C:\Program Files\Maxthon2
2010-05-23 20:23:52 ----D---- C:\Documents and Settings\Martin\Data aplikací\Adobe
2010-05-22 19:57:16 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-05-22 14:44:21 ----D---- C:\Program Files\ATI Technologies
2010-05-22 14:41:31 ----D---- C:\WINDOWS\RegisteredPackages
2010-05-22 14:41:11 ----HD---- C:\Program Files\Uninstall Information
2010-05-22 14:37:20 ----RD---- C:\WINDOWS\Web
2010-05-22 14:37:19 ----HD---- C:\Program Files\InstallShield Installation Information
2010-05-19 17:02:38 ----D---- C:\Program Files\Spybot - Search & Destroy
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-05-06 28880]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2004-08-17 41216]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-05-06 164048]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-05-06 46672]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-05-06 19024]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-05-06 100432]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-08-18 4017536]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-05-06 23376]
R3 ATI Remote Wonder II;ATI Remote Wonder II; C:\WINDOWS\system32\drivers\ATIRWVD.SYS [2004-01-23 258044]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-02-02 970240]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2007-11-01 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2007-11-01 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2007-11-01 21568]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-04 59264]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588]
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-02-02 344064]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-05-06 40384]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2004-08-17 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2004-08-17 14336]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-10 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-05-06 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-05-06 40384]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2005-02-01 516096]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-10-26 138168]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 x10nets;X10 Device Network Service; C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu
Zdravim a preji prijemny vecer,
Doporucuji odinstalovat Spybot - Search & Destroy - tento program ja jiz nejlepsi leta za sebou
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy
Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
Doporucuji odinstalovat Spybot - Search & Destroy - tento program ja jiz nejlepsi leta za sebou Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)
- Stahne a ulozte na plochu [url=hhttp://pagesperso-orange.fr/NosTools/Chiquitine29/UsbFix.exe]UsbFix[/url]
- Spustte a kliknete na Deletion
- Po dokonceni sem vlozte log, pokud na Vas nevyskoci, najdete jej zde C:\UsbFix.txt
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
netsvcs drivers32 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s c:\windows\*.* /U %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s /md5start eventlog.dll scecli.dll netlogon.dll cngaudit.dll sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys nvrd32.sys symmpi.sys adp3132.sys mv61xx.sys nvraid.sys ndis.sys winlogon.exe explorer.exe userinit.exe lsass.exe svchost.exe smss.exe hal.dll ws2_32.dll tcpip.sys cryptsvc.dll Changer.sys JakNDis.sys isapnp.sys cdrom.sys /md5stop %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 CREATERESTOREPOINT- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 5min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
UsbFix nejde stáhnout
Naposledy upravil(a) bmwacs dne 08 čer 2010 16:24, celkem upraveno 2 x.
Re: Prosím o kontrolu
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
Je mi to divne, jelikoz jsem jej ted normalne stahnul, ale beru na vedomi...
Prosim needitujte svuj prispevek, pokud je pod nim jiz muj, nevidim potom ze jste mi odpovedel...
Stahnete USBFix z letecke posty TADY, rozbalte na plochu a spustte dle navodu vyse
Prosim needitujte svuj prispevek, pokud je pod nim jiz muj, nevidim potom ze jste mi odpovedel... Stahnete USBFix z letecke posty TADY, rozbalte na plochu a spustte dle navodu vyse"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
############################## | UsbFix V6.059 |
User : Martin (Administrators) # BMW-9A651D0C4E9
Update on 01/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 17:14:36 | 8.6.2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
AMD Athlon(tm) XP 2500+
Systém Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled
AV : avast! Antivirus 5.0.83886625 [ Enabled | Updated ]
A:\ -> Disketová jednotka 3 1/2"
C:\ -> Místní pevný disk # 19,53 Go (9,05 Go free) # NTFS
D:\ -> Místní pevný disk # 54,99 Go (19,35 Go free) # NTFS
E:\ -> Disk CD-ROM
F:\ -> Místní pevný disk # 19,53 Go (8,7 Go free) # NTFS
G:\ -> Místní pevný disk # 92,25 Go (14,42 Go free) # NTFS
H:\ -> Vyměnitelný disk
I:\ -> Vyměnitelný disk
J:\ -> Vyměnitelný disk
K:\ -> Vyměnitelný disk
############################## | Active processes |
C:\WINDOWS\System32\smss.exe 616
C:\WINDOWS\system32\csrss.exe 664
C:\WINDOWS\system32\winlogon.exe 688
C:\WINDOWS\system32\services.exe 732
C:\WINDOWS\system32\lsass.exe 744
C:\WINDOWS\system32\Ati2evxx.exe 908
C:\WINDOWS\system32\svchost.exe 928
C:\WINDOWS\system32\svchost.exe 1000
C:\WINDOWS\System32\svchost.exe 1088
C:\WINDOWS\system32\svchost.exe 1208
C:\WINDOWS\system32\svchost.exe 1324
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe 1536
C:\WINDOWS\system32\Ati2evxx.exe 1572
C:\WINDOWS\system32\WgaTray.exe 1632
C:\WINDOWS\Explorer.EXE 1648
C:\WINDOWS\system32\spoolsv.exe 196
C:\Program Files\Alwil Software\Avast5\setup\avast.setup 248
C:\WINDOWS\system32\svchost.exe 476
C:\WINDOWS\system32\svchost.exe 544
C:\WINDOWS\System32\svchost.exe 604
C:\WINDOWS\System32\svchost.exe 948
C:\WINDOWS\system32\svchost.exe 1080
C:\WINDOWS\system32\wdfmgr.exe 1272
C:\WINDOWS\system32\wuauclt.exe 1588
C:\WINDOWS\system32\wbem\wmiprvse.exe 316
C:\WINDOWS\System32\alg.exe 2068
################## | Files # Infected Folders |
Deleted ! C:\DOCUME~1\Martin\LOCALS~1\Temp\zprava_225.zip
################## | Spyware.OnlineGames |
################## | Registry # Infected Keys |
################## | Registry # Mountpoints2 |
Deleted ! HKCU\...\Explorer\MountPoints2\{4d691d3e-059f-11dd-8d64-000c763daf07}\Shell\AutoRun\Command
################## | Listing of the present files |
[25.11.2006 17:45|--a------|0] C:\AUTOEXEC.BAT
[25.11.2006 17:40|---hs----|211] C:\boot.ini
[25.10.2001 16:00|-rahs----|4952] C:\Bootfont.bin
[25.11.2006 17:45|--a------|0] C:\CONFIG.SYS
[?|?|?] C:\hiberfil.sys
[21.07.2008 18:29|--a------|92] C:\ICQ nummer.txt
[25.11.2006 17:45|-rahs----|0] C:\IO.SYS
[22.05.2010 14:37|--a------|347] C:\mmcInst.log
[25.11.2006 17:45|-rahs----|0] C:\MSDOS.SYS
[03.08.2004 22:38|-rahs----|47564] C:\NTDETECT.COM
[03.08.2004 22:59|-rahs----|250048] C:\ntldr
[?|?|?] C:\pagefile.sys
[08.06.2010 17:20|--a------|2937] C:\UsbFix.txt
################## | Vaccination |
# C:\autorun.inf -> Folder created by UsbFix.
# D:\autorun.inf -> Folder created by UsbFix.
# F:\autorun.inf -> Folder created by UsbFix.
# G:\autorun.inf -> Folder created by UsbFix.
################## | Cracks / Keygens / Serials |
"D:\Programs\Burn\Ahead.Nero.v7.0.1.4.Premium.Edition-ORiON\Keygen.exe"
08.03.2006 22:59 |Size 101888 |Crc32 a4b5f8e3 |Md5 47d56fbab005991cc0a3b3a1d6e5d09e
"G:\Games\Half Life\HalfLife\_CDkeygen.exe"
04.03.2003 15:19 |Size 190464 |Crc32 e5c4f468 |Md5 083afd8eb305881f85a981fb68e59929
"D:\Programs\convert Movies\mpegable\crack.zip"
-> Contain : Patch.exe 68096 DFLT-N 5% 64880 26-06-2004 12:55:56 04d1b732
################## | Upload |
Please send the file : C:\DOCUME~1\Martin\Plocha\UsbFix_Upload_Me_BMW-9A651D0C4E9.zip : http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution .
################## | ! End of report # UsbFix V6.059 ! |
User : Martin (Administrators) # BMW-9A651D0C4E9
Update on 01/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 17:14:36 | 8.6.2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
AMD Athlon(tm) XP 2500+
Systém Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled
AV : avast! Antivirus 5.0.83886625 [ Enabled | Updated ]
A:\ -> Disketová jednotka 3 1/2"
C:\ -> Místní pevný disk # 19,53 Go (9,05 Go free) # NTFS
D:\ -> Místní pevný disk # 54,99 Go (19,35 Go free) # NTFS
E:\ -> Disk CD-ROM
F:\ -> Místní pevný disk # 19,53 Go (8,7 Go free) # NTFS
G:\ -> Místní pevný disk # 92,25 Go (14,42 Go free) # NTFS
H:\ -> Vyměnitelný disk
I:\ -> Vyměnitelný disk
J:\ -> Vyměnitelný disk
K:\ -> Vyměnitelný disk
############################## | Active processes |
C:\WINDOWS\System32\smss.exe 616
C:\WINDOWS\system32\csrss.exe 664
C:\WINDOWS\system32\winlogon.exe 688
C:\WINDOWS\system32\services.exe 732
C:\WINDOWS\system32\lsass.exe 744
C:\WINDOWS\system32\Ati2evxx.exe 908
C:\WINDOWS\system32\svchost.exe 928
C:\WINDOWS\system32\svchost.exe 1000
C:\WINDOWS\System32\svchost.exe 1088
C:\WINDOWS\system32\svchost.exe 1208
C:\WINDOWS\system32\svchost.exe 1324
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe 1536
C:\WINDOWS\system32\Ati2evxx.exe 1572
C:\WINDOWS\system32\WgaTray.exe 1632
C:\WINDOWS\Explorer.EXE 1648
C:\WINDOWS\system32\spoolsv.exe 196
C:\Program Files\Alwil Software\Avast5\setup\avast.setup 248
C:\WINDOWS\system32\svchost.exe 476
C:\WINDOWS\system32\svchost.exe 544
C:\WINDOWS\System32\svchost.exe 604
C:\WINDOWS\System32\svchost.exe 948
C:\WINDOWS\system32\svchost.exe 1080
C:\WINDOWS\system32\wdfmgr.exe 1272
C:\WINDOWS\system32\wuauclt.exe 1588
C:\WINDOWS\system32\wbem\wmiprvse.exe 316
C:\WINDOWS\System32\alg.exe 2068
################## | Files # Infected Folders |
Deleted ! C:\DOCUME~1\Martin\LOCALS~1\Temp\zprava_225.zip
################## | Spyware.OnlineGames |
################## | Registry # Infected Keys |
################## | Registry # Mountpoints2 |
Deleted ! HKCU\...\Explorer\MountPoints2\{4d691d3e-059f-11dd-8d64-000c763daf07}\Shell\AutoRun\Command
################## | Listing of the present files |
[25.11.2006 17:45|--a------|0] C:\AUTOEXEC.BAT
[25.11.2006 17:40|---hs----|211] C:\boot.ini
[25.10.2001 16:00|-rahs----|4952] C:\Bootfont.bin
[25.11.2006 17:45|--a------|0] C:\CONFIG.SYS
[?|?|?] C:\hiberfil.sys
[21.07.2008 18:29|--a------|92] C:\ICQ nummer.txt
[25.11.2006 17:45|-rahs----|0] C:\IO.SYS
[22.05.2010 14:37|--a------|347] C:\mmcInst.log
[25.11.2006 17:45|-rahs----|0] C:\MSDOS.SYS
[03.08.2004 22:38|-rahs----|47564] C:\NTDETECT.COM
[03.08.2004 22:59|-rahs----|250048] C:\ntldr
[?|?|?] C:\pagefile.sys
[08.06.2010 17:20|--a------|2937] C:\UsbFix.txt
################## | Vaccination |
# C:\autorun.inf -> Folder created by UsbFix.
# D:\autorun.inf -> Folder created by UsbFix.
# F:\autorun.inf -> Folder created by UsbFix.
# G:\autorun.inf -> Folder created by UsbFix.
################## | Cracks / Keygens / Serials |
"D:\Programs\Burn\Ahead.Nero.v7.0.1.4.Premium.Edition-ORiON\Keygen.exe"
08.03.2006 22:59 |Size 101888 |Crc32 a4b5f8e3 |Md5 47d56fbab005991cc0a3b3a1d6e5d09e
"G:\Games\Half Life\HalfLife\_CDkeygen.exe"
04.03.2003 15:19 |Size 190464 |Crc32 e5c4f468 |Md5 083afd8eb305881f85a981fb68e59929
"D:\Programs\convert Movies\mpegable\crack.zip"
-> Contain : Patch.exe 68096 DFLT-N 5% 64880 26-06-2004 12:55:56 04d1b732
################## | Upload |
Please send the file : C:\DOCUME~1\Martin\Plocha\UsbFix_Upload_Me_BMW-9A651D0C4E9.zip : http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution .
################## | ! End of report # UsbFix V6.059 ! |
Re: Prosím o kontrolu
Dle pravidel fora (viz zde a a zde bod c.3 ) se vsak nelegalnim SW nezabyvame, jelikoz nelegalni programy jsou vetsinou zdrojem haveti. Navic tim porusujete i autorska pravabmwacs píše: ################## | Cracks / Keygens / Serials |
"D:\Programs\Burn\Ahead.Nero.v7.0.1.4.Premium.Edition-ORiON\Keygen.exe"
08.03.2006 22:59 |Size 101888 |Crc32 a4b5f8e3 |Md5 47d56fbab005991cc0a3b3a1d6e5d09e
"G:\Games\Half Life\HalfLife\_CDkeygen.exe"
04.03.2003 15:19 |Size 190464 |Crc32 e5c4f468 |Md5 083afd8eb305881f85a981fb68e59929
"D:\Programs\convert Movies\mpegable\crack.zip"
-> Contain : Patch.exe 68096 DFLT-N 5% 64880 26-06-2004 12:55:56 04d1b732
.Takze smazat 
Stahnete na plochu CKScanner
- Spustte a kliknete na Search for files
- Po dokonceni skenu kliknete na Save List to File a nasledne OK
- Na plose se Vam vytvori log s nazvem ckfiles.txt, jeho obsah mi sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
smazáno je to PC známého ani neví co stahuje děkuji
Re: Prosím o kontrolu
OTL logfile created on: 8.6.2010 17:28:21 - Run 1
OTL by OldTimer - Version 3.2.5.3 Folder = C:\Documents and Settings\Martin\Plocha
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 023,00 Mb Total Physical Memory | 648,00 Mb Available Physical Memory | 63,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 9,30 Gb Free Space | 47,59% Space Free | Partition Type: NTFS
Drive D: | 54,99 Gb Total Space | 19,35 Gb Free Space | 35,18% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 19,53 Gb Total Space | 8,70 Gb Free Space | 44,53% Space Free | Partition Type: NTFS
Drive G: | 92,25 Gb Total Space | 14,42 Gb Free Space | 15,63% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: BMW-9A651D0C4E9
Current User Name: Martin
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.06.08 17:27:33 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Martin\Plocha\OTL.exe
PRC - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (SafeList) ==========
MOD - [2010.06.08 17:27:33 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Martin\Plocha\OTL.exe
MOD - [2004.08.17 15:48:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004.08.03 23:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (x10nets)
SRV - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
========== Driver Services (SafeList) ==========
DRV - [2010.05.06 22:39:23 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010.05.06 22:39:00 | 000,164,048 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2010.05.06 22:34:27 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010.05.06 22:33:59 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010.05.06 22:33:47 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.05.06 22:33:29 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2008.04.08 21:07:16 | 000,716,272 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2006.10.22 12:22:00 | 003,994,624 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006.08.18 14:52:00 | 004,017,536 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2006.02.23 12:38:32 | 000,009,728 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32)
DRV - [2005.02.02 04:39:18 | 000,970,240 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2004.08.04 00:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2004.01.23 16:52:31 | 000,258,044 | ---- | M] (Jungo) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\atirwvd.sys -- (ATI Remote Wonder II)
DRV - [2003.07.02 05:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2003.01.10 23:13:04 | 000,033,588 | R--- | M] (America Online, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60327
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKU\S-1-5-21-2052111302-796845957-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Seznam"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz"
FF - prefs.js..extensions.enabledItems: {ea614400-e918-4741-9a97-7a972ff7c30b}:2.0.10
FF - prefs.js..keyword.URL: "http://search.seznam.cz/?sourceid=FF_5&q="
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.05.22 19:50:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.05.27 16:15:07 | 000,000,000 | ---D | M]
[2010.05.22 19:50:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Extensions
[2010.06.07 19:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\t32exknq.default\extensions
[2010.05.31 16:14:53 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\t32exknq.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.06.07 19:00:43 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.05.22 19:50:28 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Program Files\Mozilla Firefox\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2010.04.13 21:24:08 | 000,002,046 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\firmycz.xml
[2010.04.13 21:24:30 | 000,002,041 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mapycz.xml
[2010.04.13 21:24:42 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.04.13 21:24:54 | 000,002,207 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\zbocz.xml
O1 HOSTS File: ([2001.10.25 16:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\..\Toolbar\WebBrowser: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found.
O3 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
O4 - HKLM..\Run: [hpqSRMon] File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKU\.DEFAULT..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKU\S-1-5-18..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKU\S-1-5-21-2052111302-796845957-839522115-1003..\Run: [ATI DeviceDetect] C:\Program Files\ATI Multimedia\main\atidtct.exe (ATI Technologies Inc.)
O4 - HKU\S-1-5-21-2052111302-796845957-839522115-1003..\Run: [ATI Launchpad] File not found
O4 - HKU\S-1-5-21-2052111302-796845957-839522115-1003..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.EXE (ATI Technologies Inc.)
O4 - HKU\S-1-5-21-2052111302-796845957-839522115-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe (Nero AG)
O4 - HKLM..\RunOnce: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe (ATI Technologies Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 145
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 145
O7 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 0
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra Button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (ICQ, Inc.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (ICQ, Inc.)
O15 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.11.25 17:45:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010.06.08 17:20:11 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010.06.08 17:20:11 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010.06.08 17:20:11 | 000,000,000 | RHSD | M] - F:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010.06.08 17:20:11 | 000,000,000 | RHSD | M] - G:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2006.11.25 17:44:59 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.a3d - C:\WINDOWS\System32\a3d.dll (Aureal Semiconductor)
Drivers32: msacm.divxa - C:\WINDOWS\System32\divxa32.acm (build Pinky.cz)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3radius - C:\WINDOWS\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.ogg - C:\WINDOWS\System32\ogg.dll ()
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: msacm.vorbisenc - C:\WINDOWS\System32\vorbisenc.dll ()
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.div3 - C:\WINDOWS\System32\divxc32.dll (build Pinky.cz)
Drivers32: vidc.div4 - C:\WINDOWS\System32\divxc32f.dll (Pinky.cz)
Drivers32: vidc.divx - C:\WINDOWS\System32\divx.dll (DivXNetworks, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.mp43 - C:\WINDOWS\System32\mpg4c32.dll (Microsoft Corporation)
Drivers32: vidc.xvid - C:\WINDOWS\System32\xvid.dll ()
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (55745656140070912)
========== Files/Folders - Created Within 30 Days ==========
[2010.06.08 17:27:28 | 000,571,904 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Martin\Plocha\OTL.exe
[2010.06.08 17:20:11 | 000,000,000 | RHSD | C] -- C:\autorun.inf
[2010.06.08 17:10:58 | 000,000,000 | ---D | C] -- C:\UsbFix
[2010.06.08 17:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010.06.08 17:04:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Designer
[2010.06.08 17:02:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\ShellNew
[2010.06.08 17:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\Microsoft Web Folders
[2010.06.08 17:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010.06.07 19:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.06.07 19:03:22 | 000,000,000 | ---D | C] -- C:\rsit
[2010.06.01 20:49:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HP Product Assistant
[2010.06.01 20:46:43 | 000,000,000 | -H-D | C] -- C:\Config.Msi
[2010.06.01 18:00:24 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010.05.31 21:16:57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Martin\PrivacIE
[2010.05.31 19:30:36 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Martin\IETldCache
[2010.05.31 19:28:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\WEBREG
[2010.05.31 19:21:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\HP
[2010.05.31 19:20:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\HP
[2010.05.31 19:11:56 | 000,970,752 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotiop5.dll
[2010.05.31 19:11:56 | 000,729,088 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpowiax5.dll
[2010.05.31 19:11:56 | 000,364,544 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll
[2010.05.31 19:11:56 | 000,309,760 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2010.05.31 19:11:56 | 000,303,104 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst12.dll
[2010.05.31 19:11:55 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2010.05.31 19:10:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010.05.31 19:06:57 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010.05.31 19:04:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HP
[2010.05.31 19:03:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2010.05.31 19:03:37 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010.05.31 19:03:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2010.05.31 19:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2010.05.31 19:01:25 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2010.05.31 18:58:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Hewlett-Packard
[2010.05.31 18:57:42 | 000,271,704 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpzids01.dll
[2010.05.31 18:57:38 | 000,118,272 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpz3l5ha.dll
[2010.05.30 15:57:47 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2010.05.28 18:55:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2010.05.28 18:55:09 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010.05.28 18:55:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2010.05.28 18:55:00 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2010.05.28 18:54:31 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2010.05.28 18:54:31 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2010.05.28 18:54:31 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2010.05.28 18:54:31 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2010.05.28 18:54:31 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2010.05.28 18:54:31 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2010.05.28 18:51:43 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2010.05.27 21:13:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010.05.27 18:29:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2010.05.27 18:23:24 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2010.05.27 18:14:55 | 000,454,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2010.05.27 18:14:05 | 002,060,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2010.05.27 18:14:05 | 002,018,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010.05.27 18:14:04 | 002,183,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2010.05.27 18:14:03 | 002,139,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010.05.27 18:12:01 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010.05.27 16:26:18 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2010.05.27 16:25:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010.05.27 16:19:56 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pidgen.dll.wga
[2010.05.27 16:19:55 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpcdll.dll.wga
[2010.05.26 18:03:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
[2010.05.26 18:03:03 | 000,000,000 | ---D | C] -- C:\Program Files\DVD Shrink
[2010.05.26 17:34:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\Ahead
[2010.05.26 17:31:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\Ahead
[2010.05.26 17:31:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\X10 Commander
[2010.05.26 17:29:52 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2010.05.26 17:29:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2010.05.23 20:23:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\Adobe
[2010.05.22 19:57:25 | 000,164,048 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010.05.22 19:57:25 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010.05.22 19:57:24 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010.05.22 19:57:23 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010.05.22 19:57:22 | 000,100,432 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010.05.22 19:57:22 | 000,094,800 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010.05.22 19:57:21 | 000,028,880 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010.05.22 19:57:10 | 000,165,032 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010.05.22 19:57:10 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010.05.22 19:57:03 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010.05.22 19:57:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.05.22 19:54:24 | 000,000,000 | ---D | C] -- C:\Program Files\SMPlayer
[2010.05.22 19:53:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Adobe
[2010.05.22 19:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010.05.22 19:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010.05.22 19:52:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\ATI MMC
[2010.05.22 19:51:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\Stažené soubory
[2010.05.22 19:50:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\Mozilla
[2010.05.22 19:50:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\Mozilla
[2010.05.22 19:50:28 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010.05.22 15:02:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\ApplicationHistory
[2010.05.22 15:01:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ATI MMC
[2010.05.22 14:45:53 | 000,258,044 | ---- | C] (Jungo) -- C:\WINDOWS\System32\drivers\atirwvd.sys
[2010.05.22 14:45:53 | 000,009,091 | ---- | C] (ATI Technologies.Inc) -- C:\WINDOWS\System32\drivers\atirwrf.sys
[2010.05.22 14:43:16 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Multimedia
[2010.05.22 14:42:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2010.05.22 14:41:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windows media
[2010.05.22 14:41:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\msdownld.tmp
[2010.05.22 14:41:26 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Components
[2010.05.22 14:39:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP
[2010.05.22 14:37:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\CyberLink
[2010.05.22 14:37:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI
[2010.05.22 14:36:40 | 000,299,008 | R--- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atiiiexx.dll
[2010.05.22 12:59:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Martin\Dokumenty\Tatik fotky
[2010.05.22 12:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\BMW Loga
[2010.05.22 12:58:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\BMW Club
[46 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[32 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.06.08 17:27:33 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Martin\Plocha\OTL.exe
[2010.06.08 17:26:41 | 002,883,584 | -H-- | M] () -- C:\Documents and Settings\Martin\NTUSER.DAT
[2010.06.08 17:20:28 | 000,492,245 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\UsbFix_Upload_Me_BMW-9A651D0C4E9.zip
[2010.06.08 17:14:35 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.06.08 17:12:48 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.08 17:12:34 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.08 17:12:30 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys
[2010.06.08 17:12:30 | 000,117,360 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.06.08 17:11:44 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Martin\ntuser.ini
[2010.06.08 17:11:37 | 005,361,092 | -H-- | M] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\IconCache.db
[2010.06.08 17:10:55 | 001,364,336 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\UsbFix.exe
[2010.06.08 17:09:58 | 000,260,408 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\SoftonicDownloader85590.exe
[2010.06.08 17:05:36 | 000,000,390 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2010.06.08 17:05:22 | 000,000,059 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010.06.08 17:04:48 | 000,000,625 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.06.08 17:04:41 | 000,001,727 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
[2010.06.01 20:50:07 | 000,078,181 | ---- | M] () -- C:\WINDOWS\hpqins05.dat
[2010.06.01 20:47:58 | 000,000,994 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Centrum řešení HP.lnk
[2010.06.01 18:01:08 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.05.31 21:09:54 | 000,011,685 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\PBAA33VXD T.jpg
[2010.05.31 19:29:07 | 000,166,603 | ---- | M] () -- C:\WINDOWS\hpoins21.dat
[2010.05.31 19:25:13 | 000,000,873 | ---- | M] () -- C:\WINDOWS\System32\spupdsvc.inf
[2010.05.31 19:20:33 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Martin\Y=Y=
[2010.05.31 19:13:56 | 000,000,010 | ---- | M] () -- C:\WINDOWS\WININIT.INI
[2010.05.31 19:10:27 | 000,001,858 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\HP Photosmart Essential 2.5.lnk
[2010.05.31 19:09:14 | 000,001,958 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Shop for HP Supplies.lnk
[2010.05.31 19:06:13 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
[2010.05.31 18:59:57 | 000,180,611 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\formular_pro_uraz.PDF
[2010.05.30 16:27:58 | 001,003,676 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.05.30 16:27:58 | 000,440,684 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.05.30 16:27:58 | 000,437,062 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.05.30 16:27:58 | 000,082,462 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.05.30 16:27:58 | 000,071,002 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.05.30 16:02:57 | 000,088,090 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\vbn.xps
[2010.05.30 15:59:29 | 000,088,100 | ---- | M] () -- C:\Documents and Settings\Martin\Dokumenty\sml.xps
[2010.05.30 15:57:31 | 000,012,328 | ---- | M] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.05.27 16:19:59 | 000,013,588 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2010.05.27 16:15:07 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.05.26 18:10:30 | 000,007,168 | ---- | M] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.26 18:03:04 | 000,000,670 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\DVD Shrink 3.2.lnk
[2010.05.26 17:36:33 | 000,043,062 | ---- | M] () -- C:\Documents and Settings\Martin\Dokumenty\UserImages.bmp
[2010.05.26 17:32:22 | 000,002,335 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Nero StartSmart.lnk
[2010.05.22 19:57:22 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.05.22 19:54:30 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\SMPlayer.lnk
[2010.05.22 19:52:58 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ATIMMC.INI
[2010.05.22 15:02:01 | 000,000,126 | ---- | M] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\fusioncache.dat
[2010.05.22 14:44:59 | 000,002,040 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\ATI Catalyst Control Center.lnk
[2010.05.22 14:44:59 | 000,001,851 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ATI CATALYST System Tray.lnk
[46 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[32 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.06.08 17:20:28 | 000,492,245 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\UsbFix_Upload_Me_BMW-9A651D0C4E9.zip
[2010.06.08 17:10:49 | 001,364,336 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\UsbFix.exe
[2010.06.08 17:09:57 | 000,260,408 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\SoftonicDownloader85590.exe
[2010.06.08 17:05:36 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010.06.08 17:04:40 | 000,001,727 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
[2010.06.01 20:47:55 | 000,000,994 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Centrum řešení HP.lnk
[2010.06.01 20:46:27 | 000,078,181 | ---- | C] () -- C:\WINDOWS\hpqins05.dat
[2010.05.31 21:09:53 | 000,011,685 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\PBAA33VXD T.jpg
[2010.05.31 19:25:13 | 000,000,873 | ---- | C] () -- C:\WINDOWS\System32\spupdsvc.inf
[2010.05.31 19:20:33 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Martin\Y=Y=
[2010.05.31 19:10:27 | 000,001,858 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\HP Photosmart Essential 2.5.lnk
[2010.05.31 19:09:14 | 000,001,958 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Shop for HP Supplies.lnk
[2010.05.31 19:06:13 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
[2010.05.31 18:59:57 | 000,180,611 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\formular_pro_uraz.PDF
[2010.05.31 18:58:06 | 000,166,603 | ---- | C] () -- C:\WINDOWS\hpoins21.dat
[2010.05.31 18:58:06 | 000,007,262 | ---- | C] () -- C:\WINDOWS\hpomdl21.dat
[2010.05.31 18:58:06 | 000,001,546 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log
[2010.05.30 16:02:56 | 000,088,090 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\vbn.xps
[2010.05.30 15:59:24 | 000,088,100 | ---- | C] () -- C:\Documents and Settings\Martin\Dokumenty\sml.xps
[2010.05.27 16:20:00 | 000,013,588 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak
[2010.05.26 18:03:04 | 000,000,670 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\DVD Shrink 3.2.lnk
[2010.05.26 17:36:33 | 000,043,062 | ---- | C] () -- C:\Documents and Settings\Martin\Dokumenty\UserImages.bmp
[2010.05.26 17:32:22 | 000,002,335 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Nero StartSmart.lnk
[2010.05.22 19:54:30 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\SMPlayer.lnk
[2010.05.22 19:53:24 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.05.22 19:52:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ATIMMC.INI
[2010.05.22 15:02:01 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\fusioncache.dat
[2010.05.22 14:48:58 | 1073,270,784 | -HS- | C] () -- C:\hiberfil.sys
[2010.05.22 14:44:59 | 000,002,040 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\ATI Catalyst Control Center.lnk
[2010.05.22 14:44:59 | 000,001,851 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ATI CATALYST System Tray.lnk
[2010.05.22 14:36:46 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2010.05.22 14:36:39 | 000,009,490 | R--- | C] () -- C:\WINDOWS\System32\atifglpf.xml
[2010.05.22 14:36:38 | 000,073,845 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2008.07.21 17:35:45 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2008.05.02 10:19:08 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008.05.02 10:19:08 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008.05.02 10:19:06 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008.05.02 10:19:04 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008.05.02 10:19:03 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008.05.02 10:19:03 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2008.05.02 10:18:57 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2008.04.08 21:07:15 | 000,716,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007.12.22 17:40:59 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2007.02.02 16:12:21 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2007.02.02 16:12:07 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2004.07.17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004.01.28 11:42:06 | 000,013,601 | ---- | C] () -- C:\WINDOWS\System32\vctest.ini
[2003.07.16 14:09:32 | 000,202,752 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2002.10.06 21:42:58 | 000,105,472 | ---- | C] () -- C:\WINDOWS\System32\oggds.dll
[2002.10.05 02:04:26 | 000,092,672 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2002.10.05 02:04:26 | 000,080,384 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2002.10.05 02:04:18 | 000,021,504 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2002.05.17 23:18:30 | 000,039,936 | ---- | C] () -- C:\WINDOWS\System32\mp4fil32.dll
[1999.01.22 20:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
========== LOP Check ==========
[2010.05.22 19:57:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2007.12.22 16:56:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Viewpoint
[2008.07.25 00:23:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ICQ
[2007.02.01 20:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ICQLite
[2010.05.31 18:17:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\MxBoost
[2008.09.08 22:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\uTorrent
[2010.05.26 17:31:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\X10 Commander
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2004.08.17 15:49:24 | 000,015,360 | ---- | M] (Microsoft Corporation)
"ATI Launchpad" =
"ATI DeviceDetect" = C:\Program Files\ATI Multimedia\main\ATIDtct.EXE -- [2004.12.01 15:28:28 | 000,069,709 | ---- | M] (ATI Technologies Inc.)
"ATI Remote Control" = C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe -- [2004.08.26 23:51:36 | 000,200,704 | ---- | M] (ATI Technologies Inc.)
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" -- [2005.11.24 15:38:08 | 000,094,208 | ---- | M] (Nero AG)
< c:\windows\*.* /U >
[4 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.05.23 20:23:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Adobe
[2010.05.26 17:31:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Ahead
[2007.12.22 17:41:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\AOL
[2008.07.21 17:51:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ATI
[2010.05.22 19:52:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ATI MMC
[2007.10.26 22:09:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Google
[2010.05.31 19:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\HP
[2008.07.25 00:23:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ICQ
[2007.02.01 20:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ICQLite
[2006.11.25 17:50:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Identities
[2007.02.01 20:47:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Lavasoft
[2007.12.22 16:57:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Macromedia
[2010.06.08 17:26:47 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Martin\Data aplikací\Microsoft
[2010.06.08 17:01:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Microsoft Web Folders
[2010.05.22 19:50:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Mozilla
[2010.05.31 18:17:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\MxBoost
[2008.09.08 22:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\uTorrent
[2008.07.24 19:14:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Ventrilo
[2010.05.26 17:31:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\X10 Commander
< %APPDATA%\*.exe /s >
[2010.05.22 14:42:34 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\Martin\Data aplikací\Microsoft\Installer\{5DA6F06A-B389-407B-BF8C-1548767914D8}\ARPPRODUCTICON.exe
< MD5 for: AGP440.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\agp440.sys
< MD5 for: ATAPI.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\atapi.sys
< MD5 for: CDROM.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.17 15:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\system32\cryptsvc.dll
[2004.08.17 15:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\system32\dllcache\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\eventlog.dll
[2004.08.17 15:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004.08.17 15:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\explorer.exe
[2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\explorer.exe
[2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\system32\dllcache\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\hal.dll
[2004.08.03 22:59:10 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\system32\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\changer.sys
< MD5 for: ISAPNP.SYS >
[2001.10.24 12:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\dllcache\isapnp.sys
[2001.10.24 12:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\drivers\isapnp.sys
[2001.10.25 16:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\isapnp.sys
< MD5 for: LSASS.EXE >
[2004.08.17 15:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\system32\dllcache\lsass.exe
[2004.08.17 15:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\system32\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\ndis.sys
[2004.08.03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004.08.03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2004.08.17 15:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2004.08.17 15:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\system32\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\netlogon.dll
< MD5 for: SCECLI.DLL >
[2004.08.17 15:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2004.08.17 15:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\system32\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.17 15:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\system32\dllcache\smss.exe
[2004.08.17 15:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\system32\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\svchost.exe
[2004.08.17 15:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\system32\dllcache\svchost.exe
[2004.08.17 15:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2004.08.03 23:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\userinit.exe
[2004.08.17 15:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\system32\dllcache\userinit.exe
[2004.08.17 15:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2004.08.17 15:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004.08.17 15:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\system32\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.17 15:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2004.08.17 15:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\system32\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[46 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2008.04.08 21:07:16 | 000,716,272 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2006.11.25 18:35:04 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2006.11.25 18:35:04 | 000,663,552 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2006.11.25 18:35:04 | 000,450,560 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[46 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2010.06.08 17:12:30 | 000,117,360 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2010.06.08 17:14:35 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[46 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< End of report >
OTL by OldTimer - Version 3.2.5.3 Folder = C:\Documents and Settings\Martin\Plocha
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 023,00 Mb Total Physical Memory | 648,00 Mb Available Physical Memory | 63,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 9,30 Gb Free Space | 47,59% Space Free | Partition Type: NTFS
Drive D: | 54,99 Gb Total Space | 19,35 Gb Free Space | 35,18% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 19,53 Gb Total Space | 8,70 Gb Free Space | 44,53% Space Free | Partition Type: NTFS
Drive G: | 92,25 Gb Total Space | 14,42 Gb Free Space | 15,63% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: BMW-9A651D0C4E9
Current User Name: Martin
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.06.08 17:27:33 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Martin\Plocha\OTL.exe
PRC - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (SafeList) ==========
MOD - [2010.06.08 17:27:33 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Martin\Plocha\OTL.exe
MOD - [2004.08.17 15:48:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004.08.03 23:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (x10nets)
SRV - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
========== Driver Services (SafeList) ==========
DRV - [2010.05.06 22:39:23 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010.05.06 22:39:00 | 000,164,048 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2010.05.06 22:34:27 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010.05.06 22:33:59 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010.05.06 22:33:47 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.05.06 22:33:29 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2008.04.08 21:07:16 | 000,716,272 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2006.10.22 12:22:00 | 003,994,624 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006.08.18 14:52:00 | 004,017,536 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2006.02.23 12:38:32 | 000,009,728 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32)
DRV - [2005.02.02 04:39:18 | 000,970,240 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2004.08.04 00:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2004.01.23 16:52:31 | 000,258,044 | ---- | M] (Jungo) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\atirwvd.sys -- (ATI Remote Wonder II)
DRV - [2003.07.02 05:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2003.01.10 23:13:04 | 000,033,588 | R--- | M] (America Online, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60327
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKU\S-1-5-21-2052111302-796845957-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Seznam"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz"
FF - prefs.js..extensions.enabledItems: {ea614400-e918-4741-9a97-7a972ff7c30b}:2.0.10
FF - prefs.js..keyword.URL: "http://search.seznam.cz/?sourceid=FF_5&q="
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.05.22 19:50:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.05.27 16:15:07 | 000,000,000 | ---D | M]
[2010.05.22 19:50:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Extensions
[2010.06.07 19:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\t32exknq.default\extensions
[2010.05.31 16:14:53 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\t32exknq.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.06.07 19:00:43 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.05.22 19:50:28 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Program Files\Mozilla Firefox\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2010.04.13 21:24:08 | 000,002,046 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\firmycz.xml
[2010.04.13 21:24:30 | 000,002,041 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mapycz.xml
[2010.04.13 21:24:42 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.04.13 21:24:54 | 000,002,207 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\zbocz.xml
O1 HOSTS File: ([2001.10.25 16:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\..\Toolbar\WebBrowser: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found.
O3 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
O4 - HKLM..\Run: [hpqSRMon] File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKU\.DEFAULT..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKU\S-1-5-18..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKU\S-1-5-21-2052111302-796845957-839522115-1003..\Run: [ATI DeviceDetect] C:\Program Files\ATI Multimedia\main\atidtct.exe (ATI Technologies Inc.)
O4 - HKU\S-1-5-21-2052111302-796845957-839522115-1003..\Run: [ATI Launchpad] File not found
O4 - HKU\S-1-5-21-2052111302-796845957-839522115-1003..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.EXE (ATI Technologies Inc.)
O4 - HKU\S-1-5-21-2052111302-796845957-839522115-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe (Nero AG)
O4 - HKLM..\RunOnce: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe (ATI Technologies Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 145
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 145
O7 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 0
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra Button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (ICQ, Inc.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe (ICQ, Inc.)
O15 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.11.25 17:45:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010.06.08 17:20:11 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010.06.08 17:20:11 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010.06.08 17:20:11 | 000,000,000 | RHSD | M] - F:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010.06.08 17:20:11 | 000,000,000 | RHSD | M] - G:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2006.11.25 17:44:59 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.a3d - C:\WINDOWS\System32\a3d.dll (Aureal Semiconductor)
Drivers32: msacm.divxa - C:\WINDOWS\System32\divxa32.acm (build Pinky.cz)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3radius - C:\WINDOWS\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.ogg - C:\WINDOWS\System32\ogg.dll ()
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: msacm.vorbisenc - C:\WINDOWS\System32\vorbisenc.dll ()
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.div3 - C:\WINDOWS\System32\divxc32.dll (build Pinky.cz)
Drivers32: vidc.div4 - C:\WINDOWS\System32\divxc32f.dll (Pinky.cz)
Drivers32: vidc.divx - C:\WINDOWS\System32\divx.dll (DivXNetworks, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.mp43 - C:\WINDOWS\System32\mpg4c32.dll (Microsoft Corporation)
Drivers32: vidc.xvid - C:\WINDOWS\System32\xvid.dll ()
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (55745656140070912)
========== Files/Folders - Created Within 30 Days ==========
[2010.06.08 17:27:28 | 000,571,904 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Martin\Plocha\OTL.exe
[2010.06.08 17:20:11 | 000,000,000 | RHSD | C] -- C:\autorun.inf
[2010.06.08 17:10:58 | 000,000,000 | ---D | C] -- C:\UsbFix
[2010.06.08 17:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010.06.08 17:04:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Designer
[2010.06.08 17:02:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\ShellNew
[2010.06.08 17:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\Microsoft Web Folders
[2010.06.08 17:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010.06.07 19:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.06.07 19:03:22 | 000,000,000 | ---D | C] -- C:\rsit
[2010.06.01 20:49:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HP Product Assistant
[2010.06.01 20:46:43 | 000,000,000 | -H-D | C] -- C:\Config.Msi
[2010.06.01 18:00:24 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010.05.31 21:16:57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Martin\PrivacIE
[2010.05.31 19:30:36 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Martin\IETldCache
[2010.05.31 19:28:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\WEBREG
[2010.05.31 19:21:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\HP
[2010.05.31 19:20:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\HP
[2010.05.31 19:11:56 | 000,970,752 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotiop5.dll
[2010.05.31 19:11:56 | 000,729,088 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpowiax5.dll
[2010.05.31 19:11:56 | 000,364,544 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll
[2010.05.31 19:11:56 | 000,309,760 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2010.05.31 19:11:56 | 000,303,104 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst12.dll
[2010.05.31 19:11:55 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2010.05.31 19:10:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010.05.31 19:06:57 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010.05.31 19:04:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\HP
[2010.05.31 19:03:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2010.05.31 19:03:37 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010.05.31 19:03:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2010.05.31 19:01:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2010.05.31 19:01:25 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2010.05.31 18:58:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Hewlett-Packard
[2010.05.31 18:57:42 | 000,271,704 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpzids01.dll
[2010.05.31 18:57:38 | 000,118,272 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpz3l5ha.dll
[2010.05.30 15:57:47 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2010.05.28 18:55:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2010.05.28 18:55:09 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010.05.28 18:55:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2010.05.28 18:55:00 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2010.05.28 18:54:31 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2010.05.28 18:54:31 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2010.05.28 18:54:31 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2010.05.28 18:54:31 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2010.05.28 18:54:31 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2010.05.28 18:54:31 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2010.05.28 18:51:43 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2010.05.27 21:13:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010.05.27 18:29:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2010.05.27 18:23:24 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2010.05.27 18:14:55 | 000,454,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2010.05.27 18:14:05 | 002,060,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2010.05.27 18:14:05 | 002,018,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010.05.27 18:14:04 | 002,183,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2010.05.27 18:14:03 | 002,139,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010.05.27 18:12:01 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010.05.27 16:26:18 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2010.05.27 16:25:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010.05.27 16:19:56 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pidgen.dll.wga
[2010.05.27 16:19:55 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpcdll.dll.wga
[2010.05.26 18:03:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
[2010.05.26 18:03:03 | 000,000,000 | ---D | C] -- C:\Program Files\DVD Shrink
[2010.05.26 17:34:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\Ahead
[2010.05.26 17:31:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\Ahead
[2010.05.26 17:31:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\X10 Commander
[2010.05.26 17:29:52 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2010.05.26 17:29:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2010.05.23 20:23:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\Adobe
[2010.05.22 19:57:25 | 000,164,048 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010.05.22 19:57:25 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010.05.22 19:57:24 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010.05.22 19:57:23 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010.05.22 19:57:22 | 000,100,432 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010.05.22 19:57:22 | 000,094,800 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010.05.22 19:57:21 | 000,028,880 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010.05.22 19:57:10 | 000,165,032 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010.05.22 19:57:10 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010.05.22 19:57:03 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010.05.22 19:57:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2010.05.22 19:54:24 | 000,000,000 | ---D | C] -- C:\Program Files\SMPlayer
[2010.05.22 19:53:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Adobe
[2010.05.22 19:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010.05.22 19:52:58 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010.05.22 19:52:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\ATI MMC
[2010.05.22 19:51:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\Stažené soubory
[2010.05.22 19:50:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\Mozilla
[2010.05.22 19:50:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Data aplikací\Mozilla
[2010.05.22 19:50:28 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010.05.22 15:02:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\ApplicationHistory
[2010.05.22 15:01:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ATI MMC
[2010.05.22 14:45:53 | 000,258,044 | ---- | C] (Jungo) -- C:\WINDOWS\System32\drivers\atirwvd.sys
[2010.05.22 14:45:53 | 000,009,091 | ---- | C] (ATI Technologies.Inc) -- C:\WINDOWS\System32\drivers\atirwrf.sys
[2010.05.22 14:43:16 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Multimedia
[2010.05.22 14:42:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2010.05.22 14:41:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windows media
[2010.05.22 14:41:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\msdownld.tmp
[2010.05.22 14:41:26 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Components
[2010.05.22 14:39:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP
[2010.05.22 14:37:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\CyberLink
[2010.05.22 14:37:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI
[2010.05.22 14:36:40 | 000,299,008 | R--- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atiiiexx.dll
[2010.05.22 12:59:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Martin\Dokumenty\Tatik fotky
[2010.05.22 12:58:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\BMW Loga
[2010.05.22 12:58:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\BMW Club
[46 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[32 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.06.08 17:27:33 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Martin\Plocha\OTL.exe
[2010.06.08 17:26:41 | 002,883,584 | -H-- | M] () -- C:\Documents and Settings\Martin\NTUSER.DAT
[2010.06.08 17:20:28 | 000,492,245 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\UsbFix_Upload_Me_BMW-9A651D0C4E9.zip
[2010.06.08 17:14:35 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.06.08 17:12:48 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.08 17:12:34 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.08 17:12:30 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys
[2010.06.08 17:12:30 | 000,117,360 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.06.08 17:11:44 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Martin\ntuser.ini
[2010.06.08 17:11:37 | 005,361,092 | -H-- | M] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\IconCache.db
[2010.06.08 17:10:55 | 001,364,336 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\UsbFix.exe
[2010.06.08 17:09:58 | 000,260,408 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\SoftonicDownloader85590.exe
[2010.06.08 17:05:36 | 000,000,390 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2010.06.08 17:05:22 | 000,000,059 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010.06.08 17:04:48 | 000,000,625 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.06.08 17:04:41 | 000,001,727 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
[2010.06.01 20:50:07 | 000,078,181 | ---- | M] () -- C:\WINDOWS\hpqins05.dat
[2010.06.01 20:47:58 | 000,000,994 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Centrum řešení HP.lnk
[2010.06.01 18:01:08 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.05.31 21:09:54 | 000,011,685 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\PBAA33VXD T.jpg
[2010.05.31 19:29:07 | 000,166,603 | ---- | M] () -- C:\WINDOWS\hpoins21.dat
[2010.05.31 19:25:13 | 000,000,873 | ---- | M] () -- C:\WINDOWS\System32\spupdsvc.inf
[2010.05.31 19:20:33 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Martin\Y=Y=
[2010.05.31 19:13:56 | 000,000,010 | ---- | M] () -- C:\WINDOWS\WININIT.INI
[2010.05.31 19:10:27 | 000,001,858 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\HP Photosmart Essential 2.5.lnk
[2010.05.31 19:09:14 | 000,001,958 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Shop for HP Supplies.lnk
[2010.05.31 19:06:13 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
[2010.05.31 18:59:57 | 000,180,611 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\formular_pro_uraz.PDF
[2010.05.30 16:27:58 | 001,003,676 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.05.30 16:27:58 | 000,440,684 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.05.30 16:27:58 | 000,437,062 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.05.30 16:27:58 | 000,082,462 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.05.30 16:27:58 | 000,071,002 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.05.30 16:02:57 | 000,088,090 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\vbn.xps
[2010.05.30 15:59:29 | 000,088,100 | ---- | M] () -- C:\Documents and Settings\Martin\Dokumenty\sml.xps
[2010.05.30 15:57:31 | 000,012,328 | ---- | M] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.05.27 16:19:59 | 000,013,588 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2010.05.27 16:15:07 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.05.26 18:10:30 | 000,007,168 | ---- | M] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.26 18:03:04 | 000,000,670 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\DVD Shrink 3.2.lnk
[2010.05.26 17:36:33 | 000,043,062 | ---- | M] () -- C:\Documents and Settings\Martin\Dokumenty\UserImages.bmp
[2010.05.26 17:32:22 | 000,002,335 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Nero StartSmart.lnk
[2010.05.22 19:57:22 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.05.22 19:54:30 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\SMPlayer.lnk
[2010.05.22 19:52:58 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ATIMMC.INI
[2010.05.22 15:02:01 | 000,000,126 | ---- | M] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\fusioncache.dat
[2010.05.22 14:44:59 | 000,002,040 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\ATI Catalyst Control Center.lnk
[2010.05.22 14:44:59 | 000,001,851 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ATI CATALYST System Tray.lnk
[46 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[32 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.06.08 17:20:28 | 000,492,245 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\UsbFix_Upload_Me_BMW-9A651D0C4E9.zip
[2010.06.08 17:10:49 | 001,364,336 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\UsbFix.exe
[2010.06.08 17:09:57 | 000,260,408 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\SoftonicDownloader85590.exe
[2010.06.08 17:05:36 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010.06.08 17:04:40 | 000,001,727 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
[2010.06.01 20:47:55 | 000,000,994 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Centrum řešení HP.lnk
[2010.06.01 20:46:27 | 000,078,181 | ---- | C] () -- C:\WINDOWS\hpqins05.dat
[2010.05.31 21:09:53 | 000,011,685 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\PBAA33VXD T.jpg
[2010.05.31 19:25:13 | 000,000,873 | ---- | C] () -- C:\WINDOWS\System32\spupdsvc.inf
[2010.05.31 19:20:33 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Martin\Y=Y=
[2010.05.31 19:10:27 | 000,001,858 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\HP Photosmart Essential 2.5.lnk
[2010.05.31 19:09:14 | 000,001,958 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Shop for HP Supplies.lnk
[2010.05.31 19:06:13 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
[2010.05.31 18:59:57 | 000,180,611 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\formular_pro_uraz.PDF
[2010.05.31 18:58:06 | 000,166,603 | ---- | C] () -- C:\WINDOWS\hpoins21.dat
[2010.05.31 18:58:06 | 000,007,262 | ---- | C] () -- C:\WINDOWS\hpomdl21.dat
[2010.05.31 18:58:06 | 000,001,546 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log
[2010.05.30 16:02:56 | 000,088,090 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\vbn.xps
[2010.05.30 15:59:24 | 000,088,100 | ---- | C] () -- C:\Documents and Settings\Martin\Dokumenty\sml.xps
[2010.05.27 16:20:00 | 000,013,588 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak
[2010.05.26 18:03:04 | 000,000,670 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\DVD Shrink 3.2.lnk
[2010.05.26 17:36:33 | 000,043,062 | ---- | C] () -- C:\Documents and Settings\Martin\Dokumenty\UserImages.bmp
[2010.05.26 17:32:22 | 000,002,335 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Nero StartSmart.lnk
[2010.05.22 19:54:30 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\SMPlayer.lnk
[2010.05.22 19:53:24 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.05.22 19:52:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ATIMMC.INI
[2010.05.22 15:02:01 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\fusioncache.dat
[2010.05.22 14:48:58 | 1073,270,784 | -HS- | C] () -- C:\hiberfil.sys
[2010.05.22 14:44:59 | 000,002,040 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\ATI Catalyst Control Center.lnk
[2010.05.22 14:44:59 | 000,001,851 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ATI CATALYST System Tray.lnk
[2010.05.22 14:36:46 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2010.05.22 14:36:39 | 000,009,490 | R--- | C] () -- C:\WINDOWS\System32\atifglpf.xml
[2010.05.22 14:36:38 | 000,073,845 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2008.07.21 17:35:45 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2008.05.02 10:19:08 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008.05.02 10:19:08 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008.05.02 10:19:06 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008.05.02 10:19:04 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008.05.02 10:19:03 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008.05.02 10:19:03 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2008.05.02 10:18:57 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2008.04.08 21:07:15 | 000,716,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007.12.22 17:40:59 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2007.02.02 16:12:21 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2007.02.02 16:12:07 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2004.07.17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004.01.28 11:42:06 | 000,013,601 | ---- | C] () -- C:\WINDOWS\System32\vctest.ini
[2003.07.16 14:09:32 | 000,202,752 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2002.10.06 21:42:58 | 000,105,472 | ---- | C] () -- C:\WINDOWS\System32\oggds.dll
[2002.10.05 02:04:26 | 000,092,672 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2002.10.05 02:04:26 | 000,080,384 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2002.10.05 02:04:18 | 000,021,504 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2002.05.17 23:18:30 | 000,039,936 | ---- | C] () -- C:\WINDOWS\System32\mp4fil32.dll
[1999.01.22 20:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
========== LOP Check ==========
[2010.05.22 19:57:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2007.12.22 16:56:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Viewpoint
[2008.07.25 00:23:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ICQ
[2007.02.01 20:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ICQLite
[2010.05.31 18:17:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\MxBoost
[2008.09.08 22:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\uTorrent
[2010.05.26 17:31:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\X10 Commander
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2004.08.17 15:49:24 | 000,015,360 | ---- | M] (Microsoft Corporation)
"ATI Launchpad" =
"ATI DeviceDetect" = C:\Program Files\ATI Multimedia\main\ATIDtct.EXE -- [2004.12.01 15:28:28 | 000,069,709 | ---- | M] (ATI Technologies Inc.)
"ATI Remote Control" = C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe -- [2004.08.26 23:51:36 | 000,200,704 | ---- | M] (ATI Technologies Inc.)
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" -- [2005.11.24 15:38:08 | 000,094,208 | ---- | M] (Nero AG)
< c:\windows\*.* /U >
[4 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.05.23 20:23:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Adobe
[2010.05.26 17:31:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Ahead
[2007.12.22 17:41:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\AOL
[2008.07.21 17:51:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ATI
[2010.05.22 19:52:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ATI MMC
[2007.10.26 22:09:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Google
[2010.05.31 19:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\HP
[2008.07.25 00:23:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ICQ
[2007.02.01 20:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ICQLite
[2006.11.25 17:50:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Identities
[2007.02.01 20:47:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Lavasoft
[2007.12.22 16:57:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Macromedia
[2010.06.08 17:26:47 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Martin\Data aplikací\Microsoft
[2010.06.08 17:01:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Microsoft Web Folders
[2010.05.22 19:50:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Mozilla
[2010.05.31 18:17:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\MxBoost
[2008.09.08 22:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\uTorrent
[2008.07.24 19:14:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Ventrilo
[2010.05.26 17:31:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\X10 Commander
< %APPDATA%\*.exe /s >
[2010.05.22 14:42:34 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\Martin\Data aplikací\Microsoft\Installer\{5DA6F06A-B389-407B-BF8C-1548767914D8}\ARPPRODUCTICON.exe
< MD5 for: AGP440.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\agp440.sys
< MD5 for: ATAPI.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\atapi.sys
< MD5 for: CDROM.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\cdrom.sys
[2004.08.03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.17 15:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\system32\cryptsvc.dll
[2004.08.17 15:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\system32\dllcache\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\eventlog.dll
[2004.08.17 15:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004.08.17 15:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\explorer.exe
[2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\explorer.exe
[2004.08.17 15:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\system32\dllcache\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\hal.dll
[2004.08.03 22:59:10 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\system32\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\changer.sys
< MD5 for: ISAPNP.SYS >
[2001.10.24 12:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\dllcache\isapnp.sys
[2001.10.24 12:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\drivers\isapnp.sys
[2001.10.25 16:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\isapnp.sys
< MD5 for: LSASS.EXE >
[2004.08.17 15:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\system32\dllcache\lsass.exe
[2004.08.17 15:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\system32\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\ndis.sys
[2004.08.03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004.08.03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2004.08.17 15:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2004.08.17 15:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\system32\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\netlogon.dll
< MD5 for: SCECLI.DLL >
[2004.08.17 15:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2004.08.17 15:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\system32\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.17 15:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\system32\dllcache\smss.exe
[2004.08.17 15:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\system32\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\svchost.exe
[2004.08.17 15:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\system32\dllcache\svchost.exe
[2004.08.17 15:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2004.08.03 23:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\userinit.exe
[2004.08.17 15:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\system32\dllcache\userinit.exe
[2004.08.17 15:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2004.08.17 15:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004.08.17 15:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\system32\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.17 15:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2004.08.17 15:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\system32\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[46 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2008.04.08 21:07:16 | 000,716,272 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2006.11.25 18:35:04 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2006.11.25 18:35:04 | 000,663,552 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2006.11.25 18:35:04 | 000,450,560 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[46 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2010.06.08 17:12:30 | 000,117,360 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2010.06.08 17:14:35 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[46 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< End of report >
Re: Prosím o kontrolu
OTL Extras logfile created on: 8.6.2010 17:28:22 - Run 1
OTL by OldTimer - Version 3.2.5.3 Folder = C:\Documents and Settings\Martin\Plocha
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 023,00 Mb Total Physical Memory | 648,00 Mb Available Physical Memory | 63,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 9,30 Gb Free Space | 47,59% Space Free | Partition Type: NTFS
Drive D: | 54,99 Gb Total Space | 19,35 Gb Free Space | 35,18% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 19,53 Gb Total Space | 8,70 Gb Free Space | 44,53% Space Free | Partition Type: NTFS
Drive G: | 92,25 Gb Total Space | 14,42 Gb Free Space | 15,63% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: BMW-9A651D0C4E9
Current User Name: Martin
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_USERS\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"18657:TCP" = 18657:TCP:*:Enabled:BitComet 18657 TCP
"18657:UDP" = 18657:UDP:*:Enabled:BitComet 18657 UDP
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\AOL\Active Virus Shield\avp.exe" = C:\Program Files\AOL\Active Virus Shield\avp.exe:*:Enabled:Active Virus Shield -- File not found
"C:\Documents and Settings\Martin\Plocha\WoW-enGB-Installer-downloader.exe" = C:\Documents and Settings\Martin\Plocha\WoW-enGB-Installer-downloader.exe:*:Enabled:Blizzard Downloader -- File not found
"G:\Games\World of Warcraft\BackgroundDownloader.exe" = G:\Games\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader -- File not found
"G:\Games\World of Warcraft\WoW-2.0.3-enGB-downloader.exe" = G:\Games\World of Warcraft\WoW-2.0.3-enGB-downloader.exe:*:Enabled:Blizzard Downloader -- File not found
"G:\Games\World of Warcraft\WoW-2.0.3.6299-to-2.0.5.6320-enGB-downloader.exe" = G:\Games\World of Warcraft\WoW-2.0.3.6299-to-2.0.5.6320-enGB-downloader.exe:*:Enabled:Blizzard Downloader -- File not found
"G:\Games\World of Warcraft\WoW-2.0.5.6320-to-2.0.6.6337-enGB-downloader.exe" = G:\Games\World of Warcraft\WoW-2.0.5.6320-to-2.0.6.6337-enGB-downloader.exe:*:Enabled:Blizzard Downloader -- File not found
"C:\Program Files\BitComet\BitComet.exe" = C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client -- File not found
"C:\Program Files\Common Files\aol\acs\AOLDial.exe" = C:\Program Files\Common Files\aol\acs\AOLDial.exe:*:Enabled:AOL Connectivity Service Dialer -- File not found
"C:\Program Files\Common Files\aol\acs\AOLacsd.exe" = C:\Program Files\Common Files\aol\acs\AOLacsd.exe:*:Enabled:AOL Connectivity Service -- File not found
"C:\Program Files\Common Files\aol\1198335350\ee\aolsoftware.exe" = C:\Program Files\Common Files\aol\1198335350\ee\aolsoftware.exe:*:Enabled:AOL Shared Components -- File not found
"C:\Program Files\AOL 9.0\waol.exe" = C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe" = C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe:*:Enabled:AOL TopSpeed -- File not found
"C:\Program Files\Common Files\aol\Loader\aolload.exe" = C:\Program Files\Common Files\aol\Loader\aolload.exe:*:Enabled:AOL Loader -- File not found
"C:\Program Files\Common Files\aol\System Information\sinf.exe" = C:\Program Files\Common Files\aol\System Information\sinf.exe:*:Enabled:AOL System Information -- File not found
"C:\Program Files\ICQLite\ICQLite.exe" = C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite -- File not found
"C:\Program Files\ICQ6\ICQ.exe" = C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, Inc.)
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent -- File not found
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000405-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
"{083F79E4-6FE9-46FB-A6C6-4F8862742947}" = ATI HYDRAVISION
"{09BDEEF0-5590-457D-89A9-5DB2742F9BBF}" = 32 Bit HP CIO Components Installer
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{0F7C2E47-089E-4d23-B9F7-39BE00100776}" = Toolbox
"{11B83AD3-7A46-4C2E-A568-9505981D4C6F}" = HP Update
"{12A76360-388E-4B27-ABEB-D5FC5378DD2A}" = HPPhotoSmartPhotobookWebPack1
"{18669FF9-C8FE-407a-9F70-E674896B1DB4}" = GPBaseService
"{195F2C6C-A343-4b10-B1A4-3F00AB9E9DD9}" = Fax
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20B30DC1-E423-4939-B51D-05C58B0F9BBB}" = HP Photosmart All-In-One Driver Software 10.0 Rel .2
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3700194C-C5DD-439A-BE06-A66960CA4C70}" = MSVCSetup
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6}" = Cards_Calendar_OrderGift_DoMorePlugout
"{5109C064-813E-4e87-B0DE-C8AF7B5BC02B}" = SmartWebPrintingOC
"{513AEC24-3465-8C4F-87BA-652D6F491029}" = Nero 7 Demo
"{52A69E11-7CEB-4a7d-9607-68BA4F39A89B}" = DeviceDiscovery
"{5ACE69F0-A3E8-44eb-88C1-0A841E700180}" = TrayApp
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{679EC478-3FF9-4987-B2FF-C2C2B27532A2}" = DocProc
"{687FEF8A-8597-40b4-832C-297EA3F35817}" = BufferChm
"{6B437F94-056F-4791-AF2C-0D10E2706AF0}" = PanoStandAlone
"{6C28B15F-B09D-407E-BE92-AC928E1CE4E2}_is1" = Kodek 0.16 CZ
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{80533B67-C407-485D-8B5D-63BB8ED9D878}" = Scan
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8988F5D0-C83F-41F4-B41B-86031F9B37F5}" = ATI Multimedia Center
"{8A85DEAD-7C1F-4368-881C-72AC74CB2E91}" = UnloadSupport
"{8F36E44A-E6E7-41B7-B6F6-4637BF84EFA5}" = ATI Remote Wonder 2
"{A07840FC-CE63-4CB8-8030-EF4B9805925A}" = HPPhotoSmartDiscLabel_PaperLabel
"{A0B9F8DF-C949-45ed-9808-7DC5C0C19C81}" = Status
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.2
"{ADFB9653-F44C-460C-BF58-189CC552DFFE}" = hpphotosmartdisclabelplugin
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B4E91E95-A5BA-4E50-A465-DB7EFEB176E8}" = HPPhotoSmartDiscLabel_PrintOnDisc
"{B8DBED1E-8BC3-4d08-B94A-F9D7D88E9BBF}" = HPSSupply
"{b9be267c-e096-4cce-a4fd-f24eec004938}" = PS_AIO_02_ProductContext
"{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{c4549405-195f-4450-8865-6be9dc5ad136}" = PS_AIO_02_Software_Min
"{C708333C-B1B9-43be-B797-49FEC7A8D15B}" = C5200
"{C88E49AA-41C5-4420-A08D-BE1B6C5A3A74}" = DAO
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CCB9B81A-167F-4832-B305-D2A0430840B3}" = WebReg
"{cd0b9359-b716-4fd0-8e0a-09b3e312e8a4}" = PS_AIO_02_Software
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{cef78f86-19a8-4bbd-91fa-e9b6b2d37348}" = C5200_Help
"{D066C0E0-A915-11D5-B078-00C0F6A04C3E}" =
"{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}" = MarketResearch
"{D99A8E3A-AE5A-4692-8B19-6F16D454E240}" = Destination Component
"{DD3C88A0-C53C-41D0-A21B-6D021981D23E}" = HPPhotoSmartDiscLabelContent1
"{DD920AB6-2DB9-48B7-8052-0A4F0C4277BC}" = MarketingReg
"{DFBC9BD3-4265-44A5-AEEE-962F49D5C78C}" = ATI Decoder
"{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{F08DAD55-0EB9-46FD-B083-6AC2B3B816B7}" = ATI Catalyst Control Center
"{F42CD69D-E393-47c8-B2CD-B139C4ADA9A8}" = Copy
"{F69FD33C-8815-46BF-9134-A643DE68F3C0}" = WinFast(R) Display Driver
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"µTorrent CZ_is1" = µTorrent CZ 1.8 (build 11813)
"Ad-Aware SE Professional" = Ad-Aware SE Professional
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = ATI - Software Uninstall Utility
"ATI Display Driver" = ATI Display Driver
"avast5" = avast! Free Antivirus
"DVD Shrink_is1" = DVD Shrink 3.2
"HP Imaging Device Functions" = HP Imaging Device Functions 10.0
"HP Photosmart Essential" = HP Photosmart Essential 2.5
"HP Smart Web Printing" = HP Smart Web Printing
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 10.0
"HPOCR" = OCR Software by I.R.I.S. 10.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{8988F5D0-C83F-41F4-B41B-86031F9B37F5}" = ATI Multimedia Center 9.03
"InstallShield_{8F36E44A-E6E7-41B7-B6F6-4637BF84EFA5}" = ATI Remote Wonder 2.5
"InstallShield_{C88E49AA-41C5-4420-A08D-BE1B6C5A3A74}" = DAO
"InstallShield_{DFBC9BD3-4265-44A5-AEEE-962F49D5C78C}" = ATI Decoder
"IrfanView" = IrfanView (remove only)
"Maxthon2" = Maxthon2
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"Shop for HP Supplies" = Shop for HP Supplies
"SMPlayer" = SMPlayer 0.6.9
"ViewpointMediaPlayer" = Viewpoint Media Player
"VorbisCodec" = Ogg Vorbis ACM Codec
"WIC" = Windows Imaging Component
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"WinRAR archiver" = WinRAR
"World of Warcraft" = World of Warcraft
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 24.7.2008 15:39:20 | Computer Name = BMW-9A651D0C4E9 | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application ccc.exe, version 2.0.0.0, stamp 469cdc9c, faulting
module mscorwks.dll, version 2.0.50727.42, stamp 4333e7ec, debug? 0, fault address
0x001057eb.
Error - 24.7.2008 18:23:57 | Computer Name = BMW-9A651D0C4E9 | Source = Application Error | ID = 1000
Description = Chybující aplikace icq.exe, verze 6.0.0.6059, chybující modul coolcore49.dll,
verze 4.9.0.5711, adresa chyby 0x0003eb99.
Error - 26.10.2008 17:31:20 | Computer Name = BMW-9A651D0C4E9 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.2180, chybující modul
xvid.dll, verze 0.0.0.0, adresa chyby 0x00048ec8.
Error - 26.10.2008 17:32:34 | Computer Name = BMW-9A651D0C4E9 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.2180, chybující modul
xvid.dll, verze 0.0.0.0, adresa chyby 0x00048ec8.
Error - 26.10.2008 17:32:57 | Computer Name = BMW-9A651D0C4E9 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.2180, chybující modul
xvid.dll, verze 0.0.0.0, adresa chyby 0x00048ec8.
Error - 11.12.2008 14:45:12 | Computer Name = BMW-9A651D0C4E9 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace SDUpdate.exe, verze 1.6.0.8, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 22.5.2010 13:56:32 | Computer Name = BMW-9A651D0C4E9 | Source = crypt32 | ID = 131083
Description = Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou
aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>
se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem
podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
Error - 22.5.2010 13:56:32 | Computer Name = BMW-9A651D0C4E9 | Source = crypt32 | ID = 131083
Description = Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou
aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>
se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem
podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
Error - 23.5.2010 14:32:07 | Computer Name = BMW-9A651D0C4E9 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3743, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 27.5.2010 10:19:56 | Computer Name = BMW-9A651D0C4E9 | Source = Windows Product Activation | ID = 1010
Description = The Windows license was restored due to a system error. You might
need to reactivate your Windows product.
[ System Events ]
Error - 3.6.2010 3:18:30 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 3.6.2010 11:11:07 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 4.6.2010 2:51:32 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 4.6.2010 10:04:30 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 4.6.2010 17:09:51 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 6.6.2010 15:19:11 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 7.6.2010 12:52:44 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 7.6.2010 13:59:53 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 8.6.2010 10:58:53 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 8.6.2010 11:14:34 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
< End of report >
OTL by OldTimer - Version 3.2.5.3 Folder = C:\Documents and Settings\Martin\Plocha
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 023,00 Mb Total Physical Memory | 648,00 Mb Available Physical Memory | 63,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 9,30 Gb Free Space | 47,59% Space Free | Partition Type: NTFS
Drive D: | 54,99 Gb Total Space | 19,35 Gb Free Space | 35,18% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 19,53 Gb Total Space | 8,70 Gb Free Space | 44,53% Space Free | Partition Type: NTFS
Drive G: | 92,25 Gb Total Space | 14,42 Gb Free Space | 15,63% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: BMW-9A651D0C4E9
Current User Name: Martin
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_USERS\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"18657:TCP" = 18657:TCP:*:Enabled:BitComet 18657 TCP
"18657:UDP" = 18657:UDP:*:Enabled:BitComet 18657 UDP
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\AOL\Active Virus Shield\avp.exe" = C:\Program Files\AOL\Active Virus Shield\avp.exe:*:Enabled:Active Virus Shield -- File not found
"C:\Documents and Settings\Martin\Plocha\WoW-enGB-Installer-downloader.exe" = C:\Documents and Settings\Martin\Plocha\WoW-enGB-Installer-downloader.exe:*:Enabled:Blizzard Downloader -- File not found
"G:\Games\World of Warcraft\BackgroundDownloader.exe" = G:\Games\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader -- File not found
"G:\Games\World of Warcraft\WoW-2.0.3-enGB-downloader.exe" = G:\Games\World of Warcraft\WoW-2.0.3-enGB-downloader.exe:*:Enabled:Blizzard Downloader -- File not found
"G:\Games\World of Warcraft\WoW-2.0.3.6299-to-2.0.5.6320-enGB-downloader.exe" = G:\Games\World of Warcraft\WoW-2.0.3.6299-to-2.0.5.6320-enGB-downloader.exe:*:Enabled:Blizzard Downloader -- File not found
"G:\Games\World of Warcraft\WoW-2.0.5.6320-to-2.0.6.6337-enGB-downloader.exe" = G:\Games\World of Warcraft\WoW-2.0.5.6320-to-2.0.6.6337-enGB-downloader.exe:*:Enabled:Blizzard Downloader -- File not found
"C:\Program Files\BitComet\BitComet.exe" = C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client -- File not found
"C:\Program Files\Common Files\aol\acs\AOLDial.exe" = C:\Program Files\Common Files\aol\acs\AOLDial.exe:*:Enabled:AOL Connectivity Service Dialer -- File not found
"C:\Program Files\Common Files\aol\acs\AOLacsd.exe" = C:\Program Files\Common Files\aol\acs\AOLacsd.exe:*:Enabled:AOL Connectivity Service -- File not found
"C:\Program Files\Common Files\aol\1198335350\ee\aolsoftware.exe" = C:\Program Files\Common Files\aol\1198335350\ee\aolsoftware.exe:*:Enabled:AOL Shared Components -- File not found
"C:\Program Files\AOL 9.0\waol.exe" = C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe" = C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe:*:Enabled:AOL TopSpeed -- File not found
"C:\Program Files\Common Files\aol\Loader\aolload.exe" = C:\Program Files\Common Files\aol\Loader\aolload.exe:*:Enabled:AOL Loader -- File not found
"C:\Program Files\Common Files\aol\System Information\sinf.exe" = C:\Program Files\Common Files\aol\System Information\sinf.exe:*:Enabled:AOL System Information -- File not found
"C:\Program Files\ICQLite\ICQLite.exe" = C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite -- File not found
"C:\Program Files\ICQ6\ICQ.exe" = C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, Inc.)
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent -- File not found
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000405-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
"{083F79E4-6FE9-46FB-A6C6-4F8862742947}" = ATI HYDRAVISION
"{09BDEEF0-5590-457D-89A9-5DB2742F9BBF}" = 32 Bit HP CIO Components Installer
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{0F7C2E47-089E-4d23-B9F7-39BE00100776}" = Toolbox
"{11B83AD3-7A46-4C2E-A568-9505981D4C6F}" = HP Update
"{12A76360-388E-4B27-ABEB-D5FC5378DD2A}" = HPPhotoSmartPhotobookWebPack1
"{18669FF9-C8FE-407a-9F70-E674896B1DB4}" = GPBaseService
"{195F2C6C-A343-4b10-B1A4-3F00AB9E9DD9}" = Fax
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20B30DC1-E423-4939-B51D-05C58B0F9BBB}" = HP Photosmart All-In-One Driver Software 10.0 Rel .2
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3700194C-C5DD-439A-BE06-A66960CA4C70}" = MSVCSetup
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6}" = Cards_Calendar_OrderGift_DoMorePlugout
"{5109C064-813E-4e87-B0DE-C8AF7B5BC02B}" = SmartWebPrintingOC
"{513AEC24-3465-8C4F-87BA-652D6F491029}" = Nero 7 Demo
"{52A69E11-7CEB-4a7d-9607-68BA4F39A89B}" = DeviceDiscovery
"{5ACE69F0-A3E8-44eb-88C1-0A841E700180}" = TrayApp
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{679EC478-3FF9-4987-B2FF-C2C2B27532A2}" = DocProc
"{687FEF8A-8597-40b4-832C-297EA3F35817}" = BufferChm
"{6B437F94-056F-4791-AF2C-0D10E2706AF0}" = PanoStandAlone
"{6C28B15F-B09D-407E-BE92-AC928E1CE4E2}_is1" = Kodek 0.16 CZ
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{80533B67-C407-485D-8B5D-63BB8ED9D878}" = Scan
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8988F5D0-C83F-41F4-B41B-86031F9B37F5}" = ATI Multimedia Center
"{8A85DEAD-7C1F-4368-881C-72AC74CB2E91}" = UnloadSupport
"{8F36E44A-E6E7-41B7-B6F6-4637BF84EFA5}" = ATI Remote Wonder 2
"{A07840FC-CE63-4CB8-8030-EF4B9805925A}" = HPPhotoSmartDiscLabel_PaperLabel
"{A0B9F8DF-C949-45ed-9808-7DC5C0C19C81}" = Status
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.2
"{ADFB9653-F44C-460C-BF58-189CC552DFFE}" = hpphotosmartdisclabelplugin
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B4E91E95-A5BA-4E50-A465-DB7EFEB176E8}" = HPPhotoSmartDiscLabel_PrintOnDisc
"{B8DBED1E-8BC3-4d08-B94A-F9D7D88E9BBF}" = HPSSupply
"{b9be267c-e096-4cce-a4fd-f24eec004938}" = PS_AIO_02_ProductContext
"{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{c4549405-195f-4450-8865-6be9dc5ad136}" = PS_AIO_02_Software_Min
"{C708333C-B1B9-43be-B797-49FEC7A8D15B}" = C5200
"{C88E49AA-41C5-4420-A08D-BE1B6C5A3A74}" = DAO
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CCB9B81A-167F-4832-B305-D2A0430840B3}" = WebReg
"{cd0b9359-b716-4fd0-8e0a-09b3e312e8a4}" = PS_AIO_02_Software
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{cef78f86-19a8-4bbd-91fa-e9b6b2d37348}" = C5200_Help
"{D066C0E0-A915-11D5-B078-00C0F6A04C3E}" =
"{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}" = MarketResearch
"{D99A8E3A-AE5A-4692-8B19-6F16D454E240}" = Destination Component
"{DD3C88A0-C53C-41D0-A21B-6D021981D23E}" = HPPhotoSmartDiscLabelContent1
"{DD920AB6-2DB9-48B7-8052-0A4F0C4277BC}" = MarketingReg
"{DFBC9BD3-4265-44A5-AEEE-962F49D5C78C}" = ATI Decoder
"{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{F08DAD55-0EB9-46FD-B083-6AC2B3B816B7}" = ATI Catalyst Control Center
"{F42CD69D-E393-47c8-B2CD-B139C4ADA9A8}" = Copy
"{F69FD33C-8815-46BF-9134-A643DE68F3C0}" = WinFast(R) Display Driver
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"µTorrent CZ_is1" = µTorrent CZ 1.8 (build 11813)
"Ad-Aware SE Professional" = Ad-Aware SE Professional
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = ATI - Software Uninstall Utility
"ATI Display Driver" = ATI Display Driver
"avast5" = avast! Free Antivirus
"DVD Shrink_is1" = DVD Shrink 3.2
"HP Imaging Device Functions" = HP Imaging Device Functions 10.0
"HP Photosmart Essential" = HP Photosmart Essential 2.5
"HP Smart Web Printing" = HP Smart Web Printing
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 10.0
"HPOCR" = OCR Software by I.R.I.S. 10.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{8988F5D0-C83F-41F4-B41B-86031F9B37F5}" = ATI Multimedia Center 9.03
"InstallShield_{8F36E44A-E6E7-41B7-B6F6-4637BF84EFA5}" = ATI Remote Wonder 2.5
"InstallShield_{C88E49AA-41C5-4420-A08D-BE1B6C5A3A74}" = DAO
"InstallShield_{DFBC9BD3-4265-44A5-AEEE-962F49D5C78C}" = ATI Decoder
"IrfanView" = IrfanView (remove only)
"Maxthon2" = Maxthon2
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"Shop for HP Supplies" = Shop for HP Supplies
"SMPlayer" = SMPlayer 0.6.9
"ViewpointMediaPlayer" = Viewpoint Media Player
"VorbisCodec" = Ogg Vorbis ACM Codec
"WIC" = Windows Imaging Component
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"WinRAR archiver" = WinRAR
"World of Warcraft" = World of Warcraft
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 24.7.2008 15:39:20 | Computer Name = BMW-9A651D0C4E9 | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application ccc.exe, version 2.0.0.0, stamp 469cdc9c, faulting
module mscorwks.dll, version 2.0.50727.42, stamp 4333e7ec, debug? 0, fault address
0x001057eb.
Error - 24.7.2008 18:23:57 | Computer Name = BMW-9A651D0C4E9 | Source = Application Error | ID = 1000
Description = Chybující aplikace icq.exe, verze 6.0.0.6059, chybující modul coolcore49.dll,
verze 4.9.0.5711, adresa chyby 0x0003eb99.
Error - 26.10.2008 17:31:20 | Computer Name = BMW-9A651D0C4E9 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.2180, chybující modul
xvid.dll, verze 0.0.0.0, adresa chyby 0x00048ec8.
Error - 26.10.2008 17:32:34 | Computer Name = BMW-9A651D0C4E9 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.2180, chybující modul
xvid.dll, verze 0.0.0.0, adresa chyby 0x00048ec8.
Error - 26.10.2008 17:32:57 | Computer Name = BMW-9A651D0C4E9 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.2180, chybující modul
xvid.dll, verze 0.0.0.0, adresa chyby 0x00048ec8.
Error - 11.12.2008 14:45:12 | Computer Name = BMW-9A651D0C4E9 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace SDUpdate.exe, verze 1.6.0.8, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 22.5.2010 13:56:32 | Computer Name = BMW-9A651D0C4E9 | Source = crypt32 | ID = 131083
Description = Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou
aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>
se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem
podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
Error - 22.5.2010 13:56:32 | Computer Name = BMW-9A651D0C4E9 | Source = crypt32 | ID = 131083
Description = Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou
aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>
se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem
podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
Error - 23.5.2010 14:32:07 | Computer Name = BMW-9A651D0C4E9 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.2.3743, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 27.5.2010 10:19:56 | Computer Name = BMW-9A651D0C4E9 | Source = Windows Product Activation | ID = 1010
Description = The Windows license was restored due to a system error. You might
need to reactivate your Windows product.
[ System Events ]
Error - 3.6.2010 3:18:30 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 3.6.2010 11:11:07 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 4.6.2010 2:51:32 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 4.6.2010 10:04:30 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 4.6.2010 17:09:51 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 6.6.2010 15:19:11 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 7.6.2010 12:52:44 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 7.6.2010 13:59:53 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 8.6.2010 10:58:53 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
Error - 8.6.2010 11:14:34 | Computer Name = BMW-9A651D0C4E9 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.
< End of report >
Re: Prosím o kontrolu
CKScanner - Additional Security Risks - These are not necessarily bad
scanner sequence 3.RP.11
----- EOF -----
scanner sequence 3.RP.11
----- EOF -----
Re: Prosím o kontrolu
Rekl bych, ze znamy vi co stahuje, jelikoz cracky nejsou obvyklou soucasti dodavky programu - ty se hledaji cilene 
Doporucuji odinstalovat klienty P2P siti - jsou potencialnim rizikem pro bezpecnost PC a jsou velmi casto zdrojem viru a haveti - navic jejich pouzivani odporuje i pravidlum naseho fora (vice zde) Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl SRV - File not found [On_Demand | Stopped] -- -- (x10nets) IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60327 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327 IE - HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 O3 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\..\Toolbar\WebBrowser: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - No CLSID value found. O3 - HKU\S-1-5-21-2052111302-796845957-839522115-1003\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found. O4 - HKLM..\Run: [hpqSRMon] File not found O4 - HKU\S-1-5-21-2052111302-796845957-839522115-1003..\Run: [ATI Launchpad] File not found O4 - HKLM..\RunOnce: [] File not found 9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found [46 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [32 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ] :reg [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ATI Launchpad"=- :commands [EMPTYTEMP] [EMPTYFLASH] [CLEARALLRESTOREPOINTS] [CREATERESTOREPOINT]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
All processes killed
========== OTL ==========
Service x10nets stopped successfully!
Service x10nets deleted successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\SearchMigratedDefaultURL| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-2052111302-796845957-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3BB63FD4-3C00-44D7-94A9-5DE211900DEF} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3BB63FD4-3C00-44D7-94A9-5DE211900DEF}\ not found.
Registry value HKEY_USERS\S-1-5-21-2052111302-796845957-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\hpqSRMon deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2052111302-796845957-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Run\\ATI Launchpad deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\SET132.tmp deleted successfully.
C:\WINDOWS\System32\SET1BB.tmp deleted successfully.
C:\WINDOWS\System32\SET1BC.tmp deleted successfully.
C:\WINDOWS\System32\SET1BD.tmp deleted successfully.
C:\WINDOWS\System32\SET1BE.tmp deleted successfully.
C:\WINDOWS\System32\SET1BF.tmp deleted successfully.
C:\WINDOWS\System32\SET1C0.tmp deleted successfully.
C:\WINDOWS\System32\SET1C1.tmp deleted successfully.
C:\WINDOWS\System32\SET1C2.tmp deleted successfully.
C:\WINDOWS\System32\SET1C6.tmp deleted successfully.
C:\WINDOWS\System32\SET1C7.tmp deleted successfully.
C:\WINDOWS\System32\SET1C8.tmp deleted successfully.
C:\WINDOWS\System32\SET1C9.tmp deleted successfully.
C:\WINDOWS\System32\SET1CA.tmp deleted successfully.
C:\WINDOWS\System32\SET1CE.tmp deleted successfully.
C:\WINDOWS\System32\SET1D0.tmp deleted successfully.
C:\WINDOWS\System32\SET1D2.tmp deleted successfully.
C:\WINDOWS\System32\SET1D3.tmp deleted successfully.
C:\WINDOWS\System32\SET1D4.tmp deleted successfully.
C:\WINDOWS\System32\SET1D5.tmp deleted successfully.
C:\WINDOWS\System32\SET1D7.tmp deleted successfully.
C:\WINDOWS\System32\SET1D8.tmp deleted successfully.
C:\WINDOWS\System32\SET1DB.tmp deleted successfully.
C:\WINDOWS\System32\SET1DE.tmp deleted successfully.
C:\WINDOWS\System32\SET1DF.tmp deleted successfully.
C:\WINDOWS\System32\SET1E2.tmp deleted successfully.
C:\WINDOWS\System32\SET1E3.tmp deleted successfully.
C:\WINDOWS\System32\SET1E4.tmp deleted successfully.
C:\WINDOWS\System32\SET1E5.tmp deleted successfully.
C:\WINDOWS\System32\SET1E6.tmp deleted successfully.
C:\WINDOWS\System32\SET1EA.tmp deleted successfully.
C:\WINDOWS\System32\SET1EB.tmp deleted successfully.
C:\WINDOWS\System32\SET1EC.tmp deleted successfully.
C:\WINDOWS\System32\SET1EE.tmp deleted successfully.
C:\WINDOWS\System32\SET1EF.tmp deleted successfully.
C:\WINDOWS\System32\SET1F0.tmp deleted successfully.
C:\WINDOWS\System32\SET23E.tmp deleted successfully.
C:\WINDOWS\System32\SET23F.tmp deleted successfully.
C:\WINDOWS\System32\SET242.tmp deleted successfully.
C:\WINDOWS\System32\SET244.tmp deleted successfully.
C:\WINDOWS\System32\SET246.tmp deleted successfully.
C:\WINDOWS\System32\SET247.tmp deleted successfully.
C:\WINDOWS\System32\SET24A.tmp deleted successfully.
C:\WINDOWS\System32\SET24C.tmp deleted successfully.
C:\WINDOWS\System32\setb0.tmp deleted successfully.
C:\WINDOWS\002819_.tmp deleted successfully.
C:\WINDOWS\LastGood.Tmp\INF\oem29.inf deleted successfully.
C:\WINDOWS\LastGood.Tmp\INF\oem29.PNF deleted successfully.
C:\WINDOWS\LastGood.Tmp\INF\oem30.inf deleted successfully.
C:\WINDOWS\LastGood.Tmp\INF\oem30.PNF deleted successfully.
C:\WINDOWS\LastGood.Tmp\INF folder deleted successfully.
C:\WINDOWS\LastGood.Tmp folder deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET167.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET168.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET169.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET16B.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET16F.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET170.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET171.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET172.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET173.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET174.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET176.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET177.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET178.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET17B.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET17C.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET17D.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET17E.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET180.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET181.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET183.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET184.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET186.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET187.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET188.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET189.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET18A.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET18D.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET18F.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET190.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET192.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET193.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET194.tmp deleted successfully.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ATI Launchpad not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
->Flash cache emptied: 35 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Martin
->Temp folder emptied: 495483 bytes
->Temporary Internet Files folder emptied: 5668998 bytes
->FireFox cache emptied: 48160477 bytes
->Flash cache emptied: 820 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 101164 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 23920302 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 75,00 mb
[EMPTYFLASH]
User: All Users
->Flash cache emptied: 0 bytes
User: Default User
User: LocalService
User: Martin
->Flash cache emptied: 0 bytes
User: NetworkService
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.5.3 log created on 06082010_184737
Files\Folders moved on Reboot...
File\Folder C:\WINDOWS\temp\_avast5_\Webshlock.txt not found!
Registry entries deleted on Reboot...
========== OTL ==========
Service x10nets stopped successfully!
Service x10nets deleted successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKU\S-1-5-21-2052111302-796845957-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\SearchMigratedDefaultURL| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-2052111302-796845957-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3BB63FD4-3C00-44D7-94A9-5DE211900DEF} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3BB63FD4-3C00-44D7-94A9-5DE211900DEF}\ not found.
Registry value HKEY_USERS\S-1-5-21-2052111302-796845957-839522115-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\hpqSRMon deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2052111302-796845957-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Run\\ATI Launchpad deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\SET132.tmp deleted successfully.
C:\WINDOWS\System32\SET1BB.tmp deleted successfully.
C:\WINDOWS\System32\SET1BC.tmp deleted successfully.
C:\WINDOWS\System32\SET1BD.tmp deleted successfully.
C:\WINDOWS\System32\SET1BE.tmp deleted successfully.
C:\WINDOWS\System32\SET1BF.tmp deleted successfully.
C:\WINDOWS\System32\SET1C0.tmp deleted successfully.
C:\WINDOWS\System32\SET1C1.tmp deleted successfully.
C:\WINDOWS\System32\SET1C2.tmp deleted successfully.
C:\WINDOWS\System32\SET1C6.tmp deleted successfully.
C:\WINDOWS\System32\SET1C7.tmp deleted successfully.
C:\WINDOWS\System32\SET1C8.tmp deleted successfully.
C:\WINDOWS\System32\SET1C9.tmp deleted successfully.
C:\WINDOWS\System32\SET1CA.tmp deleted successfully.
C:\WINDOWS\System32\SET1CE.tmp deleted successfully.
C:\WINDOWS\System32\SET1D0.tmp deleted successfully.
C:\WINDOWS\System32\SET1D2.tmp deleted successfully.
C:\WINDOWS\System32\SET1D3.tmp deleted successfully.
C:\WINDOWS\System32\SET1D4.tmp deleted successfully.
C:\WINDOWS\System32\SET1D5.tmp deleted successfully.
C:\WINDOWS\System32\SET1D7.tmp deleted successfully.
C:\WINDOWS\System32\SET1D8.tmp deleted successfully.
C:\WINDOWS\System32\SET1DB.tmp deleted successfully.
C:\WINDOWS\System32\SET1DE.tmp deleted successfully.
C:\WINDOWS\System32\SET1DF.tmp deleted successfully.
C:\WINDOWS\System32\SET1E2.tmp deleted successfully.
C:\WINDOWS\System32\SET1E3.tmp deleted successfully.
C:\WINDOWS\System32\SET1E4.tmp deleted successfully.
C:\WINDOWS\System32\SET1E5.tmp deleted successfully.
C:\WINDOWS\System32\SET1E6.tmp deleted successfully.
C:\WINDOWS\System32\SET1EA.tmp deleted successfully.
C:\WINDOWS\System32\SET1EB.tmp deleted successfully.
C:\WINDOWS\System32\SET1EC.tmp deleted successfully.
C:\WINDOWS\System32\SET1EE.tmp deleted successfully.
C:\WINDOWS\System32\SET1EF.tmp deleted successfully.
C:\WINDOWS\System32\SET1F0.tmp deleted successfully.
C:\WINDOWS\System32\SET23E.tmp deleted successfully.
C:\WINDOWS\System32\SET23F.tmp deleted successfully.
C:\WINDOWS\System32\SET242.tmp deleted successfully.
C:\WINDOWS\System32\SET244.tmp deleted successfully.
C:\WINDOWS\System32\SET246.tmp deleted successfully.
C:\WINDOWS\System32\SET247.tmp deleted successfully.
C:\WINDOWS\System32\SET24A.tmp deleted successfully.
C:\WINDOWS\System32\SET24C.tmp deleted successfully.
C:\WINDOWS\System32\setb0.tmp deleted successfully.
C:\WINDOWS\002819_.tmp deleted successfully.
C:\WINDOWS\LastGood.Tmp\INF\oem29.inf deleted successfully.
C:\WINDOWS\LastGood.Tmp\INF\oem29.PNF deleted successfully.
C:\WINDOWS\LastGood.Tmp\INF\oem30.inf deleted successfully.
C:\WINDOWS\LastGood.Tmp\INF\oem30.PNF deleted successfully.
C:\WINDOWS\LastGood.Tmp\INF folder deleted successfully.
C:\WINDOWS\LastGood.Tmp folder deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET167.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET168.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET169.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET16B.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET16F.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET170.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET171.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET172.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET173.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET174.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET176.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET177.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET178.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET17B.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET17C.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET17D.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET17E.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET180.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET181.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET183.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET184.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET186.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET187.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET188.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET189.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET18A.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET18D.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET18F.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET190.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET192.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET193.tmp deleted successfully.
C:\WINDOWS\System32\dllcache\SET194.tmp deleted successfully.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ATI Launchpad not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
->Flash cache emptied: 35 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Martin
->Temp folder emptied: 495483 bytes
->Temporary Internet Files folder emptied: 5668998 bytes
->FireFox cache emptied: 48160477 bytes
->Flash cache emptied: 820 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 101164 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 23920302 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 75,00 mb
[EMPTYFLASH]
User: All Users
->Flash cache emptied: 0 bytes
User: Default User
User: LocalService
User: Martin
->Flash cache emptied: 0 bytes
User: NetworkService
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.5.3 log created on 06082010_184737
Files\Folders moved on Reboot...
File\Folder C:\WINDOWS\temp\_avast5_\Webshlock.txt not found!
Registry entries deleted on Reboot...
Re: Prosím o kontrolu
Jak se chova PC 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
funguje zatím 
Přispějete na provoz fóra?