tu je log:
Logfile of random's system information tool 1.07 (written by random/random)
Run by Owner at 2010-06-11 18:09:33
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 13 GB (44%) free of 30 GB
Total RAM: 1022 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:09:42, on 11. 6. 2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\sm56hlpr.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Documents and Settings\Owner\Local Settings\Data aplikací\Google\Update\1.2.183.23\GoogleCrashHandler.exe
C:\Program Files\TOPCOM\Common\Topcom_USB_4001g.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Owner\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Owner.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=;ftp=;https=;
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Owner\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Owner\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SMSERIAL] sm56hlpr.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [QIP Internet Guardian] C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Owner\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Topcom Wireless LAN Utility.lnk = C:\Program Files\TOPCOM\Common\Topcom_USB_4001g.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP\qip.exe (HKCU)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: lmab_device - Unknown owner - C:\WINDOWS\system32\LMabcoms.exe
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
--
End of file - 7602 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1292428093-2000478354-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1292428093-2000478354-725345543-1003UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class - C:\Documents and Settings\Owner\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll [2010-04-12 149968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-03 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-05-03 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-08-23 16050688]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SMSERIAL"=C:\WINDOWS\sm56hlpr.exe [2006-01-20 544768]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-07-20 7581696]
"nwiz"=nwiz.exe /install []
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-03-24 2145000]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-18 15360]
"QIP Internet Guardian"=C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe [2010-04-12 181760]
"Google Update"=C:\Documents and Settings\Owner\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-04-24 136176]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-04-06 26102056]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Topcom Wireless LAN Utility.lnk - C:\Program Files\TOPCOM\Common\Topcom_USB_4001g.exe
C:\Documents and Settings\Owner\Nabídka Start\Programy\Po spuštění
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2006-06-19 702768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\WINDOWS\system32\LMabcoms.exe"="C:\WINDOWS\system32\LMabcoms.exe:*:Enabled:Lexmark Enhanced TCP/IP"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b23f7620-47f4-11df-b3e8-806d6172696f}]
shell\AutoRun\command - G:\start.exe
======File associations======
.reg - open - "regedit.exe" "%1"
======List of files/folders created in the last 1 months======
2010-06-11 18:09:33 ----D---- C:\rsit
2010-06-11 17:53:29 ----D---- C:\Program Files\Trend Micro
2010-06-11 17:28:38 ----D---- C:\Program Files\PlatinumHideIP
2010-05-30 17:01:47 ----D---- C:\Documents and Settings\Owner\Data aplikací\PlatinumHideIP
2010-05-30 17:01:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\PlatinumHideIP
2010-05-29 23:07:33 ----D---- C:\Program Files\XeroBank
2010-05-26 20:17:49 ----D---- C:\Program Files\YouTube Downloader
2010-05-25 20:20:46 ----D---- C:\Documents and Settings\Owner\Data aplikací\Juce VST Host
2010-05-23 11:00:26 ----A---- C:\WINDOWS\system32\javaws.exe
2010-05-23 11:00:26 ----A---- C:\WINDOWS\system32\javaw.exe
2010-05-23 11:00:26 ----A---- C:\WINDOWS\system32\java.exe
2010-05-23 11:00:26 ----A---- C:\WINDOWS\system32\deployJava1.dll
2010-05-19 00:19:53 ----D---- C:\Documents and Settings\Owner\Data aplikací\Sony Setup
2010-05-17 13:11:21 ----D---- C:\Documents and Settings\Owner\Data aplikací\dvdcss
2010-05-16 23:10:33 ----D---- C:\Documents and Settings\Owner\Data aplikací\vlc
2010-05-16 23:09:50 ----D---- C:\Program Files\VideoLAN
2010-05-16 22:39:03 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2010-05-16 22:34:33 ----D---- C:\Program Files\Eidos
2010-05-16 13:12:48 ----D---- C:\Program Files\Microsoft
2010-05-16 13:12:21 ----D---- C:\Program Files\Windows Live SkyDrive
2010-05-16 13:11:33 ----D---- C:\Program Files\Windows Live
2010-05-16 13:06:05 ----D---- C:\Program Files\Common Files\Windows Live
2010-05-16 12:54:07 ----A---- C:\WINDOWS\system32\REX Shared Library.dll
2010-05-16 12:54:07 ----A---- C:\WINDOWS\system32\ReWire.dll
2010-05-16 12:39:41 ----D---- C:\Program Files\DAEMON Tools Toolbar
2010-05-16 12:39:18 ----D---- C:\Program Files\DAEMON Tools Lite
2010-05-16 12:39:03 ----D---- C:\Documents and Settings\Owner\Data aplikací\DAEMON Tools Lite
2010-05-16 12:39:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-05-16 12:35:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\Propellerhead Software
2010-05-16 12:35:30 ----D---- C:\Documents and Settings\Owner\Data aplikací\Propellerhead Software
2010-05-16 12:31:46 ----D---- C:\Program Files\Propellerhead
2010-05-16 11:36:56 ----D---- C:\Documents and Settings\Owner\Data aplikací\Cool Record Edit Deluxe
2010-05-16 11:36:03 ----A---- C:\WINDOWS\system32\NCTTextToAudio2.dll
2010-05-16 11:36:03 ----A---- C:\WINDOWS\system32\NCTAudioVisualizationEx2.dll
2010-05-16 11:35:54 ----D---- C:\Program Files\Cool Record Edit Deluxe
2010-05-16 11:25:42 ----A---- C:\WINDOWS\system32\NCTAudioDisplay2.dll
2010-05-16 11:25:31 ----A---- C:\WINDOWS\system32\msvcr71d.dll
2010-05-16 11:25:14 ----D---- C:\Program Files\Cool Music RecordEdit Station
2010-05-16 11:21:18 ----D---- C:\Program Files\AnalogX
2010-05-16 11:20:03 ----D---- C:\Program Files\FlameSoft
2010-05-16 11:03:47 ----D---- C:\Program Files\Audacity
2010-05-15 23:53:06 ----D---- C:\Documents and Settings\Owner\Data aplikací\Publish Providers
2010-05-15 23:47:58 ----D---- C:\Documents and Settings\Owner\Data aplikací\Sony
2010-05-15 23:45:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sony
2010-05-15 23:45:17 ----D---- C:\Program Files\Sony
2010-05-15 22:48:22 ----D---- C:\jhkj
2010-05-15 22:43:44 ----D---- C:\Program Files\BitLord
2010-05-15 13:10:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-05-15 11:33:15 ----D---- C:\Documents and Settings\Owner\Data aplikací\Google
2010-05-15 11:29:37 ----D---- C:\Program Files\Google
======List of files/folders modified in the last 1 months======
2010-06-11 18:09:35 ----D---- C:\WINDOWS\Temp
2010-06-11 18:08:22 ----D---- C:\WINDOWS\Prefetch
2010-06-11 18:08:21 ----D---- C:\Documents and Settings\Owner\Data aplikací\Skype
2010-06-11 17:53:29 ----RD---- C:\Program Files
2010-06-11 17:26:22 ----D---- C:\WINDOWS\system32
2010-06-11 17:26:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-06-11 17:22:38 ----D---- C:\Documents and Settings\Owner\Data aplikací\skypePM
2010-06-11 17:21:27 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-06-11 15:17:46 ----D---- C:\WINDOWS\system32\CatRoot2
2010-06-08 19:54:20 ----SHD---- C:\WINDOWS\Installer
2010-06-08 19:54:09 ----D---- C:\Program Files\Opera
2010-06-04 00:32:14 ----A---- C:\WINDOWS\win.ini
2010-06-03 15:42:15 ----A---- C:\Documents and Settings\Owner\Data aplikací\RSBot Accounts.ini
2010-06-01 15:21:02 ----D---- C:\WINDOWS\.jagex_cache_32
2010-05-29 14:45:43 ----D---- C:\WINDOWS
2010-05-23 11:00:23 ----D---- C:\Program Files\Java
2010-05-16 13:16:11 ----SD---- C:\Documents and Settings\Owner\Data aplikací\Microsoft
2010-05-16 13:13:08 ----D---- C:\WINDOWS\WinSxS
2010-05-16 13:12:29 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-05-16 13:11:16 ----HD---- C:\WINDOWS\inf
2010-05-16 13:06:05 ----D---- C:\Program Files\Common Files
2010-05-16 13:05:40 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-05-16 12:39:33 ----D---- C:\WINDOWS\system32\drivers
2010-05-15 13:11:40 ----D---- C:\Documents and Settings\Owner\Data aplikací\Adobe
2010-05-15 13:10:35 ----D---- C:\Program Files\Common Files\Adobe
2010-05-15 13:10:06 ----D---- C:\Program Files\Adobe
2010-05-15 11:29:40 ----SD---- C:\WINDOWS\Tasks
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK8;AMD-Prozessortreiber; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-19 43520]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-03-24 114984]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-03-24 55232]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-18 14848]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2010-04-15 20747]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-03-24 139192]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2010-03-24 134488]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-18 60800]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-03-24 32584]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2004-08-18 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-08-24 4374016]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-18 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-07-20 3685152]
R3 RT73;Topcom Skyr@cer USB 4001g Driver; C:\WINDOWS\system32\DRIVERS\rt73.sys [2005-11-24 245248]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-07-11 84096]
R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2006-01-20 930308]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-18 31616]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-04-19 30080]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-18 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-04-19 17152]
S3 aae0h6rq;aae0h6rq; C:\WINDOWS\system32\drivers\aae0h6rq.sys []
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-18 26496]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-03-24 810120]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-12 153376]
R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-12-08 3616768]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-07-20 143426]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-24 136176]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-03-24 33560]
S3 lmab_device;lmab_device; C:\WINDOWS\system32\LMabcoms.exe [2005-06-14 491520]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Spomalený internet
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Spomalený internet
Zdravím 
Stáhněte OTL http://oldtimer.geekstogo.com/OTL.exe na plochu
Stáhněte OTL http://oldtimer.geekstogo.com/OTL.exe na plochu
- Spusťte, poté do spodního políčka vložte následující skript.
Kód: Vybrat vše
netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT - Označte položku Pro všechny uživatele.
- Označte položky Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
- Po dokončení, sem vložte logy OTL.Txt a Extras.txt
Re: Spomalený internet
OTL logfile created on: 11. 6. 2010 18:32:12 - Run 1
OTL by OldTimer - Version 3.2.6.0 Folder = C:\Documents and Settings\Owner\Plocha
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
1 022,00 Mb Total Physical Memory | 481,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 12,89 Gb Free Space | 44,00% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 48,99 Gb Free Space | 50,17% Space Free | Partition Type: NTFS
Drive E: | 48,83 Gb Total Space | 8,61 Gb Free Space | 17,64% Space Free | Partition Type: NTFS
Drive F: | 48,83 Gb Total Space | 10,32 Gb Free Space | 21,14% Space Free | Partition Type: NTFS
Drive G: | 478,00 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: OSOBNY
Current User Name: Owner
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.06.11 18:30:32 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Plocha\OTL.exe
PRC - [2010.04.28 13:45:50 | 000,835,952 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2010.04.24 20:48:49 | 000,136,176 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Owner\Local Settings\Data aplikací\Google\Update\1.2.183.23\GoogleCrashHandler.exe
PRC - [2010.04.12 18:28:50 | 000,181,760 | ---- | M] () -- C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe
PRC - [2010.03.24 20:31:50 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2010.03.24 20:31:00 | 002,145,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2010.01.22 20:36:00 | 000,621,320 | ---- | M] (http://tortoisesvn.net) -- C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
PRC - [2009.12.08 20:26:15 | 003,616,768 | ---- | M] (Native Instruments GmbH) -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
PRC - [2006.03.22 13:51:56 | 000,630,784 | ---- | M] (Topcom Corp.) -- C:\Program Files\TOPCOM\Common\Topcom_USB_4001g.exe
PRC - [2006.01.20 14:34:26 | 000,544,768 | R--- | M] (Motorola Inc.) -- C:\WINDOWS\sm56hlpr.exe
PRC - [2005.04.07 20:48:41 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (SafeList) ==========
MOD - [2010.06.11 18:30:32 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Plocha\OTL.exe
MOD - [2005.04.07 11:50:14 | 001,053,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2649_x-ww_aac16c8b\comctl32.dll
MOD - [2004.08.18 14:00:00 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - [2010.03.24 20:39:48 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010.03.24 20:31:50 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2009.12.08 20:26:15 | 003,616,768 | ---- | M] (Native Instruments GmbH) [Auto | Running] -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService)
SRV - [2005.06.14 22:40:54 | 000,491,520 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\System32\LMabcoms.exe -- (lmab_device)
========== Driver Services (SafeList) ==========
DRV - [2010.05.16 12:39:34 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.03.24 20:33:50 | 000,055,232 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2010.03.24 20:33:50 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2010.03.24 20:33:46 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2010.03.24 20:31:06 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010.03.24 20:23:52 | 000,139,192 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2006.08.24 12:37:50 | 004,374,016 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.07.20 21:58:00 | 003,685,152 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006.07.11 21:31:02 | 000,084,096 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2006.06.19 00:38:18 | 000,043,520 | R--- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.01.20 14:38:02 | 000,930,308 | R--- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial)
DRV - [2005.11.24 19:51:38 | 000,245,248 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73)
DRV - [2005.01.07 17:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004.08.04 00:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\..\URLSearchHook: {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Owner\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=;ftp=;https=;
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.daemon-search.com/startpage"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185
FF - prefs.js..extensions.enabledItems: support@platinumhideip.com:1.0
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.04.26 18:20:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.05.23 11:00:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010.04.15 02:19:22 | 000,000,000 | ---D | M]
[2010.04.26 18:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Mozilla\Extensions
[2010.06.10 16:11:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Mozilla\Firefox\Profiles\jfrkemwk.default\extensions
[2010.05.16 12:39:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Mozilla\Firefox\Profiles\jfrkemwk.default\extensions\DTToolbar@toolbarnet.com
[2010.05.30 17:02:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Mozilla\Firefox\Profiles\jfrkemwk.default\extensions\support@platinumhideip.com
[2010.05.16 12:39:41 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Owner\Data aplikací\Mozilla\Firefox\Profiles\jfrkemwk.default\searchplugins\daemon-search.xml
[2010.06.10 16:11:57 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.05.23 11:00:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.04.12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.04.01 19:40:34 | 000,001,583 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\atlas-sk.xml
[2010.04.01 19:40:34 | 000,001,380 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\azet-sk.xml
[2010.04.01 19:40:34 | 000,001,479 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dunaj-sk.xml
[2010.04.01 19:40:34 | 000,001,473 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slovnik-sk.xml
[2010.04.01 19:40:34 | 000,001,104 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-sk.xml
[2010.04.01 19:40:34 | 000,000,830 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\zoznam-sk.xml
O1 HOSTS File: ([2010.04.15 01:26:43 | 000,000,966 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 adobeereg.com
O1 - Hosts: 127.0.0.1 www.adobeereg.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Owner\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe (Motorola Inc.)
O4 - HKU\S-1-5-21-1292428093-2000478354-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1292428093-2000478354-725345543-1003..\Run: [QIP Internet Guardian] C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Topcom Wireless LAN Utility.lnk = C:\Program Files\TOPCOM\Common\Topcom_USB_4001g.exe (Topcom Corp.)
O4 - Startup: C:\Documents and Settings\Owner\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Owner\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Owner\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.04.14 20:24:14 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2007.01.08 12:40:10 | 000,000,040 | R--- | M] () - G:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{b23f7620-47f4-11df-b3e8-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{b23f7620-47f4-11df-b3e8-806d6172696f}\Shell\AutoRun\command - "" = G:\start.exe -- [2007.01.08 12:40:10 | 002,680,326 | R--- | M] (Macromedia, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010.04.14 20:23:48 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (55745656140070912)
========== Files/Folders - Created Within 30 Days ==========
[2010.06.11 18:30:19 | 000,572,416 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Owner\Plocha\OTL.exe
[2010.06.11 18:09:33 | 000,000,000 | ---D | C] -- C:\rsit
[2010.06.11 17:53:29 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010.06.11 17:28:38 | 000,000,000 | ---D | C] -- C:\Program Files\PlatinumHideIP
[2010.06.01 14:59:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Plocha\rsbot 2
[2010.05.31 23:30:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\workspace
[2010.05.30 17:01:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\PlatinumHideIP
[2010.05.30 17:01:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\PlatinumHideIP
[2010.05.29 23:07:33 | 000,000,000 | ---D | C] -- C:\Program Files\XeroBank
[2010.05.26 20:17:49 | 000,000,000 | ---D | C] -- C:\Program Files\YouTube Downloader
[2010.05.25 20:20:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Juce VST Host
[2010.05.23 11:00:26 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010.05.23 11:00:26 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.05.23 11:00:26 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.05.23 11:00:26 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.05.20 20:59:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Dokumenty\NASKA
[2010.05.19 00:19:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Sony Setup
[2010.05.17 13:11:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\dvdcss
[2010.05.16 23:10:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\vlc
[2010.05.16 23:09:50 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010.05.16 22:34:33 | 000,000,000 | ---D | C] -- C:\Program Files\Eidos
[2010.05.16 13:16:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Tracing
[2010.05.16 13:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2010.05.16 13:12:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\microsoft
[2010.05.16 13:12:21 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2010.05.16 13:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010.05.16 13:06:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2010.05.16 12:54:07 | 000,368,640 | ---- | C] (Propellerhead Software AB) -- C:\WINDOWS\System32\ReWire.dll
[2010.05.16 12:54:07 | 000,233,472 | ---- | C] (Propellerhead Software AB) -- C:\WINDOWS\System32\REX Shared Library.dll
[2010.05.16 12:39:41 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Toolbar
[2010.05.16 12:39:18 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2010.05.16 12:39:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\DAEMON Tools Lite
[2010.05.16 12:39:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.05.16 12:35:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Propellerhead Software
[2010.05.16 12:35:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Propellerhead Software
[2010.05.16 12:31:46 | 000,000,000 | ---D | C] -- C:\Program Files\Propellerhead
[2010.05.16 11:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Cool Record Edit Deluxe
[2010.05.16 11:36:03 | 000,475,136 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioVisualizationEx2.dll
[2010.05.16 11:36:03 | 000,417,792 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTTextToAudio2.dll
[2010.05.16 11:35:54 | 000,000,000 | ---D | C] -- C:\Program Files\Cool Record Edit Deluxe
[2010.05.16 11:25:42 | 000,417,792 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioDisplay2.dll
[2010.05.16 11:25:31 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr71d.dll
[2010.05.16 11:25:14 | 000,000,000 | ---D | C] -- C:\Program Files\Cool Music RecordEdit Station
[2010.05.16 11:21:18 | 000,000,000 | ---D | C] -- C:\Program Files\AnalogX
[2010.05.16 11:20:03 | 000,000,000 | ---D | C] -- C:\Program Files\FlameSoft
[2010.05.16 11:03:47 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity
[2010.05.15 23:53:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Publish Providers
[2010.05.15 23:47:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Data aplikací\Sony
[2010.05.15 23:47:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Sony
[2010.05.15 23:45:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2010.05.15 23:45:17 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
[2010.05.15 22:48:22 | 000,000,000 | ---D | C] -- C:\jhkj
[2010.05.15 22:43:44 | 000,000,000 | ---D | C] -- C:\Program Files\BitLord
[2010.05.15 13:10:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Adobe
[2010.05.15 11:34:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2010.05.15 11:33:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Google
[2010.05.15 11:29:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2010.05.15 11:29:37 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010.05.14 00:55:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Dokumenty\Hudba
[2010.04.15 01:57:34 | 000,335,872 | ---- | C] ( ) -- C:\WINDOWS\System32\lexlog.dll
[32 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Owner\Dokumenty\*.tmp files -> C:\Documents and Settings\Owner\Dokumenty\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.06.11 18:34:05 | 000,000,998 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.06.11 18:30:32 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Plocha\OTL.exe
[2010.06.11 18:28:18 | 000,000,045 | ---- | M] () -- C:\Documents and Settings\Owner\jagex_runescape_preferences.dat
[2010.06.11 18:28:18 | 000,000,041 | ---- | M] () -- C:\Documents and Settings\Owner\jagex__preferences3.dat
[2010.06.11 18:28:17 | 000,000,087 | ---- | M] () -- C:\Documents and Settings\Owner\jagex_runescape_preferences2.dat
[2010.06.11 17:53:30 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\HijackThis.lnk
[2010.06.11 17:53:03 | 000,001,086 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1292428093-2000478354-725345543-1003UA.job
[2010.06.11 17:28:41 | 000,000,754 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Platinum Hide IP.lnk
[2010.06.11 17:26:22 | 000,947,584 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.06.11 17:26:22 | 000,401,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.06.11 17:26:22 | 000,398,588 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.06.11 17:26:22 | 000,073,376 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.06.11 17:26:22 | 000,062,480 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.06.11 17:22:23 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.06.11 17:22:22 | 000,051,048 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010.06.11 17:22:16 | 000,000,994 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.06.11 17:22:12 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.11 17:22:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.11 17:21:13 | 004,980,736 | -H-- | M] () -- C:\Documents and Settings\Owner\NTUSER.DAT
[2010.06.11 17:21:13 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Owner\ntuser.ini
[2010.06.10 21:09:47 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\LexFiles.usr
[2010.06.10 21:09:33 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Owner\Dokumenty\~$3.docx
[2010.06.10 21:09:30 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Owner\Dokumenty\~$strany.docx
[2010.06.10 21:08:12 | 000,002,563 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Microsoft Office Word 2007.lnk
[2010.06.10 20:53:03 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1292428093-2000478354-725345543-1003Core.job
[2010.06.10 02:57:06 | 000,012,204 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Čstrany.docx
[2010.06.10 02:56:51 | 000,014,615 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\3.docx
[2010.06.09 19:17:48 | 000,901,171 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\doc1.docx
[2010.06.09 14:55:19 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Google Chrome.lnk
[2010.06.08 20:22:04 | 000,167,647 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\thumb-10833_1120761510838_1581067752_30263072_2943768_n.jpg
[2010.06.08 19:54:16 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Opera.lnk
[2010.06.05 21:15:22 | 000,043,330 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\samolepky_antifico_4_odm.sk.jpg
[2010.06.04 00:32:14 | 000,000,603 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.06.04 00:28:09 | 000,012,877 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Einwhonerzahl.docx
[2010.06.03 15:42:15 | 000,000,780 | ---- | M] () -- C:\Documents and Settings\Owner\Data aplikací\RSBot Accounts.ini
[2010.06.02 16:36:40 | 000,374,328 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.flp
[2010.06.02 00:47:34 | 000,017,500 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Hranice krajinnej sféry.docx
[2010.05.31 20:56:58 | 000,019,968 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.31 20:42:13 | 000,282,834 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\ladycarneval.flp
[2010.05.31 20:19:48 | 001,441,551 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\ladycarneval.zip
[2010.05.31 20:19:04 | 005,254,860 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\koson karneval dnb.mp3
[2010.05.31 19:00:07 | 000,882,210 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 3.mp3
[2010.05.31 19:00:07 | 000,009,552 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 3.mp3.sfk
[2010.05.31 18:54:12 | 000,002,904 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 2.mp3.sfk
[2010.05.31 18:54:09 | 000,264,466 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 2.mp3
[2010.05.31 18:53:58 | 000,003,608 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 1.mp3.sfk
[2010.05.31 18:53:57 | 000,329,668 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 1.mp3
[2010.05.31 01:26:37 | 000,017,404 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Izotopy.docx
[2010.05.29 23:08:13 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\xB Browser.lnk
[2010.05.29 16:07:14 | 000,083,320 | ---- | M] () -- C:\green_day-21_guns.mid
[2010.05.29 16:03:22 | 000,019,839 | ---- | M] () -- C:\owl_city-fireflies.mid
[2010.05.29 15:59:01 | 000,045,378 | ---- | M] () -- C:\kesha-tik_tok.mid
[2010.05.29 15:51:45 | 000,038,189 | ---- | M] () -- C:\david_guetta-sexy_bitch_feat_akon.mid
[2010.05.29 15:43:59 | 000,001,806 | ---- | M] () -- C:\David Guetta feat. Akon - Sexy Bitch (Midi).mid
[2010.05.29 14:13:52 | 003,029,726 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B721.jar
[2010.05.28 02:58:47 | 000,016,361 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Past Perfect.docx
[2010.05.28 02:58:42 | 000,012,617 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Past Simple.docx
[2010.05.28 02:52:53 | 000,000,891 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pastperfectcontinuous.gif
[2010.05.28 02:39:01 | 000,000,974 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pastperfect.gif
[2010.05.28 02:14:29 | 000,017,269 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\eeežuze.docx
[2010.05.28 01:53:31 | 000,018,465 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\eeežuz.docx
[2010.05.27 20:25:26 | 000,032,256 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\test 2sk aj.doc
[2010.05.27 20:23:48 | 000,015,497 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\test 2sk aj.docx
[2010.05.27 20:16:33 | 000,013,235 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\1bla.docx
[2010.05.27 14:08:03 | 000,000,653 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\accounts.dat
[2010.05.27 14:05:31 | 000,612,185 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Quirlion.jar
[2010.05.27 01:05:19 | 000,662,287 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0263to.jpg
[2010.05.27 01:03:15 | 000,764,792 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0262p.jpg
[2010.05.27 01:02:15 | 000,222,000 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0265q.jpg
[2010.05.27 00:58:41 | 000,782,738 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0267r.jpg
[2010.05.27 00:56:07 | 000,667,699 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0268pk.jpg
[2010.05.26 21:46:22 | 003,005,152 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B718.jar
[2010.05.26 21:14:05 | 000,375,005 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\untitled65.flp
[2010.05.26 20:17:58 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\YouTube Downloader.lnk
[2010.05.25 21:29:35 | 000,672,615 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\untitled23.flp
[2010.05.25 20:43:52 | 005,091,996 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\inna - love acapella.mp3
[2010.05.24 23:09:20 | 000,097,772 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\8.jpg
[2010.05.24 23:04:33 | 000,014,858 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Ochorenia dýchacích ciest.docx
[2010.05.24 22:48:58 | 000,058,240 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\31868_1365446428947_1615249531_851530_1675001_n.jpg
[2010.05.24 14:27:35 | 000,416,245 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\untitled22.flp
[2010.05.24 13:49:13 | 000,002,477 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Microsoft Office Excel 2007.lnk
[2010.05.23 15:34:06 | 000,364,171 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\untitled.flp
[2010.05.20 20:58:57 | 000,629,191 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\NASKA.rar
[2010.05.20 02:23:25 | 000,014,101 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\belief a feeling that sb.docx
[2010.05.20 02:22:12 | 000,021,016 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\eeežu.docx
[2010.05.20 02:04:33 | 000,013,533 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\eee.docx
[2010.05.20 00:32:49 | 000,337,494 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\slovicka matrix.pdf
[2010.05.19 17:26:52 | 003,001,915 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B694.jar
[2010.05.18 23:47:57 | 000,164,432 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\somarina.jpg
[2010.05.18 23:27:50 | 000,099,272 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\32118_1360698470251_1615249531_840574_1102220_n.jpg
[2010.05.18 11:32:49 | 000,007,371 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\n115000401857504_966.jpg
[2010.05.18 11:32:02 | 000,054,730 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\15294_1307408922805_1158021584_30731387_1853781_n.jpg
[2010.05.18 01:18:56 | 000,680,297 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.mp3
[2010.05.17 23:33:21 | 000,006,251 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\121181.jpg
[2010.05.17 23:32:37 | 000,032,468 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\P2028bb23_bucek3.jpg
[2010.05.16 23:10:06 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
[2010.05.16 22:39:03 | 000,043,520 | ---- | M] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2010.05.16 22:38:42 | 000,000,831 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Play Hitman Contracts.lnk
[2010.05.16 16:07:04 | 000,236,752 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\obymaul2.jpg
[2010.05.16 15:28:29 | 000,206,821 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\obymauler1.jpg
[2010.05.16 13:53:16 | 000,237,925 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\statiuspure.jpg
[2010.05.16 13:51:01 | 000,240,771 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\hrtrh.jpg
[2010.05.16 12:54:07 | 000,368,640 | ---- | M] (Propellerhead Software AB) -- C:\WINDOWS\System32\ReWire.dll
[2010.05.16 12:54:07 | 000,233,472 | ---- | M] (Propellerhead Software AB) -- C:\WINDOWS\System32\REX Shared Library.dll
[2010.05.16 12:39:35 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DAEMON Tools Lite.lnk
[2010.05.16 12:39:34 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.05.16 12:35:11 | 000,000,722 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Reason.lnk
[2010.05.16 11:52:45 | 002,999,220 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B690.jar
[2010.05.16 11:39:51 | 000,204,192 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\wqw.wav
[2010.05.16 11:36:44 | 000,001,685 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Cool Record Edit Deluxe.lnk
[2010.05.16 11:25:44 | 000,000,740 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Cool Music RecordEdit Station.lnk
[2010.05.16 11:23:08 | 000,190,557 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\djboirec.wav
[2010.05.16 11:20:53 | 000,001,934 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\FlameReader.lnk
[2010.05.16 11:03:53 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Audacity.lnk
[2010.05.16 10:32:17 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.05.15 23:52:22 | 000,002,652 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Register Sound Forge Pro.htm
[2010.05.15 22:43:46 | 000,000,678 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\BitLord.lnk
[2010.05.15 21:36:11 | 000,000,601 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Bright Brassp.p5p
[2010.05.15 21:35:28 | 000,002,739 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\oo.p5b
[2010.05.15 21:22:04 | 000,132,751 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\hahabomba.zip
[2010.05.15 20:45:48 | 011,552,460 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\song.mp3
[2010.05.15 20:04:15 | 000,111,213 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\song.zip
[2010.05.15 19:58:12 | 000,196,011 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.zip
[2010.05.15 18:06:34 | 008,049,435 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\accsalereal.psd
[2010.05.15 18:04:02 | 007,460,466 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pozadie.psd
[2010.05.15 17:57:05 | 001,527,778 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\accsale.psd
[2010.05.15 17:48:10 | 001,212,409 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\gsdrg.psd
[2010.05.12 23:24:04 | 000,109,452 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pokus.zip
[32 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Owner\Dokumenty\*.tmp files -> C:\Documents and Settings\Owner\Dokumenty\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.06.11 17:53:30 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\HijackThis.lnk
[2010.06.11 17:28:41 | 000,000,754 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Platinum Hide IP.lnk
[2010.06.10 21:09:33 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Owner\Dokumenty\~$3.docx
[2010.06.10 21:09:30 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Owner\Dokumenty\~$strany.docx
[2010.06.10 02:57:05 | 000,012,204 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Čstrany.docx
[2010.06.10 02:56:49 | 000,014,615 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\3.docx
[2010.06.09 19:17:46 | 000,901,171 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\doc1.docx
[2010.06.08 20:22:04 | 000,167,647 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\thumb-10833_1120761510838_1581067752_30263072_2943768_n.jpg
[2010.06.05 21:15:22 | 000,043,330 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\samolepky_antifico_4_odm.sk.jpg
[2010.06.04 00:28:09 | 000,012,877 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Einwhonerzahl.docx
[2010.06.01 21:12:22 | 000,017,500 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Hranice krajinnej sféry.docx
[2010.05.31 20:42:12 | 000,282,834 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\ladycarneval.flp
[2010.05.31 20:19:46 | 001,441,551 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\ladycarneval.zip
[2010.05.31 20:17:03 | 005,254,860 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\koson karneval dnb.mp3
[2010.05.31 19:00:07 | 000,009,552 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 3.mp3.sfk
[2010.05.31 19:00:06 | 000,882,210 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 3.mp3
[2010.05.31 18:54:09 | 000,002,904 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 2.mp3.sfk
[2010.05.31 18:54:08 | 000,264,466 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 2.mp3
[2010.05.31 18:53:57 | 000,003,608 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 1.mp3.sfk
[2010.05.31 18:53:56 | 000,329,668 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 1.mp3
[2010.05.29 23:08:13 | 000,000,687 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\xB Browser.lnk
[2010.05.29 16:07:14 | 000,083,320 | ---- | C] () -- C:\green_day-21_guns.mid
[2010.05.29 16:03:22 | 000,019,839 | ---- | C] () -- C:\owl_city-fireflies.mid
[2010.05.29 15:59:01 | 000,045,378 | ---- | C] () -- C:\kesha-tik_tok.mid
[2010.05.29 15:51:45 | 000,038,189 | ---- | C] () -- C:\david_guetta-sexy_bitch_feat_akon.mid
[2010.05.29 15:43:59 | 000,001,806 | ---- | C] () -- C:\David Guetta feat. Akon - Sexy Bitch (Midi).mid
[2010.05.29 14:13:44 | 003,029,726 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B721.jar
[2010.05.28 02:58:47 | 000,016,361 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Past Perfect.docx
[2010.05.28 02:58:41 | 000,012,617 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Past Simple.docx
[2010.05.28 02:52:53 | 000,000,891 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pastperfectcontinuous.gif
[2010.05.28 02:39:01 | 000,000,974 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pastperfect.gif
[2010.05.28 02:01:17 | 000,017,269 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\eeežuze.docx
[2010.05.28 01:24:11 | 000,018,465 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\eeežuz.docx
[2010.05.27 20:25:26 | 000,032,256 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\test 2sk aj.doc
[2010.05.27 20:23:48 | 000,015,497 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\test 2sk aj.docx
[2010.05.27 19:44:20 | 000,013,235 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\1bla.docx
[2010.05.27 19:34:04 | 000,316,653 | ---- | C] () -- C:\Snímka0203.jpg
[2010.05.27 19:34:04 | 000,292,965 | ---- | C] () -- C:\Snímka0202.jpg
[2010.05.27 19:34:04 | 000,290,331 | ---- | C] () -- C:\Snímka0204.jpg
[2010.05.27 19:34:04 | 000,237,348 | ---- | C] () -- C:\Snímka0205.jpg
[2010.05.27 14:05:59 | 000,000,653 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\accounts.dat
[2010.05.27 14:05:29 | 000,612,185 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\Quirlion.jar
[2010.05.27 01:05:18 | 000,662,287 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0263to.jpg
[2010.05.27 01:03:06 | 000,764,792 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0262p.jpg
[2010.05.27 01:02:15 | 000,222,000 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0265q.jpg
[2010.05.27 00:58:41 | 000,782,738 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0267r.jpg
[2010.05.27 00:56:07 | 000,667,699 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0268pk.jpg
[2010.05.26 21:46:06 | 003,005,152 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B718.jar
[2010.05.26 20:17:58 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\YouTube Downloader.lnk
[2010.05.25 23:52:02 | 000,375,005 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\untitled65.flp
[2010.05.25 20:42:50 | 005,091,996 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\inna - love acapella.mp3
[2010.05.25 00:35:19 | 000,672,615 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\untitled23.flp
[2010.05.24 23:09:20 | 000,097,772 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\8.jpg
[2010.05.24 22:48:58 | 000,058,240 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\31868_1365446428947_1615249531_851530_1675001_n.jpg
[2010.05.24 22:47:09 | 000,014,858 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Ochorenia dýchacích ciest.docx
[2010.05.24 14:27:35 | 000,416,245 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\untitled22.flp
[2010.05.22 21:31:31 | 000,364,171 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\untitled.flp
[2010.05.20 20:58:57 | 000,629,191 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\NASKA.rar
[2010.05.20 02:12:15 | 000,021,016 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\eeežu.docx
[2010.05.20 02:03:30 | 000,014,101 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\belief a feeling that sb.docx
[2010.05.20 01:32:52 | 000,013,533 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\eee.docx
[2010.05.20 00:32:49 | 000,337,494 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\slovicka matrix.pdf
[2010.05.19 17:26:44 | 003,001,915 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B694.jar
[2010.05.18 23:47:55 | 000,164,432 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\somarina.jpg
[2010.05.18 23:27:49 | 000,099,272 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\32118_1360698470251_1615249531_840574_1102220_n.jpg
[2010.05.18 11:32:49 | 000,007,371 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\n115000401857504_966.jpg
[2010.05.18 01:18:45 | 000,680,297 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.mp3
[2010.05.17 23:34:57 | 000,054,730 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\15294_1307408922805_1158021584_30731387_1853781_n.jpg
[2010.05.17 23:33:21 | 000,006,251 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\121181.jpg
[2010.05.17 23:32:37 | 000,032,468 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\P2028bb23_bucek3.jpg
[2010.05.16 23:10:06 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
[2010.05.16 22:39:03 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2010.05.16 22:38:42 | 000,000,831 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\Play Hitman Contracts.lnk
[2010.05.16 16:06:59 | 000,236,752 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\obymaul2.jpg
[2010.05.16 15:28:27 | 000,206,821 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\obymauler1.jpg
[2010.05.16 13:50:58 | 000,240,771 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\hrtrh.jpg
[2010.05.16 13:46:57 | 000,237,925 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\statiuspure.jpg
[2010.05.16 12:39:35 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\DAEMON Tools Lite.lnk
[2010.05.16 12:39:33 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.05.16 12:32:12 | 000,000,722 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Reason.lnk
[2010.05.16 11:52:54 | 000,010,464 | ---- | C] () -- C:\Documents and Settings\Owner\kbot.error.log.txt
[2010.05.16 11:50:23 | 002,999,220 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B690.jar
[2010.05.16 11:39:50 | 000,204,192 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\wqw.wav
[2010.05.16 11:36:44 | 000,001,685 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\Cool Record Edit Deluxe.lnk
[2010.05.16 11:25:44 | 000,113,486 | ---- | C] () -- C:\WINDOWS\System32\NCTWMAProfiles.prx
[2010.05.16 11:25:44 | 000,000,740 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\Cool Music RecordEdit Station.lnk
[2010.05.16 11:23:08 | 000,190,557 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\djboirec.wav
[2010.05.16 11:20:53 | 000,001,934 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\FlameReader.lnk
[2010.05.16 11:03:53 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\Audacity.lnk
[2010.05.15 23:49:09 | 000,002,652 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Register Sound Forge Pro.htm
[2010.05.15 22:43:46 | 000,000,678 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\BitLord.lnk
[2010.05.15 21:36:11 | 000,000,601 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Bright Brassp.p5p
[2010.05.15 21:35:28 | 000,002,739 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\oo.p5b
[2010.05.15 21:22:03 | 000,132,751 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\hahabomba.zip
[2010.05.15 20:22:38 | 011,552,460 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\song.mp3
[2010.05.15 20:04:14 | 000,111,213 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\song.zip
[2010.05.15 19:58:11 | 000,196,011 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.zip
[2010.05.15 18:06:32 | 008,049,435 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\accsalereal.psd
[2010.05.15 18:03:55 | 007,460,466 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pozadie.psd
[2010.05.15 17:55:25 | 001,527,778 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\accsale.psd
[2010.05.15 17:29:40 | 001,212,409 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\gsdrg.psd
[2010.05.15 13:10:43 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.05.15 11:29:40 | 000,000,998 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.05.15 11:29:40 | 000,000,994 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.05.12 23:47:54 | 000,374,328 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.flp
[2010.05.12 23:24:03 | 000,109,452 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pokus.zip
[2010.04.15 02:40:34 | 000,000,507 | ---- | C] () -- C:\WINDOWS\LMABB2DD.ini
[2010.04.15 01:59:09 | 000,290,918 | ---- | C] () -- C:\WINDOWS\System32\Install7x.dll
[2010.04.15 01:58:29 | 000,000,032 | ---- | C] () -- C:\WINDOWS\CD_Start.INI
[2010.04.15 01:57:21 | 001,134,592 | ---- | C] () -- C:\WINDOWS\System32\LMabusb1.dll
[2010.04.15 01:57:21 | 000,630,784 | ---- | C] () -- C:\WINDOWS\System32\LMabpmui.dll
[2010.04.15 01:57:20 | 001,183,744 | ---- | C] () -- C:\WINDOWS\System32\LMabserv.dll
[2010.04.15 01:57:20 | 000,733,184 | ---- | C] () -- C:\WINDOWS\System32\LMabip1.dll
[2010.04.15 01:57:20 | 000,507,904 | ---- | C] () -- C:\WINDOWS\System32\LMabpar1.dll
[2010.04.15 01:57:20 | 000,491,520 | ---- | C] () -- C:\WINDOWS\System32\LMablmpm.dll
[2010.04.15 01:57:20 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\LMabprox.dll
[2010.04.15 01:57:20 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\LMabpplc.dll
[2010.04.15 01:57:19 | 000,704,512 | ---- | C] () -- C:\WINDOWS\System32\LMabcomc.dll
[2010.04.15 01:57:19 | 000,413,696 | ---- | C] () -- C:\WINDOWS\System32\LMabcomm.dll
[2010.04.15 00:44:22 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56spn.dll
[2010.04.15 00:44:22 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56itl.dll
[2010.04.15 00:44:22 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56eng.dll
[2010.04.15 00:44:22 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56brz.dll
[2010.04.15 00:44:22 | 000,061,440 | R--- | C] () -- C:\WINDOWS\sm56ger.dll
[2010.04.15 00:44:22 | 000,061,440 | R--- | C] () -- C:\WINDOWS\sm56fra.dll
[2010.04.15 00:44:22 | 000,053,248 | R--- | C] () -- C:\WINDOWS\sm56jpn.dll
[2010.04.15 00:44:22 | 000,049,152 | R--- | C] () -- C:\WINDOWS\sm56cht.dll
[2010.04.15 00:44:22 | 000,049,152 | R--- | C] () -- C:\WINDOWS\sm56chs.dll
[2010.04.14 20:27:28 | 000,001,180 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2008.10.11 11:27:22 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2008.10.11 11:27:20 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\TrustSupport.dll
[2006.07.20 21:58:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006.07.20 21:58:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006.07.20 21:58:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006.07.20 21:58:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006.07.20 21:58:00 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2004.08.18 14:00:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004.08.18 14:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2001.03.30 22:58:36 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\Property.dll
========== LOP Check ==========
[2010.05.16 12:39:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.04.15 02:19:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2010.04.15 00:50:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Native Instruments
[2010.06.10 17:20:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PlatinumHideIP
[2010.05.16 12:35:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Propellerhead Software
[2010.05.15 23:45:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2010.04.15 00:50:04 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{4E70D107-00B1-4793-A17B-C6B6D7EF3151}
[2010.04.15 00:51:01 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{849DD083-B349-4E44-A4E6-B8E8DCED3B0A}
[2010.04.15 00:49:50 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2}
[2010.05.09 20:40:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\AnvSoft
[2010.05.26 20:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Cool Record Edit Deluxe
[2010.05.16 12:49:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\DAEMON Tools Lite
[2010.04.15 02:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\ESET
[2010.05.25 20:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Juce VST Host
[2010.04.15 02:03:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Opera
[2010.05.30 17:01:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\PlatinumHideIP
[2010.05.16 12:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Propellerhead Software
[2010.05.15 23:53:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Publish Providers
[2010.04.22 21:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\QipGuard
[2010.05.15 23:53:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Sony
[2010.05.19 00:19:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Sony Setup
[2010.04.15 02:13:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Subversion
========== Purity Check ==========
OTL by OldTimer - Version 3.2.6.0 Folder = C:\Documents and Settings\Owner\Plocha
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
1 022,00 Mb Total Physical Memory | 481,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 12,89 Gb Free Space | 44,00% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 48,99 Gb Free Space | 50,17% Space Free | Partition Type: NTFS
Drive E: | 48,83 Gb Total Space | 8,61 Gb Free Space | 17,64% Space Free | Partition Type: NTFS
Drive F: | 48,83 Gb Total Space | 10,32 Gb Free Space | 21,14% Space Free | Partition Type: NTFS
Drive G: | 478,00 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: OSOBNY
Current User Name: Owner
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.06.11 18:30:32 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Plocha\OTL.exe
PRC - [2010.04.28 13:45:50 | 000,835,952 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2010.04.24 20:48:49 | 000,136,176 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Owner\Local Settings\Data aplikací\Google\Update\1.2.183.23\GoogleCrashHandler.exe
PRC - [2010.04.12 18:28:50 | 000,181,760 | ---- | M] () -- C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe
PRC - [2010.03.24 20:31:50 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2010.03.24 20:31:00 | 002,145,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2010.01.22 20:36:00 | 000,621,320 | ---- | M] (http://tortoisesvn.net) -- C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
PRC - [2009.12.08 20:26:15 | 003,616,768 | ---- | M] (Native Instruments GmbH) -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
PRC - [2006.03.22 13:51:56 | 000,630,784 | ---- | M] (Topcom Corp.) -- C:\Program Files\TOPCOM\Common\Topcom_USB_4001g.exe
PRC - [2006.01.20 14:34:26 | 000,544,768 | R--- | M] (Motorola Inc.) -- C:\WINDOWS\sm56hlpr.exe
PRC - [2005.04.07 20:48:41 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
========== Modules (SafeList) ==========
MOD - [2010.06.11 18:30:32 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Plocha\OTL.exe
MOD - [2005.04.07 11:50:14 | 001,053,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2649_x-ww_aac16c8b\comctl32.dll
MOD - [2004.08.18 14:00:00 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
========== Win32 Services (SafeList) ==========
SRV - [2010.03.24 20:39:48 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010.03.24 20:31:50 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2009.12.08 20:26:15 | 003,616,768 | ---- | M] (Native Instruments GmbH) [Auto | Running] -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService)
SRV - [2005.06.14 22:40:54 | 000,491,520 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\System32\LMabcoms.exe -- (lmab_device)
========== Driver Services (SafeList) ==========
DRV - [2010.05.16 12:39:34 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.03.24 20:33:50 | 000,055,232 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2010.03.24 20:33:50 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2010.03.24 20:33:46 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2010.03.24 20:31:06 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010.03.24 20:23:52 | 000,139,192 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2006.08.24 12:37:50 | 004,374,016 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.07.20 21:58:00 | 003,685,152 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006.07.11 21:31:02 | 000,084,096 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2006.06.19 00:38:18 | 000,043,520 | R--- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.01.20 14:38:02 | 000,930,308 | R--- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial)
DRV - [2005.11.24 19:51:38 | 000,245,248 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73)
DRV - [2005.01.07 17:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004.08.04 00:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\..\URLSearchHook: {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Owner\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=;ftp=;https=;
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://www.daemon-search.com/startpage"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185
FF - prefs.js..extensions.enabledItems: support@platinumhideip.com:1.0
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.04.26 18:20:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.05.23 11:00:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010.04.15 02:19:22 | 000,000,000 | ---D | M]
[2010.04.26 18:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Mozilla\Extensions
[2010.06.10 16:11:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Mozilla\Firefox\Profiles\jfrkemwk.default\extensions
[2010.05.16 12:39:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Mozilla\Firefox\Profiles\jfrkemwk.default\extensions\DTToolbar@toolbarnet.com
[2010.05.30 17:02:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Mozilla\Firefox\Profiles\jfrkemwk.default\extensions\support@platinumhideip.com
[2010.05.16 12:39:41 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Owner\Data aplikací\Mozilla\Firefox\Profiles\jfrkemwk.default\searchplugins\daemon-search.xml
[2010.06.10 16:11:57 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.05.23 11:00:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.04.12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.04.01 19:40:34 | 000,001,583 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\atlas-sk.xml
[2010.04.01 19:40:34 | 000,001,380 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\azet-sk.xml
[2010.04.01 19:40:34 | 000,001,479 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dunaj-sk.xml
[2010.04.01 19:40:34 | 000,001,473 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slovnik-sk.xml
[2010.04.01 19:40:34 | 000,001,104 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-sk.xml
[2010.04.01 19:40:34 | 000,000,830 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\zoznam-sk.xml
O1 HOSTS File: ([2010.04.15 01:26:43 | 000,000,966 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 adobeereg.com
O1 - Hosts: 127.0.0.1 www.adobeereg.com
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Owner\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe (Motorola Inc.)
O4 - HKU\S-1-5-21-1292428093-2000478354-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1292428093-2000478354-725345543-1003..\Run: [QIP Internet Guardian] C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Topcom Wireless LAN Utility.lnk = C:\Program Files\TOPCOM\Common\Topcom_USB_4001g.exe (Topcom Corp.)
O4 - Startup: C:\Documents and Settings\Owner\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Owner\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Owner\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.04.14 20:24:14 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2007.01.08 12:40:10 | 000,000,040 | R--- | M] () - G:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{b23f7620-47f4-11df-b3e8-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{b23f7620-47f4-11df-b3e8-806d6172696f}\Shell\AutoRun\command - "" = G:\start.exe -- [2007.01.08 12:40:10 | 002,680,326 | R--- | M] (Macromedia, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010.04.14 20:23:48 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (55745656140070912)
========== Files/Folders - Created Within 30 Days ==========
[2010.06.11 18:30:19 | 000,572,416 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Owner\Plocha\OTL.exe
[2010.06.11 18:09:33 | 000,000,000 | ---D | C] -- C:\rsit
[2010.06.11 17:53:29 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010.06.11 17:28:38 | 000,000,000 | ---D | C] -- C:\Program Files\PlatinumHideIP
[2010.06.01 14:59:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Plocha\rsbot 2
[2010.05.31 23:30:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\workspace
[2010.05.30 17:01:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\PlatinumHideIP
[2010.05.30 17:01:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\PlatinumHideIP
[2010.05.29 23:07:33 | 000,000,000 | ---D | C] -- C:\Program Files\XeroBank
[2010.05.26 20:17:49 | 000,000,000 | ---D | C] -- C:\Program Files\YouTube Downloader
[2010.05.25 20:20:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Juce VST Host
[2010.05.23 11:00:26 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010.05.23 11:00:26 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.05.23 11:00:26 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.05.23 11:00:26 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.05.20 20:59:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Dokumenty\NASKA
[2010.05.19 00:19:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Sony Setup
[2010.05.17 13:11:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\dvdcss
[2010.05.16 23:10:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\vlc
[2010.05.16 23:09:50 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010.05.16 22:34:33 | 000,000,000 | ---D | C] -- C:\Program Files\Eidos
[2010.05.16 13:16:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Tracing
[2010.05.16 13:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2010.05.16 13:12:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\microsoft
[2010.05.16 13:12:21 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2010.05.16 13:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010.05.16 13:06:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2010.05.16 12:54:07 | 000,368,640 | ---- | C] (Propellerhead Software AB) -- C:\WINDOWS\System32\ReWire.dll
[2010.05.16 12:54:07 | 000,233,472 | ---- | C] (Propellerhead Software AB) -- C:\WINDOWS\System32\REX Shared Library.dll
[2010.05.16 12:39:41 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Toolbar
[2010.05.16 12:39:18 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2010.05.16 12:39:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\DAEMON Tools Lite
[2010.05.16 12:39:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.05.16 12:35:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Propellerhead Software
[2010.05.16 12:35:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Propellerhead Software
[2010.05.16 12:31:46 | 000,000,000 | ---D | C] -- C:\Program Files\Propellerhead
[2010.05.16 11:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Cool Record Edit Deluxe
[2010.05.16 11:36:03 | 000,475,136 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioVisualizationEx2.dll
[2010.05.16 11:36:03 | 000,417,792 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTTextToAudio2.dll
[2010.05.16 11:35:54 | 000,000,000 | ---D | C] -- C:\Program Files\Cool Record Edit Deluxe
[2010.05.16 11:25:42 | 000,417,792 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioDisplay2.dll
[2010.05.16 11:25:31 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr71d.dll
[2010.05.16 11:25:14 | 000,000,000 | ---D | C] -- C:\Program Files\Cool Music RecordEdit Station
[2010.05.16 11:21:18 | 000,000,000 | ---D | C] -- C:\Program Files\AnalogX
[2010.05.16 11:20:03 | 000,000,000 | ---D | C] -- C:\Program Files\FlameSoft
[2010.05.16 11:03:47 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity
[2010.05.15 23:53:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Publish Providers
[2010.05.15 23:47:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Data aplikací\Sony
[2010.05.15 23:47:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Sony
[2010.05.15 23:45:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2010.05.15 23:45:17 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
[2010.05.15 22:48:22 | 000,000,000 | ---D | C] -- C:\jhkj
[2010.05.15 22:43:44 | 000,000,000 | ---D | C] -- C:\Program Files\BitLord
[2010.05.15 13:10:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Adobe
[2010.05.15 11:34:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2010.05.15 11:33:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Data aplikací\Google
[2010.05.15 11:29:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2010.05.15 11:29:37 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010.05.14 00:55:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Dokumenty\Hudba
[2010.04.15 01:57:34 | 000,335,872 | ---- | C] ( ) -- C:\WINDOWS\System32\lexlog.dll
[32 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Owner\Dokumenty\*.tmp files -> C:\Documents and Settings\Owner\Dokumenty\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010.06.11 18:34:05 | 000,000,998 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.06.11 18:30:32 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Plocha\OTL.exe
[2010.06.11 18:28:18 | 000,000,045 | ---- | M] () -- C:\Documents and Settings\Owner\jagex_runescape_preferences.dat
[2010.06.11 18:28:18 | 000,000,041 | ---- | M] () -- C:\Documents and Settings\Owner\jagex__preferences3.dat
[2010.06.11 18:28:17 | 000,000,087 | ---- | M] () -- C:\Documents and Settings\Owner\jagex_runescape_preferences2.dat
[2010.06.11 17:53:30 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\HijackThis.lnk
[2010.06.11 17:53:03 | 000,001,086 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1292428093-2000478354-725345543-1003UA.job
[2010.06.11 17:28:41 | 000,000,754 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Platinum Hide IP.lnk
[2010.06.11 17:26:22 | 000,947,584 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.06.11 17:26:22 | 000,401,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.06.11 17:26:22 | 000,398,588 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.06.11 17:26:22 | 000,073,376 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.06.11 17:26:22 | 000,062,480 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.06.11 17:22:23 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.06.11 17:22:22 | 000,051,048 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010.06.11 17:22:16 | 000,000,994 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.06.11 17:22:12 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.11 17:22:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.11 17:21:13 | 004,980,736 | -H-- | M] () -- C:\Documents and Settings\Owner\NTUSER.DAT
[2010.06.11 17:21:13 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Owner\ntuser.ini
[2010.06.10 21:09:47 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\LexFiles.usr
[2010.06.10 21:09:33 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Owner\Dokumenty\~$3.docx
[2010.06.10 21:09:30 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Owner\Dokumenty\~$strany.docx
[2010.06.10 21:08:12 | 000,002,563 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Microsoft Office Word 2007.lnk
[2010.06.10 20:53:03 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1292428093-2000478354-725345543-1003Core.job
[2010.06.10 02:57:06 | 000,012,204 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Čstrany.docx
[2010.06.10 02:56:51 | 000,014,615 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\3.docx
[2010.06.09 19:17:48 | 000,901,171 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\doc1.docx
[2010.06.09 14:55:19 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Google Chrome.lnk
[2010.06.08 20:22:04 | 000,167,647 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\thumb-10833_1120761510838_1581067752_30263072_2943768_n.jpg
[2010.06.08 19:54:16 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Opera.lnk
[2010.06.05 21:15:22 | 000,043,330 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\samolepky_antifico_4_odm.sk.jpg
[2010.06.04 00:32:14 | 000,000,603 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.06.04 00:28:09 | 000,012,877 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Einwhonerzahl.docx
[2010.06.03 15:42:15 | 000,000,780 | ---- | M] () -- C:\Documents and Settings\Owner\Data aplikací\RSBot Accounts.ini
[2010.06.02 16:36:40 | 000,374,328 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.flp
[2010.06.02 00:47:34 | 000,017,500 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Hranice krajinnej sféry.docx
[2010.05.31 20:56:58 | 000,019,968 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.31 20:42:13 | 000,282,834 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\ladycarneval.flp
[2010.05.31 20:19:48 | 001,441,551 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\ladycarneval.zip
[2010.05.31 20:19:04 | 005,254,860 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\koson karneval dnb.mp3
[2010.05.31 19:00:07 | 000,882,210 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 3.mp3
[2010.05.31 19:00:07 | 000,009,552 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 3.mp3.sfk
[2010.05.31 18:54:12 | 000,002,904 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 2.mp3.sfk
[2010.05.31 18:54:09 | 000,264,466 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 2.mp3
[2010.05.31 18:53:58 | 000,003,608 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 1.mp3.sfk
[2010.05.31 18:53:57 | 000,329,668 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 1.mp3
[2010.05.31 01:26:37 | 000,017,404 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Izotopy.docx
[2010.05.29 23:08:13 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\xB Browser.lnk
[2010.05.29 16:07:14 | 000,083,320 | ---- | M] () -- C:\green_day-21_guns.mid
[2010.05.29 16:03:22 | 000,019,839 | ---- | M] () -- C:\owl_city-fireflies.mid
[2010.05.29 15:59:01 | 000,045,378 | ---- | M] () -- C:\kesha-tik_tok.mid
[2010.05.29 15:51:45 | 000,038,189 | ---- | M] () -- C:\david_guetta-sexy_bitch_feat_akon.mid
[2010.05.29 15:43:59 | 000,001,806 | ---- | M] () -- C:\David Guetta feat. Akon - Sexy Bitch (Midi).mid
[2010.05.29 14:13:52 | 003,029,726 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B721.jar
[2010.05.28 02:58:47 | 000,016,361 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Past Perfect.docx
[2010.05.28 02:58:42 | 000,012,617 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Past Simple.docx
[2010.05.28 02:52:53 | 000,000,891 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pastperfectcontinuous.gif
[2010.05.28 02:39:01 | 000,000,974 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pastperfect.gif
[2010.05.28 02:14:29 | 000,017,269 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\eeežuze.docx
[2010.05.28 01:53:31 | 000,018,465 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\eeežuz.docx
[2010.05.27 20:25:26 | 000,032,256 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\test 2sk aj.doc
[2010.05.27 20:23:48 | 000,015,497 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\test 2sk aj.docx
[2010.05.27 20:16:33 | 000,013,235 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\1bla.docx
[2010.05.27 14:08:03 | 000,000,653 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\accounts.dat
[2010.05.27 14:05:31 | 000,612,185 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Quirlion.jar
[2010.05.27 01:05:19 | 000,662,287 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0263to.jpg
[2010.05.27 01:03:15 | 000,764,792 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0262p.jpg
[2010.05.27 01:02:15 | 000,222,000 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0265q.jpg
[2010.05.27 00:58:41 | 000,782,738 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0267r.jpg
[2010.05.27 00:56:07 | 000,667,699 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0268pk.jpg
[2010.05.26 21:46:22 | 003,005,152 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B718.jar
[2010.05.26 21:14:05 | 000,375,005 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\untitled65.flp
[2010.05.26 20:17:58 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\YouTube Downloader.lnk
[2010.05.25 21:29:35 | 000,672,615 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\untitled23.flp
[2010.05.25 20:43:52 | 005,091,996 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\inna - love acapella.mp3
[2010.05.24 23:09:20 | 000,097,772 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\8.jpg
[2010.05.24 23:04:33 | 000,014,858 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Ochorenia dýchacích ciest.docx
[2010.05.24 22:48:58 | 000,058,240 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\31868_1365446428947_1615249531_851530_1675001_n.jpg
[2010.05.24 14:27:35 | 000,416,245 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\untitled22.flp
[2010.05.24 13:49:13 | 000,002,477 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Microsoft Office Excel 2007.lnk
[2010.05.23 15:34:06 | 000,364,171 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\untitled.flp
[2010.05.20 20:58:57 | 000,629,191 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\NASKA.rar
[2010.05.20 02:23:25 | 000,014,101 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\belief a feeling that sb.docx
[2010.05.20 02:22:12 | 000,021,016 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\eeežu.docx
[2010.05.20 02:04:33 | 000,013,533 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\eee.docx
[2010.05.20 00:32:49 | 000,337,494 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\slovicka matrix.pdf
[2010.05.19 17:26:52 | 003,001,915 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B694.jar
[2010.05.18 23:47:57 | 000,164,432 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\somarina.jpg
[2010.05.18 23:27:50 | 000,099,272 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\32118_1360698470251_1615249531_840574_1102220_n.jpg
[2010.05.18 11:32:49 | 000,007,371 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\n115000401857504_966.jpg
[2010.05.18 11:32:02 | 000,054,730 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\15294_1307408922805_1158021584_30731387_1853781_n.jpg
[2010.05.18 01:18:56 | 000,680,297 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.mp3
[2010.05.17 23:33:21 | 000,006,251 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\121181.jpg
[2010.05.17 23:32:37 | 000,032,468 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\P2028bb23_bucek3.jpg
[2010.05.16 23:10:06 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
[2010.05.16 22:39:03 | 000,043,520 | ---- | M] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2010.05.16 22:38:42 | 000,000,831 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Play Hitman Contracts.lnk
[2010.05.16 16:07:04 | 000,236,752 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\obymaul2.jpg
[2010.05.16 15:28:29 | 000,206,821 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\obymauler1.jpg
[2010.05.16 13:53:16 | 000,237,925 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\statiuspure.jpg
[2010.05.16 13:51:01 | 000,240,771 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\hrtrh.jpg
[2010.05.16 12:54:07 | 000,368,640 | ---- | M] (Propellerhead Software AB) -- C:\WINDOWS\System32\ReWire.dll
[2010.05.16 12:54:07 | 000,233,472 | ---- | M] (Propellerhead Software AB) -- C:\WINDOWS\System32\REX Shared Library.dll
[2010.05.16 12:39:35 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DAEMON Tools Lite.lnk
[2010.05.16 12:39:34 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.05.16 12:35:11 | 000,000,722 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Reason.lnk
[2010.05.16 11:52:45 | 002,999,220 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B690.jar
[2010.05.16 11:39:51 | 000,204,192 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\wqw.wav
[2010.05.16 11:36:44 | 000,001,685 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Cool Record Edit Deluxe.lnk
[2010.05.16 11:25:44 | 000,000,740 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Cool Music RecordEdit Station.lnk
[2010.05.16 11:23:08 | 000,190,557 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\djboirec.wav
[2010.05.16 11:20:53 | 000,001,934 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\FlameReader.lnk
[2010.05.16 11:03:53 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\Audacity.lnk
[2010.05.16 10:32:17 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.05.15 23:52:22 | 000,002,652 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Register Sound Forge Pro.htm
[2010.05.15 22:43:46 | 000,000,678 | ---- | M] () -- C:\Documents and Settings\Owner\Plocha\BitLord.lnk
[2010.05.15 21:36:11 | 000,000,601 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\Bright Brassp.p5p
[2010.05.15 21:35:28 | 000,002,739 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\oo.p5b
[2010.05.15 21:22:04 | 000,132,751 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\hahabomba.zip
[2010.05.15 20:45:48 | 011,552,460 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\song.mp3
[2010.05.15 20:04:15 | 000,111,213 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\song.zip
[2010.05.15 19:58:12 | 000,196,011 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.zip
[2010.05.15 18:06:34 | 008,049,435 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\accsalereal.psd
[2010.05.15 18:04:02 | 007,460,466 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pozadie.psd
[2010.05.15 17:57:05 | 001,527,778 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\accsale.psd
[2010.05.15 17:48:10 | 001,212,409 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\gsdrg.psd
[2010.05.12 23:24:04 | 000,109,452 | ---- | M] () -- C:\Documents and Settings\Owner\Dokumenty\pokus.zip
[32 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Owner\Dokumenty\*.tmp files -> C:\Documents and Settings\Owner\Dokumenty\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.06.11 17:53:30 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\HijackThis.lnk
[2010.06.11 17:28:41 | 000,000,754 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Platinum Hide IP.lnk
[2010.06.10 21:09:33 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Owner\Dokumenty\~$3.docx
[2010.06.10 21:09:30 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Owner\Dokumenty\~$strany.docx
[2010.06.10 02:57:05 | 000,012,204 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Čstrany.docx
[2010.06.10 02:56:49 | 000,014,615 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\3.docx
[2010.06.09 19:17:46 | 000,901,171 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\doc1.docx
[2010.06.08 20:22:04 | 000,167,647 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\thumb-10833_1120761510838_1581067752_30263072_2943768_n.jpg
[2010.06.05 21:15:22 | 000,043,330 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\samolepky_antifico_4_odm.sk.jpg
[2010.06.04 00:28:09 | 000,012,877 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Einwhonerzahl.docx
[2010.06.01 21:12:22 | 000,017,500 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Hranice krajinnej sféry.docx
[2010.05.31 20:42:12 | 000,282,834 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\ladycarneval.flp
[2010.05.31 20:19:46 | 001,441,551 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\ladycarneval.zip
[2010.05.31 20:17:03 | 005,254,860 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\koson karneval dnb.mp3
[2010.05.31 19:00:07 | 000,009,552 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 3.mp3.sfk
[2010.05.31 19:00:06 | 000,882,210 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 3.mp3
[2010.05.31 18:54:09 | 000,002,904 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 2.mp3.sfk
[2010.05.31 18:54:08 | 000,264,466 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 2.mp3
[2010.05.31 18:53:57 | 000,003,608 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 1.mp3.sfk
[2010.05.31 18:53:56 | 000,329,668 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Sound 1.mp3
[2010.05.29 23:08:13 | 000,000,687 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\xB Browser.lnk
[2010.05.29 16:07:14 | 000,083,320 | ---- | C] () -- C:\green_day-21_guns.mid
[2010.05.29 16:03:22 | 000,019,839 | ---- | C] () -- C:\owl_city-fireflies.mid
[2010.05.29 15:59:01 | 000,045,378 | ---- | C] () -- C:\kesha-tik_tok.mid
[2010.05.29 15:51:45 | 000,038,189 | ---- | C] () -- C:\david_guetta-sexy_bitch_feat_akon.mid
[2010.05.29 15:43:59 | 000,001,806 | ---- | C] () -- C:\David Guetta feat. Akon - Sexy Bitch (Midi).mid
[2010.05.29 14:13:44 | 003,029,726 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B721.jar
[2010.05.28 02:58:47 | 000,016,361 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Past Perfect.docx
[2010.05.28 02:58:41 | 000,012,617 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Past Simple.docx
[2010.05.28 02:52:53 | 000,000,891 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pastperfectcontinuous.gif
[2010.05.28 02:39:01 | 000,000,974 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pastperfect.gif
[2010.05.28 02:01:17 | 000,017,269 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\eeežuze.docx
[2010.05.28 01:24:11 | 000,018,465 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\eeežuz.docx
[2010.05.27 20:25:26 | 000,032,256 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\test 2sk aj.doc
[2010.05.27 20:23:48 | 000,015,497 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\test 2sk aj.docx
[2010.05.27 19:44:20 | 000,013,235 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\1bla.docx
[2010.05.27 19:34:04 | 000,316,653 | ---- | C] () -- C:\Snímka0203.jpg
[2010.05.27 19:34:04 | 000,292,965 | ---- | C] () -- C:\Snímka0202.jpg
[2010.05.27 19:34:04 | 000,290,331 | ---- | C] () -- C:\Snímka0204.jpg
[2010.05.27 19:34:04 | 000,237,348 | ---- | C] () -- C:\Snímka0205.jpg
[2010.05.27 14:05:59 | 000,000,653 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\accounts.dat
[2010.05.27 14:05:29 | 000,612,185 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\Quirlion.jar
[2010.05.27 01:05:18 | 000,662,287 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0263to.jpg
[2010.05.27 01:03:06 | 000,764,792 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0262p.jpg
[2010.05.27 01:02:15 | 000,222,000 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0265q.jpg
[2010.05.27 00:58:41 | 000,782,738 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0267r.jpg
[2010.05.27 00:56:07 | 000,667,699 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\dsc0268pk.jpg
[2010.05.26 21:46:06 | 003,005,152 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B718.jar
[2010.05.26 20:17:58 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\YouTube Downloader.lnk
[2010.05.25 23:52:02 | 000,375,005 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\untitled65.flp
[2010.05.25 20:42:50 | 005,091,996 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\inna - love acapella.mp3
[2010.05.25 00:35:19 | 000,672,615 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\untitled23.flp
[2010.05.24 23:09:20 | 000,097,772 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\8.jpg
[2010.05.24 22:48:58 | 000,058,240 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\31868_1365446428947_1615249531_851530_1675001_n.jpg
[2010.05.24 22:47:09 | 000,014,858 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Ochorenia dýchacích ciest.docx
[2010.05.24 14:27:35 | 000,416,245 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\untitled22.flp
[2010.05.22 21:31:31 | 000,364,171 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\untitled.flp
[2010.05.20 20:58:57 | 000,629,191 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\NASKA.rar
[2010.05.20 02:12:15 | 000,021,016 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\eeežu.docx
[2010.05.20 02:03:30 | 000,014,101 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\belief a feeling that sb.docx
[2010.05.20 01:32:52 | 000,013,533 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\eee.docx
[2010.05.20 00:32:49 | 000,337,494 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\slovicka matrix.pdf
[2010.05.19 17:26:44 | 003,001,915 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B694.jar
[2010.05.18 23:47:55 | 000,164,432 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\somarina.jpg
[2010.05.18 23:27:49 | 000,099,272 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\32118_1360698470251_1615249531_840574_1102220_n.jpg
[2010.05.18 11:32:49 | 000,007,371 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\n115000401857504_966.jpg
[2010.05.18 01:18:45 | 000,680,297 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.mp3
[2010.05.17 23:34:57 | 000,054,730 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\15294_1307408922805_1158021584_30731387_1853781_n.jpg
[2010.05.17 23:33:21 | 000,006,251 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\121181.jpg
[2010.05.17 23:32:37 | 000,032,468 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\P2028bb23_bucek3.jpg
[2010.05.16 23:10:06 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\VLC media player.lnk
[2010.05.16 22:39:03 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2010.05.16 22:38:42 | 000,000,831 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\Play Hitman Contracts.lnk
[2010.05.16 16:06:59 | 000,236,752 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\obymaul2.jpg
[2010.05.16 15:28:27 | 000,206,821 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\obymauler1.jpg
[2010.05.16 13:50:58 | 000,240,771 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\hrtrh.jpg
[2010.05.16 13:46:57 | 000,237,925 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\statiuspure.jpg
[2010.05.16 12:39:35 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\DAEMON Tools Lite.lnk
[2010.05.16 12:39:33 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.05.16 12:32:12 | 000,000,722 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Reason.lnk
[2010.05.16 11:52:54 | 000,010,464 | ---- | C] () -- C:\Documents and Settings\Owner\kbot.error.log.txt
[2010.05.16 11:50:23 | 002,999,220 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\KbotObf-B690.jar
[2010.05.16 11:39:50 | 000,204,192 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\wqw.wav
[2010.05.16 11:36:44 | 000,001,685 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\Cool Record Edit Deluxe.lnk
[2010.05.16 11:25:44 | 000,113,486 | ---- | C] () -- C:\WINDOWS\System32\NCTWMAProfiles.prx
[2010.05.16 11:25:44 | 000,000,740 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\Cool Music RecordEdit Station.lnk
[2010.05.16 11:23:08 | 000,190,557 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\djboirec.wav
[2010.05.16 11:20:53 | 000,001,934 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\FlameReader.lnk
[2010.05.16 11:03:53 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\Audacity.lnk
[2010.05.15 23:49:09 | 000,002,652 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Register Sound Forge Pro.htm
[2010.05.15 22:43:46 | 000,000,678 | ---- | C] () -- C:\Documents and Settings\Owner\Plocha\BitLord.lnk
[2010.05.15 21:36:11 | 000,000,601 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\Bright Brassp.p5p
[2010.05.15 21:35:28 | 000,002,739 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\oo.p5b
[2010.05.15 21:22:03 | 000,132,751 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\hahabomba.zip
[2010.05.15 20:22:38 | 011,552,460 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\song.mp3
[2010.05.15 20:04:14 | 000,111,213 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\song.zip
[2010.05.15 19:58:11 | 000,196,011 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.zip
[2010.05.15 18:06:32 | 008,049,435 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\accsalereal.psd
[2010.05.15 18:03:55 | 007,460,466 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pozadie.psd
[2010.05.15 17:55:25 | 001,527,778 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\accsale.psd
[2010.05.15 17:29:40 | 001,212,409 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\gsdrg.psd
[2010.05.15 13:10:43 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.05.15 11:29:40 | 000,000,998 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.05.15 11:29:40 | 000,000,994 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.05.12 23:47:54 | 000,374,328 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pokusfcd.flp
[2010.05.12 23:24:03 | 000,109,452 | ---- | C] () -- C:\Documents and Settings\Owner\Dokumenty\pokus.zip
[2010.04.15 02:40:34 | 000,000,507 | ---- | C] () -- C:\WINDOWS\LMABB2DD.ini
[2010.04.15 01:59:09 | 000,290,918 | ---- | C] () -- C:\WINDOWS\System32\Install7x.dll
[2010.04.15 01:58:29 | 000,000,032 | ---- | C] () -- C:\WINDOWS\CD_Start.INI
[2010.04.15 01:57:21 | 001,134,592 | ---- | C] () -- C:\WINDOWS\System32\LMabusb1.dll
[2010.04.15 01:57:21 | 000,630,784 | ---- | C] () -- C:\WINDOWS\System32\LMabpmui.dll
[2010.04.15 01:57:20 | 001,183,744 | ---- | C] () -- C:\WINDOWS\System32\LMabserv.dll
[2010.04.15 01:57:20 | 000,733,184 | ---- | C] () -- C:\WINDOWS\System32\LMabip1.dll
[2010.04.15 01:57:20 | 000,507,904 | ---- | C] () -- C:\WINDOWS\System32\LMabpar1.dll
[2010.04.15 01:57:20 | 000,491,520 | ---- | C] () -- C:\WINDOWS\System32\LMablmpm.dll
[2010.04.15 01:57:20 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\LMabprox.dll
[2010.04.15 01:57:20 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\LMabpplc.dll
[2010.04.15 01:57:19 | 000,704,512 | ---- | C] () -- C:\WINDOWS\System32\LMabcomc.dll
[2010.04.15 01:57:19 | 000,413,696 | ---- | C] () -- C:\WINDOWS\System32\LMabcomm.dll
[2010.04.15 00:44:22 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56spn.dll
[2010.04.15 00:44:22 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56itl.dll
[2010.04.15 00:44:22 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56eng.dll
[2010.04.15 00:44:22 | 000,069,632 | R--- | C] () -- C:\WINDOWS\sm56brz.dll
[2010.04.15 00:44:22 | 000,061,440 | R--- | C] () -- C:\WINDOWS\sm56ger.dll
[2010.04.15 00:44:22 | 000,061,440 | R--- | C] () -- C:\WINDOWS\sm56fra.dll
[2010.04.15 00:44:22 | 000,053,248 | R--- | C] () -- C:\WINDOWS\sm56jpn.dll
[2010.04.15 00:44:22 | 000,049,152 | R--- | C] () -- C:\WINDOWS\sm56cht.dll
[2010.04.15 00:44:22 | 000,049,152 | R--- | C] () -- C:\WINDOWS\sm56chs.dll
[2010.04.14 20:27:28 | 000,001,180 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2008.10.11 11:27:22 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2008.10.11 11:27:20 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\TrustSupport.dll
[2006.07.20 21:58:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006.07.20 21:58:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006.07.20 21:58:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006.07.20 21:58:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006.07.20 21:58:00 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2004.08.18 14:00:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004.08.18 14:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2001.03.30 22:58:36 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\Property.dll
========== LOP Check ==========
[2010.05.16 12:39:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.04.15 02:19:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2010.04.15 00:50:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Native Instruments
[2010.06.10 17:20:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PlatinumHideIP
[2010.05.16 12:35:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Propellerhead Software
[2010.05.15 23:45:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2010.04.15 00:50:04 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{4E70D107-00B1-4793-A17B-C6B6D7EF3151}
[2010.04.15 00:51:01 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{849DD083-B349-4E44-A4E6-B8E8DCED3B0A}
[2010.04.15 00:49:50 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2}
[2010.05.09 20:40:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\AnvSoft
[2010.05.26 20:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Cool Record Edit Deluxe
[2010.05.16 12:49:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\DAEMON Tools Lite
[2010.04.15 02:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\ESET
[2010.05.25 20:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Juce VST Host
[2010.04.15 02:03:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Opera
[2010.05.30 17:01:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\PlatinumHideIP
[2010.05.16 12:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Propellerhead Software
[2010.05.15 23:53:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Publish Providers
[2010.04.22 21:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\QipGuard
[2010.05.15 23:53:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Sony
[2010.05.19 00:19:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Sony Setup
[2010.04.15 02:13:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Subversion
========== Purity Check ==========
Re: Spomalený internet
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2004.08.18 14:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation)
"QIP Internet Guardian" = C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe -- [2010.04.12 18:28:50 | 000,181,760 | ---- | M] ()
"Google Update" = "C:\Documents and Settings\Owner\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2010.04.24 20:48:49 | 000,136,176 | ---- | M] (Google Inc.)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized -- [2010.04.06 02:27:46 | 026,102,056 | R--- | M] (Skype Technologies S.A.)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2010.04.01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd)
"msnmsgr" = "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background -- [2010.04.16 22:12:38 | 003,872,080 | ---- | M] (Microsoft Corporation)
< c:\windows\*.* /U >
[32 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.05.15 13:11:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Adobe
[2010.05.09 20:40:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\AnvSoft
[2010.05.09 18:34:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\AVS4YOU
[2010.05.26 20:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Cool Record Edit Deluxe
[2010.05.16 12:49:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\DAEMON Tools Lite
[2010.06.05 20:54:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\dvdcss
[2010.04.15 02:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\ESET
[2010.05.15 11:33:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Google
[2010.04.14 20:38:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Identities
[2010.05.25 20:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Juce VST Host
[2010.04.15 02:28:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Macromedia
[2010.05.16 13:16:11 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Owner\Data aplikací\Microsoft
[2010.04.26 18:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Mozilla
[2010.04.15 02:03:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Opera
[2010.05.30 17:01:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\PlatinumHideIP
[2010.05.16 12:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Propellerhead Software
[2010.05.15 23:53:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Publish Providers
[2010.04.22 21:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\QipGuard
[2010.06.11 18:22:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Skype
[2010.06.11 17:22:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\skypePM
[2010.05.15 23:53:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Sony
[2010.05.19 00:19:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Sony Setup
[2010.04.15 02:13:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Subversion
[2010.04.15 02:12:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Sun
[2010.04.18 16:28:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\TortoiseSVN
[2010.06.10 22:23:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\vlc
[2010.04.22 16:58:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\WinRAR
< %APPDATA%\*.exe /s >
[2010.05.16 11:20:57 | 000,065,536 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Owner\Data aplikací\Microsoft\Installer\{C5C65509-1EAD-47E9-99DD-86410A064F8E}\ARPPRODUCTICON.exe
[2010.05.16 11:20:57 | 000,069,632 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Owner\Data aplikací\Microsoft\Installer\{C5C65509-1EAD-47E9-99DD-86410A064F8E}\FlameReader.exe_7AA4B6DD828F43C28A3D10888C706880.exe
[2010.05.16 11:20:58 | 000,069,632 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Owner\Data aplikací\Microsoft\Installer\{C5C65509-1EAD-47E9-99DD-86410A064F8E}\NewShortcut1_11ABFA196D1F4A0E9F382D740095300A.exe
[2010.05.16 11:20:58 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Owner\Data aplikací\Microsoft\Installer\{C5C65509-1EAD-47E9-99DD-86410A064F8E}\UNINST_Uninstall_F_DB88439BB8A64AFB9F4104099FD71276.exe
[2010.04.12 18:28:50 | 000,181,760 | ---- | M] () -- C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe
< MD5 for: AGP440.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
< MD5 for: ATAPI.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys
< MD5 for: CDROM.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2004.08.18 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.18 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\system32\cryptsvc.dll
[2004.08.18 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\system32\dllcache\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2004.08.18 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004.08.18 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2004.08.18 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB884883$\explorer.exe
[2005.04.07 20:48:41 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=88260E46E778EC78345959A08F047634 -- C:\WINDOWS\explorer.exe
[2005.04.07 20:48:41 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=88260E46E778EC78345959A08F047634 -- C:\WINDOWS\system32\dllcache\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2004.11.16 03:37:04 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=BE7A7927F3BE8068C81577771D33762F -- C:\WINDOWS\Driver Cache\i386\hal.dll
[2004.08.18 14:00:00 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtUninstallKB889673$\hal.dll
[2004.11.16 03:37:04 | 000,131,712 | ---- | M] (Microsoft Corporation) MD5=F9A83D160C80EE6F45AA577CB101B83F -- C:\WINDOWS\system32\HAL.DLL
< MD5 for: CHANGER.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
< MD5 for: IASTOR.SYS >
[2005.10.12 13:07:12 | 000,874,240 | ---- | M] (Intel Corporation) MD5=309C4D86D989FB1FCF64BD30DC81C51B -- C:\WINDOWS\system32\drivers\iaStor.sys
< MD5 for: ISAPNP.SYS >
[2004.08.18 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2004.08.18 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\system32\dllcache\lsass.exe
[2004.08.18 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2004.08.18 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004.08.18 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2004.08.18 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2004.08.18 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: NVATABUS.SYS >
[2005.08.18 17:52:06 | 000,093,568 | ---- | M] (NVIDIA Corporation) MD5=0344AA9113DC16EEC379F4652020849D -- C:\WINDOWS\system32\drivers\nvatabus.sys
< MD5 for: NVRAID.SYS >
[2005.08.18 17:52:08 | 000,077,056 | ---- | M] (NVIDIA Corporation) MD5=A4F2A29B9D40F9FFBBB54E56CE483797 -- C:\WINDOWS\system32\drivers\nvraid.sys
< MD5 for: SCECLI.DLL >
[2004.08.18 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2004.08.18 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.18 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\system32\dllcache\smss.exe
[2004.08.18 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2004.08.18 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\system32\dllcache\svchost.exe
[2004.08.18 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2006.01.13 19:07:08 | 000,360,448 | ---- | M] (Microsoft Corporation) MD5=5562CC0A47B2AEF06D3417B733F3C195 -- C:\WINDOWS\$hf_mig$\KB913446\SP2QFE\tcpip.sys
[2006.01.13 19:07:08 | 000,360,448 | ---- | M] (Microsoft Corporation) MD5=5562CC0A47B2AEF06D3417B733F3C195 -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
[2006.01.13 04:28:14 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=583E063FDC888CA30D05C2724B0D7EF4 -- C:\WINDOWS\$NtUninstallKB913446$\tcpip.sys
[2006.04.20 14:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2006.04.20 14:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\system32\drivers\tcpip.sys
< MD5 for: USERINIT.EXE >
[2004.08.18 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\system32\dllcache\userinit.exe
[2004.08.18 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\system32\userinit.exe
< MD5 for: VIAMRAID.SYS >
[2005.04.08 11:43:26 | 000,060,928 | ---- | M] (VIA Technologies inc,.ltd) MD5=0363E216E4EB5052969C96608934DBDE -- C:\WINDOWS\system32\drivers\viamraid.sys
< MD5 for: WINLOGON.EXE >
[2004.08.18 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004.08.18 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.18 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2004.08.18 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.05.16 12:39:34 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2010.04.14 20:52:51 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2010.04.14 20:52:51 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010.04.14 20:52:50 | 000,491,520 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2010.06.10 21:09:47 | 000,001,324 | ---- | M] () -- C:\WINDOWS\system32\LexFiles.usr
[2010.06.11 17:22:22 | 000,051,048 | ---- | M] () -- C:\WINDOWS\system32\nvapps.xml
[2010.06.11 17:26:22 | 000,073,376 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2010.06.11 17:26:22 | 000,062,480 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2010.06.11 17:26:22 | 000,398,588 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2010.06.11 17:26:22 | 000,401,200 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2010.06.11 17:26:22 | 000,947,584 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2010.06.11 17:22:23 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< End of report >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2004.08.18 14:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation)
"QIP Internet Guardian" = C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe -- [2010.04.12 18:28:50 | 000,181,760 | ---- | M] ()
"Google Update" = "C:\Documents and Settings\Owner\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2010.04.24 20:48:49 | 000,136,176 | ---- | M] (Google Inc.)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized -- [2010.04.06 02:27:46 | 026,102,056 | R--- | M] (Skype Technologies S.A.)
"DAEMON Tools Lite" = "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2010.04.01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd)
"msnmsgr" = "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background -- [2010.04.16 22:12:38 | 003,872,080 | ---- | M] (Microsoft Corporation)
< c:\windows\*.* /U >
[32 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.05.15 13:11:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Adobe
[2010.05.09 20:40:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\AnvSoft
[2010.05.09 18:34:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\AVS4YOU
[2010.05.26 20:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Cool Record Edit Deluxe
[2010.05.16 12:49:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\DAEMON Tools Lite
[2010.06.05 20:54:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\dvdcss
[2010.04.15 02:21:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\ESET
[2010.05.15 11:33:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Google
[2010.04.14 20:38:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Identities
[2010.05.25 20:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Juce VST Host
[2010.04.15 02:28:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Macromedia
[2010.05.16 13:16:11 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Owner\Data aplikací\Microsoft
[2010.04.26 18:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Mozilla
[2010.04.15 02:03:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Opera
[2010.05.30 17:01:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\PlatinumHideIP
[2010.05.16 12:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Propellerhead Software
[2010.05.15 23:53:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Publish Providers
[2010.04.22 21:50:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\QipGuard
[2010.06.11 18:22:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Skype
[2010.06.11 17:22:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\skypePM
[2010.05.15 23:53:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Sony
[2010.05.19 00:19:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Sony Setup
[2010.04.15 02:13:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Subversion
[2010.04.15 02:12:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\Sun
[2010.04.18 16:28:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\TortoiseSVN
[2010.06.10 22:23:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\vlc
[2010.04.22 16:58:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Data aplikací\WinRAR
< %APPDATA%\*.exe /s >
[2010.05.16 11:20:57 | 000,065,536 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Owner\Data aplikací\Microsoft\Installer\{C5C65509-1EAD-47E9-99DD-86410A064F8E}\ARPPRODUCTICON.exe
[2010.05.16 11:20:57 | 000,069,632 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Owner\Data aplikací\Microsoft\Installer\{C5C65509-1EAD-47E9-99DD-86410A064F8E}\FlameReader.exe_7AA4B6DD828F43C28A3D10888C706880.exe
[2010.05.16 11:20:58 | 000,069,632 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Owner\Data aplikací\Microsoft\Installer\{C5C65509-1EAD-47E9-99DD-86410A064F8E}\NewShortcut1_11ABFA196D1F4A0E9F382D740095300A.exe
[2010.05.16 11:20:58 | 000,049,152 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\Owner\Data aplikací\Microsoft\Installer\{C5C65509-1EAD-47E9-99DD-86410A064F8E}\UNINST_Uninstall_F_DB88439BB8A64AFB9F4104099FD71276.exe
[2010.04.12 18:28:50 | 000,181,760 | ---- | M] () -- C:\Documents and Settings\Owner\Data aplikací\QipGuard\QipGuard.exe
< MD5 for: AGP440.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
< MD5 for: ATAPI.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2004.08.03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.18 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys
< MD5 for: CDROM.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2004.08.18 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.18 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\system32\cryptsvc.dll
[2004.08.18 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\system32\dllcache\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2004.08.18 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004.08.18 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2004.08.18 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB884883$\explorer.exe
[2005.04.07 20:48:41 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=88260E46E778EC78345959A08F047634 -- C:\WINDOWS\explorer.exe
[2005.04.07 20:48:41 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=88260E46E778EC78345959A08F047634 -- C:\WINDOWS\system32\dllcache\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2004.11.16 03:37:04 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=BE7A7927F3BE8068C81577771D33762F -- C:\WINDOWS\Driver Cache\i386\hal.dll
[2004.08.18 14:00:00 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtUninstallKB889673$\hal.dll
[2004.11.16 03:37:04 | 000,131,712 | ---- | M] (Microsoft Corporation) MD5=F9A83D160C80EE6F45AA577CB101B83F -- C:\WINDOWS\system32\HAL.DLL
< MD5 for: CHANGER.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
< MD5 for: IASTOR.SYS >
[2005.10.12 13:07:12 | 000,874,240 | ---- | M] (Intel Corporation) MD5=309C4D86D989FB1FCF64BD30DC81C51B -- C:\WINDOWS\system32\drivers\iaStor.sys
< MD5 for: ISAPNP.SYS >
[2004.08.18 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2004.08.18 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\system32\dllcache\lsass.exe
[2004.08.18 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2004.08.18 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004.08.18 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2004.08.18 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2004.08.18 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: NVATABUS.SYS >
[2005.08.18 17:52:06 | 000,093,568 | ---- | M] (NVIDIA Corporation) MD5=0344AA9113DC16EEC379F4652020849D -- C:\WINDOWS\system32\drivers\nvatabus.sys
< MD5 for: NVRAID.SYS >
[2005.08.18 17:52:08 | 000,077,056 | ---- | M] (NVIDIA Corporation) MD5=A4F2A29B9D40F9FFBBB54E56CE483797 -- C:\WINDOWS\system32\drivers\nvraid.sys
< MD5 for: SCECLI.DLL >
[2004.08.18 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2004.08.18 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.18 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\system32\dllcache\smss.exe
[2004.08.18 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2004.08.18 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\system32\dllcache\svchost.exe
[2004.08.18 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2006.01.13 19:07:08 | 000,360,448 | ---- | M] (Microsoft Corporation) MD5=5562CC0A47B2AEF06D3417B733F3C195 -- C:\WINDOWS\$hf_mig$\KB913446\SP2QFE\tcpip.sys
[2006.01.13 19:07:08 | 000,360,448 | ---- | M] (Microsoft Corporation) MD5=5562CC0A47B2AEF06D3417B733F3C195 -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
[2006.01.13 04:28:14 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=583E063FDC888CA30D05C2724B0D7EF4 -- C:\WINDOWS\$NtUninstallKB913446$\tcpip.sys
[2006.04.20 14:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2006.04.20 14:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\system32\drivers\tcpip.sys
< MD5 for: USERINIT.EXE >
[2004.08.18 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\system32\dllcache\userinit.exe
[2004.08.18 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\system32\userinit.exe
< MD5 for: VIAMRAID.SYS >
[2005.04.08 11:43:26 | 000,060,928 | ---- | M] (VIA Technologies inc,.ltd) MD5=0363E216E4EB5052969C96608934DBDE -- C:\WINDOWS\system32\drivers\viamraid.sys
< MD5 for: WINLOGON.EXE >
[2004.08.18 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004.08.18 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.18 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2004.08.18 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.05.16 12:39:34 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2010.04.14 20:52:51 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2010.04.14 20:52:51 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010.04.14 20:52:50 | 000,491,520 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2010.06.10 21:09:47 | 000,001,324 | ---- | M] () -- C:\WINDOWS\system32\LexFiles.usr
[2010.06.11 17:22:22 | 000,051,048 | ---- | M] () -- C:\WINDOWS\system32\nvapps.xml
[2010.06.11 17:26:22 | 000,073,376 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2010.06.11 17:26:22 | 000,062,480 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2010.06.11 17:26:22 | 000,398,588 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2010.06.11 17:26:22 | 000,401,200 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2010.06.11 17:26:22 | 000,947,584 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2010.06.11 17:22:23 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< End of report >
Re: Spomalený internet
OTL Extras logfile created on: 11. 6. 2010 18:32:12 - Run 1
OTL by OldTimer - Version 3.2.6.0 Folder = C:\Documents and Settings\Owner\Plocha
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
1 022,00 Mb Total Physical Memory | 481,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 12,89 Gb Free Space | 44,00% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 48,99 Gb Free Space | 50,17% Space Free | Partition Type: NTFS
Drive E: | 48,83 Gb Total Space | 8,61 Gb Free Space | 17,64% Space Free | Partition Type: NTFS
Drive F: | 48,83 Gb Total Space | 10,32 Gb Free Space | 21,14% Space Free | Partition Type: NTFS
Drive G: | 478,00 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: OSOBNY
Current User Name: Owner
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
[HKEY_USERS\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
https [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\WINDOWS\system32\LMabcoms.exe" = C:\WINDOWS\system32\LMabcoms.exe:*:Enabled:Lexmark Enhanced TCP/IP -- ()
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00BA866C-F2A2-4BB9-A308-3DFA695B6F7C}" = Java DB 10.5.3.0
"{0886900B-B2F3-452C-B580-60F1253F7F80}" = Native Instruments Controller Editor
"{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
"{1A0D2EFC-C4FC-446A-8BC3-57A54CE5EADD}" = Opera 10.53
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 2.5.5
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216019FF}" = Java(TM) 6 Update 20
"{2AAC4085-DCBF-417B-AEBD-182197839240}" = Native Instruments Traktor
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{32A3A4F4-B792-11D6-A78A-00B0D0160190}" = Java(TM) SE Development Kit 6 Update 19
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3F9170C9-A7C2-408F-A4D8-EC77250040BF}" = Sound Forge Pro 10.0
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5DC6B387-DCD5-4B66-B866-434020FF2ECC}" = TortoiseSVN 1.6.7.18415 (32 bit)
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{938B7504-41A5-42EE-8ECC-5E4B976E8876}" = ESET Smart Security
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{961034C0-58DF-11DF-97FD-005056806466}" = Google Earth Plug-in
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.2
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{C5C65509-1EAD-47E9-99DD-86410A064F8E}" = FlameReader
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{E91E8912-769D-42F0-8408-0E329443BABC}" = Topcom Wireless LAN Card
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop CS4_is1" = Adobe Photoshop CS4
"AnalogX SayIt" = AnalogX SayIt
"Any Audio Converter_is1" = Any Audio Converter 3.0.4
"ASIO4ALL" = ASIO4ALL
"Audacity_is1" = Audacity 1.2.6
"AVS Audio Converter 6.2_is1" = AVS Audio Converter version 6.2
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"BitLord" = BitLord 1.1
"CamStudio" = CamStudio
"Cool Music RecordEdit Station_is1" = Cool Music RecordEdit Station v7.4.4.102
"Cool Record Edit Deluxe_is1" = Cool Record Edit Deluxe v6.0.1
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30
"FL Studio 9" = FL Studio 9
"Hardcore" = Hardcore
"HijackThis" = HijackThis 2.0.2
"Hitman: Contracts" = Hitman: Contracts
"IL Download Manager" = IL Download Manager
"Lexmark_HostCD" = Lexmark Software Uninstall
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"Native Instruments Controller Editor" = Native Instruments Controller Editor
"Native Instruments Pro-53" = Native Instruments Pro-53
"Native Instruments Service Center" = Native Instruments Service Center
"Native Instruments Traktor" = Native Instruments Traktor
"Native Instruments Traktor DJ Studio 3" = Native Instruments Traktor DJ Studio 3
"NVIDIA Drivers" = NVIDIA Drivers
"PlatinumHideIP" = Platinum Hide IP
"PoiZone" = PoiZone
"Reason4_is1" = Reason 4.0
"Sawer" = Sawer
"SMSERIAL" = Motorola SM56 Data Fax Modem
"Toxic Biohazard" = Toxic Biohazard
"VLC media player" = VLC media player 1.0.5
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 10
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archivátor
"WMFDist11" = Windows Media Format 11 runtime
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"QIP 2005" = QIP 2005 8095
"QipGuard" = QIP Internet Guardian
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 15. 5. 2010 12:10:54 | Computer Name = OSOBNY | Source = EventSystem | ID = 4609
Description = Systém událostí modelu COM+ zjistil při vnitřním zpracovávání chybný
návratový kód. Hodnota HRESULT byla 800706BA z řádku 44 v d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.Obraťte
se na služby odborné pomoci společnosti Microsoft a informujte je o této chyb
Error - 15. 5. 2010 12:10:54 | Computer Name = OSOBNY | Source = VSS | ID = 8193
Description = Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance
došlo k neočekávané chybě. hr= 0x80040206.
Error - 15. 5. 2010 17:36:37 | Computer Name = OSOBNY | Source = MsiInstaller | ID = 11704
Description = Produkt: Microsoft Visual C++ 2005 Redistributable - Error 1704.Instalace
produktu Adobe Reader 9.3.2 je pozastavena. Chcete-li pokračovat, je nutné vrátit
zpět změny provedené při instalaci. Chcete tyto změny vrátit zpět?
Error - 20. 5. 2010 7:53:05 | Computer Name = OSOBNY | Source = Google Update | ID = 20
Description =
Error - 29. 5. 2010 5:09:47 | Computer Name = OSOBNY | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace opera.exe, verze 10.51.3315.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 29. 5. 2010 5:09:51 | Computer Name = OSOBNY | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace opera.exe, verze 10.51.3315.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 29. 5. 2010 5:11:57 | Computer Name = OSOBNY | Source = EventSystem | ID = 4609
Description = Systém událostí modelu COM+ zjistil při vnitřním zpracovávání chybný
návratový kód. Hodnota HRESULT byla 80070005 z řádku 44 v d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.Obraťte
se na služby odborné pomoci společnosti Microsoft a informujte je o této chyb
Error - 29. 5. 2010 5:11:57 | Computer Name = OSOBNY | Source = VSS | ID = 8193
Description = Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance
došlo k neočekávané chybě. hr= 0x80040206.
Error - 1. 6. 2010 1:56:54 | Computer Name = OSOBNY | Source = Google Update | ID = 20
Description =
Error - 2. 6. 2010 10:34:07 | Computer Name = OSOBNY | Source = Google Update | ID = 20
Description =
[ OSession Events ]
Error - 25. 4. 2010 4:56:26 | Computer Name = OSOBNY | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 7850
seconds with 4440 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 29. 5. 2010 9:07:07 | Computer Name = OSOBNY | Source = W32Time | ID = 39452701
Description = Klient NTP zprostředkovatele časových údajů je konfigurován pro získávání
časových údajů z jednoho nebo více zdrojů času. Žádný z těchto zdrojů však není
aktuálně k dispozici. Po dobu 14 minut nebude proveden žádný pokus o kontaktování
zdroje. Klient NTP nemá k dispozici žádný zdroj času.
Error - 29. 5. 2010 9:07:28 | Computer Name = OSOBNY | Source = W32Time | ID = 39452689
Description = Klient NTP zprostředkovatele časových údajů: Při vyhledávání DNS ručně
nakonfigurovaného partnera time.windows.com,0x1 došlo k chybě. Klient NTP se pokusí
o vyhledání pomocí služby DNS znovu za 15 minut. Chyba: Došlo k pokusu o operaci
se soketem v okamžiku nedosažitelnosti hostitele. (0x80072751)
Error - 29. 5. 2010 9:07:28 | Computer Name = OSOBNY | Source = W32Time | ID = 39452701
Description = Klient NTP zprostředkovatele časových údajů je konfigurován pro získávání
časových údajů z jednoho nebo více zdrojů času. Žádný z těchto zdrojů však není
aktuálně k dispozici. Po dobu 14 minut nebude proveden žádný pokus o kontaktování
zdroje. Klient NTP nemá k dispozici žádný zdroj času.
Error - 29. 5. 2010 9:08:24 | Computer Name = OSOBNY | Source = W32Time | ID = 39452689
Description = Klient NTP zprostředkovatele časových údajů: Při vyhledávání DNS ručně
nakonfigurovaného partnera time.windows.com,0x1 došlo k chybě. Klient NTP se pokusí
o vyhledání pomocí služby DNS znovu za 15 minut. Chyba: Došlo k pokusu o operaci
se soketem v okamžiku nedosažitelnosti hostitele. (0x80072751)
Error - 29. 5. 2010 9:08:24 | Computer Name = OSOBNY | Source = W32Time | ID = 39452701
Description = Klient NTP zprostředkovatele časových údajů je konfigurován pro získávání
časových údajů z jednoho nebo více zdrojů času. Žádný z těchto zdrojů však není
aktuálně k dispozici. Po dobu 15 minut nebude proveden žádný pokus o kontaktování
zdroje. Klient NTP nemá k dispozici žádný zdroj času.
Error - 29. 5. 2010 9:08:48 | Computer Name = OSOBNY | Source = W32Time | ID = 39452689
Description = Klient NTP zprostředkovatele časových údajů: Při vyhledávání DNS ručně
nakonfigurovaného partnera time.windows.com,0x1 došlo k chybě. Klient NTP se pokusí
o vyhledání pomocí služby DNS znovu za 15 minut. Chyba: Došlo k pokusu o operaci
se soketem v okamžiku nedosažitelnosti hostitele. (0x80072751)
Error - 29. 5. 2010 9:08:48 | Computer Name = OSOBNY | Source = W32Time | ID = 39452701
Description = Klient NTP zprostředkovatele časových údajů je konfigurován pro získávání
časových údajů z jednoho nebo více zdrojů času. Žádný z těchto zdrojů však není
aktuálně k dispozici. Po dobu 14 minut nebude proveden žádný pokus o kontaktování
zdroje. Klient NTP nemá k dispozici žádný zdroj času.
Error - 10. 6. 2010 14:59:35 | Computer Name = OSOBNY | Source = Service Control Manager | ID = 7034
Description = Služba NIHardwareService byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 11. 6. 2010 9:03:36 | Computer Name = OSOBNY | Source = Service Control Manager | ID = 7034
Description = Služba NIHardwareService byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 11. 6. 2010 11:22:49 | Computer Name = OSOBNY | Source = Service Control Manager | ID = 7023
Description = Služba Adaptér výkonu služby WMI byla ukončena s následující chybou:
%%2147500037
< End of report >
OTL by OldTimer - Version 3.2.6.0 Folder = C:\Documents and Settings\Owner\Plocha
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy
1 022,00 Mb Total Physical Memory | 481,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 12,89 Gb Free Space | 44,00% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 48,99 Gb Free Space | 50,17% Space Free | Partition Type: NTFS
Drive E: | 48,83 Gb Total Space | 8,61 Gb Free Space | 17,64% Space Free | Partition Type: NTFS
Drive F: | 48,83 Gb Total Space | 10,32 Gb Free Space | 21,14% Space Free | Partition Type: NTFS
Drive G: | 478,00 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: OSOBNY
Current User Name: Owner
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
[HKEY_USERS\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
https [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\WINDOWS\system32\LMabcoms.exe" = C:\WINDOWS\system32\LMabcoms.exe:*:Enabled:Lexmark Enhanced TCP/IP -- ()
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00BA866C-F2A2-4BB9-A308-3DFA695B6F7C}" = Java DB 10.5.3.0
"{0886900B-B2F3-452C-B580-60F1253F7F80}" = Native Instruments Controller Editor
"{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
"{1A0D2EFC-C4FC-446A-8BC3-57A54CE5EADD}" = Opera 10.53
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 2.5.5
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216019FF}" = Java(TM) 6 Update 20
"{2AAC4085-DCBF-417B-AEBD-182197839240}" = Native Instruments Traktor
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{32A3A4F4-B792-11D6-A78A-00B0D0160190}" = Java(TM) SE Development Kit 6 Update 19
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3F9170C9-A7C2-408F-A4D8-EC77250040BF}" = Sound Forge Pro 10.0
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5DC6B387-DCD5-4B66-B866-434020FF2ECC}" = TortoiseSVN 1.6.7.18415 (32 bit)
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{938B7504-41A5-42EE-8ECC-5E4B976E8876}" = ESET Smart Security
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{961034C0-58DF-11DF-97FD-005056806466}" = Google Earth Plug-in
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.2
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{C5C65509-1EAD-47E9-99DD-86410A064F8E}" = FlameReader
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{E91E8912-769D-42F0-8408-0E329443BABC}" = Topcom Wireless LAN Card
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop CS4_is1" = Adobe Photoshop CS4
"AnalogX SayIt" = AnalogX SayIt
"Any Audio Converter_is1" = Any Audio Converter 3.0.4
"ASIO4ALL" = ASIO4ALL
"Audacity_is1" = Audacity 1.2.6
"AVS Audio Converter 6.2_is1" = AVS Audio Converter version 6.2
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"BitLord" = BitLord 1.1
"CamStudio" = CamStudio
"Cool Music RecordEdit Station_is1" = Cool Music RecordEdit Station v7.4.4.102
"Cool Record Edit Deluxe_is1" = Cool Record Edit Deluxe v6.0.1
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30
"FL Studio 9" = FL Studio 9
"Hardcore" = Hardcore
"HijackThis" = HijackThis 2.0.2
"Hitman: Contracts" = Hitman: Contracts
"IL Download Manager" = IL Download Manager
"Lexmark_HostCD" = Lexmark Software Uninstall
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"Native Instruments Controller Editor" = Native Instruments Controller Editor
"Native Instruments Pro-53" = Native Instruments Pro-53
"Native Instruments Service Center" = Native Instruments Service Center
"Native Instruments Traktor" = Native Instruments Traktor
"Native Instruments Traktor DJ Studio 3" = Native Instruments Traktor DJ Studio 3
"NVIDIA Drivers" = NVIDIA Drivers
"PlatinumHideIP" = Platinum Hide IP
"PoiZone" = PoiZone
"Reason4_is1" = Reason 4.0
"Sawer" = Sawer
"SMSERIAL" = Motorola SM56 Data Fax Modem
"Toxic Biohazard" = Toxic Biohazard
"VLC media player" = VLC media player 1.0.5
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 10
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archivátor
"WMFDist11" = Windows Media Format 11 runtime
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1292428093-2000478354-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"QIP 2005" = QIP 2005 8095
"QipGuard" = QIP Internet Guardian
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 15. 5. 2010 12:10:54 | Computer Name = OSOBNY | Source = EventSystem | ID = 4609
Description = Systém událostí modelu COM+ zjistil při vnitřním zpracovávání chybný
návratový kód. Hodnota HRESULT byla 800706BA z řádku 44 v d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.Obraťte
se na služby odborné pomoci společnosti Microsoft a informujte je o této chyb
Error - 15. 5. 2010 12:10:54 | Computer Name = OSOBNY | Source = VSS | ID = 8193
Description = Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance
došlo k neočekávané chybě. hr= 0x80040206.
Error - 15. 5. 2010 17:36:37 | Computer Name = OSOBNY | Source = MsiInstaller | ID = 11704
Description = Produkt: Microsoft Visual C++ 2005 Redistributable - Error 1704.Instalace
produktu Adobe Reader 9.3.2 je pozastavena. Chcete-li pokračovat, je nutné vrátit
zpět změny provedené při instalaci. Chcete tyto změny vrátit zpět?
Error - 20. 5. 2010 7:53:05 | Computer Name = OSOBNY | Source = Google Update | ID = 20
Description =
Error - 29. 5. 2010 5:09:47 | Computer Name = OSOBNY | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace opera.exe, verze 10.51.3315.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 29. 5. 2010 5:09:51 | Computer Name = OSOBNY | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace opera.exe, verze 10.51.3315.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 29. 5. 2010 5:11:57 | Computer Name = OSOBNY | Source = EventSystem | ID = 4609
Description = Systém událostí modelu COM+ zjistil při vnitřním zpracovávání chybný
návratový kód. Hodnota HRESULT byla 80070005 z řádku 44 v d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp.Obraťte
se na služby odborné pomoci společnosti Microsoft a informujte je o této chyb
Error - 29. 5. 2010 5:11:57 | Computer Name = OSOBNY | Source = VSS | ID = 8193
Description = Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance
došlo k neočekávané chybě. hr= 0x80040206.
Error - 1. 6. 2010 1:56:54 | Computer Name = OSOBNY | Source = Google Update | ID = 20
Description =
Error - 2. 6. 2010 10:34:07 | Computer Name = OSOBNY | Source = Google Update | ID = 20
Description =
[ OSession Events ]
Error - 25. 4. 2010 4:56:26 | Computer Name = OSOBNY | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 7850
seconds with 4440 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 29. 5. 2010 9:07:07 | Computer Name = OSOBNY | Source = W32Time | ID = 39452701
Description = Klient NTP zprostředkovatele časových údajů je konfigurován pro získávání
časových údajů z jednoho nebo více zdrojů času. Žádný z těchto zdrojů však není
aktuálně k dispozici. Po dobu 14 minut nebude proveden žádný pokus o kontaktování
zdroje. Klient NTP nemá k dispozici žádný zdroj času.
Error - 29. 5. 2010 9:07:28 | Computer Name = OSOBNY | Source = W32Time | ID = 39452689
Description = Klient NTP zprostředkovatele časových údajů: Při vyhledávání DNS ručně
nakonfigurovaného partnera time.windows.com,0x1 došlo k chybě. Klient NTP se pokusí
o vyhledání pomocí služby DNS znovu za 15 minut. Chyba: Došlo k pokusu o operaci
se soketem v okamžiku nedosažitelnosti hostitele. (0x80072751)
Error - 29. 5. 2010 9:07:28 | Computer Name = OSOBNY | Source = W32Time | ID = 39452701
Description = Klient NTP zprostředkovatele časových údajů je konfigurován pro získávání
časových údajů z jednoho nebo více zdrojů času. Žádný z těchto zdrojů však není
aktuálně k dispozici. Po dobu 14 minut nebude proveden žádný pokus o kontaktování
zdroje. Klient NTP nemá k dispozici žádný zdroj času.
Error - 29. 5. 2010 9:08:24 | Computer Name = OSOBNY | Source = W32Time | ID = 39452689
Description = Klient NTP zprostředkovatele časových údajů: Při vyhledávání DNS ručně
nakonfigurovaného partnera time.windows.com,0x1 došlo k chybě. Klient NTP se pokusí
o vyhledání pomocí služby DNS znovu za 15 minut. Chyba: Došlo k pokusu o operaci
se soketem v okamžiku nedosažitelnosti hostitele. (0x80072751)
Error - 29. 5. 2010 9:08:24 | Computer Name = OSOBNY | Source = W32Time | ID = 39452701
Description = Klient NTP zprostředkovatele časových údajů je konfigurován pro získávání
časových údajů z jednoho nebo více zdrojů času. Žádný z těchto zdrojů však není
aktuálně k dispozici. Po dobu 15 minut nebude proveden žádný pokus o kontaktování
zdroje. Klient NTP nemá k dispozici žádný zdroj času.
Error - 29. 5. 2010 9:08:48 | Computer Name = OSOBNY | Source = W32Time | ID = 39452689
Description = Klient NTP zprostředkovatele časových údajů: Při vyhledávání DNS ručně
nakonfigurovaného partnera time.windows.com,0x1 došlo k chybě. Klient NTP se pokusí
o vyhledání pomocí služby DNS znovu za 15 minut. Chyba: Došlo k pokusu o operaci
se soketem v okamžiku nedosažitelnosti hostitele. (0x80072751)
Error - 29. 5. 2010 9:08:48 | Computer Name = OSOBNY | Source = W32Time | ID = 39452701
Description = Klient NTP zprostředkovatele časových údajů je konfigurován pro získávání
časových údajů z jednoho nebo více zdrojů času. Žádný z těchto zdrojů však není
aktuálně k dispozici. Po dobu 14 minut nebude proveden žádný pokus o kontaktování
zdroje. Klient NTP nemá k dispozici žádný zdroj času.
Error - 10. 6. 2010 14:59:35 | Computer Name = OSOBNY | Source = Service Control Manager | ID = 7034
Description = Služba NIHardwareService byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 11. 6. 2010 9:03:36 | Computer Name = OSOBNY | Source = Service Control Manager | ID = 7034
Description = Služba NIHardwareService byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 11. 6. 2010 11:22:49 | Computer Name = OSOBNY | Source = Service Control Manager | ID = 7023
Description = Služba Adaptér výkonu služby WMI byla ukončena s následující chybou:
%%2147500037
< End of report >
-
Caroprd111
- VIP
- Příspěvky: 13492
- Registrován: 22 bře 2009 20:48
- Bydliště: Třebíč
- Kontaktovat uživatele:
Re: Spomalený internet
Spusťte OTL a do spodního okna vložte následující skript.
Kód: Vybrat vše
:OTL
IE - HKU\S-1-5-21-1292428093-2000478354-725345543-1003\..\URLSearchHook: - Reg Error: Key error. File not found
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
[32 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Owner\Dokumenty\*.tmp files -> C:\Documents and Settings\Owner\Dokumenty\*.tmp -> ]
:Commands
[EMPTYTEMP]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[RESETHOSTS]
[CREATERESTOREPOINT]
Přispějete na provoz fóra?