Logfile of random's system information tool 1.07 (written by random/random)
Run by Petr at 2010-06-14 18:51:55
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 6 GB (8%) free of 76 GB
Total RAM: 1022 MB (50% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:52:02, on 14.6.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17055)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\Creative\Shared Files\CTSched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Petr\Plocha\RSIT.exe
C:\Program Files\trend micro\Petr.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=14597&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=61005
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=61005
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=61005
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=61005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [CorelDRAW Graphics Suite 11b] D:\janinka\corel\Languages\CZ\Programs\Registration.exe /title="CorelDRAW Graphics Suite 12" /date=062810 serial=DR12CNC-8322248-NFT lang=CZ
O4 - HKLM\..\Run: [Nikon Transfer Monitor] C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [CTRegRun] C:\WINDOWS\CTRegRun.EXE
O4 - HKLM\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Creative WebCam Tray] "C:\Program Files\Creative\Shared Files\CamTray.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Služba Google Update (gupdate1ca769b9540dc44) (gupdate1ca769b9540dc44) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
--
End of file - 12233 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\At1.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]
XTTBPos00 Class - C:\PROGRA~1\ICQTOO~1\toolbaru.dll [2006-12-25 701952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2007-09-13 1312040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-27 764912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-05-26 1385864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-03 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-05-03 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2009-06-01 962808]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-05-26 1385864]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-11-16 577536]
""= []
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
"Adobe Photo Downloader"=C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe [2005-06-07 57344]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe [2006-09-25 90112]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2009-09-27 2171904]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"SMSTray"=C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe [2007-02-23 126976]
"MAAgent"=C:\Program Files\MarkAny\ContentSafer\MAAgent.exe [2007-01-30 57344]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"CorelDRAW Graphics Suite 11b"=D:\janinka\corel\Languages\CZ\Programs\Registration.exe [2004-06-23 729088]
"Nikon Transfer Monitor"=C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe [2009-02-24 479232]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-03-17 421888]
"CTRegRun"=C:\WINDOWS\CTRegRun.EXE [1999-10-10 41984]
"CreativeTaskScheduler"=C:\Program Files\Creative\Shared Files\CTSched.exe [2006-01-09 53340]
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
""= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools"=C:\Program Files\DAEMON Tools\daemon.exe [2007-08-16 167368]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-11-02 68856]
"Creative WebCam Tray"=C:\Program Files\Creative\Shared Files\CamTray.exe [2005-10-27 299008]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-04-28 155648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{88485281-8b4b-4f8d-9ede-82e29a064277}"=C:\PROGRA~1\MarkAny\CONTEN~1\MACSMA~1.DLL [2004-11-23 192512]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQLite\ICQLite.exe"="C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"G:\COD\CoD2MP_s.exe"="G:\COD\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"D:\Hry\S comander\GPGNet\GPG.Multiplayer.Client.exe"="D:\Hry\S comander\GPGNet\GPG.Multiplayer.Client.exe:*:Enabled:GPGNet - Supreme Commander"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\WINDOWS\system32\muzapp.exe"="C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"D:\Hry\Qake 4\Quake4Ded.exe"="D:\Hry\Qake 4\Quake4Ded.exe:*:Enabled:Quake 4"
"C:\Program Files\Quake III Arena\quake3.exe"="C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3"
"D:\Hry\CaC zero\game.dat"="D:\Hry\CaC zero\game.dat:*:Enabled:game"
"D:\Hry\ghost\GRAW.exe"="D:\Hry\ghost\GRAW.exe:*:Enabled:GRAW"
"D:\Hry\Far Cry\Bin32\FarCry.exe"="D:\Hry\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry"
"C:\Program Files\Touchstone\Turok\Binaries\TurokGame.exe"="C:\Program Files\Touchstone\Turok\Binaries\TurokGame.exe:*:Enabled:Turok"
"D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe"="D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)"
"D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe"="D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)"
"D:\Hry\Age\Age Of Empires 2 & The Conquerors Expansion - Full Game - [HUSSEY]\empires2.exe"="D:\Hry\Age\Age Of Empires 2 & The Conquerors Expansion - Full Game - [HUSSEY]\empires2.exe:*:Enabled:Age of Empires II"
"C:\Program Files\Dead Space\Dead Space.exe"="C:\Program Files\Dead Space\Dead Space.exe:*:Enabled:Dead Space ™"
"D:\Hry\Bratři\Brothers in Arms - Hell's Highway\Binaries\biahh.exe"="D:\Hry\Bratři\Brothers in Arms - Hell's Highway\Binaries\biahh.exe:*:Enabled:biahh"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"D:\Hry\Fortune\sof3.exe"="D:\Hry\Fortune\sof3.exe:*:Enabled:sof3"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator"
"C:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe"="C:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry"
"C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\VARPC.EXE"="C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\VARPC.EXE:*:Enabled:Microsoft (R) Visual Studio VSA RPC Event Creator"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\GameTop.com\Ostrich Runners\ORunner.exe"="C:\Program Files\GameTop.com\Ostrich Runners\ORunner.exe:*:Enabled:ORunner"
"D:\Hry\call\CoD2MP_s.exe"="D:\Hry\call\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath "
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}]
shell\AutoRun\command - EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe
shell\open\command - EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bc328c4d-47ec-11df-85d1-0019dbc6b274}]
shell\AutoRun\command - F:\Launcher.exe
======List of files/folders created in the last 1 months======
2010-06-13 18:51:28 ----D---- C:\Documents and Settings\Petr\Data aplikací\MagicIndie
2010-06-13 18:48:39 ----D---- C:\Program Files\Games
2010-06-13 18:07:22 ----D---- C:\Documents and Settings\Petr\Data aplikací\Creative
2010-06-13 17:59:24 ----N---- C:\WINDOWS\Ctregrun.exe
2010-06-13 17:57:53 ----RA---- C:\WINDOWS\V0260Cfg.exe
2010-06-13 17:57:53 ----RA---- C:\WINDOWS\system32\V0260Vfw.dll
2010-06-13 17:57:53 ----RA---- C:\WINDOWS\CtDrvIns.exe
2010-06-13 17:57:47 ----RA---- C:\WINDOWS\system32\V0260Srv.exe
2010-06-13 17:57:47 ----RA---- C:\WINDOWS\system32\V0260Pin.dll
2010-06-13 17:57:46 ----RA---- C:\WINDOWS\system32\V0260Hwx.dll
2010-06-13 17:57:46 ----RA---- C:\WINDOWS\system32\CtCamMgr.dll
2010-06-13 17:57:44 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-06-10 22:32:21 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-06-10 22:32:06 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-06-10 22:31:34 ----SHD---- C:\Config.Msi
2010-06-10 22:30:54 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-06-10 22:28:14 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-10 22:28:10 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-06-10 22:27:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-05-30 18:09:25 ----D---- C:\Program Files\directx
2010-05-26 15:42:03 ----D---- C:\Documents and Settings\Petr\Data aplikací\Scholastic
2010-05-26 07:12:05 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-05-23 18:12:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Intenium
2010-05-21 15:20:09 ----D---- C:\Documents and Settings\Petr\Data aplikací\Samsung
2010-05-21 15:19:10 ----A---- C:\WINDOWS\system32\framedyn.dll
2010-05-21 15:18:03 ----D---- C:\Program Files\Ask.com
2010-05-21 15:17:38 ----D---- C:\Documents and Settings\Petr\Data aplikací\Desktopicon
2010-05-21 15:16:42 ----D---- C:\Program Files\FreeTime
2010-05-21 15:13:46 ----D---- C:\WINDOWS\system32\Samsung_USB_Drivers
2010-05-21 15:07:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-05-21 15:07:38 ----A---- C:\WINDOWS\system32\javaws.exe
2010-05-21 15:07:38 ----A---- C:\WINDOWS\system32\javaw.exe
2010-05-21 15:07:38 ----A---- C:\WINDOWS\system32\java.exe
2010-05-21 15:07:38 ----A---- C:\WINDOWS\system32\deployJava1.dll
2010-05-17 15:53:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Gogii
2010-05-16 20:08:22 ----N---- C:\WINDOWS\UniFISH.exe
======List of files/folders modified in the last 1 months======
2010-06-14 18:51:58 ----D---- C:\Program Files\trend micro
2010-06-14 18:51:52 ----D---- C:\WINDOWS\Prefetch
2010-06-14 18:30:29 ----D---- C:\WINDOWS\Temp
2010-06-14 18:29:54 ----D---- C:\WINDOWS\system32
2010-06-14 17:32:14 ----D---- C:\Documents and Settings\Petr\Data aplikací\Skype
2010-06-14 14:54:31 ----RD---- C:\Program Files
2010-06-14 14:53:47 ----A---- C:\WINDOWS\NeroDigital.ini
2010-06-14 14:01:06 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-06-13 18:06:47 ----SHD---- C:\WINDOWS\Installer
2010-06-13 18:06:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-06-13 18:05:58 ----D---- C:\Program Files\Creative
2010-06-13 18:04:31 ----D---- C:\WINDOWS
2010-06-13 18:02:32 ----D---- C:\WINDOWS\system32\CatRoot2
2010-06-13 18:00:51 ----HD---- C:\Program Files\InstallShield Installation Information
2010-06-13 17:58:05 ----HD---- C:\WINDOWS\inf
2010-06-13 17:57:50 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-06-13 17:57:47 ----D---- C:\WINDOWS\twain_32
2010-06-13 17:57:46 ----D---- C:\WINDOWS\system32\drivers
2010-06-12 23:50:40 ----D---- C:\Documents and Settings\Petr\Data aplikací\uTorrent
2010-06-12 15:49:11 ----D---- C:\Documents and Settings\Petr\Data aplikací\ERS G-Studio
2010-06-11 22:19:16 ----RSD---- C:\WINDOWS\assembly
2010-06-11 21:54:31 ----D---- C:\WINDOWS\Microsoft.NET
2010-06-10 22:32:14 ----A---- C:\WINDOWS\imsins.BAK
2010-06-10 22:32:03 ----HD---- C:\WINDOWS\$hf_mig$
2010-06-10 22:27:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-06-10 22:26:46 ----D---- C:\WINDOWS\WinSxS
2010-06-10 22:22:33 ----D---- C:\WINDOWS\system32\cs-cz
2010-06-10 22:22:33 ----D---- C:\Program Files\Internet Explorer
2010-06-10 22:22:23 ----D---- C:\WINDOWS\ie7updates
2010-06-08 04:34:02 ----A---- C:\WINDOWS\ODBC.INI
2010-06-03 18:01:10 ----SD---- C:\WINDOWS\Tasks
2010-05-31 18:57:58 ----A---- C:\WINDOWS\mdm.ini
2010-05-28 21:37:34 ----A---- C:\WINDOWS\system32\MRT.exe
2010-05-26 15:50:55 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-05-26 12:55:37 ----D---- C:\Temp
2010-05-26 12:35:24 ----D---- C:\WINDOWS\Minidump
2010-05-21 15:13:34 ----D---- C:\Program Files\Samsung
2010-05-21 15:07:51 ----D---- C:\Program Files\Common Files\Java
2010-05-21 15:07:36 ----D---- C:\Program Files\Java
2010-05-17 12:59:00 ----D---- C:\Program Files\Google
2010-05-17 11:39:27 ----D---- C:\Program Files\uTorrent
2010-05-16 20:08:49 ----D---- C:\WINDOWS\system
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2007-03-08 4027840]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-04-28 3565568]
R3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5b.sys [2004-04-15 42496]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S3 adusbser;AnyDATA USB Device for Legacy Serial Communication; C:\WINDOWS\system32\DRIVERS\adusbser.sys [2006-10-23 93440]
S3 ar2decr2;ar2decr2; C:\WINDOWS\system32\drivers\ar2decr2.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\WINDOWS\system32\DRIVERS\k750bus.sys [2005-06-03 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\k750mdfl.sys [2005-06-03 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\WINDOWS\system32\DRIVERS\k750mdm.sys [2005-06-03 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\WINDOWS\system32\DRIVERS\k750mgmt.sys [2005-06-03 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:\WINDOWS\system32\DRIVERS\k750obex.sys [2005-06-03 79488]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2007-05-02 83592]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2007-05-02 15112]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2007-05-02 109704]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 V0260VID;Live! Cam Vista IM; C:\WINDOWS\system32\DRIVERS\V0260Vid.sys [2006-11-04 178913]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aawservice;Ad-Aware 2007 Service; C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe [2007-10-29 587096]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-04-28 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2009-06-01 222968]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-12 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-10-19 61440]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-09-27 487424]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-04-27 593920]
S2 gupdate1ca769b9540dc44;Služba Google Update (gupdate1ca769b9540dc44); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-12-06 133104]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-09-29 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Visual Studio Analyzer RPC bridge;Visual Studio Analyzer RPC bridge; C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe [1998-06-06 34036]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu
Zdravim a pekny vecer preji,
no peknych par smejdiku tam mate - tohle rozhodne nebude jen preventivka
ale vubec nic se nedeje - kouknem na to a dame pc do poradku...
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy
Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
no peknych par smejdiku tam mate - tohle rozhodne nebude jen preventivka
ale vubec nic se nedeje - kouknem na to a dame pc do poradku... Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)
- Stahne a ulozte na plochu UsbFix http://pagesperso-orange.fr/NosTools/Ch ... UsbFix.exe
- Spustte a kliknete na Deletion
- Po dokonceni sem vlozte log, pokud na Vas nevyskoci, najdete jej zde C:\UsbFix.txt
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
netsvcs drivers32 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s c:\windows\*.* /U %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s /md5start eventlog.dll scecli.dll netlogon.dll cngaudit.dll sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys nvrd32.sys symmpi.sys adp3132.sys mv61xx.sys nvraid.sys ndis.sys winlogon.exe explorer.exe userinit.exe lsass.exe svchost.exe smss.exe hal.dll ws2_32.dll tcpip.sys cryptsvc.dll Changer.sys JakNDis.sys isapnp.sys cdrom.sys autochk.exe /md5stop %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 CREATERESTOREPOINT- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 5min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
OTL logfile created on: 14.6.2010 21:20:22 - Run 1
OTL by OldTimer - Version 3.2.6.0 Folder = C:\Documents and Settings\Petr\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 022,00 Mb Total Physical Memory | 516,00 Mb Available Physical Memory | 51,00% Memory free
6,00 Gb Paging File | 6,00 Gb Available in Paging File | 92,00% Paging File free
Paging file location(s): [Binary data over 100 bytes]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 4,84 Gb Free Space | 6,49% Space Free | Partition Type: NTFS
Drive D: | 74,53 Gb Total Space | 27,90 Gb Free Space | 37,44% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 1,86 Gb Total Space | 0,13 Gb Free Space | 7,07% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
Drive H: | 631,31 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
I: Drive not present or media not loaded
Computer Name: PC
Current User Name: Petr
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.06.14 21:18:56 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
PRC - [2010.05.16 19:24:07 | 000,322,352 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\utorrent.exe
PRC - [2010.04.03 16:57:14 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.11.25 01:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009.11.02 19:51:39 | 000,068,856 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009.09.27 18:34:43 | 000,487,424 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\sp_rsser.exe
PRC - [2009.02.24 17:00:26 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.10.29 14:27:04 | 000,587,096 | ---- | M] (Lavasoft AB) -- C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
PRC - [2007.08.16 13:24:39 | 000,167,368 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe
PRC - [2007.02.23 17:32:56 | 000,126,976 | ---- | M] (SAMSUNG ELECTRONICS) -- C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
PRC - [2007.01.30 21:36:30 | 000,057,344 | ---- | M] ((주)마크애니) -- C:\Program Files\MarkAny\ContentSafer\MaAgent.exe
PRC - [2006.11.16 23:42:52 | 000,577,536 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2006.02.24 12:58:14 | 000,868,352 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
PRC - [2006.01.09 04:43:42 | 000,053,340 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTSched.exe
PRC - [2005.10.26 17:17:24 | 000,159,744 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
PRC - [2005.08.10 08:54:34 | 000,385,024 | R--- | M] (Teleca Software Solutions) -- C:\Program Files\Common Files\Teleca Shared\Generic.exe
PRC - [2005.06.08 17:45:04 | 000,278,528 | ---- | M] (Teleca Software Solutions AB) -- C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
PRC - [2005.06.07 00:46:24 | 000,057,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
PRC - [2004.06.16 06:03:04 | 000,081,920 | ---- | M] (InstallShield Software Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
========== Modules (SafeList) ==========
MOD - [2010.06.14 21:18:56 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
MOD - [2008.04.14 05:19:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2006.05.03 22:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll
MOD - [2004.11.24 21:58:24 | 000,163,840 | ---- | M] (MarkAny Co., Ltd.) -- C:\Program Files\MarkAny\ContentSafer\MaCSProHook.dll
========== Win32 Services (SafeList) ==========
SRV - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009.09.27 18:34:43 | 000,487,424 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2007.10.29 14:27:04 | 000,587,096 | ---- | M] (Lavasoft AB) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe -- (aawservice)
SRV - [1998.06.06 01:00:00 | 000,034,036 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\VARPC.EXE -- (Visual Studio Analyzer RPC bridge)
========== Driver Services (SafeList) ==========
DRV - [2009.11.25 01:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009.11.25 01:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009.11.25 01:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009.09.27 18:34:43 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2009.09.15 12:56:14 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009.09.15 12:55:30 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2009.09.15 12:55:19 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009.04.28 08:13:23 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007.09.29 16:54:02 | 000,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2007.05.02 11:11:18 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdm.sys -- (ss_mdm)
DRV - [2007.05.02 11:11:18 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdfl.sys -- (ss_mdfl)
DRV - [2007.05.02 11:11:16 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bus.sys -- (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM)
DRV - [2007.03.08 08:34:46 | 004,027,840 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2006.11.04 00:45:48 | 000,178,913 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\V0260Vid.sys -- (V0260VID)
DRV - [2006.10.23 03:36:38 | 000,093,440 | R--- | M] (AnyDATA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\adusbser.sys -- (adusbser)
DRV - [2006.10.18 11:39:58 | 000,017,920 | R--- | M] (VIA Technologies,Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xfilt.sys -- (xfilt)
DRV - [2006.10.17 14:22:26 | 000,009,216 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32)
DRV - [2006.07.24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2005.06.03 14:47:06 | 000,079,488 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750obex.sys -- (k750obex)
DRV - [2005.06.03 14:47:04 | 000,081,728 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750mgmt.sys -- (k750mgmt)
DRV - [2005.06.03 14:47:00 | 000,089,872 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750mdm.sys -- (k750mdm)
DRV - [2005.06.03 14:46:58 | 000,006,576 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750mdfl.sys -- (k750mdfl)
DRV - [2005.06.03 14:46:52 | 000,055,216 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750bus.sys -- (k750bus) Sony Ericsson 750 driver (WDM)
DRV - [2005.03.09 08:53:00 | 000,036,352 | R--- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004.03.08 12:55:50 | 000,013,567 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=61005
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=61005
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=14597&l=dis
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.1.08
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..network.proxy.type: 4
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.06.12 18:55:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.05.21 15:07:38 | 000,000,000 | ---D | M]
[2008.09.07 20:39:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Extensions
[2010.06.14 21:16:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\extensions
[2009.12.26 09:48:42 | 000,000,000 | ---D | M] (FlashGot) -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2009.09.05 12:07:32 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.06.13 22:05:59 | 000,002,382 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\askcom.xml
[2010.06.08 15:11:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-1.xml
[2008.07.04 21:13:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-10.xml
[2008.07.19 19:32:02 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-11.xml
[2008.09.07 20:39:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-12.xml
[2008.10.01 21:23:59 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-13.xml
[2008.10.04 13:42:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-14.xml
[2008.11.16 12:00:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-15.xml
[2008.12.24 00:13:41 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-16.xml
[2009.02.05 20:57:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-17.xml
[2009.03.06 13:20:50 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-18.xml
[2009.04.01 19:45:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-19.xml
[2007.11.03 14:16:58 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-2.xml
[2009.04.23 12:16:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-20.xml
[2009.05.02 10:04:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-21.xml
[2009.06.12 22:08:25 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-22.xml
[2009.07.25 10:59:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-23.xml
[2009.08.05 12:26:19 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-24.xml
[2009.09.11 05:23:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-25.xml
[2009.11.01 22:05:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-26.xml
[2009.12.17 14:16:49 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-27.xml
[2010.01.06 20:29:53 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-28.xml
[2010.02.19 16:07:54 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-29.xml
[2007.11.27 20:42:02 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-3.xml
[2010.03.27 18:05:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-30.xml
[2010.03.30 21:12:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-31.xml
[2010.04.03 16:57:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-32.xml
[2010.04.21 20:47:31 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-33.xml
[2007.12.01 18:00:11 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-4.xml
[2008.01.20 23:02:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-5.xml
[2008.02.09 17:29:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-6.xml
[2008.03.31 00:11:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-7.xml
[2008.04.17 22:51:06 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-8.xml
[2008.06.18 20:29:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-9.xml
[2009.07.13 17:12:02 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin.xml
[2010.06.14 13:10:22 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.08.04 21:02:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.05.21 15:07:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.04.12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.03.27 18:04:54 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.03.27 18:04:54 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.03.27 18:04:54 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.03.27 18:04:54 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.03.27 18:04:54 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2006.03.02 14:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (XTTBPos00 Class) - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\Program Files\ICQToolbar\toolbaru.dll (IE Toolbar)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Adobe Photo Downloader] C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [CorelDRAW Graphics Suite 11b] D:\janinka\corel\Languages\CZ\Programs\Registration.exe (Corel Corporation)
O4 - HKLM..\Run: [CreativeTaskScheduler] C:\Program Files\Creative\Shared Files\CTSched.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [CTRegRun] C:\WINDOWS\Ctregrun.exe (Creative Technology Ltd )
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MaAgent.exe ((주)마크애니)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [Nikon Transfer Monitor] C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation)
O4 - HKLM..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe (SAMSUNG ELECTRONICS)
O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe (Sony Ericsson Mobile Communications AB)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SpywareTerminator] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com)
O4 - HKCU..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CamTray.exe (Creative Technology Ltd)
O4 - HKCU..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (Intertrust Technologies, Inc.)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKCU\..Trusted Domains: mojebanka.cz ([etrading] https in Důvěryhodné servery)
O15 - HKCU\..Trusted Domains: mojebanka.cz ([www] https in Důvěryhodné servery)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://icq.oberon-media.com/Gameshell/G ... meHost.cab (Oberon Flash Game Host)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Petr\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Petr\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {88485281-8b4b-4f8d-9ede-82e29a064277} - C:\Program Files\MarkAny\ContentSafer\MACSMANAGER.dll (MarkAny Cooperation.)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.09.27 18:17:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2003.09.28 23:50:06 | 000,000,063 | R--- | M] () - H:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}\Shell\AutoRun\command - "" = EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe
O33 - MountPoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}\Shell\open\command - "" = EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe
O33 - MountPoints2\{bc328c4d-47ec-11df-85d1-0019dbc6b274}\Shell\AutoRun\command - "" = F:\Launcher.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2007.09.27 18:17:09 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.MJPG - C:\WINDOWS\System32\Pvmjpg21.dll (Pegasus Imaging Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (55745656140070912)
========== Files/Folders - Created Within 7 Days ==========
[2010.06.14 21:18:56 | 000,572,416 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
[2010.06.14 21:18:03 | 000,000,000 | ---D | C] -- C:\UsbFix
[2010.06.14 21:14:18 | 001,760,103 | ---- | C] (C_XX & El Desaparecido) -- C:\Documents and Settings\Petr\Plocha\UsbFix.exe
[2010.06.14 19:30:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\MumboJumbo
[2010.06.14 19:27:52 | 000,000,000 | ---D | C] -- C:\Program Files\Games
[2010.06.14 19:21:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Plocha\Midnight Mysteries 2 Salem Witch Trials with SG - New HOG Puzzle - Wendy99
[2010.06.13 18:51:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Data aplikací\MagicIndie
[2010.06.13 18:07:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Dokumenty\WebCam Center
[2010.06.13 18:07:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Data aplikací\Creative
[2010.06.13 17:59:24 | 000,041,984 | ---- | C] (Creative Technology Ltd ) -- C:\WINDOWS\Ctregrun.exe
[2010.06.13 17:57:53 | 000,126,976 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Vfw.dll
[2010.06.13 17:57:53 | 000,090,112 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\CtDrvIns.exe
[2010.06.13 17:57:53 | 000,032,874 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\V0260Cfg.exe
[2010.06.13 17:57:47 | 000,094,208 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Ext.ax
[2010.06.13 17:57:47 | 000,036,864 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Pin.dll
[2010.06.13 17:57:47 | 000,020,564 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Srv.exe
[2010.06.13 17:57:47 | 000,020,480 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Ext.crl
[2010.06.13 17:57:46 | 000,178,913 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\V0260Vid.sys
[2010.06.13 17:57:46 | 000,036,864 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CtCamMgr.dll
[2010.06.13 17:57:46 | 000,028,672 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Hwx.dll
[2010.06.13 17:57:46 | 000,024,872 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\V0260Cmd.sys
[2010.06.13 17:57:46 | 000,024,576 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CtCamPin.crl
[2010.06.13 17:57:44 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2010.06.13 17:57:44 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2010.06.12 22:05:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Dokumenty\Puzzler
[2010.06.12 15:32:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Plocha\BigFish - Robinson Crusoe and the Cursed Pirates - New HOG - Wendy99
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2010.06.14 21:18:56 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
[2010.06.14 21:14:21 | 001,760,103 | ---- | M] (C_XX & El Desaparecido) -- C:\Documents and Settings\Petr\Plocha\UsbFix.exe
[2010.06.14 21:08:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.06.14 19:28:44 | 000,002,128 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Midnight Mysteries 2 Salem Witch Trials.lnk
[2010.06.14 19:20:59 | 000,012,447 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Midnight_Mysteries_2_Salem_Witch_Trials_with_SG_-_New_HOG_Puzzle.5623709.TPB.torrent
[2010.06.14 18:51:36 | 000,824,681 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\RSIT.exe
[2010.06.14 18:29:47 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.06.14 18:29:44 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.14 18:29:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.14 14:53:47 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.06.14 12:59:52 | 000,027,648 | ---- | M] () -- C:\Documents and Settings\Petr\Dokumenty\Táborovka 2010_2.doc
[2010.06.14 12:43:29 | 000,062,652 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\200l kopie.jpg
[2010.06.14 12:31:18 | 000,076,850 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\200l.jpg
[2010.06.14 07:08:38 | 007,602,176 | -H-- | M] () -- C:\Documents and Settings\Petr\NTUSER.DAT
[2010.06.14 07:08:38 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Petr\ntuser.ini
[2010.06.13 17:59:26 | 000,001,972 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Creative Product Registration.lnk
[2010.06.13 17:55:36 | 000,001,938 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Creative WebCam Center.lnk
[2010.06.13 12:04:00 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\At1.job
[2010.06.12 15:40:08 | 365,565,335 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Puppet Show - Souls of the Innocent Collectors Edition.exe
[2010.06.12 15:32:27 | 000,015,681 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\BigFish_-_Robinson_Crusoe_and_the_Cursed_Pirates_-_New_HOG_-_Wen.5576878.TPB.torrent
[2010.06.12 15:30:57 | 000,014,527 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Puppet_Show_-_Souls_of_the_Innocent_Collectors_Edition_-_NEW_Hid.5593656.TPB.torrent
[2010.06.12 11:32:39 | 000,076,247 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\867464300257_8_1131_20090825.pdf
[2010.06.11 21:16:40 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.06.11 21:16:32 | 000,278,944 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.06.10 22:32:14 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.06.10 22:27:07 | 001,012,200 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.06.10 22:27:07 | 000,443,588 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.06.10 22:27:07 | 000,440,316 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.06.10 22:27:07 | 000,083,652 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.06.10 22:27:07 | 000,071,846 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.06.09 22:04:39 | 737,220,608 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Sex ve meste 2 (2010).avi
[2010.06.08 04:44:53 | 004,595,840 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\10. Public Enemy - He Got Game - What You Need Is Jesus.mp3
[2010.06.08 04:44:51 | 003,897,472 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\03. Public Enemy - He Got Game - Unstoppable.mp3
[2010.06.08 04:44:46 | 009,009,152 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Public Enemy - Mess Age - 08 - So Whatcha Gone Do Now-.mp3
[2010.06.08 04:44:42 | 008,693,760 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Public Enemy - Mess Age - 03 - Give It Up.mp3
[2010.06.08 04:44:36 | 010,299,392 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Public Enemy - Apocalypse 91 - 04 - Can't Truss It.mp3
[2010.06.08 04:35:35 | 000,000,040 | ---- | M] () -- C:\SYSTEM.VER
[2010.06.08 04:34:02 | 000,000,768 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2010.06.07 21:47:26 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.06.14 19:28:44 | 000,002,128 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Midnight Mysteries 2 Salem Witch Trials.lnk
[2010.06.14 19:20:58 | 000,012,447 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Midnight_Mysteries_2_Salem_Witch_Trials_with_SG_-_New_HOG_Puzzle.5623709.TPB.torrent
[2010.06.14 18:51:36 | 000,824,681 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\RSIT.exe
[2010.06.14 12:59:51 | 000,027,648 | ---- | C] () -- C:\Documents and Settings\Petr\Dokumenty\Táborovka 2010_2.doc
[2010.06.14 12:43:27 | 000,062,652 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\200l kopie.jpg
[2010.06.14 12:31:17 | 000,076,850 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\200l.jpg
[2010.06.13 18:01:12 | 000,007,062 | ---- | C] () -- C:\WINDOWS\System32\audiopid.vxd
[2010.06.13 17:59:26 | 000,001,972 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Creative Product Registration.lnk
[2010.06.13 17:57:53 | 000,004,352 | R--- | C] () -- C:\WINDOWS\VF0260.uns
[2010.06.13 17:57:45 | 000,197,522 | R--- | C] () -- C:\WINDOWS\System32\V0260530.set
[2010.06.13 17:55:36 | 000,001,938 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Creative WebCam Center.lnk
[2010.06.12 15:32:27 | 000,015,681 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\BigFish_-_Robinson_Crusoe_and_the_Cursed_Pirates_-_New_HOG_-_Wen.5576878.TPB.torrent
[2010.06.12 15:31:26 | 365,565,335 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Puppet Show - Souls of the Innocent Collectors Edition.exe
[2010.06.12 15:30:57 | 000,014,527 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Puppet_Show_-_Souls_of_the_Innocent_Collectors_Edition_-_NEW_Hid.5593656.TPB.torrent
[2010.06.12 11:32:42 | 000,076,247 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\867464300257_8_1131_20090825.pdf
[2010.06.09 20:44:52 | 737,220,608 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Sex ve meste 2 (2010).avi
[2010.06.07 22:10:51 | 004,595,840 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\10. Public Enemy - He Got Game - What You Need Is Jesus.mp3
[2010.06.07 22:10:49 | 003,897,472 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\03. Public Enemy - He Got Game - Unstoppable.mp3
[2010.06.07 21:51:40 | 009,009,152 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Public Enemy - Mess Age - 08 - So Whatcha Gone Do Now-.mp3
[2010.06.07 21:51:31 | 008,693,760 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Public Enemy - Mess Age - 03 - Give It Up.mp3
[2010.05.21 15:18:18 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010.04.16 16:01:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ViewNX.INI
[2010.01.04 18:23:13 | 000,000,185 | ---- | C] () -- C:\WINDOWS\mdm.ini
[2009.12.01 13:52:18 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LAME_MP3.dll
[2009.12.01 13:50:52 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2009.12.01 13:50:52 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2009.12.01 13:50:49 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2009.12.01 13:50:49 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\Ogg.dll
[2009.09.27 18:34:43 | 000,142,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2009.07.27 20:43:06 | 000,001,176 | ---- | C] () -- C:\WINDOWS\ATICIM.INI
[2009.03.22 18:39:50 | 000,000,353 | ---- | C] () -- C:\WINDOWS\level.ini
[2008.11.13 22:19:15 | 000,000,065 | ---- | C] () -- C:\WINDOWS\FISHUI.INI
[2008.10.28 17:40:48 | 000,173,552 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008.10.26 20:37:10 | 000,000,120 | ---- | C] () -- C:\WINDOWS\disney.ini
[2008.10.19 17:04:59 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.04.28 12:51:29 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2008.04.28 07:58:17 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008.03.22 15:45:06 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.03.09 21:49:44 | 000,000,525 | ---- | C] () -- C:\WINDOWS\QIII.INI
[2007.12.16 13:33:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\lgfwup.ini
[2007.11.09 21:41:24 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2007.10.16 22:17:00 | 000,000,768 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007.09.29 16:54:02 | 000,685,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007.09.28 17:21:51 | 000,000,327 | ---- | C] () -- C:\WINDOWS\red_dialer.ini
[2007.09.28 17:13:32 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2007.09.27 18:31:10 | 000,147,456 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2007.04.20 08:57:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2005.10.14 11:56:50 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 11:56:50 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[1998.06.10 01:00:00 | 000,015,120 | ---- | C] () -- C:\WINDOWS\System32\REPUTIL.DLL
[1998.05.18 01:00:00 | 000,014,017 | ---- | C] () -- C:\WINDOWS\JAUTOEXP.INI
========== LOP Check ==========
[2007.12.16 19:39:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2009.03.24 13:11:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Avg7
[2010.05.03 18:48:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Deadtime Stories
[2010.04.16 15:44:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EnterNHelp
[2009.11.23 18:56:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EscapeTheMuseum2
[2009.05.16 17:28:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Fallout3
[2008.04.28 07:58:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GeoVid
[2010.05.17 15:53:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Gogii
[2009.08.04 21:02:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2010.05.23 18:12:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Intenium
[2010.04.29 19:41:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Merscom
[2010.06.14 19:30:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MumboJumbo
[2010.04.16 15:43:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nikon
[2010.04.23 19:19:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Particles
[2010.04.19 20:19:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PlayFirst
[2009.10.14 15:49:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Princess Isabella
[2009.10.13 17:54:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2009.08.17 19:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SulusGames
[2007.10.28 13:21:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Teleca
[2010.05.26 15:50:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2009.08.22 18:39:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tibo Software
[2010.04.04 14:02:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Top Evidence
[2010.04.16 15:44:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ultima_T15
[2010.04.11 13:59:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Artogon
[2007.12.02 18:16:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\BSplayer
[2007.12.02 18:14:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\BSplayer Pro
[2007.10.14 20:59:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Command & Conquer 3 Tiberium Wars
[2010.04.04 21:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DarkParablesBriarRose_BFG
[2009.12.01 13:51:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DataCast
[2007.12.16 21:36:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DeepBurner Pro
[2010.05.21 15:17:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Desktopicon
[2009.10.18 17:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Enki Games
[2010.06.12 15:49:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ERS G-Studio
[2008.04.28 07:58:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\GeoVid
[2010.05.08 15:17:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQ
[2007.10.08 20:15:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQ Toolbar
[2007.09.29 15:13:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQLite
[2007.12.16 13:09:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\InterTrust
[2010.04.05 10:35:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Jetdogs Studios
[2007.11.09 22:22:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Leadertech
[2010.06.13 18:51:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\MagicIndie
[2010.04.03 18:02:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Meridian93
[2010.04.29 19:41:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Merscom
[2010.04.16 17:08:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Nikon
[2009.08.20 15:28:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\OLYMPUS
[2010.04.19 20:19:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\PlayFirst
[2010.04.05 17:39:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Playrix Entertainment
[2010.05.21 15:20:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Samsung
[2010.05.26 15:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Scholastic
[2008.02.11 21:27:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Silver Style Entertainment
[2008.03.21 13:56:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\SlySoft
[2010.04.23 19:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Specialbit
[2009.12.21 17:57:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Spyware Terminator
[2009.08.17 19:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\SulusGames
[2007.10.28 13:38:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Teleca
[2008.12.28 17:28:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Tibo Software
[2010.04.04 14:02:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Top Evidence
[2008.11.16 11:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Touchstone
[2010.06.14 21:21:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\uTorrent
[2009.10.18 20:03:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\VampireSaga
[2010.05.14 15:46:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\VendelGAMES
[2010.04.29 19:33:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Zipeg
[2010.06.13 12:04:00 | 000,000,342 | ---- | M] () -- C:\WINDOWS\Tasks\At1.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"DAEMON Tools" = "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 -- [2007.08.16 13:24:39 | 000,167,368 | ---- | M] (DT Soft Ltd.)
"swg" = "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" -- [2009.11.02 19:51:39 | 000,068,856 | ---- | M] (Google Inc.)
"Creative WebCam Tray" = "C:\Program Files\Creative\Shared Files\CamTray.exe" -- [2005.10.27 12:00:22 | 000,299,008 | ---- | M] (Creative Technology Ltd)
< c:\windows\*.* /U >
[5 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
OTL by OldTimer - Version 3.2.6.0 Folder = C:\Documents and Settings\Petr\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 022,00 Mb Total Physical Memory | 516,00 Mb Available Physical Memory | 51,00% Memory free
6,00 Gb Paging File | 6,00 Gb Available in Paging File | 92,00% Paging File free
Paging file location(s): [Binary data over 100 bytes]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 4,84 Gb Free Space | 6,49% Space Free | Partition Type: NTFS
Drive D: | 74,53 Gb Total Space | 27,90 Gb Free Space | 37,44% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 1,86 Gb Total Space | 0,13 Gb Free Space | 7,07% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
Drive H: | 631,31 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
I: Drive not present or media not loaded
Computer Name: PC
Current User Name: Petr
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
========== Processes (SafeList) ==========
PRC - [2010.06.14 21:18:56 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
PRC - [2010.05.16 19:24:07 | 000,322,352 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\utorrent.exe
PRC - [2010.04.03 16:57:14 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.11.25 01:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009.11.02 19:51:39 | 000,068,856 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009.09.27 18:34:43 | 000,487,424 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\sp_rsser.exe
PRC - [2009.02.24 17:00:26 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.10.29 14:27:04 | 000,587,096 | ---- | M] (Lavasoft AB) -- C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
PRC - [2007.08.16 13:24:39 | 000,167,368 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe
PRC - [2007.02.23 17:32:56 | 000,126,976 | ---- | M] (SAMSUNG ELECTRONICS) -- C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
PRC - [2007.01.30 21:36:30 | 000,057,344 | ---- | M] ((주)마크애니) -- C:\Program Files\MarkAny\ContentSafer\MaAgent.exe
PRC - [2006.11.16 23:42:52 | 000,577,536 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2006.02.24 12:58:14 | 000,868,352 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
PRC - [2006.01.09 04:43:42 | 000,053,340 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTSched.exe
PRC - [2005.10.26 17:17:24 | 000,159,744 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
PRC - [2005.08.10 08:54:34 | 000,385,024 | R--- | M] (Teleca Software Solutions) -- C:\Program Files\Common Files\Teleca Shared\Generic.exe
PRC - [2005.06.08 17:45:04 | 000,278,528 | ---- | M] (Teleca Software Solutions AB) -- C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
PRC - [2005.06.07 00:46:24 | 000,057,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
PRC - [2004.06.16 06:03:04 | 000,081,920 | ---- | M] (InstallShield Software Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
========== Modules (SafeList) ==========
MOD - [2010.06.14 21:18:56 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
MOD - [2008.04.14 05:19:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2006.05.03 22:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll
MOD - [2004.11.24 21:58:24 | 000,163,840 | ---- | M] (MarkAny Co., Ltd.) -- C:\Program Files\MarkAny\ContentSafer\MaCSProHook.dll
========== Win32 Services (SafeList) ==========
SRV - [2009.11.25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009.11.25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009.11.25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009.11.25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009.09.27 18:34:43 | 000,487,424 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2007.10.29 14:27:04 | 000,587,096 | ---- | M] (Lavasoft AB) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe -- (aawservice)
SRV - [1998.06.06 01:00:00 | 000,034,036 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\VARPC.EXE -- (Visual Studio Analyzer RPC bridge)
========== Driver Services (SafeList) ==========
DRV - [2009.11.25 01:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009.11.25 01:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009.11.25 01:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009.09.27 18:34:43 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2009.09.15 12:56:14 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009.09.15 12:55:30 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2009.09.15 12:55:19 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009.04.28 08:13:23 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007.09.29 16:54:02 | 000,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2007.05.02 11:11:18 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdm.sys -- (ss_mdm)
DRV - [2007.05.02 11:11:18 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdfl.sys -- (ss_mdfl)
DRV - [2007.05.02 11:11:16 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bus.sys -- (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM)
DRV - [2007.03.08 08:34:46 | 004,027,840 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2006.11.04 00:45:48 | 000,178,913 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\V0260Vid.sys -- (V0260VID)
DRV - [2006.10.23 03:36:38 | 000,093,440 | R--- | M] (AnyDATA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\adusbser.sys -- (adusbser)
DRV - [2006.10.18 11:39:58 | 000,017,920 | R--- | M] (VIA Technologies,Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xfilt.sys -- (xfilt)
DRV - [2006.10.17 14:22:26 | 000,009,216 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32)
DRV - [2006.07.24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2005.06.03 14:47:06 | 000,079,488 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750obex.sys -- (k750obex)
DRV - [2005.06.03 14:47:04 | 000,081,728 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750mgmt.sys -- (k750mgmt)
DRV - [2005.06.03 14:47:00 | 000,089,872 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750mdm.sys -- (k750mdm)
DRV - [2005.06.03 14:46:58 | 000,006,576 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750mdfl.sys -- (k750mdfl)
DRV - [2005.06.03 14:46:52 | 000,055,216 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\k750bus.sys -- (k750bus) Sony Ericsson 750 driver (WDM)
DRV - [2005.03.09 08:53:00 | 000,036,352 | R--- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004.03.08 12:55:50 | 000,013,567 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=61005
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=61005
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=14597&l=dis
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.1.08
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..network.proxy.type: 4
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.06.12 18:55:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.05.21 15:07:38 | 000,000,000 | ---D | M]
[2008.09.07 20:39:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Extensions
[2010.06.14 21:16:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\extensions
[2009.12.26 09:48:42 | 000,000,000 | ---D | M] (FlashGot) -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2009.09.05 12:07:32 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.06.13 22:05:59 | 000,002,382 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\askcom.xml
[2010.06.08 15:11:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-1.xml
[2008.07.04 21:13:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-10.xml
[2008.07.19 19:32:02 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-11.xml
[2008.09.07 20:39:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-12.xml
[2008.10.01 21:23:59 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-13.xml
[2008.10.04 13:42:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-14.xml
[2008.11.16 12:00:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-15.xml
[2008.12.24 00:13:41 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-16.xml
[2009.02.05 20:57:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-17.xml
[2009.03.06 13:20:50 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-18.xml
[2009.04.01 19:45:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-19.xml
[2007.11.03 14:16:58 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-2.xml
[2009.04.23 12:16:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-20.xml
[2009.05.02 10:04:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-21.xml
[2009.06.12 22:08:25 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-22.xml
[2009.07.25 10:59:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-23.xml
[2009.08.05 12:26:19 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-24.xml
[2009.09.11 05:23:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-25.xml
[2009.11.01 22:05:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-26.xml
[2009.12.17 14:16:49 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-27.xml
[2010.01.06 20:29:53 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-28.xml
[2010.02.19 16:07:54 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-29.xml
[2007.11.27 20:42:02 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-3.xml
[2010.03.27 18:05:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-30.xml
[2010.03.30 21:12:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-31.xml
[2010.04.03 16:57:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-32.xml
[2010.04.21 20:47:31 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-33.xml
[2007.12.01 18:00:11 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-4.xml
[2008.01.20 23:02:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-5.xml
[2008.02.09 17:29:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-6.xml
[2008.03.31 00:11:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-7.xml
[2008.04.17 22:51:06 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-8.xml
[2008.06.18 20:29:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-9.xml
[2009.07.13 17:12:02 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin.xml
[2010.06.14 13:10:22 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.08.04 21:02:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.05.21 15:07:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.04.12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.03.27 18:04:54 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.03.27 18:04:54 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.03.27 18:04:54 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.03.27 18:04:54 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.03.27 18:04:54 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2006.03.02 14:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (XTTBPos00 Class) - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\Program Files\ICQToolbar\toolbaru.dll (IE Toolbar)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Adobe Photo Downloader] C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [CorelDRAW Graphics Suite 11b] D:\janinka\corel\Languages\CZ\Programs\Registration.exe (Corel Corporation)
O4 - HKLM..\Run: [CreativeTaskScheduler] C:\Program Files\Creative\Shared Files\CTSched.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [CTRegRun] C:\WINDOWS\Ctregrun.exe (Creative Technology Ltd )
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MaAgent.exe ((주)마크애니)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [Nikon Transfer Monitor] C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation)
O4 - HKLM..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe (SAMSUNG ELECTRONICS)
O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe (Sony Ericsson Mobile Communications AB)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SpywareTerminator] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com)
O4 - HKCU..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CamTray.exe (Creative Technology Ltd)
O4 - HKCU..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (Intertrust Technologies, Inc.)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKCU\..Trusted Domains: mojebanka.cz ([etrading] https in Důvěryhodné servery)
O15 - HKCU\..Trusted Domains: mojebanka.cz ([www] https in Důvěryhodné servery)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://icq.oberon-media.com/Gameshell/G ... meHost.cab (Oberon Flash Game Host)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Petr\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Petr\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {88485281-8b4b-4f8d-9ede-82e29a064277} - C:\Program Files\MarkAny\ContentSafer\MACSMANAGER.dll (MarkAny Cooperation.)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.09.27 18:17:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2003.09.28 23:50:06 | 000,000,063 | R--- | M] () - H:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}\Shell\AutoRun\command - "" = EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe
O33 - MountPoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}\Shell\open\command - "" = EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe
O33 - MountPoints2\{bc328c4d-47ec-11df-85d1-0019dbc6b274}\Shell\AutoRun\command - "" = F:\Launcher.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2007.09.27 18:17:09 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.MJPG - C:\WINDOWS\System32\Pvmjpg21.dll (Pegasus Imaging Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (55745656140070912)
========== Files/Folders - Created Within 7 Days ==========
[2010.06.14 21:18:56 | 000,572,416 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
[2010.06.14 21:18:03 | 000,000,000 | ---D | C] -- C:\UsbFix
[2010.06.14 21:14:18 | 001,760,103 | ---- | C] (C_XX & El Desaparecido) -- C:\Documents and Settings\Petr\Plocha\UsbFix.exe
[2010.06.14 19:30:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\MumboJumbo
[2010.06.14 19:27:52 | 000,000,000 | ---D | C] -- C:\Program Files\Games
[2010.06.14 19:21:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Plocha\Midnight Mysteries 2 Salem Witch Trials with SG - New HOG Puzzle - Wendy99
[2010.06.13 18:51:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Data aplikací\MagicIndie
[2010.06.13 18:07:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Dokumenty\WebCam Center
[2010.06.13 18:07:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Data aplikací\Creative
[2010.06.13 17:59:24 | 000,041,984 | ---- | C] (Creative Technology Ltd ) -- C:\WINDOWS\Ctregrun.exe
[2010.06.13 17:57:53 | 000,126,976 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Vfw.dll
[2010.06.13 17:57:53 | 000,090,112 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\CtDrvIns.exe
[2010.06.13 17:57:53 | 000,032,874 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\V0260Cfg.exe
[2010.06.13 17:57:47 | 000,094,208 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Ext.ax
[2010.06.13 17:57:47 | 000,036,864 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Pin.dll
[2010.06.13 17:57:47 | 000,020,564 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Srv.exe
[2010.06.13 17:57:47 | 000,020,480 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Ext.crl
[2010.06.13 17:57:46 | 000,178,913 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\V0260Vid.sys
[2010.06.13 17:57:46 | 000,036,864 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CtCamMgr.dll
[2010.06.13 17:57:46 | 000,028,672 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\V0260Hwx.dll
[2010.06.13 17:57:46 | 000,024,872 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\V0260Cmd.sys
[2010.06.13 17:57:46 | 000,024,576 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CtCamPin.crl
[2010.06.13 17:57:44 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2010.06.13 17:57:44 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2010.06.12 22:05:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Dokumenty\Puzzler
[2010.06.12 15:32:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Petr\Plocha\BigFish - Robinson Crusoe and the Cursed Pirates - New HOG - Wendy99
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2010.06.14 21:18:56 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Petr\Plocha\OTL.exe
[2010.06.14 21:14:21 | 001,760,103 | ---- | M] (C_XX & El Desaparecido) -- C:\Documents and Settings\Petr\Plocha\UsbFix.exe
[2010.06.14 21:08:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.06.14 19:28:44 | 000,002,128 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Midnight Mysteries 2 Salem Witch Trials.lnk
[2010.06.14 19:20:59 | 000,012,447 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Midnight_Mysteries_2_Salem_Witch_Trials_with_SG_-_New_HOG_Puzzle.5623709.TPB.torrent
[2010.06.14 18:51:36 | 000,824,681 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\RSIT.exe
[2010.06.14 18:29:47 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.06.14 18:29:44 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.14 18:29:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.14 14:53:47 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.06.14 12:59:52 | 000,027,648 | ---- | M] () -- C:\Documents and Settings\Petr\Dokumenty\Táborovka 2010_2.doc
[2010.06.14 12:43:29 | 000,062,652 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\200l kopie.jpg
[2010.06.14 12:31:18 | 000,076,850 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\200l.jpg
[2010.06.14 07:08:38 | 007,602,176 | -H-- | M] () -- C:\Documents and Settings\Petr\NTUSER.DAT
[2010.06.14 07:08:38 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Petr\ntuser.ini
[2010.06.13 17:59:26 | 000,001,972 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Creative Product Registration.lnk
[2010.06.13 17:55:36 | 000,001,938 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Creative WebCam Center.lnk
[2010.06.13 12:04:00 | 000,000,342 | ---- | M] () -- C:\WINDOWS\tasks\At1.job
[2010.06.12 15:40:08 | 365,565,335 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Puppet Show - Souls of the Innocent Collectors Edition.exe
[2010.06.12 15:32:27 | 000,015,681 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\BigFish_-_Robinson_Crusoe_and_the_Cursed_Pirates_-_New_HOG_-_Wen.5576878.TPB.torrent
[2010.06.12 15:30:57 | 000,014,527 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Puppet_Show_-_Souls_of_the_Innocent_Collectors_Edition_-_NEW_Hid.5593656.TPB.torrent
[2010.06.12 11:32:39 | 000,076,247 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\867464300257_8_1131_20090825.pdf
[2010.06.11 21:16:40 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.06.11 21:16:32 | 000,278,944 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.06.10 22:32:14 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.06.10 22:27:07 | 001,012,200 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.06.10 22:27:07 | 000,443,588 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.06.10 22:27:07 | 000,440,316 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.06.10 22:27:07 | 000,083,652 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.06.10 22:27:07 | 000,071,846 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.06.09 22:04:39 | 737,220,608 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Sex ve meste 2 (2010).avi
[2010.06.08 04:44:53 | 004,595,840 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\10. Public Enemy - He Got Game - What You Need Is Jesus.mp3
[2010.06.08 04:44:51 | 003,897,472 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\03. Public Enemy - He Got Game - Unstoppable.mp3
[2010.06.08 04:44:46 | 009,009,152 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Public Enemy - Mess Age - 08 - So Whatcha Gone Do Now-.mp3
[2010.06.08 04:44:42 | 008,693,760 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Public Enemy - Mess Age - 03 - Give It Up.mp3
[2010.06.08 04:44:36 | 010,299,392 | ---- | M] () -- C:\Documents and Settings\Petr\Plocha\Public Enemy - Apocalypse 91 - 04 - Can't Truss It.mp3
[2010.06.08 04:35:35 | 000,000,040 | ---- | M] () -- C:\SYSTEM.VER
[2010.06.08 04:34:02 | 000,000,768 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2010.06.07 21:47:26 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\Petr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010.06.14 19:28:44 | 000,002,128 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Midnight Mysteries 2 Salem Witch Trials.lnk
[2010.06.14 19:20:58 | 000,012,447 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Midnight_Mysteries_2_Salem_Witch_Trials_with_SG_-_New_HOG_Puzzle.5623709.TPB.torrent
[2010.06.14 18:51:36 | 000,824,681 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\RSIT.exe
[2010.06.14 12:59:51 | 000,027,648 | ---- | C] () -- C:\Documents and Settings\Petr\Dokumenty\Táborovka 2010_2.doc
[2010.06.14 12:43:27 | 000,062,652 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\200l kopie.jpg
[2010.06.14 12:31:17 | 000,076,850 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\200l.jpg
[2010.06.13 18:01:12 | 000,007,062 | ---- | C] () -- C:\WINDOWS\System32\audiopid.vxd
[2010.06.13 17:59:26 | 000,001,972 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Creative Product Registration.lnk
[2010.06.13 17:57:53 | 000,004,352 | R--- | C] () -- C:\WINDOWS\VF0260.uns
[2010.06.13 17:57:45 | 000,197,522 | R--- | C] () -- C:\WINDOWS\System32\V0260530.set
[2010.06.13 17:55:36 | 000,001,938 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Creative WebCam Center.lnk
[2010.06.12 15:32:27 | 000,015,681 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\BigFish_-_Robinson_Crusoe_and_the_Cursed_Pirates_-_New_HOG_-_Wen.5576878.TPB.torrent
[2010.06.12 15:31:26 | 365,565,335 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Puppet Show - Souls of the Innocent Collectors Edition.exe
[2010.06.12 15:30:57 | 000,014,527 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Puppet_Show_-_Souls_of_the_Innocent_Collectors_Edition_-_NEW_Hid.5593656.TPB.torrent
[2010.06.12 11:32:42 | 000,076,247 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\867464300257_8_1131_20090825.pdf
[2010.06.09 20:44:52 | 737,220,608 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Sex ve meste 2 (2010).avi
[2010.06.07 22:10:51 | 004,595,840 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\10. Public Enemy - He Got Game - What You Need Is Jesus.mp3
[2010.06.07 22:10:49 | 003,897,472 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\03. Public Enemy - He Got Game - Unstoppable.mp3
[2010.06.07 21:51:40 | 009,009,152 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Public Enemy - Mess Age - 08 - So Whatcha Gone Do Now-.mp3
[2010.06.07 21:51:31 | 008,693,760 | ---- | C] () -- C:\Documents and Settings\Petr\Plocha\Public Enemy - Mess Age - 03 - Give It Up.mp3
[2010.05.21 15:18:18 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010.04.16 16:01:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ViewNX.INI
[2010.01.04 18:23:13 | 000,000,185 | ---- | C] () -- C:\WINDOWS\mdm.ini
[2009.12.01 13:52:18 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LAME_MP3.dll
[2009.12.01 13:50:52 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2009.12.01 13:50:52 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2009.12.01 13:50:49 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2009.12.01 13:50:49 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\Ogg.dll
[2009.09.27 18:34:43 | 000,142,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2009.07.27 20:43:06 | 000,001,176 | ---- | C] () -- C:\WINDOWS\ATICIM.INI
[2009.03.22 18:39:50 | 000,000,353 | ---- | C] () -- C:\WINDOWS\level.ini
[2008.11.13 22:19:15 | 000,000,065 | ---- | C] () -- C:\WINDOWS\FISHUI.INI
[2008.10.28 17:40:48 | 000,173,552 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008.10.26 20:37:10 | 000,000,120 | ---- | C] () -- C:\WINDOWS\disney.ini
[2008.10.19 17:04:59 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.04.28 12:51:29 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2008.04.28 07:58:17 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008.03.22 15:45:06 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.03.09 21:49:44 | 000,000,525 | ---- | C] () -- C:\WINDOWS\QIII.INI
[2007.12.16 13:33:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\lgfwup.ini
[2007.11.09 21:41:24 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2007.10.16 22:17:00 | 000,000,768 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007.09.29 16:54:02 | 000,685,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007.09.28 17:21:51 | 000,000,327 | ---- | C] () -- C:\WINDOWS\red_dialer.ini
[2007.09.28 17:13:32 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2007.09.27 18:31:10 | 000,147,456 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2007.04.20 08:57:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2007.04.20 08:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2005.10.14 11:56:50 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 11:56:50 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[1998.06.10 01:00:00 | 000,015,120 | ---- | C] () -- C:\WINDOWS\System32\REPUTIL.DLL
[1998.05.18 01:00:00 | 000,014,017 | ---- | C] () -- C:\WINDOWS\JAUTOEXP.INI
========== LOP Check ==========
[2007.12.16 19:39:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2009.03.24 13:11:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Avg7
[2010.05.03 18:48:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Deadtime Stories
[2010.04.16 15:44:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EnterNHelp
[2009.11.23 18:56:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EscapeTheMuseum2
[2009.05.16 17:28:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Fallout3
[2008.04.28 07:58:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GeoVid
[2010.05.17 15:53:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Gogii
[2009.08.04 21:02:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2010.05.23 18:12:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Intenium
[2010.04.29 19:41:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Merscom
[2010.06.14 19:30:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MumboJumbo
[2010.04.16 15:43:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Nikon
[2010.04.23 19:19:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Particles
[2010.04.19 20:19:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PlayFirst
[2009.10.14 15:49:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Princess Isabella
[2009.10.13 17:54:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2009.08.17 19:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SulusGames
[2007.10.28 13:21:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Teleca
[2010.05.26 15:50:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2009.08.22 18:39:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Tibo Software
[2010.04.04 14:02:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Top Evidence
[2010.04.16 15:44:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ultima_T15
[2010.04.11 13:59:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Artogon
[2007.12.02 18:16:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\BSplayer
[2007.12.02 18:14:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\BSplayer Pro
[2007.10.14 20:59:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Command & Conquer 3 Tiberium Wars
[2010.04.04 21:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DarkParablesBriarRose_BFG
[2009.12.01 13:51:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DataCast
[2007.12.16 21:36:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DeepBurner Pro
[2010.05.21 15:17:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Desktopicon
[2009.10.18 17:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Enki Games
[2010.06.12 15:49:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ERS G-Studio
[2008.04.28 07:58:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\GeoVid
[2010.05.08 15:17:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQ
[2007.10.08 20:15:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQ Toolbar
[2007.09.29 15:13:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQLite
[2007.12.16 13:09:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\InterTrust
[2010.04.05 10:35:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Jetdogs Studios
[2007.11.09 22:22:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Leadertech
[2010.06.13 18:51:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\MagicIndie
[2010.04.03 18:02:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Meridian93
[2010.04.29 19:41:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Merscom
[2010.04.16 17:08:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Nikon
[2009.08.20 15:28:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\OLYMPUS
[2010.04.19 20:19:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\PlayFirst
[2010.04.05 17:39:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Playrix Entertainment
[2010.05.21 15:20:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Samsung
[2010.05.26 15:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Scholastic
[2008.02.11 21:27:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Silver Style Entertainment
[2008.03.21 13:56:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\SlySoft
[2010.04.23 19:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Specialbit
[2009.12.21 17:57:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Spyware Terminator
[2009.08.17 19:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\SulusGames
[2007.10.28 13:38:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Teleca
[2008.12.28 17:28:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Tibo Software
[2010.04.04 14:02:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Top Evidence
[2008.11.16 11:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Touchstone
[2010.06.14 21:21:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\uTorrent
[2009.10.18 20:03:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\VampireSaga
[2010.05.14 15:46:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\VendelGAMES
[2010.04.29 19:33:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Zipeg
[2010.06.13 12:04:00 | 000,000,342 | ---- | M] () -- C:\WINDOWS\Tasks\At1.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"DAEMON Tools" = "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 -- [2007.08.16 13:24:39 | 000,167,368 | ---- | M] (DT Soft Ltd.)
"swg" = "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" -- [2009.11.02 19:51:39 | 000,068,856 | ---- | M] (Google Inc.)
"Creative WebCam Tray" = "C:\Program Files\Creative\Shared Files\CamTray.exe" -- [2005.10.27 12:00:22 | 000,299,008 | ---- | M] (Creative Technology Ltd)
< c:\windows\*.* /U >
[5 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
Re: Prosím o kontrolu
druhá část
< %APPDATA%\*. >
[2010.03.10 20:14:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Adobe
[2009.10.20 20:15:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\AdobeAUM
[2007.10.28 13:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\AdobeUM
[2010.01.31 21:04:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Ahead
[2007.10.28 13:29:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Apple Computer
[2010.04.11 13:59:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Artogon
[2009.07.27 20:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ATI
[2007.12.02 18:16:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\BSplayer
[2007.12.02 18:14:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\BSplayer Pro
[2007.10.14 20:59:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Command & Conquer 3 Tiberium Wars
[2010.04.14 20:54:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Corel
[2010.06.13 18:07:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Creative
[2007.12.16 19:35:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\CyberLink
[2010.04.04 21:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DarkParablesBriarRose_BFG
[2009.12.01 13:51:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DataCast
[2007.12.16 21:36:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DeepBurner Pro
[2010.05.21 15:17:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Desktopicon
[2009.10.18 17:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Enki Games
[2010.06.12 15:49:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ERS G-Studio
[2008.04.28 07:58:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\GeoVid
[2009.12.06 19:45:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Google
[2010.05.08 15:17:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQ
[2007.10.08 20:15:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQ Toolbar
[2007.09.29 15:13:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQLite
[2007.09.27 18:23:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Identities
[2007.10.14 20:45:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\InstallShield
[2007.12.16 13:09:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\InterTrust
[2010.04.05 10:35:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Jetdogs Studios
[2007.11.09 22:22:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Leadertech
[2009.09.29 16:19:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Macromedia
[2010.06.13 18:51:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\MagicIndie
[2007.10.16 21:51:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Media Player Classic
[2010.04.03 18:02:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Meridian93
[2010.04.29 19:41:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Merscom
[2010.03.13 19:13:47 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Petr\Data aplikací\Microsoft
[2008.09.07 20:39:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Mozilla
[2010.04.16 17:08:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Nikon
[2009.08.20 15:28:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\OLYMPUS
[2010.04.19 20:19:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\PlayFirst
[2010.04.05 17:39:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Playrix Entertainment
[2010.05.21 15:20:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Samsung
[2010.05.26 15:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Scholastic
[2009.03.18 21:45:07 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\Petr\Data aplikací\SecuROM
[2008.02.11 21:27:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Silver Style Entertainment
[2010.06.14 17:32:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Skype
[2008.03.21 13:56:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\SlySoft
[2010.04.23 19:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Specialbit
[2009.12.21 17:57:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Spyware Terminator
[2009.08.17 19:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\SulusGames
[2008.02.03 18:07:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Sun
[2007.10.28 13:38:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Teleca
[2008.12.28 17:28:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Tibo Software
[2010.04.04 14:02:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Top Evidence
[2008.11.16 11:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Touchstone
[2010.06.14 21:21:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\uTorrent
[2009.10.18 20:03:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\VampireSaga
[2010.05.14 15:46:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\VendelGAMES
[2009.07.27 19:06:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\WinRAR
[2010.04.29 19:33:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Zipeg
< %APPDATA%\*.exe /s >
[2010.03.30 11:00:40 | 201,274,385 | ---- | M] (Games ) -- C:\Documents and Settings\Petr\Data aplikací\LostMedallion.exe
[2010.04.06 21:21:20 | 002,283,387 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\setup.exe
[2010.05.21 15:17:38 | 000,031,836 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Desktopicon\uninst.exe
[2010.04.16 15:46:24 | 000,335,872 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{237CD223-1B9D-47E8-A76C-E478B83CCEA2}\ARPPRODUCTICON.exe
[2010.04.16 15:45:54 | 000,057,344 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{87441A59-5E64-4096-A170-14EFE67200C3}\ARPPRODUCTICON.exe
[2009.09.29 16:14:03 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{885A63EA-382B-4DD4-A755-14809B8557D6}\ARPPRODUCTICON.exe
[2008.04.06 19:54:08 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{89661B04-C646-4412-B6D3-5E19F02F1F37}\ARPPRODUCTICON.exe
[2007.09.28 17:01:24 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}\ARPPRODUCTICON.exe
[2010.04.16 15:46:54 | 000,049,152 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}\ARPPRODUCTICON.exe
[2009.08.05 15:36:58 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2009.12.26 09:48:44 | 000,177,024 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\FlashGot.exe
< MD5 for: AGP440.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2006.03.02 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006.03.02 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007.06.13 15:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 15:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 20:31:28 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2006.03.02 14:00:00 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: ISAPNP.SYS >
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.24 11:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2006.03.02 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006.03.02 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006.03.02 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2006.03.02 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2007.10.30 18:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2007.10.08 10:38:41 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=7F6DD1BBC1DB362E106168F73E06A10C -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2007.10.30 19:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006.04.20 14:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006.03.02 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2007.09.29 16:54:02 | 000,685,816 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2007.09.27 02:04:49 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2007.09.27 02:04:49 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2007.09.27 02:04:49 | 000,471,040 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
========== Alternate Data Streams ==========
@Alternate Data Stream - 97 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2FDE2A42
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:9D86EE01
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:EEB25EAE
< End of report >
< %APPDATA%\*. >
[2010.03.10 20:14:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Adobe
[2009.10.20 20:15:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\AdobeAUM
[2007.10.28 13:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\AdobeUM
[2010.01.31 21:04:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Ahead
[2007.10.28 13:29:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Apple Computer
[2010.04.11 13:59:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Artogon
[2009.07.27 20:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ATI
[2007.12.02 18:16:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\BSplayer
[2007.12.02 18:14:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\BSplayer Pro
[2007.10.14 20:59:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Command & Conquer 3 Tiberium Wars
[2010.04.14 20:54:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Corel
[2010.06.13 18:07:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Creative
[2007.12.16 19:35:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\CyberLink
[2010.04.04 21:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DarkParablesBriarRose_BFG
[2009.12.01 13:51:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DataCast
[2007.12.16 21:36:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\DeepBurner Pro
[2010.05.21 15:17:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Desktopicon
[2009.10.18 17:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Enki Games
[2010.06.12 15:49:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ERS G-Studio
[2008.04.28 07:58:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\GeoVid
[2009.12.06 19:45:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Google
[2010.05.08 15:17:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQ
[2007.10.08 20:15:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQ Toolbar
[2007.09.29 15:13:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\ICQLite
[2007.09.27 18:23:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Identities
[2007.10.14 20:45:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\InstallShield
[2007.12.16 13:09:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\InterTrust
[2010.04.05 10:35:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Jetdogs Studios
[2007.11.09 22:22:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Leadertech
[2009.09.29 16:19:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Macromedia
[2010.06.13 18:51:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\MagicIndie
[2007.10.16 21:51:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Media Player Classic
[2010.04.03 18:02:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Meridian93
[2010.04.29 19:41:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Merscom
[2010.03.13 19:13:47 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Petr\Data aplikací\Microsoft
[2008.09.07 20:39:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Mozilla
[2010.04.16 17:08:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Nikon
[2009.08.20 15:28:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\OLYMPUS
[2010.04.19 20:19:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\PlayFirst
[2010.04.05 17:39:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Playrix Entertainment
[2010.05.21 15:20:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Samsung
[2010.05.26 15:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Scholastic
[2009.03.18 21:45:07 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\Petr\Data aplikací\SecuROM
[2008.02.11 21:27:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Silver Style Entertainment
[2010.06.14 17:32:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Skype
[2008.03.21 13:56:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\SlySoft
[2010.04.23 19:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Specialbit
[2009.12.21 17:57:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Spyware Terminator
[2009.08.17 19:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\SulusGames
[2008.02.03 18:07:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Sun
[2007.10.28 13:38:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Teleca
[2008.12.28 17:28:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Tibo Software
[2010.04.04 14:02:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Top Evidence
[2008.11.16 11:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Touchstone
[2010.06.14 21:21:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\uTorrent
[2009.10.18 20:03:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\VampireSaga
[2010.05.14 15:46:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\VendelGAMES
[2009.07.27 19:06:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\WinRAR
[2010.04.29 19:33:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Petr\Data aplikací\Zipeg
< %APPDATA%\*.exe /s >
[2010.03.30 11:00:40 | 201,274,385 | ---- | M] (Games ) -- C:\Documents and Settings\Petr\Data aplikací\LostMedallion.exe
[2010.04.06 21:21:20 | 002,283,387 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\setup.exe
[2010.05.21 15:17:38 | 000,031,836 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Desktopicon\uninst.exe
[2010.04.16 15:46:24 | 000,335,872 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{237CD223-1B9D-47E8-A76C-E478B83CCEA2}\ARPPRODUCTICON.exe
[2010.04.16 15:45:54 | 000,057,344 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{87441A59-5E64-4096-A170-14EFE67200C3}\ARPPRODUCTICON.exe
[2009.09.29 16:14:03 | 000,045,056 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{885A63EA-382B-4DD4-A755-14809B8557D6}\ARPPRODUCTICON.exe
[2008.04.06 19:54:08 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{89661B04-C646-4412-B6D3-5E19F02F1F37}\ARPPRODUCTICON.exe
[2007.09.28 17:01:24 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}\ARPPRODUCTICON.exe
[2010.04.16 15:46:54 | 000,049,152 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}\ARPPRODUCTICON.exe
[2009.08.05 15:36:58 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2009.12.26 09:48:44 | 000,177,024 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\FlashGot.exe
< MD5 for: AGP440.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
[2006.03.02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2006.03.02 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2006.03.02 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007.06.13 15:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 15:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 20:31:28 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2006.03.02 14:00:00 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2006.03.02 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: ISAPNP.SYS >
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.09.22 15:15:01 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.24 11:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2006.03.02 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2006.03.02 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006.03.02 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006.03.02 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2006.03.02 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2006.03.02 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2007.10.30 18:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2007.10.08 10:38:41 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=7F6DD1BBC1DB362E106168F73E06A10C -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2007.10.30 19:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 14:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006.04.20 14:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2006.03.02 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006.03.02 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2007.09.29 16:54:02 | 000,685,816 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2007.09.27 02:04:49 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2007.09.27 02:04:49 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2007.09.27 02:04:49 | 000,471,040 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[3 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
========== Alternate Data Streams ==========
@Alternate Data Stream - 97 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2FDE2A42
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:9D86EE01
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:EEB25EAE
< End of report >
Re: Prosím o kontrolu
extras.txt
OTL Extras logfile created on: 14.6.2010 21:20:22 - Run 1
OTL by OldTimer - Version 3.2.6.0 Folder = C:\Documents and Settings\Petr\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 022,00 Mb Total Physical Memory | 516,00 Mb Available Physical Memory | 51,00% Memory free
6,00 Gb Paging File | 6,00 Gb Available in Paging File | 92,00% Paging File free
Paging file location(s): [Binary data over 100 bytes]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 4,84 Gb Free Space | 6,49% Space Free | Partition Type: NTFS
Drive D: | 74,53 Gb Total Space | 27,90 Gb Free Space | 37,44% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 1,86 Gb Total Space | 0,13 Gb Free Space | 7,07% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
Drive H: | 631,31 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
I: Drive not present or media not loaded
Computer Name: PC
Current User Name: Petr
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\Winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\Winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"24711:TCP" = 24711:TCP:*:Enabled:BitComet 24711 TCP
"24711:UDP" = 24711:UDP:*:Enabled:BitComet 24711 UDP
"15171:TCP" = 15171:TCP:*:Enabled:BitComet 15171 TCP
"15171:UDP" = 15171:UDP:*:Enabled:BitComet 15171 UDP
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"15561:TCP" = 15561:TCP:*:Enabled:BitComet 15561 TCP
"15561:UDP" = 15561:UDP:*:Enabled:BitComet 15561 UDP
"554:UDP" = 554:UDP:*:Enabled:RTSP
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\ICQLite\ICQLite.exe" = C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite -- File not found
"G:\COD\CoD2MP_s.exe" = G:\COD\CoD2MP_s.exe:*:Enabled:CoD2MP_s -- File not found
"C:\Program Files\BitComet\BitComet.exe" = C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client -- File not found
"C:\Program Files\ICQ6\ICQ.exe" = C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6 -- File not found
"D:\Hry\S comander\GPGNet\GPG.Multiplayer.Client.exe" = D:\Hry\S comander\GPGNet\GPG.Multiplayer.Client.exe:*:Enabled:GPGNet - Supreme Commander -- File not found
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe" = C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s -- File not found
"C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"D:\Hry\Qake 4\Quake4Ded.exe" = D:\Hry\Qake 4\Quake4Ded.exe:*:Enabled:Quake 4 -- File not found
"C:\Program Files\Quake III Arena\quake3.exe" = C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3 -- File not found
"D:\Hry\CaC zero\game.dat" = D:\Hry\CaC zero\game.dat:*:Enabled:game -- ()
"D:\Hry\ghost\GRAW.exe" = D:\Hry\ghost\GRAW.exe:*:Enabled:GRAW -- File not found
"D:\Hry\Far Cry\Bin32\FarCry.exe" = D:\Hry\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry -- File not found
"C:\Program Files\Touchstone\Turok\Binaries\TurokGame.exe" = C:\Program Files\Touchstone\Turok\Binaries\TurokGame.exe:*:Enabled:Turok -- File not found
"D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe" = D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI) -- File not found
"D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe" = D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV) -- File not found
"D:\Hry\Age\Age Of Empires 2 & The Conquerors Expansion - Full Game - [HUSSEY]\empires2.exe" = D:\Hry\Age\Age Of Empires 2 & The Conquerors Expansion - Full Game - [HUSSEY]\empires2.exe:*:Enabled:Age of Empires II -- (Microsoft Corporation)
"C:\Program Files\Dead Space\Dead Space.exe" = C:\Program Files\Dead Space\Dead Space.exe:*:Enabled:Dead Space ™ -- File not found
"D:\Hry\Bratři\Brothers in Arms - Hell's Highway\Binaries\biahh.exe" = D:\Hry\Bratři\Brothers in Arms - Hell's Highway\Binaries\biahh.exe:*:Enabled:biahh -- File not found
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"D:\Hry\Fortune\sof3.exe" = D:\Hry\Fortune\sof3.exe:*:Enabled:sof3 -- File not found
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe" = C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator -- (Crawler.com)
"C:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe" = C:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry -- (Crytek)
"C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\VARPC.EXE" = C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\VARPC.EXE:*:Enabled:Microsoft (R) Visual Studio VSA RPC Event Creator -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Program Files\GameTop.com\Ostrich Runners\ORunner.exe" = C:\Program Files\GameTop.com\Ostrich Runners\ORunner.exe:*:Enabled:ORunner -- File not found
"D:\Hry\call\CoD2MP_s.exe" = D:\Hry\call\CoD2MP_s.exe:*:Enabled:CoD2MP_s -- ()
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"{083F79E4-6FE9-46FB-A6C6-4F8862742947}" = ATI HYDRAVISION
"{1F51A0CA-2BDD-474E-BB90-C7FA8EA78F52}" = ImageMixer VCD/DVD2 for OLYMPUS
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{237CD223-1B9D-47E8-A76C-E478B83CCEA2}" = File Uploader
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java(TM) 6 Update 20
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{4781569D-5404-1F26-4B2B-6DF444441031}" = Nero 7 Ultra Edition
"{49FC50FC-F965-40D9-89B4-CBFF80941033}" = Windows Movie Maker 2.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}" = Microsoft Games for Windows - LIVE
"{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}" = Adobe® Photoshop® Album Starter Edition 3.0
"{4EF69D40-4DC9-485E-95D3-B1C22F218FC8}" = upapp
"{505AFDC0-5E72-4928-8368-5DEA385E3647}" = CorelDRAW Graphics Suite 12
"{553255F3-78FD-40F1-A6F8-6882140265FE}" = Apple Application Support
"{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.5
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{685755F8-C74B-4613-8137-C90AF458228D}" = ATI Catalyst Control Center
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6E65247F-58F9-41CA-BE69-0316F7907170}" = Disc2Phone
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7F947BFE-C2DF-4779-9909-5BEE746BD0C4}" = Microsoft .NET Framework 2.0 Language Pack - CSY
"{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility
"{885A63EA-382B-4DD4-A755-14809B8557D6}" = Macromedia Flash Player 8
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{909F8EBC-EC7F-48FF-0085-475D818F0F31}" = Need for Speed Underground 2
"{95FC26FB-19FD-4A96-BBB1-B1062E8648F5}" = AGEIA PhysX v7.11.13
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-A93000000001}" = Adobe Reader 9.3.2 - Czech
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AEBA2BC7-5FE8-40CF-8484-118251EE640D}_is1" = American Conquest
"{B4881695-B622-4669-8992-4AC17A505250}" = NXPowerLite
"{B97CF5C3-0487-11D8-A36E-0050BAE317E1}" = DVD Solution
"{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}" = The Sims™ 3 Cestovní horečka
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C20CE592-B0F8-4D20-BF31-0151CA6331A6}" = Samsung Media Studio
"{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3
"{C5ADA65A-7828-4D85-B071-ECC52B51F794}" = Sony Ericsson PC Suite 1.20.173
"{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}" = AVIVO Codecs
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{D45E8C45-B601-4A80-AFD8-E16338744DE1}" = ArcSoft Panorama Maker 4
"{D642ACC5-F7E9-48F3-A7EE-B49C5447A10E}" = Samsung PC Studio 3
"{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC}" = Far Cry
"{DBECFA83-42DC-4585-A970-A764AB01A956}" = Call Of Duty(R) 2
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware 2007
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E9757890-7EC5-46C8-99AB-B00F07B6525C}" = Nikon Transfer
"{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer
"{F007CBCE-D714-4C0B-8CE9-9B0D78116468}" = ViewNX
"{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"{F7B0939E-58DF-11DF-B3A6-005056806466}" = Google Earth
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FD052FB9-FE90-4438-B355-15EDC89D8FB1}" = Microsoft Games for Windows - LIVE Redistributable
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop 7.0 CE" = Adobe Photoshop 7.0 CE
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"ATI Display Driver" = ATI Display Driver
"avast!" = avast! Antivirus
"Boilsoft Video Splitter_is1" = Boilsoft Video Splitter 5.01
"BSPlayerf" = BS.Player FREE powered by AdVantage
"bsplayerv2_is1" = BSplayer Pro 2.12.941
"CCleaner" = CCleaner (remove only)
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"Creative Live! Cam Vista IM User's Guide English" = Creative Live! Cam Vista IM User's Guide (English)
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"Creative VF0260" = Creative Live! Cam Vista IM Driver (1.01.03.1104)
"Creative WebCam Center" = Creative WebCam Center
"Easy Wireless Net" = Easy Wireless Net V2.00.00
"EAX Unified" = EAX Unified
"eBay Icon" = eBay Icon
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ft_Transport Tycoon Deluxe" = Transport Tycoon Deluxe
"GameParkClient_is1" = GamePark
"HijackThis" = HijackThis 2.0.2
"hp deskjet 3320 series" = hp deskjet 3320 series (Pouze odstranit)
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Ovladače zařízení
"InstallShield_{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC}" = Far Cry
"InstallShield_{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"IrfanView" = IrfanView (remove only)
"Lame MP3 Codec (for the ACM)" = Lame ACM MP3 Codec
"MediaMonkey_is1" = MediaMonkey 2.5
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - CSY" = Microsoft .NET Framework 2.0 Language Pack - CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Midnight Mysteries 2 Salem Witch Trials 1.00" = Midnight Mysteries 2 Salem Witch Trials 1.00
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MsJavaVM" = Microsoft VM for Java
"MSTTS" = Microsoft Text-to-Speech Engine 4.0 (English)
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"New Strike v1.5" = New Strike v1.5
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"Presentation To Video Converter_is1" = Presentation To Video Converter
"SAMSUNG CDMA Modem" = SAMSUNG CDMA Modem Driver Set
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"Scorpions WinCheater 2.07 (s databází 98)_is1" = Scorpions WinCheater
"Spyware Terminator_is1" = Spyware Terminator
"SysInfo" = Creative System Information
"Usbfix" = Usbfix By C_XX & El Desaparecido
"uTorrent" = µTorrent
"Visual Studio 6.0 Enterprise Edition" = Microsoft Visual Studio 6.0 Enterprise Edition
"WebPost" = Microsoft Web Publishing Wizard 1.53
"WIC" = Windows Imaging Component
"Winamp" = Winamp (remove only)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"Zipeg" = Zipeg
========== Last 10 Event Log Errors ==========
[ Antivirus Events ]
Error - 16.12.2007 9:35:33 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\WINDOWS\Installer\MSI27.tmp failed, 0000A413.
Error - 10.5.2009 14:50:23 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of G:\crack+češtiny\Crack\crack+češtiny\čestiny\Rctcz.exe failed, 0000A474.
Error - 27.9.2009 11:45:16 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při startu: AavmStart: avworkInitialize failed, 0000A438.
Error - 27.9.2009 12:03:31 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při startu: AavmStart: avworkInitialize failed, 0000A438.
Error - 9.11.2009 13:07:40 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://i.stream.cz/stream5/js/homepage/ ... 1.1.min.js failed, 0000A413.
Error - 27.3.2010 14:47:21 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of E:\fotky\P4130189.JPG failed, 0000A420.
[ Application Events ]
Error - 5.9.2009 3:16:00 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: System.Security, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
. Error code = 0x80070006
Error - 5.9.2009 3:16:10 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: System.Data.SqlXml, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
. Error code = 0x80070006
Error - 5.9.2009 3:16:11 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: System.Security, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
. Error code = 0x80070006
Error - 5.9.2009 3:16:40 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: System.Security, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
. Error code = 0x80070006
Error - 8.9.2009 10:43:18 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 7.0.6000.16876, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x01f1c178.
Error - 9.9.2009 15:00:14 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace nero.exe, verze 6.3.1.10, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.
Error - 9.9.2009 15:10:38 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace nero.exe, verze 6.3.1.10, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.
Error - 9.9.2009 15:28:54 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace explorer.exe, verze 6.0.2900.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 11.9.2009 9:31:29 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 7.0.6000.16876, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x0251c178.
Error - 11.9.2009 9:52:17 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 7.0.6000.16876, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x01e2c178.
[ System Events ]
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:39 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:39 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:39 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:39 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
< End of report >
OTL Extras logfile created on: 14.6.2010 21:20:22 - Run 1
OTL by OldTimer - Version 3.2.6.0 Folder = C:\Documents and Settings\Petr\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 022,00 Mb Total Physical Memory | 516,00 Mb Available Physical Memory | 51,00% Memory free
6,00 Gb Paging File | 6,00 Gb Available in Paging File | 92,00% Paging File free
Paging file location(s): [Binary data over 100 bytes]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 4,84 Gb Free Space | 6,49% Space Free | Partition Type: NTFS
Drive D: | 74,53 Gb Total Space | 27,90 Gb Free Space | 37,44% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 1,86 Gb Total Space | 0,13 Gb Free Space | 7,07% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
Drive H: | 631,31 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
I: Drive not present or media not loaded
Computer Name: PC
Current User Name: Petr
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\Winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\Winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"24711:TCP" = 24711:TCP:*:Enabled:BitComet 24711 TCP
"24711:UDP" = 24711:UDP:*:Enabled:BitComet 24711 UDP
"15171:TCP" = 15171:TCP:*:Enabled:BitComet 15171 TCP
"15171:UDP" = 15171:UDP:*:Enabled:BitComet 15171 UDP
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"15561:TCP" = 15561:TCP:*:Enabled:BitComet 15561 TCP
"15561:UDP" = 15561:UDP:*:Enabled:BitComet 15561 UDP
"554:UDP" = 554:UDP:*:Enabled:RTSP
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\ICQLite\ICQLite.exe" = C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite -- File not found
"G:\COD\CoD2MP_s.exe" = G:\COD\CoD2MP_s.exe:*:Enabled:CoD2MP_s -- File not found
"C:\Program Files\BitComet\BitComet.exe" = C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client -- File not found
"C:\Program Files\ICQ6\ICQ.exe" = C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6 -- File not found
"D:\Hry\S comander\GPGNet\GPG.Multiplayer.Client.exe" = D:\Hry\S comander\GPGNet\GPG.Multiplayer.Client.exe:*:Enabled:GPGNet - Supreme Commander -- File not found
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe" = C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s -- File not found
"C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"D:\Hry\Qake 4\Quake4Ded.exe" = D:\Hry\Qake 4\Quake4Ded.exe:*:Enabled:Quake 4 -- File not found
"C:\Program Files\Quake III Arena\quake3.exe" = C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3 -- File not found
"D:\Hry\CaC zero\game.dat" = D:\Hry\CaC zero\game.dat:*:Enabled:game -- ()
"D:\Hry\ghost\GRAW.exe" = D:\Hry\ghost\GRAW.exe:*:Enabled:GRAW -- File not found
"D:\Hry\Far Cry\Bin32\FarCry.exe" = D:\Hry\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry -- File not found
"C:\Program Files\Touchstone\Turok\Binaries\TurokGame.exe" = C:\Program Files\Touchstone\Turok\Binaries\TurokGame.exe:*:Enabled:Turok -- File not found
"D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe" = D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI) -- File not found
"D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe" = D:\Hry\Stalker\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV) -- File not found
"D:\Hry\Age\Age Of Empires 2 & The Conquerors Expansion - Full Game - [HUSSEY]\empires2.exe" = D:\Hry\Age\Age Of Empires 2 & The Conquerors Expansion - Full Game - [HUSSEY]\empires2.exe:*:Enabled:Age of Empires II -- (Microsoft Corporation)
"C:\Program Files\Dead Space\Dead Space.exe" = C:\Program Files\Dead Space\Dead Space.exe:*:Enabled:Dead Space ™ -- File not found
"D:\Hry\Bratři\Brothers in Arms - Hell's Highway\Binaries\biahh.exe" = D:\Hry\Bratři\Brothers in Arms - Hell's Highway\Binaries\biahh.exe:*:Enabled:biahh -- File not found
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"D:\Hry\Fortune\sof3.exe" = D:\Hry\Fortune\sof3.exe:*:Enabled:sof3 -- File not found
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe" = C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator -- (Crawler.com)
"C:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe" = C:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry -- (Crytek)
"C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\VARPC.EXE" = C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\VARPC.EXE:*:Enabled:Microsoft (R) Visual Studio VSA RPC Event Creator -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Program Files\GameTop.com\Ostrich Runners\ORunner.exe" = C:\Program Files\GameTop.com\Ostrich Runners\ORunner.exe:*:Enabled:ORunner -- File not found
"D:\Hry\call\CoD2MP_s.exe" = D:\Hry\call\CoD2MP_s.exe:*:Enabled:CoD2MP_s -- ()
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"{083F79E4-6FE9-46FB-A6C6-4F8862742947}" = ATI HYDRAVISION
"{1F51A0CA-2BDD-474E-BB90-C7FA8EA78F52}" = ImageMixer VCD/DVD2 for OLYMPUS
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{237CD223-1B9D-47E8-A76C-E478B83CCEA2}" = File Uploader
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java(TM) 6 Update 20
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{4781569D-5404-1F26-4B2B-6DF444441031}" = Nero 7 Ultra Edition
"{49FC50FC-F965-40D9-89B4-CBFF80941033}" = Windows Movie Maker 2.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}" = Microsoft Games for Windows - LIVE
"{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}" = Adobe® Photoshop® Album Starter Edition 3.0
"{4EF69D40-4DC9-485E-95D3-B1C22F218FC8}" = upapp
"{505AFDC0-5E72-4928-8368-5DEA385E3647}" = CorelDRAW Graphics Suite 12
"{553255F3-78FD-40F1-A6F8-6882140265FE}" = Apple Application Support
"{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.5
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{685755F8-C74B-4613-8137-C90AF458228D}" = ATI Catalyst Control Center
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6E65247F-58F9-41CA-BE69-0316F7907170}" = Disc2Phone
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7F947BFE-C2DF-4779-9909-5BEE746BD0C4}" = Microsoft .NET Framework 2.0 Language Pack - CSY
"{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility
"{885A63EA-382B-4DD4-A755-14809B8557D6}" = Macromedia Flash Player 8
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{909F8EBC-EC7F-48FF-0085-475D818F0F31}" = Need for Speed Underground 2
"{95FC26FB-19FD-4A96-BBB1-B1062E8648F5}" = AGEIA PhysX v7.11.13
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-A93000000001}" = Adobe Reader 9.3.2 - Czech
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AEBA2BC7-5FE8-40CF-8484-118251EE640D}_is1" = American Conquest
"{B4881695-B622-4669-8992-4AC17A505250}" = NXPowerLite
"{B97CF5C3-0487-11D8-A36E-0050BAE317E1}" = DVD Solution
"{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}" = The Sims™ 3 Cestovní horečka
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C20CE592-B0F8-4D20-BF31-0151CA6331A6}" = Samsung Media Studio
"{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3
"{C5ADA65A-7828-4D85-B071-ECC52B51F794}" = Sony Ericsson PC Suite 1.20.173
"{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}" = AVIVO Codecs
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{D45E8C45-B601-4A80-AFD8-E16338744DE1}" = ArcSoft Panorama Maker 4
"{D642ACC5-F7E9-48F3-A7EE-B49C5447A10E}" = Samsung PC Studio 3
"{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC}" = Far Cry
"{DBECFA83-42DC-4585-A970-A764AB01A956}" = Call Of Duty(R) 2
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware 2007
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E9757890-7EC5-46C8-99AB-B00F07B6525C}" = Nikon Transfer
"{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer
"{F007CBCE-D714-4C0B-8CE9-9B0D78116468}" = ViewNX
"{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"{F7B0939E-58DF-11DF-B3A6-005056806466}" = Google Earth
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FD052FB9-FE90-4438-B355-15EDC89D8FB1}" = Microsoft Games for Windows - LIVE Redistributable
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop 7.0 CE" = Adobe Photoshop 7.0 CE
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"ATI Display Driver" = ATI Display Driver
"avast!" = avast! Antivirus
"Boilsoft Video Splitter_is1" = Boilsoft Video Splitter 5.01
"BSPlayerf" = BS.Player FREE powered by AdVantage
"bsplayerv2_is1" = BSplayer Pro 2.12.941
"CCleaner" = CCleaner (remove only)
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"Creative Live! Cam Vista IM User's Guide English" = Creative Live! Cam Vista IM User's Guide (English)
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"Creative VF0260" = Creative Live! Cam Vista IM Driver (1.01.03.1104)
"Creative WebCam Center" = Creative WebCam Center
"Easy Wireless Net" = Easy Wireless Net V2.00.00
"EAX Unified" = EAX Unified
"eBay Icon" = eBay Icon
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ft_Transport Tycoon Deluxe" = Transport Tycoon Deluxe
"GameParkClient_is1" = GamePark
"HijackThis" = HijackThis 2.0.2
"hp deskjet 3320 series" = hp deskjet 3320 series (Pouze odstranit)
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Ovladače zařízení
"InstallShield_{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC}" = Far Cry
"InstallShield_{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"IrfanView" = IrfanView (remove only)
"Lame MP3 Codec (for the ACM)" = Lame ACM MP3 Codec
"MediaMonkey_is1" = MediaMonkey 2.5
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - CSY" = Microsoft .NET Framework 2.0 Language Pack - CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Midnight Mysteries 2 Salem Witch Trials 1.00" = Midnight Mysteries 2 Salem Witch Trials 1.00
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MsJavaVM" = Microsoft VM for Java
"MSTTS" = Microsoft Text-to-Speech Engine 4.0 (English)
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"New Strike v1.5" = New Strike v1.5
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"Presentation To Video Converter_is1" = Presentation To Video Converter
"SAMSUNG CDMA Modem" = SAMSUNG CDMA Modem Driver Set
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"Scorpions WinCheater 2.07 (s databází 98)_is1" = Scorpions WinCheater
"Spyware Terminator_is1" = Spyware Terminator
"SysInfo" = Creative System Information
"Usbfix" = Usbfix By C_XX & El Desaparecido
"uTorrent" = µTorrent
"Visual Studio 6.0 Enterprise Edition" = Microsoft Visual Studio 6.0 Enterprise Edition
"WebPost" = Microsoft Web Publishing Wizard 1.53
"WIC" = Windows Imaging Component
"Winamp" = Winamp (remove only)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"Zipeg" = Zipeg
========== Last 10 Event Log Errors ==========
[ Antivirus Events ]
Error - 16.12.2007 9:35:33 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\WINDOWS\Installer\MSI27.tmp failed, 0000A413.
Error - 10.5.2009 14:50:23 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of G:\crack+češtiny\Crack\crack+češtiny\čestiny\Rctcz.exe failed, 0000A474.
Error - 27.9.2009 11:45:16 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při startu: AavmStart: avworkInitialize failed, 0000A438.
Error - 27.9.2009 12:03:31 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při startu: AavmStart: avworkInitialize failed, 0000A438.
Error - 9.11.2009 13:07:40 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://i.stream.cz/stream5/js/homepage/ ... 1.1.min.js failed, 0000A413.
Error - 27.3.2010 14:47:21 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of E:\fotky\P4130189.JPG failed, 0000A420.
[ Application Events ]
Error - 5.9.2009 3:16:00 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: System.Security, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
. Error code = 0x80070006
Error - 5.9.2009 3:16:10 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: System.Data.SqlXml, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
. Error code = 0x80070006
Error - 5.9.2009 3:16:11 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: System.Security, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
. Error code = 0x80070006
Error - 5.9.2009 3:16:40 | Computer Name = PC | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: System.Security, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
. Error code = 0x80070006
Error - 8.9.2009 10:43:18 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 7.0.6000.16876, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x01f1c178.
Error - 9.9.2009 15:00:14 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace nero.exe, verze 6.3.1.10, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.
Error - 9.9.2009 15:10:38 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace nero.exe, verze 6.3.1.10, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.
Error - 9.9.2009 15:28:54 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace explorer.exe, verze 6.0.2900.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 11.9.2009 9:31:29 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 7.0.6000.16876, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x0251c178.
Error - 11.9.2009 9:52:17 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace iexplore.exe, verze 7.0.6000.16876, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x01e2c178.
[ System Events ]
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:39 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:39 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:39 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
Error - 14.6.2010 15:16:39 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Správa aplikací byla ukončena s následující chybou: %%126
< End of report >
Re: Prosím o kontrolu
UsbFix mě nejde spustit 
Re: Prosím o kontrolu
Co Vam to pise za chybu u USBFixu, teda pokud nejakou 
Zkuste stahnout USBFix odtud http://www.commentcamarche.net/download ... 197-usbfix - klik na zelene tlacitko Télécharger Tohle znate C:\Program Files\MarkAny\ContentSafer\MaAgent.exe Nasledujici soubory otestujte na VirusTotalu (viz muj podpis)
- C:\Program Files\MarkAny\ContentSafer\MaAgent.exe
C:\Program Files\MarkAny\ContentSafer\MaCSProHook.dll
C:\WINDOWS\system32\drivers\StarOpen.sys
C:\WINDOWS\JAUTOEXP.INI - Kliknete na Prochazet
- Soubor nehledejte, jen vlozte cestu souboru, ktery chci otestovat
- Pokud napise Soubor byl jiz testovan, dejte otestovat znovu
- Kliknete na Otestovat soubor
- Vysledek analyzy sem vlozte (jako odkaz)
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
usbFix stále nejde, na soubor poklikám - zobrazí se hodiny - hned zmizí a dál se nic neděje, nic se neotevře
C:\Program Files\MarkAny\ContentSafer\MaAgent.exe neznám
http://www.virustotal.com/cs/analisis/1 ... 1276545316
http://www.virustotal.com/cs/analisis/f ... 1276545539
http://www.virustotal.com/cs/analisis/6 ... 1276545558
http://www.virustotal.com/cs/analisis/d ... 1276545575
C:\Program Files\MarkAny\ContentSafer\MaAgent.exe neznám
http://www.virustotal.com/cs/analisis/1 ... 1276545316
http://www.virustotal.com/cs/analisis/f ... 1276545539
http://www.virustotal.com/cs/analisis/6 ... 1276545558
http://www.virustotal.com/cs/analisis/d ... 1276545575
Re: Prosím o kontrolu
Tohle mate v PC umyslne C:\Program Files\Lavasoft\Ad-Aware 2007\ Pokud ne, tak odinstalujte pres Pridat nebo odebrat soubory pripadne pouzijte napr. Revo Uninstaller http://www.stahuj.centrum.cz/utility_a_ ... installer/. Pokud ani tak nepujde, tak to smaznem natvrdo skriptem. Pokud Vam USBFix nejde, zkuste v nouzovem rezimu, pokud ani tam, nechte to byt - smaznem ho jinym mazadlem"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
Pokud ten C:\Program Files\MarkAny\ neznate, taktez odinstalujte - podobne jako Ad-Aware
Pokud nepujde (at ad-aware ci tento MarkAny) tak dejte vedet...
Pokud nepujde (at ad-aware ci tento MarkAny) tak dejte vedet...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
Ad Aware odinstalován
MarkAny nejde, nenajdu ho v přidat odebrat programy, ani v Revo uninstaller
usbfix nejde spustit ani v nouzovém režimu
dnes už jdu spát zatím dík za pomoc
MarkAny nejde, nenajdu ho v přidat odebrat programy, ani v Revo uninstaller
usbfix nejde spustit ani v nouzovém režimu
dnes už jdu spát
zatím dík za pomocRe: Prosím o kontrolu
Ok, zitra dodelame, budu tu ale az kolem osme vecer, mozna navod bude uz rano
Dobrou noc
Dobrou noc
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
Zapojte vsechny USB klice (flashky, ext. disky apod.) Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl PRC - [2007.01.30 21:36:30 | 000,057,344 | ---- | M] ((주)마크애니) -- C:\Program Files\MarkAny\ContentSafer\MaAgent.exe MOD - [2004.11.24 21:58:24 | 000,163,840 | ---- | M] (MarkAny Co., Ltd.) -- C:\Program Files\MarkAny\ContentSafer\MaCSProHook.dll O4 - HKLM..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MaAgent.exe ((주)마크애니) O28 - HKLM ShellExecuteHooks: {88485281-8b4b-4f8d-9ede-82e29a064277} - C:\Program Files\MarkAny\ContentSafer\MACSMANAGER.dll (MarkAny Cooperation.) IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=61005 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=61005 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=14597&l=dis IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Ask.com" FF - prefs.js..network.proxy.type: 4 [2010.06.13 22:05:59 | 000,002,382 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\askcom.xml [2010.06.08 15:11:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-1.xml [2008.07.04 21:13:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-10.xml [2008.07.19 19:32:02 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-11.xml [2008.09.07 20:39:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-12.xml [2008.10.01 21:23:59 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-13.xml [2008.10.04 13:42:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-14.xml [2008.11.16 12:00:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-15.xml [2008.12.24 00:13:41 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-16.xml [2009.02.05 20:57:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-17.xml [2009.03.06 13:20:50 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-18.xml [2009.04.01 19:45:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-19.xml [2007.11.03 14:16:58 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-2.xml [2009.04.23 12:16:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-20.xml [2009.05.02 10:04:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-21.xml [2009.06.12 22:08:25 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-22.xml [2009.07.25 10:59:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-23.xml [2009.08.05 12:26:19 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-24.xml [2009.09.11 05:23:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-25.xml [2009.11.01 22:05:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-26.xml [2009.12.17 14:16:49 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-27.xml [2010.01.06 20:29:53 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-28.xml [2010.02.19 16:07:54 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-29.xml [2007.11.27 20:42:02 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-3.xml [2010.03.27 18:05:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-30.xml [2010.03.30 21:12:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-31.xml [2010.04.03 16:57:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-32.xml [2010.04.21 20:47:31 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-33.xml [2007.12.01 18:00:11 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-4.xml [2008.01.20 23:02:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-5.xml [2008.02.09 17:29:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-6.xml [2008.03.31 00:11:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-7.xml [2008.04.17 22:51:06 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-8.xml [2008.06.18 20:29:33 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-9.xml [2009.07.13 17:12:02 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin.xml O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [] File not found O4 - HKLM..\RunOnce: [] File not found O15 - HKLM\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites) O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites) O15 - HKCU\..Trusted Domains: mojebanka.cz ([etrading] https in Důvěryhodné servery) O15 - HKCU\..Trusted Domains: mojebanka.cz ([www] https in Důvěryhodné servery) O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.) O33 - MountPoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}\Shell\AutoRun\command - "" = EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe O33 - MountPoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}\Shell\open\command - "" = EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] @Alternate Data Stream - 97 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:2FDE2A42 @Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:9D86EE01 @Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:EEB25EAE :files C:\WINDOWS\system32\*.tmp.dll /s C:\WINDOWS\system32\SET*.tmp /s C:\WINDOWS\*.tmp /s C:\Program Files\MarkAny\ :reg [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bc328c4d-47ec-11df-85d1-0019dbc6b274}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "554:UDP"=- :commands [EMPTYTEMP] [EMPTYFLASH] [CLEARALLRESTOREPOINTS]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu
All processes killed
========== OTL ==========
No active process named MaAgent.exe was found!
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\MAAgent deleted successfully.
C:\Program Files\MarkAny\ContentSafer\MaAgent.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{88485281-8b4b-4f8d-9ede-82e29a064277} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88485281-8b4b-4f8d-9ede-82e29a064277}\ deleted successfully.
C:\Program Files\MarkAny\ContentSafer\MACSMANAGER.dll moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "Ask.com" removed from browser.search.selectedEngine
Prefs.js: 4 removed from network.proxy.type
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\askcom.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-11.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-12.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-13.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-14.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-15.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-16.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-17.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-18.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-19.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-20.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-21.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-22.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-23.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-24.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-25.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-26.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-27.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-28.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-29.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-30.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-31.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-32.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-33.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin.xml moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mojebanka.cz\etrading\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mojebanka.cz\www\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mojebanka.cz\etrading\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mojebanka.cz\www\ deleted successfully.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11218b23-2ad3-11df-8598-0019dbc6b274}\ not found.
File EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11218b23-2ad3-11df-8598-0019dbc6b274}\ not found.
File EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe not found.
C:\WINDOWS\003018_.tmp deleted successfully.
C:\WINDOWS\SET21.tmp deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\SET52.tmp deleted successfully.
C:\WINDOWS\System32\SET53.tmp deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:2FDE2A42 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:9D86EE01 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:EEB25EAE deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP150.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP19A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1AD.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP272.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP28A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2B5.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP334.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP39D.tmp folder moved successfully.
C:\WINDOWS\Installer\MSI3.tmp moved successfully.
C:\WINDOWS\Installer\MSI5.tmp moved successfully.
C:\WINDOWS\Installer\MSI8.tmp moved successfully.
C:\WINDOWS\Installer\MSI99.tmp moved successfully.
C:\WINDOWS\Installer\MSI9E.tmp moved successfully.
C:\WINDOWS\Installer\MSIB2.tmp moved successfully.
C:\WINDOWS\Installer\MSIF.tmp moved successfully.
C:\WINDOWS\Temp\is41.tmp moved successfully.
C:\WINDOWS\Temp\is43.tmp moved successfully.
C:\WINDOWS\Temp\ZAP33D.tmp folder moved successfully.
C:\Program Files\MarkAny\ContentSafer\UpdateClient folder moved successfully.
C:\Program Files\MarkAny\ContentSafer\Data folder moved successfully.
C:\Program Files\MarkAny\ContentSafer folder moved successfully.
C:\Program Files\MarkAny folder moved successfully.
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bc328c4d-47ec-11df-85d1-0019dbc6b274}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bc328c4d-47ec-11df-85d1-0019dbc6b274}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\554:UDP deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Petr
->Temp folder emptied: 47077715 bytes
->Temporary Internet Files folder emptied: 65487168 bytes
->Java cache emptied: 28066818 bytes
->FireFox cache emptied: 77324086 bytes
->Flash cache emptied: 18563 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 81392213 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 49429296 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 5088474629 bytes
Total Files Cleaned = 5 186,00 mb
[EMPTYFLASH]
User: All Users
User: Default User
User: LocalService
User: NetworkService
User: Petr
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
Restore points cleared and new OTL Restore Point set!
OTL by OldTimer - Version 3.2.6.0 log created on 06152010_142511
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\Perflib_Perfdata_610.dat scheduled to be moved on reboot.
Registry entries deleted on Reboot...
========== OTL ==========
No active process named MaAgent.exe was found!
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\MAAgent deleted successfully.
C:\Program Files\MarkAny\ContentSafer\MaAgent.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{88485281-8b4b-4f8d-9ede-82e29a064277} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88485281-8b4b-4f8d-9ede-82e29a064277}\ deleted successfully.
C:\Program Files\MarkAny\ContentSafer\MACSMANAGER.dll moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "Ask.com" removed from browser.search.selectedEngine
Prefs.js: 4 removed from network.proxy.type
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\askcom.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-11.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-12.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-13.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-14.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-15.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-16.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-17.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-18.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-19.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-20.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-21.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-22.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-23.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-24.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-25.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-26.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-27.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-28.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-29.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-30.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-31.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-32.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-33.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\81pvikdz.default\searchplugins\icqplugin.xml moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mojebanka.cz\etrading\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mojebanka.cz\www\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mojebanka.cz\etrading\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mojebanka.cz\www\ deleted successfully.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11218b23-2ad3-11df-8598-0019dbc6b274}\ not found.
File EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{11218b23-2ad3-11df-8598-0019dbc6b274}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11218b23-2ad3-11df-8598-0019dbc6b274}\ not found.
File EQUITY\Q-5-6-99-222222CCCC-333333333333-7777777777-111\Fix.exe not found.
C:\WINDOWS\003018_.tmp deleted successfully.
C:\WINDOWS\SET21.tmp deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\SET52.tmp deleted successfully.
C:\WINDOWS\System32\SET53.tmp deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:2FDE2A42 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:9D86EE01 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:EEB25EAE deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP150.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP19A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1AD.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP272.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP28A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2B5.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP334.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP39D.tmp folder moved successfully.
C:\WINDOWS\Installer\MSI3.tmp moved successfully.
C:\WINDOWS\Installer\MSI5.tmp moved successfully.
C:\WINDOWS\Installer\MSI8.tmp moved successfully.
C:\WINDOWS\Installer\MSI99.tmp moved successfully.
C:\WINDOWS\Installer\MSI9E.tmp moved successfully.
C:\WINDOWS\Installer\MSIB2.tmp moved successfully.
C:\WINDOWS\Installer\MSIF.tmp moved successfully.
C:\WINDOWS\Temp\is41.tmp moved successfully.
C:\WINDOWS\Temp\is43.tmp moved successfully.
C:\WINDOWS\Temp\ZAP33D.tmp folder moved successfully.
C:\Program Files\MarkAny\ContentSafer\UpdateClient folder moved successfully.
C:\Program Files\MarkAny\ContentSafer\Data folder moved successfully.
C:\Program Files\MarkAny\ContentSafer folder moved successfully.
C:\Program Files\MarkAny folder moved successfully.
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bc328c4d-47ec-11df-85d1-0019dbc6b274}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bc328c4d-47ec-11df-85d1-0019dbc6b274}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\554:UDP deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Petr
->Temp folder emptied: 47077715 bytes
->Temporary Internet Files folder emptied: 65487168 bytes
->Java cache emptied: 28066818 bytes
->FireFox cache emptied: 77324086 bytes
->Flash cache emptied: 18563 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 81392213 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 49429296 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 5088474629 bytes
Total Files Cleaned = 5 186,00 mb
[EMPTYFLASH]
User: All Users
User: Default User
User: LocalService
User: NetworkService
User: Petr
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
Restore points cleared and new OTL Restore Point set!
OTL by OldTimer - Version 3.2.6.0 log created on 06152010_142511
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\Perflib_Perfdata_610.dat scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Re: Prosím o kontrolu
Jak se chova PC
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?