vyosek píše:Jelo to takhle blbe jeste pred opravou pomoci OTM nebo az po ni
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.
Re: Prosím o kontrolu logu
předtím - právě proto jsem se rozhodl nechat si PC prohlednout
Re: Prosím o kontrolu logu
Stahnete WinSockFix http://www.majorgeeks.com/download4372.html
- Ulozte treba na plochu
- Spustte a kliknete na Fix
- Resetne nastaveni pripojeni k netu, takze pote bude mozno nutno zadat udaje dle smlouvy s providerem - pokud nemate ziskavani automaticky
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu
Hotovo - beze změny....
Opera mi stále vyhazuje hlášku :
408 Request Time-out
Your browser didn't send a complete request in time.
Opera mi stále vyhazuje hlášku :
408 Request Time-out
Your browser didn't send a complete request in time.
Re: Prosím o kontrolu logu
Na jinem PC bezi internet v poradku
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu
JJ, mám ještě ntb, připojenou přes wifi a tam to jede v pohodě :/
Re: Prosím o kontrolu logu
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
netsvcs drivers32 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s c:\windows\*.* /U %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s /md5start eventlog.dll scecli.dll netlogon.dll cngaudit.dll sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys nvrd32.sys symmpi.sys adp3132.sys mv61xx.sys nvraid.sys ndis.sys winlogon.exe explorer.exe userinit.exe lsass.exe svchost.exe smss.exe hal.dll ws2_32.dll tcpip.sys cryptsvc.dll Changer.sys JakNDis.sys isapnp.sys cdrom.sys autochk.exe /md5stop %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 CREATERESTOREPOINT- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 5 az 10 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu
Extras.txt :
OTL Extras logfile created on: 18.10.2010 21:03:39 - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Documents and Settings\noskin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 78,13 Gb Total Space | 4,59 Gb Free Space | 5,87% Space Free | Partition Type: NTFS
Drive E: | 219,96 Gb Total Space | 7,85 Gb Free Space | 3,57% Space Free | Partition Type: NTFS
Drive G: | 15,04 Gb Total Space | 0,02 Gb Free Space | 0,11% Space Free | Partition Type: FAT32
Drive H: | 3,72 Gb Total Space | 0,42 Gb Free Space | 11,36% Space Free | Partition Type: FAT32
Computer Name: NOSKINS | User Name: noskin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
https [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"57180:TCP" = 57180:TCP:*:Enabled:Pando Media Booster
"57180:UDP" = 57180:UDP:*:Enabled:Pando Media Booster
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.1\ICQ.exe" = C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1 -- (ICQ, LLC.)
"C:\Program Files\ICQ7.1\aolload.exe" = C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Opera 10 Beta\opera.exe" = C:\Program Files\Opera 10 Beta\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe" = C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- (Activision Blizzard, Inc.)
"C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe" = C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- (Activision Blizzard, Inc.)
"C:\Program Files\Steam\steamapps\common\zero gear\ZeroGear.bat" = C:\Program Files\Steam\steamapps\common\zero gear\ZeroGear.bat:*:Enabled:Zero Gear Demo -- ()
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Xfire\Xfire.exe" = C:\Program Files\Xfire\Xfire.exe:*:Enabled:Xfire -- (Xfire Inc.)
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe" = C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator -- (Crawler.com)
"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"E:\_hry\BF2\GAME\BFBC2Updater.exe" = E:\_hry\BF2\GAME\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2 -- (EA Digital Illusions CE AB)
"C:\Program Files\ICQ7.1\ICQ.exe" = C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1 -- (ICQ, LLC.)
"C:\Program Files\ICQ7.1\aolload.exe" = C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
"E:\_hry\silent hunter\sh5.exe" = E:\_hry\silent hunter\sh5.exe:*:Enabled:Silent Hunter 5 -- (Ubisoft)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{064DC64E-7A2F-4FDF-B598-E3C0747BBB9C}" = Call of Duty(R) - World at War(TM) 1.6 Patch
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{19DC9559-9C20-4A46-A67D-7ECBA52A2788}" = Nokia PC Suite
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 19
"{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty(R) - World at War(TM) 1.2 Patch
"{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}" = Microsoft Games for Windows - LIVE
"{2DD0BBBF-E4BB-9396-9A0F-8CA87CD5B7BF}" = Catalyst Control Center Graphics Full New
"{33BC9D7E-E790-495E-A4EA-CFB160C17A91}" = Logitech Gaming Software 5.08
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{377B2121-65F6-4C5F-998F-5284DEF41F3E}" = COMODO livePCsupport
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm
"{46552BC3-52B6-404c-9B42-CE536AB719FD}_is1" = Ashampoo Home Designer1.0.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{55A29068-F2CE-456C-9148-C869879E2357}" = TuneUp Utilities 2009
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{5DE71D48-01EB-4BF2-A643-50FE6C9B6AC9}" = OpenOffice.org 3.2
"{66D475AE-F18B-43A0-8BAF-61AF4403E339}" = Webcam 1200
"{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6D72B6BC-6F12-ED07-E763-B4B92D2B0214}" = Catalyst Control Center Graphics Previews Common
"{6E0352EE-6F0D-4FBC-B1B8-4FF032C78BE0}" = PC Connectivity Solution
"{71BFC818-0CED-42D6-9C87-5142918957EE}" = ICQ7.1
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{750C87B8-AF19-4C3C-B791-50D9C83AE572}" = Call of Duty(R) - World at War(TM) 1.7 Patch
"{79DA9485-3F71-6E1E-DB22-AC859FC9C3ED}" = CCC Help English
"{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1" = Need For Speed™ World
"{82231D5B-EE8C-815D-DD04-BC42521A77DB}" = Catalyst Control Center Graphics Full Existing
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{87CC8013-56D1-43E1-A0A5-AD406B4EBA95}" = Opera 10.63
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{8EA485CA-2FC5-EEBD-D7FF-4EAD46AA099B}" = ccc-core-preinstall
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90A40405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{92C7D009-A464-4948-A980-7A3E28CB2F49}_is1" = Richard Burns Rally
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}" = iTunes
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC61C594-5F86-4BE9-ABAF-763C6A8E2302}" = Silent Hunter 5
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.0
"{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty(R) - World at War(TM) 1.1 Patch
"{B19F9155-9337-4807-B5EF-ED471DDB2CCE}" = hph_software_req
"{B3276CB1-20B6-4AF9-AAEC-E72C83816495}" = IKEA Home Planner
"{B63B5FC6-B005-5B6D-7F04-3950656634B9}" = Catalyst Control Center InstallProxy
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C256573D-B3CE-4256-BEA2-217C8B211DD5}" = USB drive letter manager
"{C3DC2DF5-EFAC-4055-9010-31F7C545DD9E}" = Call of Duty(R) - World at War(TM) 1.5 Patch
"{C50EF365-2898-489A-B6C7-30DAA466E9A2}" = Nokia Connectivity Cable Driver
"{CC6B1BB4-4E06-4A5B-A166-B371B551324B}" = COMODO Internet Security
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D071EFC1-A719-8FA1-6F20-CDD046AF8F66}" = ccc-utility
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D1AE6D4D-C37A-487d-83D8-C333125B2459}" = HP Photosmart and Deskjet 7.0 Software (csy)
"{D5FD95DA-0B0F-9278-5102-056262A3E889}" = Catalyst Control Center Core Implementation
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{DA2A851C-6E2B-4677-9DA5-5ED9A3B227E2}" = Quake Live Internet Explorer Plugin
"{DB80C34B-EA40-6084-5BED-B5E36A2F94CC}" = Catalyst Control Center Localization All
"{DFB4665A-6CC3-EE16-9FF5-92655EDD9296}" = Catalyst Control Center Graphics Light
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F4D76FAE-89E8-8109-9AF0-3B16AF6DDAAC}" = Catalyst Control Center HydraVision Full
"{F9835182-794B-4F24-902A-E2CA9D43380F}" = NVIDIA PhysX
"{FACB8BA0-8D6A-1461-3C9D-1DFAFDDBACBB}" = ccc-core-static
"05B59228C7E1C21DFBE89260F879BD95880548D8" = Balíček ovladače systému Windows - Nokia Modem (10/05/2009 4.2)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"8CDCFB95BB84DD9C0F88F22266A0CA86035E55BA" = Balíček ovladače systému Windows - Nokia Modem (06/01/2009 7.01.0.4)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All2WAV Recorder_is1" = All2WAV Recorder 3.20
"AutoHotkey" = AutoHotkey 1.0.48.05
"avast5" = avast! Free Antivirus
"CCleaner" = CCleaner
"CesarFTP 0.99g_is1" = CesarFTP 0.99g
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"ESET Online Scanner" = ESET Online Scanner v3
"Fast AVI to GIF Converter" = Fast AVI to GIF Converter
"FeedReader_is1" = FeedReader
"FerrariVR" = Ferrari Virtual Race (remove only)
"FormatFactory" = FormatFactory 2.30
"Glary Utilities_is1" = Glary Utilities 2.21.0.863
"HijackThis" = HijackThis 2.0.2
"HP Imaging Device Functions" = HP Imaging Device Functions 7.0
"ie8" = Windows Internet Explorer 8
"InstallShield_{064DC64E-7A2F-4FDF-B598-E3C0747BBB9C}" = Call of Duty(R) - World at War(TM) 1.6 Patch
"InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty(R) - World at War(TM) 1.2 Patch
"InstallShield_{750C87B8-AF19-4C3C-B791-50D9C83AE572}" = Call of Duty(R) - World at War(TM) 1.7 Patch
"InstallShield_{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"InstallShield_{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty(R) - World at War(TM) 1.1 Patch
"InstallShield_{C3DC2DF5-EFAC-4055-9010-31F7C545DD9E}" = Call of Duty(R) - World at War(TM) 1.5 Patch
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"Jewel Quest Heritage 1.00" = Jewel Quest Heritage 1.00
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MAXONB6EC381C" = CINEMA 4D 11.514
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.9)" = Mozilla Firefox (3.5.9)
"Nokia PC Suite" = Nokia PC Suite
"NVIDIA Drivers" = NVIDIA Drivers
"PDF Editor 3" = PDF Editor 3
"PunkBusterSvc" = PunkBuster Services
"RBRHradek" = RBR Hradek (remove only)
"RBRPribram1" = RBR Pribram (remove only)
"RBRPribram2" = RBR Pribram 2 (remove only)
"RBRPTDRallySprint11" = RBR PTD RallySprint 1.1 (remove only)
"RBRReversedTracks" = RBR Reversed Tracks (remove only)
"RBRSchool2" = RBR School stage 2 (remove only)
"RBRSosnova" = RBR Sumburk (remove only)
"RBRTM" = RBR Tournament plugin (remove only)
"Sniper Ghost Warrior_is1" = Sniper Ghost Warrior (1.0)
"Spyware Terminator_is1" = Spyware Terminator
"Super Motocross_is1" = Super Motocross
"Traktor Simulátor_is1" = Traktor Simulátor
"uTorrent" = µTorrent
"VertrigoServ" = VertrigoServ (remove only)
"VLC media player" = VLC media player 1.0.5
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"WinGimp-2.0_is1" = GIMP 2.6.8
"WinRAR archiver" = WinRAR
"Wudf01007" = Microsoft User-Mode Driver Framework Feature Pack 1.7
"Xfire" = Xfire (remove only)
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent DNA" = DNA
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 17.4.2010 6:12:23 | Computer Name = NOSKINS | Source = Application Error | ID = 1000
Description = Chybující aplikace ati2evxx.exe, verze 6.14.10.4234, chybující modul
uxtheme.dll, verze 6.0.2900.5512, adresa chyby 0x00003142.
Error - 18.4.2010 17:17:56 | Computer Name = NOSKINS | Source = Microsoft Office 11 | ID = 2001
Description =
Error - 21.4.2010 15:31:46 | Computer Name = NOSKINS | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.
Error - 21.4.2010 15:31:46 | Computer Name = NOSKINS | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.
[ System Events ]
Error - 18.10.2010 12:17:18 | Computer Name = NOSKINS | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .
Error - 18.10.2010 12:18:25 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 18.10.2010 12:18:43 | Computer Name = NOSKINS | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Aavmker4 AmdK8 aswSP aswTdi cmdGuard Fips sptd sp_rsdrv2
Error - 18.10.2010 12:19:46 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 18.10.2010 12:34:37 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 18.10.2010 12:57:55 | Computer Name = NOSKINS | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .
Error - 18.10.2010 12:59:20 | Computer Name = NOSKINS | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Aavmker4 AmdK8 aswSP aswTdi cmdGuard Fips sptd sp_rsdrv2
Error - 18.10.2010 13:00:36 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 18.10.2010 13:00:42 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 18.10.2010 13:15:15 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
[ TuneUp Events ]
Error - 22.5.2010 8:19:04 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-05-22 14:19:04', '\device\harddiskvolume1\documents
and settings\all users.windows\data aplikací\malwarebytes\malwarebytes' anti-malware\mbam-setup.exe','2884',0)
Error - 5.6.2010 21:33:08 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "s": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-06-06 03:33:08', '\device\harddiskvolume1\downloads\danys_virtual__drum\dany's
virtual drum.exe','1392',0)
Error - 5.6.2010 21:35:58 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "s": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-06-06 03:35:58', '\device\harddiskvolume1\downloads\danys_virtual__drum\dany's
virtual drum.exe','160',0)
Error - 6.6.2010 12:56:11 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-06-06 18:56:11', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','300',0)
Error - 12.6.2010 7:03:24 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-06-12 13:03:24', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','3796',0)
Error - 14.6.2010 19:05:39 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-06-15 01:05:39', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','2896',0)
Error - 19.9.2010 6:09:29 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-09-19 12:09:29', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','2400',0)
Error - 19.9.2010 6:34:39 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-09-19 12:34:39', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','2684',0)
Error - 13.10.2010 12:13:42 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-10-13 18:13:42', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','3260',0)
Error - 13.10.2010 14:22:38 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-10-13 20:22:38', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','4088',0)
< End of report >
OTL Extras logfile created on: 18.10.2010 21:03:39 - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Documents and Settings\noskin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 78,13 Gb Total Space | 4,59 Gb Free Space | 5,87% Space Free | Partition Type: NTFS
Drive E: | 219,96 Gb Total Space | 7,85 Gb Free Space | 3,57% Space Free | Partition Type: NTFS
Drive G: | 15,04 Gb Total Space | 0,02 Gb Free Space | 0,11% Space Free | Partition Type: FAT32
Drive H: | 3,72 Gb Total Space | 0,42 Gb Free Space | 11,36% Space Free | Partition Type: FAT32
Computer Name: NOSKINS | User Name: noskin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
https [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"57180:TCP" = 57180:TCP:*:Enabled:Pando Media Booster
"57180:UDP" = 57180:UDP:*:Enabled:Pando Media Booster
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.1\ICQ.exe" = C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1 -- (ICQ, LLC.)
"C:\Program Files\ICQ7.1\aolload.exe" = C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Opera 10 Beta\opera.exe" = C:\Program Files\Opera 10 Beta\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe" = C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- (Activision Blizzard, Inc.)
"C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe" = C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- (Activision Blizzard, Inc.)
"C:\Program Files\Steam\steamapps\common\zero gear\ZeroGear.bat" = C:\Program Files\Steam\steamapps\common\zero gear\ZeroGear.bat:*:Enabled:Zero Gear Demo -- ()
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Xfire\Xfire.exe" = C:\Program Files\Xfire\Xfire.exe:*:Enabled:Xfire -- (Xfire Inc.)
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe" = C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator -- (Crawler.com)
"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"E:\_hry\BF2\GAME\BFBC2Updater.exe" = E:\_hry\BF2\GAME\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2 -- (EA Digital Illusions CE AB)
"C:\Program Files\ICQ7.1\ICQ.exe" = C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1 -- (ICQ, LLC.)
"C:\Program Files\ICQ7.1\aolload.exe" = C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
"E:\_hry\silent hunter\sh5.exe" = E:\_hry\silent hunter\sh5.exe:*:Enabled:Silent Hunter 5 -- (Ubisoft)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{064DC64E-7A2F-4FDF-B598-E3C0747BBB9C}" = Call of Duty(R) - World at War(TM) 1.6 Patch
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{19DC9559-9C20-4A46-A67D-7ECBA52A2788}" = Nokia PC Suite
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 19
"{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty(R) - World at War(TM) 1.2 Patch
"{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}" = Microsoft Games for Windows - LIVE
"{2DD0BBBF-E4BB-9396-9A0F-8CA87CD5B7BF}" = Catalyst Control Center Graphics Full New
"{33BC9D7E-E790-495E-A4EA-CFB160C17A91}" = Logitech Gaming Software 5.08
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{377B2121-65F6-4C5F-998F-5284DEF41F3E}" = COMODO livePCsupport
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm
"{46552BC3-52B6-404c-9B42-CE536AB719FD}_is1" = Ashampoo Home Designer1.0.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{55A29068-F2CE-456C-9148-C869879E2357}" = TuneUp Utilities 2009
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{5DE71D48-01EB-4BF2-A643-50FE6C9B6AC9}" = OpenOffice.org 3.2
"{66D475AE-F18B-43A0-8BAF-61AF4403E339}" = Webcam 1200
"{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6D72B6BC-6F12-ED07-E763-B4B92D2B0214}" = Catalyst Control Center Graphics Previews Common
"{6E0352EE-6F0D-4FBC-B1B8-4FF032C78BE0}" = PC Connectivity Solution
"{71BFC818-0CED-42D6-9C87-5142918957EE}" = ICQ7.1
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{750C87B8-AF19-4C3C-B791-50D9C83AE572}" = Call of Duty(R) - World at War(TM) 1.7 Patch
"{79DA9485-3F71-6E1E-DB22-AC859FC9C3ED}" = CCC Help English
"{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1" = Need For Speed™ World
"{82231D5B-EE8C-815D-DD04-BC42521A77DB}" = Catalyst Control Center Graphics Full Existing
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{87CC8013-56D1-43E1-A0A5-AD406B4EBA95}" = Opera 10.63
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{8EA485CA-2FC5-EEBD-D7FF-4EAD46AA099B}" = ccc-core-preinstall
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90A40405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{92C7D009-A464-4948-A980-7A3E28CB2F49}_is1" = Richard Burns Rally
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}" = iTunes
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC61C594-5F86-4BE9-ABAF-763C6A8E2302}" = Silent Hunter 5
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.0
"{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty(R) - World at War(TM) 1.1 Patch
"{B19F9155-9337-4807-B5EF-ED471DDB2CCE}" = hph_software_req
"{B3276CB1-20B6-4AF9-AAEC-E72C83816495}" = IKEA Home Planner
"{B63B5FC6-B005-5B6D-7F04-3950656634B9}" = Catalyst Control Center InstallProxy
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C256573D-B3CE-4256-BEA2-217C8B211DD5}" = USB drive letter manager
"{C3DC2DF5-EFAC-4055-9010-31F7C545DD9E}" = Call of Duty(R) - World at War(TM) 1.5 Patch
"{C50EF365-2898-489A-B6C7-30DAA466E9A2}" = Nokia Connectivity Cable Driver
"{CC6B1BB4-4E06-4A5B-A166-B371B551324B}" = COMODO Internet Security
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D071EFC1-A719-8FA1-6F20-CDD046AF8F66}" = ccc-utility
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D1AE6D4D-C37A-487d-83D8-C333125B2459}" = HP Photosmart and Deskjet 7.0 Software (csy)
"{D5FD95DA-0B0F-9278-5102-056262A3E889}" = Catalyst Control Center Core Implementation
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{DA2A851C-6E2B-4677-9DA5-5ED9A3B227E2}" = Quake Live Internet Explorer Plugin
"{DB80C34B-EA40-6084-5BED-B5E36A2F94CC}" = Catalyst Control Center Localization All
"{DFB4665A-6CC3-EE16-9FF5-92655EDD9296}" = Catalyst Control Center Graphics Light
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F4D76FAE-89E8-8109-9AF0-3B16AF6DDAAC}" = Catalyst Control Center HydraVision Full
"{F9835182-794B-4F24-902A-E2CA9D43380F}" = NVIDIA PhysX
"{FACB8BA0-8D6A-1461-3C9D-1DFAFDDBACBB}" = ccc-core-static
"05B59228C7E1C21DFBE89260F879BD95880548D8" = Balíček ovladače systému Windows - Nokia Modem (10/05/2009 4.2)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"8CDCFB95BB84DD9C0F88F22266A0CA86035E55BA" = Balíček ovladače systému Windows - Nokia Modem (06/01/2009 7.01.0.4)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All2WAV Recorder_is1" = All2WAV Recorder 3.20
"AutoHotkey" = AutoHotkey 1.0.48.05
"avast5" = avast! Free Antivirus
"CCleaner" = CCleaner
"CesarFTP 0.99g_is1" = CesarFTP 0.99g
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"ESET Online Scanner" = ESET Online Scanner v3
"Fast AVI to GIF Converter" = Fast AVI to GIF Converter
"FeedReader_is1" = FeedReader
"FerrariVR" = Ferrari Virtual Race (remove only)
"FormatFactory" = FormatFactory 2.30
"Glary Utilities_is1" = Glary Utilities 2.21.0.863
"HijackThis" = HijackThis 2.0.2
"HP Imaging Device Functions" = HP Imaging Device Functions 7.0
"ie8" = Windows Internet Explorer 8
"InstallShield_{064DC64E-7A2F-4FDF-B598-E3C0747BBB9C}" = Call of Duty(R) - World at War(TM) 1.6 Patch
"InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty(R) - World at War(TM) 1.2 Patch
"InstallShield_{750C87B8-AF19-4C3C-B791-50D9C83AE572}" = Call of Duty(R) - World at War(TM) 1.7 Patch
"InstallShield_{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"InstallShield_{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty(R) - World at War(TM) 1.1 Patch
"InstallShield_{C3DC2DF5-EFAC-4055-9010-31F7C545DD9E}" = Call of Duty(R) - World at War(TM) 1.5 Patch
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"Jewel Quest Heritage 1.00" = Jewel Quest Heritage 1.00
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MAXONB6EC381C" = CINEMA 4D 11.514
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.9)" = Mozilla Firefox (3.5.9)
"Nokia PC Suite" = Nokia PC Suite
"NVIDIA Drivers" = NVIDIA Drivers
"PDF Editor 3" = PDF Editor 3
"PunkBusterSvc" = PunkBuster Services
"RBRHradek" = RBR Hradek (remove only)
"RBRPribram1" = RBR Pribram (remove only)
"RBRPribram2" = RBR Pribram 2 (remove only)
"RBRPTDRallySprint11" = RBR PTD RallySprint 1.1 (remove only)
"RBRReversedTracks" = RBR Reversed Tracks (remove only)
"RBRSchool2" = RBR School stage 2 (remove only)
"RBRSosnova" = RBR Sumburk (remove only)
"RBRTM" = RBR Tournament plugin (remove only)
"Sniper Ghost Warrior_is1" = Sniper Ghost Warrior (1.0)
"Spyware Terminator_is1" = Spyware Terminator
"Super Motocross_is1" = Super Motocross
"Traktor Simulátor_is1" = Traktor Simulátor
"uTorrent" = µTorrent
"VertrigoServ" = VertrigoServ (remove only)
"VLC media player" = VLC media player 1.0.5
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"WinGimp-2.0_is1" = GIMP 2.6.8
"WinRAR archiver" = WinRAR
"Wudf01007" = Microsoft User-Mode Driver Framework Feature Pack 1.7
"Xfire" = Xfire (remove only)
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent DNA" = DNA
"Google Chrome" = Google Chrome
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 17.4.2010 6:12:23 | Computer Name = NOSKINS | Source = Application Error | ID = 1000
Description = Chybující aplikace ati2evxx.exe, verze 6.14.10.4234, chybující modul
uxtheme.dll, verze 6.0.2900.5512, adresa chyby 0x00003142.
Error - 18.4.2010 17:17:56 | Computer Name = NOSKINS | Source = Microsoft Office 11 | ID = 2001
Description =
Error - 21.4.2010 15:31:46 | Computer Name = NOSKINS | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.
Error - 21.4.2010 15:31:46 | Computer Name = NOSKINS | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt>
se nezdařilo. Chyba: Zvolený server nemůže provést požadovanou operaci.
[ System Events ]
Error - 18.10.2010 12:17:18 | Computer Name = NOSKINS | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .
Error - 18.10.2010 12:18:25 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 18.10.2010 12:18:43 | Computer Name = NOSKINS | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Aavmker4 AmdK8 aswSP aswTdi cmdGuard Fips sptd sp_rsdrv2
Error - 18.10.2010 12:19:46 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 18.10.2010 12:34:37 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 18.10.2010 12:57:55 | Computer Name = NOSKINS | Source = sptd | ID = 262148
Description = Ovladač zjistil interní chybu ve vlastní struktuře dat u .
Error - 18.10.2010 12:59:20 | Computer Name = NOSKINS | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Aavmker4 AmdK8 aswSP aswTdi cmdGuard Fips sptd sp_rsdrv2
Error - 18.10.2010 13:00:36 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 18.10.2010 13:00:42 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 18.10.2010 13:15:15 | Computer Name = NOSKINS | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
[ TuneUp Events ]
Error - 22.5.2010 8:19:04 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-05-22 14:19:04', '\device\harddiskvolume1\documents
and settings\all users.windows\data aplikací\malwarebytes\malwarebytes' anti-malware\mbam-setup.exe','2884',0)
Error - 5.6.2010 21:33:08 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "s": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-06-06 03:33:08', '\device\harddiskvolume1\downloads\danys_virtual__drum\dany's
virtual drum.exe','1392',0)
Error - 5.6.2010 21:35:58 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "s": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-06-06 03:35:58', '\device\harddiskvolume1\downloads\danys_virtual__drum\dany's
virtual drum.exe','160',0)
Error - 6.6.2010 12:56:11 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-06-06 18:56:11', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','300',0)
Error - 12.6.2010 7:03:24 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-06-12 13:03:24', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','3796',0)
Error - 14.6.2010 19:05:39 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-06-15 01:05:39', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','2896',0)
Error - 19.9.2010 6:09:29 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-09-19 12:09:29', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','2400',0)
Error - 19.9.2010 6:34:39 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-09-19 12:34:39', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','2684',0)
Error - 13.10.2010 12:13:42 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-10-13 18:13:42', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','3260',0)
Error - 13.10.2010 14:22:38 | Computer Name = NOSKINS | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "anti": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-10-13 20:22:38', '\device\harddiskvolume1\program
files\malwarebytes' anti-malware\mbam.exe','4088',0)
< End of report >
Re: Prosím o kontrolu logu
OTL.txt :
OTL logfile created on: 18.10.2010 21:03:39 - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Documents and Settings\noskin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 78,13 Gb Total Space | 4,59 Gb Free Space | 5,87% Space Free | Partition Type: NTFS
Drive E: | 219,96 Gb Total Space | 7,85 Gb Free Space | 3,57% Space Free | Partition Type: NTFS
Drive G: | 15,04 Gb Total Space | 0,02 Gb Free Space | 0,11% Space Free | Partition Type: FAT32
Drive H: | 3,72 Gb Total Space | 0,42 Gb Free Space | 11,36% Space Free | Partition Type: FAT32
Computer Name: NOSKINS | User Name: noskin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2010.10.18 21:02:25 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTL.exe
PRC - [2010.10.18 16:22:37 | 002,500,552 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
PRC - [2010.10.18 16:22:30 | 001,901,056 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2010.10.14 21:11:23 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Documents and Settings\noskin\Local Settings\Data aplikací\Google\Update\1.2.183.39\GoogleCrashHandler.exe
PRC - [2010.10.08 14:00:10 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010.07.09 21:04:34 | 003,493,776 | ---- | M] (Xfire Inc.) -- C:\Program Files\Xfire\Xfire.exe
PRC - [2010.04.28 16:22:20 | 000,604,488 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\TUProgSt.exe
PRC - [2010.02.12 20:23:32 | 000,148,744 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
PRC - [2009.12.13 20:31:46 | 000,226,816 | ---- | M] (Uwe Sieber - www.uwe-sieber.de) -- c:\Program Files\USBDLM\USBDLM.exe
PRC - [2009.03.29 12:30:38 | 002,058,240 | ---- | M] () -- C:\Program Files\FeedReader30\feedreader.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.11.03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\PixArt\Pac207\Monitor.exe
PRC - [2006.03.03 22:03:10 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
========== Modules (SafeList) ==========
MOD - [2010.10.18 21:02:25 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTL.exe
MOD - [2010.10.18 16:23:34 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\system32\guard32.dll
MOD - [2010.08.23 18:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010.07.09 21:04:44 | 000,970,640 | ---- | M] (Xfire Inc.) -- C:\Program Files\Xfire\xfire_toucan_43094.dll
MOD - [2008.04.14 08:52:08 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll
MOD - [2008.04.14 08:49:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2003.02.21 00:00:00 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr71.dll
========== Win32 Services (SafeList) ==========
SRV - [2010.10.18 16:22:30 | 001,901,056 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010.04.28 16:22:20 | 000,604,488 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2010.04.28 16:22:19 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010.03.09 16:59:59 | 000,488,960 | ---- | M] (Crawler.com) [Disabled | Stopped] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2010.02.12 20:23:32 | 000,148,744 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe -- (CLPSLS)
SRV - [2009.12.13 20:31:46 | 000,226,816 | ---- | M] (Uwe Sieber - www.uwe-sieber.de) [Auto | Running] -- c:\Program Files\USBDLM\USBDLM.exe -- (USBDLM)
SRV - [2009.11.16 12:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2009.10.27 10:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006.03.03 22:03:10 | 000,069,632 | ---- | M] (HP) [Unknown | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\ADMINI~1.000\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2010.10.18 16:23:33 | 000,239,240 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard)
DRV - [2010.10.18 16:23:33 | 000,091,560 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\inspect.sys -- (Inspect)
DRV - [2010.10.18 16:23:33 | 000,025,240 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2010.09.07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010.09.07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010.09.07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010.09.07 16:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010.09.07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.09.07 16:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010.03.09 16:59:59 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2010.03.03 06:21:08 | 004,630,016 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010.01.11 11:04:26 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.10.06 12:52:50 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2009.10.06 12:52:34 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2009.10.06 12:52:34 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009.10.06 12:52:34 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2009.09.11 12:48:04 | 000,066,056 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2009.09.11 12:47:54 | 000,014,984 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2009.09.11 12:47:42 | 000,031,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmHidLo.sys -- (WmHidLo)
DRV - [2009.09.11 12:47:32 | 000,035,592 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2009.09.11 12:47:22 | 000,022,792 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2008.08.26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.08.08 18:11:00 | 000,100,736 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\nvatabus.sys -- (nvatabus)
DRV - [2008.04.14 00:26:50 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usb8023.sys -- (USB_RNDIS)
DRV - [2008.04.14 00:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2008.04.13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007.11.21 01:09:22 | 000,104,320 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2007.06.29 16:32:08 | 000,611,584 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PFC027.SYS -- (PAC207)
DRV - [2007.06.29 14:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2007.06.15 16:47:26 | 001,127,936 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P17.sys -- (P17)
DRV - [2007.05.18 11:01:50 | 000,304,640 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2007.05.14 10:12:28 | 003,526,464 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtHDMI.sys -- (RTHDMIAzAudService)
DRV - [2006.06.19 05:37:34 | 000,036,864 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2006.03.17 18:18:58 | 000,392,960 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2006.02.26 17:02:49 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2005.01.11 00:15:30 | 000,106,496 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2005.01.11 00:15:24 | 000,138,752 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2002.10.15 22:41:06 | 000,102,220 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sonypvs1.sys -- (sonypvs1)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.gooogle.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 85 BA F6 71 29 B2 CA 01 [binary data]
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.ask.com/?o=14597&l=dis"
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.3.3.123
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.2.1
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6778
FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?clien ... n_dtid=&q="
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Components: c:\Program Files\Mozilla Firefox\components [2010.04.25 12:37:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Plugins: c:\Program Files\Mozilla Firefox\plugins [2010.10.13 17:58:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
[2010.03.09 22:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Extensions
[2010.01.02 15:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\extensions
[2010.01.02 15:08:57 | 000,000,000 | ---D | M] (XfireXO Toolbar) -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2010.09.18 20:56:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions
[2010.04.14 20:39:19 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.08.22 11:22:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com
[2010.10.18 17:42:42 | 000,002,382 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\askcom.xml
[2010.08.22 11:33:03 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\icqplugin-1.xml
[2010.04.14 20:39:23 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\icqplugin.xml
[2010.10.14 11:43:13 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.05.27 18:31:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.10.14 11:43:14 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010.04.23 21:33:48 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\personas@christopher.beard
[2009.03.21 10:36:29 | 000,239,432 | ---- | M] (Pando Networks) -- C:\Program Files\Mozilla Firefox\plugins\npPandoWebInst.dll
O1 HOSTS File: ([2010.10.18 19:46:50 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (FlashGetBHO) - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\noskin\Data aplikací\FlashGetBHO\FlashGetBHO3.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [Monitor] C:\WINDOWS\PixArt\Pac207\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [P17Helper] C:\WINDOWS\System32\P17.dll ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O15 - HKCU\..Trusted Domains: kuaiche.com ([software] http in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/2.9 ... ontrol.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.31.30.139 172.31.30.138
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.12.25 19:21:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009.04.15 11:00:54 | 000,177,835 | ---- | M] () - H:\AutoCzech aneb automatická detekce kódování » La Trine.mht -- [ FAT32 ]
O32 - AutoRun File - [2009.04.15 11:00:38 | 000,008,477 | ---- | M] () - H:\autoczech_phps.mht -- [ FAT32 ]
O33 - MountPoints2\{00a454e4-4ef7-11df-834c-001f1f0dbe5c}\Shell - "" = AutoRun
O33 - MountPoints2\{86f8113b-15b7-11dc-ac16-0018f3f2faf0}\Shell\AutoRun\command - "" = G:\setupSNK.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.XFR1 - C:\WINDOWS\System32\xfcodec.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (54901175375364096)
========== Files/Folders - Created Within 7 Days ==========
[2010.10.18 21:02:25 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTL.exe
[2010.10.18 19:46:31 | 001,445,888 | ---- | C] (Option^Explicit Software Solutions) -- C:\Documents and Settings\noskin\Plocha\winsockxpfix.exe
[2010.10.18 19:12:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010.10.18 18:26:03 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.10.18 18:21:35 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010.10.18 18:21:35 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010.10.18 18:21:35 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010.10.18 18:21:35 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010.10.18 18:21:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.10.18 18:20:23 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010.10.18 16:54:50 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\noskin\Recent
[2010.10.18 16:12:09 | 000,000,000 | ---D | C] -- C:\_OTM
[2010.10.18 16:07:59 | 000,519,680 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTM.exe
[2010.10.14 20:17:29 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\AMCap.exe
[2010.10.14 16:51:10 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr70.dll
[2010.10.14 16:51:10 | 000,000,000 | ---D | C] -- C:\Program Files\All2WAV Recorder
[2010.10.14 11:45:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\noskin\Data aplikací\skypePM
[2010.10.14 11:43:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\noskin\Data aplikací\Skype
[2010.10.14 11:42:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Skype
[2010.10.12 19:26:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\noskin\Data aplikací\U3
========== Files - Modified Within 7 Days ==========
[2010.10.18 21:02:25 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTL.exe
[2010.10.18 21:00:04 | 000,000,488 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2010.10.18 19:50:24 | 000,000,310 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2010.10.18 19:48:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.10.18 19:47:57 | 2145,898,496 | -HS- | M] () -- C:\hiberfil.sys
[2010.10.18 19:46:50 | 000,000,736 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.10.18 19:46:44 | 001,445,888 | ---- | M] (Option^Explicit Software Solutions) -- C:\Documents and Settings\noskin\Plocha\winsockxpfix.exe
[2010.10.18 18:32:34 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.bak
[2010.10.18 18:26:06 | 000,000,484 | RHS- | M] () -- C:\boot.ini
[2010.10.18 18:13:50 | 000,002,547 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2010.10.18 18:04:11 | 003,879,784 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\ComboFix.exe
[2010.10.18 16:40:32 | 000,000,087 | ---- | M] () -- C:\Documents and Settings\noskin\intlname.ols
[2010.10.18 16:23:34 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\System32\guard32.dll
[2010.10.18 16:23:33 | 000,239,240 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdGuard.sys
[2010.10.18 16:23:33 | 000,091,560 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\inspect.sys
[2010.10.18 16:23:33 | 000,025,240 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdhlp.sys
[2010.10.18 16:23:33 | 000,015,592 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmderd.sys
[2010.10.18 16:12:13 | 000,435,396 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.10.18 16:12:13 | 000,432,334 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.10.18 16:12:13 | 000,079,266 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.10.18 16:12:13 | 000,068,292 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.10.18 16:08:00 | 000,519,680 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTM.exe
[2010.10.18 16:04:03 | 000,031,232 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\Bio Style.doc
[2010.10.18 09:38:41 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\Skype (2).lnk
[2010.10.16 22:18:11 | 000,188,984 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\foto trida2.JPG
[2010.10.16 22:16:42 | 000,198,875 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\foto trida1.JPG
[2010.10.16 16:51:47 | 000,921,632 | ---- | M] () -- C:\PA207.DAT
[2010.10.16 13:28:13 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.10.15 11:29:17 | 000,026,016 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\ohl.živnost a údaje.pdf
[2010.10.15 11:28:00 | 000,038,601 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\ohláš.živnosti.pdf
[2010.10.15 11:18:43 | 000,031,874 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\výpis trestů.pdf
[2010.10.15 09:27:05 | 000,234,368 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.10.14 20:17:29 | 000,000,325 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Amcap.lnk
[2010.10.14 16:57:51 | 031,625,727 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\zvukovka.zip
[2010.10.14 16:51:11 | 000,000,669 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\All2WAV Recorder.lnk
[2010.10.14 11:45:03 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010.10.14 11:43:02 | 000,001,896 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Skype.lnk
[2010.10.14 11:35:52 | 020,165,034 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\skype-ubuntu-intrepid_2.1.0.81-1_i386.deb
[2010.10.13 22:17:44 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\Dobrý den.doc
[2010.10.13 18:24:45 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\RSIT.exe
[2010.10.13 17:58:13 | 000,001,735 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Adobe Reader 9.lnk
[2010.10.12 19:37:56 | 000,000,598 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Opera.lnk
[2010.10.12 18:00:18 | 000,099,840 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\Zadani prikladu (2).doc
[2010.10.12 17:59:56 | 000,243,712 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\Zadani prikladu (1).doc
========== Files Created - No Company Name ==========
[2010.10.18 19:15:59 | 2145,898,496 | -HS- | C] () -- C:\hiberfil.sys
[2010.10.18 18:26:06 | 000,000,439 | ---- | C] () -- C:\Boot.bak
[2010.10.18 18:21:35 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010.10.18 18:21:35 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010.10.18 18:21:35 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010.10.18 18:21:35 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010.10.18 18:21:35 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010.10.18 18:03:51 | 003,879,784 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\ComboFix.exe
[2010.10.18 11:04:08 | 000,031,232 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\Bio Style.doc
[2010.10.16 18:39:56 | 000,188,984 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\foto trida2.JPG
[2010.10.16 18:39:45 | 000,198,875 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\foto trida1.JPG
[2010.10.15 11:29:17 | 000,026,016 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\ohl.živnost a údaje.pdf
[2010.10.15 11:28:00 | 000,038,601 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\ohláš.živnosti.pdf
[2010.10.15 11:18:43 | 000,031,874 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\výpis trestů.pdf
[2010.10.14 20:29:39 | 000,002,283 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\Skype (2).lnk
[2010.10.14 20:17:29 | 000,000,325 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Amcap.lnk
[2010.10.14 16:56:57 | 031,625,727 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\zvukovka.zip
[2010.10.14 16:51:11 | 000,000,669 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\All2WAV Recorder.lnk
[2010.10.14 11:45:03 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010.10.14 11:43:02 | 000,001,896 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Skype.lnk
[2010.10.14 11:35:39 | 020,165,034 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\skype-ubuntu-intrepid_2.1.0.81-1_i386.deb
[2010.10.13 22:17:43 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\Dobrý den.doc
[2010.10.13 18:24:45 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\RSIT.exe
[2010.10.13 17:58:13 | 000,001,735 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Adobe Reader 9.lnk
[2010.10.12 17:59:46 | 000,099,840 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\Zadani prikladu (2).doc
[2010.07.09 21:04:40 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2010.06.13 11:51:55 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2010.04.25 12:11:36 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2010.03.09 16:59:59 | 000,142,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2010.03.04 13:22:06 | 000,000,240 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2010.02.21 14:22:59 | 000,010,240 | ---- | C] () -- C:\Documents and Settings\noskin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.01.11 10:56:21 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.01.04 18:51:54 | 000,000,254 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\hpzinstall.log
[2009.12.25 23:09:13 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.12.25 22:49:23 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009.12.25 22:31:36 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\noskin\Data aplikací\PnkBstrK.sys
[2009.12.25 22:31:36 | 000,137,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.12.25 22:13:28 | 000,002,547 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2009.12.25 19:42:56 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\P17.dll
[2009.12.25 19:42:56 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\P17CPI.dll
[2009.12.25 19:42:25 | 000,005,663 | ---- | C] () -- C:\WINDOWS\System32\Ludap17.ini
[2009.12.25 19:42:25 | 000,000,054 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2009.12.25 19:38:05 | 000,005,810 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2009.11.06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2009.05.10 17:09:30 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2009.04.14 17:57:49 | 000,000,566 | ---- | C] () -- C:\WINDOWS\System32\SP207.INI
[2009.03.30 23:48:02 | 000,189,984 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2008.03.13 18:42:45 | 000,000,604 | -H-- | C] () -- C:\Program Files\STLL Notifier
[2005.10.14 12:56:50 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 12:56:50 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 12:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 12:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005.10.14 11:56:48 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\MMSwitch.dll
[2003.04.09 16:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
========== LOP Check ==========
[2010.03.09 14:28:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Alwil Software
[2010.06.08 14:15:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Codemasters
[2010.01.11 10:55:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\DAEMON Tools Lite
[2010.06.04 19:51:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Electronic Arts
[2009.12.25 22:32:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ESET
[2010.04.11 03:40:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ICQ
[2010.03.23 21:10:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\id Software
[2010.01.28 21:13:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Installations
[2010.01.28 21:30:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\PC Suite
[2010.06.15 12:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spyware Terminator
[2010.04.28 21:56:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Synetic
[2010.03.18 03:04:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TrackMania
[2010.03.09 14:22:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TuneUp Software
[2010.01.27 22:32:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TuneUpMedia
[2010.01.30 16:06:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\WOP
[2010.04.28 16:21:03 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
[2010.01.27 22:47:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010.02.21 11:55:53 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010.10.18 21:00:04 | 000,000,488 | ---- | M] () -- C:\WINDOWS\Tasks\1-Click Maintenance.job
[2010.10.18 19:50:24 | 000,000,310 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 08:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized -- [2010.09.02 15:15:04 | 013,351,304 | R--- | M] (Skype Technologies S.A.)
"Google Update" = "C:\Documents and Settings\noskin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2010.02.09 20:55:55 | 000,135,664 | ---- | M] (Google Inc.)
< c:\windows\*.* /U >
< %SYSTEMDRIVE%\*.exe >
[2008.04.08 12:46:45 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\devcon.exe
[2008.05.02 11:11:10 | 000,364,721 | ---- | M] () -- C:\DPsFnshr.exe
[2008.05.02 11:11:14 | 000,282,725 | ---- | M] () -- C:\DSPdsblr.exe
[2009.01.14 15:14:38 | 000,376,112 | ---- | M] (techPowerUp (www.techpowerup.com)) -- C:\GPU-Z.0.3.1.exe
[2008.04.08 12:46:45 | 000,020,992 | ---- | M] () -- C:\makePNF.exe
[2008.04.08 12:46:45 | 000,137,728 | ---- | M] () -- C:\mute.exe
[2008.05.02 11:11:17 | 000,235,131 | ---- | M] () -- C:\pmtimer.exe
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.09.26 11:26:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Adobe
[2010.01.08 00:52:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\AdobeUM
[2010.02.15 19:33:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Apple Computer
[2009.12.26 18:17:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\ATI
[2010.01.11 11:07:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\DAEMON Tools Lite
[2010.06.06 20:03:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\DNA
[2010.09.26 13:09:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Downloaded Installations
[2010.07.10 18:02:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\dvdcss
[2009.12.25 22:35:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\ESET
[2010.02.07 02:25:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Feedreader
[2010.04.18 17:06:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\FlashGet
[2010.04.23 18:40:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\GARMIN
[2010.04.28 16:51:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\GlarySoft
[2010.06.18 17:20:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\gtk-2.0
[2010.02.09 20:49:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Help
[2010.07.03 22:16:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\ICQ
[2010.03.23 21:11:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\id Software
[2009.12.25 22:09:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Identities
[2010.01.04 19:26:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Image Zone Express
[2010.01.15 19:58:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\InstallShield
[2009.12.25 22:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Macromedia
[2010.02.14 13:46:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Malwarebytes
[2010.04.02 18:18:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\MAXON
[2010.04.12 23:11:00 | 000,000,000 | --SD | M] -- C:\Documents and Settings\noskin\Data aplikací\Microsoft
[2010.03.09 22:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla
[2010.06.04 20:31:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Need for Speed World
[2010.06.04 20:31:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Need for Speed World Online
[2010.01.28 21:30:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Nokia
[2010.05.10 22:25:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\OpenOffice.org
[2009.12.25 22:29:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Opera
[2010.01.28 21:30:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\PC Suite
[2010.04.10 10:35:52 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\noskin\Data aplikací\SecuROM
[2010.10.18 20:48:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Skype
[2010.10.18 17:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\skypePM
[2010.09.27 16:24:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Spyware Terminator
[2010.01.19 23:50:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Sun
[2010.01.20 19:05:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Thinstall
[2010.01.17 03:14:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\TuneUp Software
[2010.01.27 22:32:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\TuneUpMedia
[2010.10.14 21:22:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\U3
[2010.09.26 11:04:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\uTorrent
[2010.09.17 15:49:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\vlc
[2010.10.18 18:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Xfire
< %APPDATA%\*.exe /s >
[2010.04.12 23:11:00 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Microsoft\Installer\{B63B5FC6-B005-5B6D-7F04-3950656634B9}\ARPPRODUCTICON.exe
[2010.10.18 17:42:52 | 003,056,008 | ---- | M] (Ask) -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
[2007.10.23 09:27:20 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\U3\temp\cleanup.exe
[2008.05.02 10:41:48 | 003,493,888 | -H-- | M] (SanDisk Corporation) -- C:\Documents and Settings\noskin\Data aplikací\U3\temp\Launchpad Removal.exe
< MD5 for: AGP440.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
< MD5 for: ATAPI.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0071\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\dllcache\autochk.exe
< MD5 for: CDROM.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\dllcache\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\system32\dllcache\explorer.exe
< MD5 for: HAL.DLL >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 00:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\hal.dll
< MD5 for: CHANGER.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
< MD5 for: ISAPNP.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 07:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\dllcache\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: NVATA.SYS >
[2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\Win2K\sata_ide\nvata.sys
[2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\WinXP\sata_ide\nvata.sys
[2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\WINDOWS\system32\drivers\nvata.sys
< MD5 for: NVATABUS.SYS >
[2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\Win2K\sataraid\nvatabus.sys
[2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\WinXP\sataraid\nvatabus.sys
[2008.08.08 18:11:00 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\WINDOWS\system32\drivers\nvatabus.sys
< MD5 for: NVGTS.SYS >
[2008.11.12 16:58:38 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=75E2E77C5497F34E60491D27BF03F1CB -- C:\NVIDIA\nForceWinXPInt\15.25\IDE\WinXP\sata_ide\nvgts.sys
[2008.11.12 16:59:06 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=8EB82606FCD8C5D039ADA33BD46FE7F8 -- C:\NVIDIA\nForceWinXPInt\15.25\IDE\WinXP\sataraid\nvgts.sys
< MD5 for: NVRAID.SYS >
[2006.04.24 18:52:36 | 000,082,944 | ---- | M] (NVIDIA Corporation) MD5=B65CE56C36F573113FF2F6D0F07B7563 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\Win2K\sataraid\nvraid.sys
[2006.04.24 18:52:36 | 000,082,944 | ---- | M] (NVIDIA Corporation) MD5=B65CE56C36F573113FF2F6D0F07B7563 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\WinXP\sataraid\nvraid.sys
< MD5 for: NVRD32.SYS >
[2008.11.12 16:59:08 | 000,133,152 | ---- | M] (NVIDIA Corporation) MD5=6B1B4E25277A99A6B515CF124D6060E0 -- C:\NVIDIA\nForceWinXPInt\15.25\IDE\WinXP\sataraid\nvrd32.sys
< MD5 for: SCECLI.DLL >
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\dllcache\smss.exe
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\dllcache\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2010.09.10 07:52:30 | 000,184,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\iepeers.dll
[2010.09.10 07:52:31 | 000,602,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msfeeds.dll
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.01.11 11:04:26 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2009.12.25 22:31:52 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2009.12.25 22:31:52 | 001,093,632 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2009.12.25 22:31:51 | 000,516,096 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2010.09.10 07:52:30 | 000,184,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\iepeers.dll
[2010.09.10 07:52:31 | 000,602,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msfeeds.dll
< %systemroot%\system32\drivers\*.sys /3 >
[2010.10.18 16:23:33 | 000,015,592 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\cmderd.sys
[2010.10.18 16:23:33 | 000,239,240 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\cmdGuard.sys
[2010.10.18 16:23:33 | 000,025,240 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\cmdhlp.sys
[2010.10.18 16:23:33 | 000,091,560 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\inspect.sys
< %systemroot%\system32\*.* /3 >
[2010.10.18 16:23:34 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\system32\guard32.dll
[2010.10.18 16:12:13 | 000,079,266 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2010.10.18 16:12:13 | 000,068,292 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2010.10.18 16:12:13 | 000,432,334 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2010.10.18 16:12:13 | 000,435,396 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2010.10.18 16:12:13 | 001,028,848 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2010.10.16 13:28:13 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
< End of report >
OTL logfile created on: 18.10.2010 21:03:39 - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Documents and Settings\noskin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 78,13 Gb Total Space | 4,59 Gb Free Space | 5,87% Space Free | Partition Type: NTFS
Drive E: | 219,96 Gb Total Space | 7,85 Gb Free Space | 3,57% Space Free | Partition Type: NTFS
Drive G: | 15,04 Gb Total Space | 0,02 Gb Free Space | 0,11% Space Free | Partition Type: FAT32
Drive H: | 3,72 Gb Total Space | 0,42 Gb Free Space | 11,36% Space Free | Partition Type: FAT32
Computer Name: NOSKINS | User Name: noskin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2010.10.18 21:02:25 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTL.exe
PRC - [2010.10.18 16:22:37 | 002,500,552 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
PRC - [2010.10.18 16:22:30 | 001,901,056 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2010.10.14 21:11:23 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Documents and Settings\noskin\Local Settings\Data aplikací\Google\Update\1.2.183.39\GoogleCrashHandler.exe
PRC - [2010.10.08 14:00:10 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010.07.09 21:04:34 | 003,493,776 | ---- | M] (Xfire Inc.) -- C:\Program Files\Xfire\Xfire.exe
PRC - [2010.04.28 16:22:20 | 000,604,488 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\TUProgSt.exe
PRC - [2010.02.12 20:23:32 | 000,148,744 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
PRC - [2009.12.13 20:31:46 | 000,226,816 | ---- | M] (Uwe Sieber - www.uwe-sieber.de) -- c:\Program Files\USBDLM\USBDLM.exe
PRC - [2009.03.29 12:30:38 | 002,058,240 | ---- | M] () -- C:\Program Files\FeedReader30\feedreader.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.11.03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\PixArt\Pac207\Monitor.exe
PRC - [2006.03.03 22:03:10 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
========== Modules (SafeList) ==========
MOD - [2010.10.18 21:02:25 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTL.exe
MOD - [2010.10.18 16:23:34 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\system32\guard32.dll
MOD - [2010.08.23 18:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010.07.09 21:04:44 | 000,970,640 | ---- | M] (Xfire Inc.) -- C:\Program Files\Xfire\xfire_toucan_43094.dll
MOD - [2008.04.14 08:52:08 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll
MOD - [2008.04.14 08:49:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2003.02.21 00:00:00 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr71.dll
========== Win32 Services (SafeList) ==========
SRV - [2010.10.18 16:22:30 | 001,901,056 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010.09.07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010.04.28 16:22:20 | 000,604,488 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2010.04.28 16:22:19 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2010.03.09 16:59:59 | 000,488,960 | ---- | M] (Crawler.com) [Disabled | Stopped] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2010.02.12 20:23:32 | 000,148,744 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe -- (CLPSLS)
SRV - [2009.12.13 20:31:46 | 000,226,816 | ---- | M] (Uwe Sieber - www.uwe-sieber.de) [Auto | Running] -- c:\Program Files\USBDLM\USBDLM.exe -- (USBDLM)
SRV - [2009.11.16 12:25:48 | 000,029,000 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2009.10.27 10:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006.03.03 22:03:10 | 000,069,632 | ---- | M] (HP) [Unknown | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\ADMINI~1.000\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2010.10.18 16:23:33 | 000,239,240 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard)
DRV - [2010.10.18 16:23:33 | 000,091,560 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\inspect.sys -- (Inspect)
DRV - [2010.10.18 16:23:33 | 000,025,240 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2010.09.07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010.09.07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010.09.07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010.09.07 16:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010.09.07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.09.07 16:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010.03.09 16:59:59 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2010.03.03 06:21:08 | 004,630,016 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010.01.11 11:04:26 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.10.06 12:52:50 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2009.10.06 12:52:34 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2009.10.06 12:52:34 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009.10.06 12:52:34 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2009.09.11 12:48:04 | 000,066,056 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2009.09.11 12:47:54 | 000,014,984 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2009.09.11 12:47:42 | 000,031,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmHidLo.sys -- (WmHidLo)
DRV - [2009.09.11 12:47:32 | 000,035,592 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2009.09.11 12:47:22 | 000,022,792 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2008.08.26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.08.08 18:11:00 | 000,100,736 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\nvatabus.sys -- (nvatabus)
DRV - [2008.04.14 00:26:50 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usb8023.sys -- (USB_RNDIS)
DRV - [2008.04.14 00:15:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Ovladač zvukové karty USB (WDM)
DRV - [2008.04.13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007.11.21 01:09:22 | 000,104,320 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2007.06.29 16:32:08 | 000,611,584 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PFC027.SYS -- (PAC207)
DRV - [2007.06.29 14:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2007.06.15 16:47:26 | 001,127,936 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P17.sys -- (P17)
DRV - [2007.05.18 11:01:50 | 000,304,640 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2007.05.14 10:12:28 | 003,526,464 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtHDMI.sys -- (RTHDMIAzAudService)
DRV - [2006.06.19 05:37:34 | 000,036,864 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2006.03.17 18:18:58 | 000,392,960 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)
DRV - [2006.02.26 17:02:49 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2005.01.11 00:15:30 | 000,106,496 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2005.01.11 00:15:24 | 000,138,752 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2002.10.15 22:41:06 | 000,102,220 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sonypvs1.sys -- (sonypvs1)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.gooogle.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 85 BA F6 71 29 B2 CA 01 [binary data]
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.ask.com/?o=14597&l=dis"
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.3.3.123
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.2.1
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6778
FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?clien ... n_dtid=&q="
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Components: c:\Program Files\Mozilla Firefox\components [2010.04.25 12:37:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Plugins: c:\Program Files\Mozilla Firefox\plugins [2010.10.13 17:58:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
[2010.03.09 22:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Extensions
[2010.01.02 15:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\extensions
[2010.01.02 15:08:57 | 000,000,000 | ---D | M] (XfireXO Toolbar) -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2010.09.18 20:56:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions
[2010.04.14 20:39:19 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.08.22 11:22:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com
[2010.10.18 17:42:42 | 000,002,382 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\askcom.xml
[2010.08.22 11:33:03 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\icqplugin-1.xml
[2010.04.14 20:39:23 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\icqplugin.xml
[2010.10.14 11:43:13 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.05.27 18:31:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.10.14 11:43:14 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010.04.23 21:33:48 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\personas@christopher.beard
[2009.03.21 10:36:29 | 000,239,432 | ---- | M] (Pando Networks) -- C:\Program Files\Mozilla Firefox\plugins\npPandoWebInst.dll
O1 HOSTS File: ([2010.10.18 19:46:50 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (FlashGetBHO) - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\noskin\Data aplikací\FlashGetBHO\FlashGetBHO3.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [Monitor] C:\WINDOWS\PixArt\Pac207\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [P17Helper] C:\WINDOWS\System32\P17.dll ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O15 - HKCU\..Trusted Domains: kuaiche.com ([software] http in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/2.9 ... ontrol.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.31.30.139 172.31.30.138
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.12.25 19:21:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009.04.15 11:00:54 | 000,177,835 | ---- | M] () - H:\AutoCzech aneb automatická detekce kódování » La Trine.mht -- [ FAT32 ]
O32 - AutoRun File - [2009.04.15 11:00:38 | 000,008,477 | ---- | M] () - H:\autoczech_phps.mht -- [ FAT32 ]
O33 - MountPoints2\{00a454e4-4ef7-11df-834c-001f1f0dbe5c}\Shell - "" = AutoRun
O33 - MountPoints2\{86f8113b-15b7-11dc-ac16-0018f3f2faf0}\Shell\AutoRun\command - "" = G:\setupSNK.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.XFR1 - C:\WINDOWS\System32\xfcodec.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (54901175375364096)
========== Files/Folders - Created Within 7 Days ==========
[2010.10.18 21:02:25 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTL.exe
[2010.10.18 19:46:31 | 001,445,888 | ---- | C] (Option^Explicit Software Solutions) -- C:\Documents and Settings\noskin\Plocha\winsockxpfix.exe
[2010.10.18 19:12:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010.10.18 18:26:03 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.10.18 18:21:35 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010.10.18 18:21:35 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010.10.18 18:21:35 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010.10.18 18:21:35 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010.10.18 18:21:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.10.18 18:20:23 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010.10.18 16:54:50 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\noskin\Recent
[2010.10.18 16:12:09 | 000,000,000 | ---D | C] -- C:\_OTM
[2010.10.18 16:07:59 | 000,519,680 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTM.exe
[2010.10.14 20:17:29 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\AMCap.exe
[2010.10.14 16:51:10 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr70.dll
[2010.10.14 16:51:10 | 000,000,000 | ---D | C] -- C:\Program Files\All2WAV Recorder
[2010.10.14 11:45:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\noskin\Data aplikací\skypePM
[2010.10.14 11:43:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\noskin\Data aplikací\Skype
[2010.10.14 11:42:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Skype
[2010.10.12 19:26:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\noskin\Data aplikací\U3
========== Files - Modified Within 7 Days ==========
[2010.10.18 21:02:25 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTL.exe
[2010.10.18 21:00:04 | 000,000,488 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2010.10.18 19:50:24 | 000,000,310 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2010.10.18 19:48:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.10.18 19:47:57 | 2145,898,496 | -HS- | M] () -- C:\hiberfil.sys
[2010.10.18 19:46:50 | 000,000,736 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.10.18 19:46:44 | 001,445,888 | ---- | M] (Option^Explicit Software Solutions) -- C:\Documents and Settings\noskin\Plocha\winsockxpfix.exe
[2010.10.18 18:32:34 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.bak
[2010.10.18 18:26:06 | 000,000,484 | RHS- | M] () -- C:\boot.ini
[2010.10.18 18:13:50 | 000,002,547 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2010.10.18 18:04:11 | 003,879,784 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\ComboFix.exe
[2010.10.18 16:40:32 | 000,000,087 | ---- | M] () -- C:\Documents and Settings\noskin\intlname.ols
[2010.10.18 16:23:34 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\System32\guard32.dll
[2010.10.18 16:23:33 | 000,239,240 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdGuard.sys
[2010.10.18 16:23:33 | 000,091,560 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\inspect.sys
[2010.10.18 16:23:33 | 000,025,240 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdhlp.sys
[2010.10.18 16:23:33 | 000,015,592 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmderd.sys
[2010.10.18 16:12:13 | 000,435,396 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.10.18 16:12:13 | 000,432,334 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.10.18 16:12:13 | 000,079,266 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.10.18 16:12:13 | 000,068,292 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.10.18 16:08:00 | 000,519,680 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\noskin\Plocha\OTM.exe
[2010.10.18 16:04:03 | 000,031,232 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\Bio Style.doc
[2010.10.18 09:38:41 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\Skype (2).lnk
[2010.10.16 22:18:11 | 000,188,984 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\foto trida2.JPG
[2010.10.16 22:16:42 | 000,198,875 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\foto trida1.JPG
[2010.10.16 16:51:47 | 000,921,632 | ---- | M] () -- C:\PA207.DAT
[2010.10.16 13:28:13 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.10.15 11:29:17 | 000,026,016 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\ohl.živnost a údaje.pdf
[2010.10.15 11:28:00 | 000,038,601 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\ohláš.živnosti.pdf
[2010.10.15 11:18:43 | 000,031,874 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\výpis trestů.pdf
[2010.10.15 09:27:05 | 000,234,368 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.10.14 20:17:29 | 000,000,325 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Amcap.lnk
[2010.10.14 16:57:51 | 031,625,727 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\zvukovka.zip
[2010.10.14 16:51:11 | 000,000,669 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\All2WAV Recorder.lnk
[2010.10.14 11:45:03 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010.10.14 11:43:02 | 000,001,896 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Skype.lnk
[2010.10.14 11:35:52 | 020,165,034 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\skype-ubuntu-intrepid_2.1.0.81-1_i386.deb
[2010.10.13 22:17:44 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\Dobrý den.doc
[2010.10.13 18:24:45 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\RSIT.exe
[2010.10.13 17:58:13 | 000,001,735 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Adobe Reader 9.lnk
[2010.10.12 19:37:56 | 000,000,598 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Opera.lnk
[2010.10.12 18:00:18 | 000,099,840 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\Zadani prikladu (2).doc
[2010.10.12 17:59:56 | 000,243,712 | ---- | M] () -- C:\Documents and Settings\noskin\Plocha\Zadani prikladu (1).doc
========== Files Created - No Company Name ==========
[2010.10.18 19:15:59 | 2145,898,496 | -HS- | C] () -- C:\hiberfil.sys
[2010.10.18 18:26:06 | 000,000,439 | ---- | C] () -- C:\Boot.bak
[2010.10.18 18:21:35 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010.10.18 18:21:35 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010.10.18 18:21:35 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010.10.18 18:21:35 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010.10.18 18:21:35 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010.10.18 18:03:51 | 003,879,784 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\ComboFix.exe
[2010.10.18 11:04:08 | 000,031,232 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\Bio Style.doc
[2010.10.16 18:39:56 | 000,188,984 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\foto trida2.JPG
[2010.10.16 18:39:45 | 000,198,875 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\foto trida1.JPG
[2010.10.15 11:29:17 | 000,026,016 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\ohl.živnost a údaje.pdf
[2010.10.15 11:28:00 | 000,038,601 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\ohláš.živnosti.pdf
[2010.10.15 11:18:43 | 000,031,874 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\výpis trestů.pdf
[2010.10.14 20:29:39 | 000,002,283 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\Skype (2).lnk
[2010.10.14 20:17:29 | 000,000,325 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Amcap.lnk
[2010.10.14 16:56:57 | 031,625,727 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\zvukovka.zip
[2010.10.14 16:51:11 | 000,000,669 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\All2WAV Recorder.lnk
[2010.10.14 11:45:03 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010.10.14 11:43:02 | 000,001,896 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Skype.lnk
[2010.10.14 11:35:39 | 020,165,034 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\skype-ubuntu-intrepid_2.1.0.81-1_i386.deb
[2010.10.13 22:17:43 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\Dobrý den.doc
[2010.10.13 18:24:45 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\RSIT.exe
[2010.10.13 17:58:13 | 000,001,735 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Adobe Reader 9.lnk
[2010.10.12 17:59:46 | 000,099,840 | ---- | C] () -- C:\Documents and Settings\noskin\Plocha\Zadani prikladu (2).doc
[2010.07.09 21:04:40 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2010.06.13 11:51:55 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2010.04.25 12:11:36 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2010.03.09 16:59:59 | 000,142,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2010.03.04 13:22:06 | 000,000,240 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2010.02.21 14:22:59 | 000,010,240 | ---- | C] () -- C:\Documents and Settings\noskin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.01.11 10:56:21 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.01.04 18:51:54 | 000,000,254 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\hpzinstall.log
[2009.12.25 23:09:13 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009.12.25 22:49:23 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009.12.25 22:31:36 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\noskin\Data aplikací\PnkBstrK.sys
[2009.12.25 22:31:36 | 000,137,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.12.25 22:13:28 | 000,002,547 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2009.12.25 19:42:56 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\P17.dll
[2009.12.25 19:42:56 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\P17CPI.dll
[2009.12.25 19:42:25 | 000,005,663 | ---- | C] () -- C:\WINDOWS\System32\Ludap17.ini
[2009.12.25 19:42:25 | 000,000,054 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2009.12.25 19:38:05 | 000,005,810 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2009.11.06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2009.05.10 17:09:30 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2009.04.14 17:57:49 | 000,000,566 | ---- | C] () -- C:\WINDOWS\System32\SP207.INI
[2009.03.30 23:48:02 | 000,189,984 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2008.03.13 18:42:45 | 000,000,604 | -H-- | C] () -- C:\Program Files\STLL Notifier
[2005.10.14 12:56:50 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 12:56:50 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 12:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 12:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005.10.14 11:56:48 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\MMSwitch.dll
[2003.04.09 16:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
========== LOP Check ==========
[2010.03.09 14:28:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Alwil Software
[2010.06.08 14:15:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Codemasters
[2010.01.11 10:55:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\DAEMON Tools Lite
[2010.06.04 19:51:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Electronic Arts
[2009.12.25 22:32:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ESET
[2010.04.11 03:40:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ICQ
[2010.03.23 21:10:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\id Software
[2010.01.28 21:13:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Installations
[2010.01.28 21:30:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\PC Suite
[2010.06.15 12:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spyware Terminator
[2010.04.28 21:56:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Synetic
[2010.03.18 03:04:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TrackMania
[2010.03.09 14:22:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TuneUp Software
[2010.01.27 22:32:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TuneUpMedia
[2010.01.30 16:06:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\WOP
[2010.04.28 16:21:03 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
[2010.01.27 22:47:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010.02.21 11:55:53 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010.10.18 21:00:04 | 000,000,488 | ---- | M] () -- C:\WINDOWS\Tasks\1-Click Maintenance.job
[2010.10.18 19:50:24 | 000,000,310 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 08:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized -- [2010.09.02 15:15:04 | 013,351,304 | R--- | M] (Skype Technologies S.A.)
"Google Update" = "C:\Documents and Settings\noskin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c -- [2010.02.09 20:55:55 | 000,135,664 | ---- | M] (Google Inc.)
< c:\windows\*.* /U >
< %SYSTEMDRIVE%\*.exe >
[2008.04.08 12:46:45 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\devcon.exe
[2008.05.02 11:11:10 | 000,364,721 | ---- | M] () -- C:\DPsFnshr.exe
[2008.05.02 11:11:14 | 000,282,725 | ---- | M] () -- C:\DSPdsblr.exe
[2009.01.14 15:14:38 | 000,376,112 | ---- | M] (techPowerUp (www.techpowerup.com)) -- C:\GPU-Z.0.3.1.exe
[2008.04.08 12:46:45 | 000,020,992 | ---- | M] () -- C:\makePNF.exe
[2008.04.08 12:46:45 | 000,137,728 | ---- | M] () -- C:\mute.exe
[2008.05.02 11:11:17 | 000,235,131 | ---- | M] () -- C:\pmtimer.exe
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.09.26 11:26:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Adobe
[2010.01.08 00:52:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\AdobeUM
[2010.02.15 19:33:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Apple Computer
[2009.12.26 18:17:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\ATI
[2010.01.11 11:07:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\DAEMON Tools Lite
[2010.06.06 20:03:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\DNA
[2010.09.26 13:09:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Downloaded Installations
[2010.07.10 18:02:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\dvdcss
[2009.12.25 22:35:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\ESET
[2010.02.07 02:25:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Feedreader
[2010.04.18 17:06:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\FlashGet
[2010.04.23 18:40:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\GARMIN
[2010.04.28 16:51:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\GlarySoft
[2010.06.18 17:20:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\gtk-2.0
[2010.02.09 20:49:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Help
[2010.07.03 22:16:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\ICQ
[2010.03.23 21:11:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\id Software
[2009.12.25 22:09:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Identities
[2010.01.04 19:26:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Image Zone Express
[2010.01.15 19:58:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\InstallShield
[2009.12.25 22:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Macromedia
[2010.02.14 13:46:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Malwarebytes
[2010.04.02 18:18:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\MAXON
[2010.04.12 23:11:00 | 000,000,000 | --SD | M] -- C:\Documents and Settings\noskin\Data aplikací\Microsoft
[2010.03.09 22:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla
[2010.06.04 20:31:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Need for Speed World
[2010.06.04 20:31:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Need for Speed World Online
[2010.01.28 21:30:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Nokia
[2010.05.10 22:25:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\OpenOffice.org
[2009.12.25 22:29:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Opera
[2010.01.28 21:30:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\PC Suite
[2010.04.10 10:35:52 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\noskin\Data aplikací\SecuROM
[2010.10.18 20:48:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Skype
[2010.10.18 17:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\skypePM
[2010.09.27 16:24:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Spyware Terminator
[2010.01.19 23:50:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Sun
[2010.01.20 19:05:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Thinstall
[2010.01.17 03:14:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\TuneUp Software
[2010.01.27 22:32:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\TuneUpMedia
[2010.10.14 21:22:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\U3
[2010.09.26 11:04:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\uTorrent
[2010.09.17 15:49:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\vlc
[2010.10.18 18:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Xfire
< %APPDATA%\*.exe /s >
[2010.04.12 23:11:00 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Microsoft\Installer\{B63B5FC6-B005-5B6D-7F04-3950656634B9}\ARPPRODUCTICON.exe
[2010.10.18 17:42:52 | 003,056,008 | ---- | M] (Ask) -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\temp\askToolbar.exe
[2007.10.23 09:27:20 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\U3\temp\cleanup.exe
[2008.05.02 10:41:48 | 003,493,888 | -H-- | M] (SanDisk Corporation) -- C:\Documents and Settings\noskin\Data aplikací\U3\temp\Launchpad Removal.exe
< MD5 for: AGP440.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
< MD5 for: ATAPI.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0071\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2008.04.14 08:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\dllcache\autochk.exe
< MD5 for: CDROM.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\dllcache\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\system32\dllcache\explorer.exe
< MD5 for: HAL.DLL >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 00:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\hal.dll
< MD5 for: CHANGER.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
< MD5 for: ISAPNP.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 07:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\dllcache\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: NVATA.SYS >
[2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\Win2K\sata_ide\nvata.sys
[2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\WinXP\sata_ide\nvata.sys
[2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\WINDOWS\system32\drivers\nvata.sys
< MD5 for: NVATABUS.SYS >
[2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\Win2K\sataraid\nvatabus.sys
[2006.04.24 18:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\WinXP\sataraid\nvatabus.sys
[2008.08.08 18:11:00 | 000,100,736 | ---- | M] (NVIDIA Corporation) MD5=C03E15101F6D9E82CD9B0E7D715F5DE3 -- C:\WINDOWS\system32\drivers\nvatabus.sys
< MD5 for: NVGTS.SYS >
[2008.11.12 16:58:38 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=75E2E77C5497F34E60491D27BF03F1CB -- C:\NVIDIA\nForceWinXPInt\15.25\IDE\WinXP\sata_ide\nvgts.sys
[2008.11.12 16:59:06 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=8EB82606FCD8C5D039ADA33BD46FE7F8 -- C:\NVIDIA\nForceWinXPInt\15.25\IDE\WinXP\sataraid\nvgts.sys
< MD5 for: NVRAID.SYS >
[2006.04.24 18:52:36 | 000,082,944 | ---- | M] (NVIDIA Corporation) MD5=B65CE56C36F573113FF2F6D0F07B7563 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\Win2K\sataraid\nvraid.sys
[2006.04.24 18:52:36 | 000,082,944 | ---- | M] (NVIDIA Corporation) MD5=B65CE56C36F573113FF2F6D0F07B7563 -- C:\NVIDIA\nForceWin2KXP\9.16\IDE\WinXP\sataraid\nvraid.sys
< MD5 for: NVRD32.SYS >
[2008.11.12 16:59:08 | 000,133,152 | ---- | M] (NVIDIA Corporation) MD5=6B1B4E25277A99A6B515CF124D6060E0 -- C:\NVIDIA\nForceWinXPInt\15.25\IDE\WinXP\sataraid\nvrd32.sys
< MD5 for: SCECLI.DLL >
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.17 15:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\dllcache\smss.exe
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.14 00:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\dllcache\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2010.09.10 07:52:30 | 000,184,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\iepeers.dll
[2010.09.10 07:52:31 | 000,602,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msfeeds.dll
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.01.11 11:04:26 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2009.12.25 22:31:52 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2009.12.25 22:31:52 | 001,093,632 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2009.12.25 22:31:51 | 000,516,096 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
[2010.09.10 07:52:30 | 000,184,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\iepeers.dll
[2010.09.10 07:52:31 | 000,602,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\msfeeds.dll
< %systemroot%\system32\drivers\*.sys /3 >
[2010.10.18 16:23:33 | 000,015,592 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\cmderd.sys
[2010.10.18 16:23:33 | 000,239,240 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\cmdGuard.sys
[2010.10.18 16:23:33 | 000,025,240 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\cmdhlp.sys
[2010.10.18 16:23:33 | 000,091,560 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\inspect.sys
< %systemroot%\system32\*.* /3 >
[2010.10.18 16:23:34 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\system32\guard32.dll
[2010.10.18 16:12:13 | 000,079,266 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2010.10.18 16:12:13 | 000,068,292 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2010.10.18 16:12:13 | 000,432,334 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2010.10.18 16:12:13 | 000,435,396 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2010.10.18 16:12:13 | 001,028,848 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2010.10.16 13:28:13 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
< End of report >
Re: Prosím o kontrolu logu
Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\ADMINI~1.000\LOCALS~1\Temp\catchme.sys -- (catchme) IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 85 BA F6 71 29 B2 CA 01 [binary data] IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Ask.com" FF - prefs.js..browser.startup.homepage: "http://www.ask.com/?o=14597&l=dis" FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.3.3.123 FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=FF&o=14594&locale=en_EU&apn_uid=E33E8612-1CA1-48B2-89DE-F48E9874B263&apn_ptnrs=FV&apn_sauid=A61D3883-B16F-483C-A435-93E63DB0CA6F&apn_dtid=&q=" [2010.08.22 11:22:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com [2010.10.18 17:42:42 | 000,002,382 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\askcom.xml [2010.08.22 11:33:03 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\icqplugin-1.xml [2010.04.14 20:39:23 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\icqplugin.xml O2 - BHO: (FlashGetBHO) - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\noskin\Data aplikací\FlashGetBHO\FlashGetBHO3.dll File not found O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O15 - HKCU\..Trusted Domains: kuaiche.com ([software] http in Trusted sites) O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/2.9 ... ontrol.CAB (Reg Error: Key error.) O33 - MountPoints2\{00a454e4-4ef7-11df-834c-001f1f0dbe5c}\Shell - "" = AutoRun :files %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp /s :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
Napiste ci doslo ke zmene"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu
All processes killed
========== OTL ==========
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\DOCUME~1\ADMINI~1.000\LOCALS~1\Temp\catchme.sys not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "Ask.com" removed from browser.search.selectedEngine
Prefs.js: "http://www.ask.com/?o=14597&l=dis" removed from browser.startup.homepage
Prefs.js: toolbar@ask.com:3.3.3.123 removed from extensions.enabledItems
Prefs.js: "http://websearch.ask.com/redirect?clien ... n_dtid=&q=" removed from keyword.URL
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\searchplugins folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\logs folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\defaults\preferences folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\defaults folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\datastore folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\temp\skin.Thu-20-May-2010-08-47-21-GMT folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Tue-12-Oct-2010-12-16-31-GMT folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sun-22-Aug-2010-09-22-49-GMT folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\temp folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\skin folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\content folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\askcom.xml moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\icqplugin.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\kuaiche.com\software\ deleted successfully.
Starting removal of ActiveX control Garmin Communicator Plug-In
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Garmin Communicator Plug-In\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Garmin Communicator Plug-In\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\Garmin Communicator Plug-In\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{00a454e4-4ef7-11df-834c-001f1f0dbe5c}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00a454e4-4ef7-11df-834c-001f1f0dbe5c}\ not found.
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\Installer\{CC6B1BB4-4E06-4A5B-A166-B371B551324B}\upd81.tmp moved successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
User: Administrator.NOSKINS
->Temp folder emptied: 0 bytes
User: Administrator.NOSKINS.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 49286 bytes
User: All Users
User: All Users.WINDOWS
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User.WINDOWS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: LocalService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService.NT AUTHORITY.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Mumínková
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: mumínková.NOSKINS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: NetworkService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: NetworkService.NT AUTHORITY.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: No!Skins
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: noskin
->Temp folder emptied: 70548 bytes
->Temporary Internet Files folder emptied: 3561064 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 15999488 bytes
->Google Chrome cache emptied: 7140483 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 967 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 16384 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 26,00 mb
[EMPTYFLASH]
User: Administrator
User: Administrator.NOSKINS
User: Administrator.NOSKINS.000
User: All Users
User: All Users.WINDOWS
User: Default User
User: Default User.WINDOWS
User: LocalService
->Flash cache emptied: 0 bytes
User: LocalService.NT AUTHORITY
User: LocalService.NT AUTHORITY.000
User: Mumínková
->Flash cache emptied: 0 bytes
User: mumínková.NOSKINS
->Flash cache emptied: 0 bytes
User: NetworkService
User: NetworkService.NT AUTHORITY
User: NetworkService.NT AUTHORITY.000
User: No!Skins
->Flash cache emptied: 0 bytes
User: noskin
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.15.2 log created on 10182010_213038
Files\Folders moved on Reboot...
File\Folder C:\WINDOWS\temp\_avast5_\Webshlock.txt not found!
Registry entries deleted on Reboot...
Bohužel změna nepřichází.
========== OTL ==========
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\DOCUME~1\ADMINI~1.000\LOCALS~1\Temp\catchme.sys not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "Ask.com" removed from browser.search.selectedEngine
Prefs.js: "http://www.ask.com/?o=14597&l=dis" removed from browser.startup.homepage
Prefs.js: toolbar@ask.com:3.3.3.123 removed from extensions.enabledItems
Prefs.js: "http://websearch.ask.com/redirect?clien ... n_dtid=&q=" removed from keyword.URL
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\searchplugins folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\logs folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\defaults\preferences folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\defaults folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\datastore folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\temp\skin.Thu-20-May-2010-08-47-21-GMT folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Tue-12-Oct-2010-12-16-31-GMT folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Sun-22-Aug-2010-09-22-49-GMT folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\temp folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\skin folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome\content folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com\chrome folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\extensions\toolbar@ask.com folder moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\askcom.xml moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\noskin\Data aplikací\Mozilla\Firefox\Profiles\y95au2uo.default\searchplugins\icqplugin.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\kuaiche.com\software\ deleted successfully.
Starting removal of ActiveX control Garmin Communicator Plug-In
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Garmin Communicator Plug-In\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Garmin Communicator Plug-In\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\Garmin Communicator Plug-In\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{00a454e4-4ef7-11df-834c-001f1f0dbe5c}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00a454e4-4ef7-11df-834c-001f1f0dbe5c}\ not found.
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\Installer\{CC6B1BB4-4E06-4A5B-A166-B371B551324B}\upd81.tmp moved successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
User: Administrator.NOSKINS
->Temp folder emptied: 0 bytes
User: Administrator.NOSKINS.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 49286 bytes
User: All Users
User: All Users.WINDOWS
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User.WINDOWS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: LocalService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService.NT AUTHORITY.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Mumínková
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: mumínková.NOSKINS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: NetworkService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: NetworkService.NT AUTHORITY.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: No!Skins
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: noskin
->Temp folder emptied: 70548 bytes
->Temporary Internet Files folder emptied: 3561064 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 15999488 bytes
->Google Chrome cache emptied: 7140483 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 967 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 16384 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 26,00 mb
[EMPTYFLASH]
User: Administrator
User: Administrator.NOSKINS
User: Administrator.NOSKINS.000
User: All Users
User: All Users.WINDOWS
User: Default User
User: Default User.WINDOWS
User: LocalService
->Flash cache emptied: 0 bytes
User: LocalService.NT AUTHORITY
User: LocalService.NT AUTHORITY.000
User: Mumínková
->Flash cache emptied: 0 bytes
User: mumínková.NOSKINS
->Flash cache emptied: 0 bytes
User: NetworkService
User: NetworkService.NT AUTHORITY
User: NetworkService.NT AUTHORITY.000
User: No!Skins
->Flash cache emptied: 0 bytes
User: noskin
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.15.2 log created on 10182010_213038
Files\Folders moved on Reboot...
File\Folder C:\WINDOWS\temp\_avast5_\Webshlock.txt not found!
Registry entries deleted on Reboot...
Bohužel změna nepřichází.
Re: Prosím o kontrolu logu
Napadlo me ze v tom muze mit prsty comodo - vypnete tedy firewall a zkuste ci to prinese nejakou zmenu...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu
Comodo vypnuto a nic 
Jinak k popisu věci :
stránky, které chci mi normálně najedou, pokud se chci na ně přihlásit, pak mi to hodí onu hlášku - 408 Request Time-out....
Pokud shodím prohlížeč a najedu znovu na ty samé stránky ( opět nepřihlášen ), pak normálně najedou
Jinak k popisu věci :
stránky, které chci mi normálně najedou, pokud se chci na ně přihlásit, pak mi to hodí onu hlášku - 408 Request Time-out....
Pokud shodím prohlížeč a najedu znovu na ty samé stránky ( opět nepřihlášen ), pak normálně najedou
Re: Prosím o kontrolu logu
Dela to na vsech strankach kam se prihlasujete - nase forum, mail, nejake jine forum...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu logu
ne, stranky, na kterých jsem zjistil , že to dělá jsou :
www.gmail.com
www.aeriagames.com
Také jsem si všiml, že odesílání těchto zpráv trvá docela dlouho - řádově 10-15s....
Jinak jiná fora normálně funguji ....
www.gmail.com
www.aeriagames.com
Také jsem si všiml, že odesílání těchto zpráv trvá docela dlouho - řádově 10-15s....
Jinak jiná fora normálně funguji ....
Přispějete na provoz fóra?