zmizeli skoro vsechny ikony u programu,vypada to takto : http://img694.imageshack.us/i/ikonyp.jpg/ nektery zmizel i na plose,ikony slozek jsou pryc vsechny,ve startu je jen jakasi divna ikona ktera je u vsech programu stejna,nevidim "uzivatelsky jmeno" v alt+ctrl+delete v zalozce procesy,obnoveni systemu jsem zkousel a nic
Logfile of random's system information tool 1.08 (written by random/random)
Run by Admin at 2011-02-16 16:46:51
Systém Microsoft Windows XP Professional Service Pack 2
System drive G: has 4 GB (15%) free of 25 GB
Total RAM: 1023 MB (30% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:47:00, on 16.2.2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
G:\WINDOWS\System32\smss.exe
G:\WINDOWS\system32\winlogon.exe
G:\WINDOWS\system32\services.exe
G:\WINDOWS\system32\lsass.exe
G:\WINDOWS\system32\nvsvc32.exe
G:\WINDOWS\system32\svchost.exe
G:\WINDOWS\System32\svchost.exe
G:\WINDOWS\system32\svchost.exe
G:\WINDOWS\system32\spoolsv.exe
G:\WINDOWS\Explorer.EXE
G:\Program Files\Eset\nod32kui.exe
G:\WINDOWS\system32\RUNDLL32.EXE
G:\WINDOWS\RTHDCPL.EXE
G:\Program Files\DAEMON Tools Lite\DTLite.exe
G:\WINDOWS\system32\ctfmon.exe
H:\Program Files\QIP Infium\infium.exe
G:\Program Files\Skype\Phone\Skype.exe
G:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
G:\WINDOWS\system32\dgdersvc.exe
G:\Program Files\FileZilla Server\FileZilla Server.exe
G:\WINDOWS\system32\FsUsbExService.Exe
G:\Program Files\Eset\nod32krn.exe
G:\WINDOWS\system32\PnkBstrA.exe
H:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
H:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
G:\Program Files\Skype\Plugin Manager\skypePM.exe
G:\WINDOWS\system32\svchost.exe
G:\WINDOWS\system32\taskmgr.exe
H:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
G:\WINDOWS\system32\wbem\wmiapsrv.exe
G:\WINDOWS\system32\wscntfy.exe
H:\Program Files\Mozilla Firefox\firefox.exe
H:\Program Files\Mozilla Firefox\plugin-container.exe
G:\Documents and Settings\Admin\Plocha\RSIT.exe
G:\Program Files\trend micro\Admin.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - G:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - G:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - G:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - H:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - H:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - G:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - G:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - G:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [nod32kui] "G:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [PWRISOVM.EXE] H:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE G:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE G:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [UpdateReminder] G:\Program Files\Eset\UpdateReminder.exe
O4 - HKCU\..\Run: [Steam] "h:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [EPSON SX110 Series] G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFBE.EXE /FU "G:\DOCUME~1\Admin\LOCALS~1\Temp\E_S1190.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "G:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] G:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Infium] "H:\Program Files\QIP Infium\infium.exe" /autorun /autorun /autorun /autorun /autorun /autorun
O4 - HKCU\..\Run: [Skype] "G:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: BlueSoleil.lnk = G:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://H:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000
O12 - Plugin for .spop: G:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - G:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - G:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - G:\WINDOWS\system32\browseui.dll
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - G:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Dragon Age: Prameny - aktualizace obsahu (DAUpdaterSvc) - BioWare - H:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - G:\WINDOWS\system32\dgdersvc.exe
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - G:\Program Files\FileZilla Server\FileZilla Server.exe
O23 - Service: FsUsbExService - Teruten - G:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - G:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - G:\Program Files\Eset\nod32krn.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - G:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - G:\WINDOWS\system32\nvsvc32.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - H:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: PnkBstrA - Unknown owner - G:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - H:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: ServiceLayer - Nokia. - G:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - H:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
--
End of file - 7069 bytes
======Scheduled tasks folder======
G:\WINDOWS\tasks\1-Click Maintenance.job
G:\WINDOWS\tasks\Úklid 1 kliknutím.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - G:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2010-09-22 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - G:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - G:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - H:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - H:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class - G:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - G:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - G:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"nod32kui"=G:\Program Files\Eset\nod32kui.exe [2009-08-26 949376]
"PWRISOVM.EXE"=H:\Program Files\PowerISO\PWRISOVM.EXE [2009-07-27 180224]
"NvCplDaemon"=G:\WINDOWS\system32\NvCpl.dll [2010-04-03 13670504]
"NvMediaCenter"=G:\WINDOWS\system32\NvMcTray.dll [2010-04-03 110696]
"RTHDCPL"=G:\WINDOWS\RTHDCPL.EXE [2010-10-05 19580520]
"UpdateReminder"=G:\Program Files\Eset\UpdateReminder.exe [2010-11-03 413696]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=h:\program files\steam\steam.exe [2010-11-17 1242448]
"EPSON SX110 Series"=G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFBE.EXE [2008-09-27 199680]
"DAEMON Tools Lite"=G:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"ctfmon.exe"=G:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"Infium"=H:\Program Files\QIP Infium\infium.exe [2009-03-25 5245440]
"Skype"=G:\Program Files\Skype\Phone\Skype.exe [2011-01-26 15026056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"TuneUp.Defrag"=3
"LightScribeService"=2
"gupdate"=2
"NMIndexingService"=3
G:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
BlueSoleil.lnk - G:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - G:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
"RestrictRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"RestrictRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"H:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe"="H:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil"
"G:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe"="G:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil"
"G:\WINDOWS\system32\PnkBstrA.exe"="G:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"G:\WINDOWS\system32\PnkBstrB.exe"="G:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"H:\Program Files\XBlades\xblades.exe"="H:\Program Files\XBlades\xblades.exe:*:Enabled:xblades.exe"
"H:\Program Files\XBlades\launcher.exe"="H:\Program Files\XBlades\launcher.exe:*:Enabled:launcher.exe"
"H:\Program Files\Dragon Age\DAOriginsLauncher.exe"="H:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:${SafeProductName} ${FirewallName_Launcher}"
"H:\Program Files\Dragon Age\bin_ship\daorigins.exe"="H:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:${SafeProductName} ${FirewallName_Game}"
"H:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe"="H:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:${SafeProductName} ${FirewallName_Updater}"
"H:\Program Files\capcom\Bionic Commando Rearmed\bcr.exe"="H:\Program Files\capcom\Bionic Commando Rearmed\bcr.exe:*:Enabled:Bionic Commando Rearmed"
"C:\Program Files\Capcom\Bionic Commando\Bionic Commando\bionic_commando.exe"="C:\Program Files\Capcom\Bionic Commando\Bionic Commando\bionic_commando.exe:*:Enabled:Bionic Commando"
"C:\Program Files\Capcom\Bionic Commando\Bionic Commando\Support\CAP1-0101.exe"="C:\Program Files\Capcom\Bionic Commando\Bionic Commando\Support\CAP1-0101.exe:*:Enabled:Bionic Commando"
"G:\Program Files\Skype\Plugin Manager\skypePM.exe"="G:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"H:\Program Files\Steam\steamapps\common\alien swarm\srcds.exe"="H:\Program Files\Steam\steamapps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server"
"G:\WINDOWS\system32\muzapp.exe"="G:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
"G:\Documents and Settings\Admin\Plocha\PIC675799074533-JPG-www.facebook.com.exe"="G:\WINDOWS\jusched.exe:*:Enabled:Java developer Script Browse"
"H:\Program Files\Steam\steamapps\common\alien swarm\swarm.exe"="H:\Program Files\Steam\steamapps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm"
"G:\Program Files\Pando Networks\Media Booster\PMB.exe"="G:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Riot Games\League of Legends\air\LolClient.exe"="C:\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby"
"C:\Riot Games\League of Legends\game\League of Legends.exe"="C:\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client"
"H:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe"="H:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead"
"H:\Program Files\Steam\steamapps\common\left 4 dead 2\bin\SDKLauncher.exe"="H:\Program Files\Steam\steamapps\common\left 4 dead 2\bin\SDKLauncher.exe:*:Enabled:Left 4 Dead 2 Authoring Tools"
"G:\Program Files\Skype\Phone\Skype.exe"="G:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"H:\Program Files\Steam\steamapps\common\left 4 dead 2\left4dead2.exe"="H:\Program Files\Steam\steamapps\common\left 4 dead 2\left4dead2.exe:*:Enabled:Left 4 Dead 2"
"H:\Program Files\Steam\steamapps\common\left 4 dead 2\srcds.exe"="H:\Program Files\Steam\steamapps\common\left 4 dead 2\srcds.exe:*:Enabled:Left 4 Dead 2 Dedicated Server"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"G:\Program Files\Pando Networks\Media Booster\PMB.exe"="G:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
======List of files/folders created in the last 1 months======
2011-02-14 12:37:46 ----D---- G:\Program Files\Common Files\Skype
======List of files/folders modified in the last 1 months======
2011-02-16 16:46:58 ----D---- G:\Program Files\trend micro
2011-02-16 16:46:57 ----D---- G:\WINDOWS\Prefetch
2011-02-16 16:42:38 ----D---- G:\Documents and Settings\Admin\Data aplikací\Skype
2011-02-16 16:39:37 ----D---- G:\WINDOWS\temp
2011-02-16 16:37:04 ----A---- G:\WINDOWS\SchedLgU.Txt
2011-02-16 16:36:30 ----SHD---- G:\WINDOWS\Installer
2011-02-16 16:35:35 ----D---- G:\WINDOWS\system32\CatRoot2
2011-02-16 16:30:53 ----D---- G:\WINDOWS\system32\config
2011-02-16 16:30:40 ----D---- G:\WINDOWS\system32\wbem
2011-02-16 16:30:39 ----D---- G:\WINDOWS\Registration
2011-02-16 11:52:12 ----D---- G:\Documents and Settings\Admin\Data aplikací\skypePM
2011-02-14 12:37:48 ----D---- G:\Config.Msi
2011-02-14 12:37:46 ----D---- G:\Program Files\Common Files
2011-02-14 12:37:43 ----RD---- G:\Program Files\Skype
2011-02-13 11:18:12 ----HD---- G:\Program Files\InstallShield Installation Information
2011-02-12 22:51:47 ----D---- G:\Program Files\Common Files\Blizzard Entertainment
2011-02-12 19:19:21 ----D---- G:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
2011-02-12 18:50:40 ----HDC---- G:\Documents and Settings\All Users\Data aplikací\{0691F710-1ECA-4B5A-9727-25554F1BFDC6}
2011-02-06 22:04:17 ----A---- G:\WINDOWS\NeroDigital.ini
2011-02-01 14:22:09 ----D---- G:\WINDOWS\system32
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 BTHidEnum;Bluetooth HID Enumerator; G:\WINDOWS\System32\Drivers\vbtenum.sys [2007-03-05 20880]
R0 BTHidMgr;Bluetooth HID Manager Service; G:\WINDOWS\System32\Drivers\BTHidMgr.sys [2007-03-05 35600]
R0 iteraid;ITERAID_Service_Install; G:\WINDOWS\system32\DRIVERS\iteraid.sys [2004-10-29 25067]
R0 PxHelp20;PxHelp20; G:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944]
R0 sptd;sptd; G:\WINDOWS\System32\Drivers\sptd.sys [2010-09-11 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; G:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 intelppm;Řadič procesoru Intel; G:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-17 39936]
R1 nod32drv;nod32drv; G:\WINDOWS\system32\drivers\nod32drv.sys [2009-08-26 15424]
R1 SbFw;SbFw; G:\WINDOWS\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; G:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 SCDEmu;SCDEmu; G:\WINDOWS\system32\drivers\SCDEmu.sys [2009-07-27 58908]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; G:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 AMON;AMON; G:\WINDOWS\system32\drivers\amon.sys [2009-08-26 512096]
R3 BlueletAudio;Bluetooth Audio Service; G:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-05-11 34704]
R3 BlueletSCOAudio;Bluetooth SCO Audio Service; G:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-03-05 27792]
R3 dgderdrv;dgderdrv; G:\WINDOWS\System32\drivers\dgderdrv.sys [2009-12-22 18136]
R3 FsUsbExDisk;FsUsbExDisk; \??\G:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; G:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; G:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-25 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); G:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-10-05 6164584]
R3 ip100xp;ASUS NX1001 Network Adapter NT Driver; G:\WINDOWS\system32\DRIVERS\ipfnd51.sys [2006-03-27 26752]
R3 nv;nv; G:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-04-03 10232128]
R3 pcouffin;VSO Software pcouffin; G:\WINDOWS\System32\Drivers\pcouffin.sys [2010-11-14 47360]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; G:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; G:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 tap0901;TAP-Win32 Adapter V9; G:\WINDOWS\system32\DRIVERS\tap0901.sys [2009-10-01 25984]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; G:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 VComm;Virtual Serial port driver; G:\WINDOWS\system32\DRIVERS\VComm.sys [2007-03-05 34448]
R3 VcommMgr;Bluetooth VComm Manager Service; G:\WINDOWS\System32\Drivers\VcommMgr.sys [2007-03-05 44304]
S2 adfs;adfs; G:\WINDOWS\system32\drivers\adfs.sys []
S3 a9dumx3y;a9dumx3y; G:\WINDOWS\system32\drivers\a9dumx3y.sys []
S3 Ambfilt;Ambfilt; G:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 az2bnwhm;az2bnwhm; G:\WINDOWS\system32\drivers\az2bnwhm.sys []
S3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; G:\WINDOWS\system32\DRIVERS\b57xp32.sys [2004-12-06 126720]
S3 BT;Bluetooth PAN Network Adapter; G:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2007-03-05 18320]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; G:\WINDOWS\System32\Drivers\btcusb.sys [2007-05-09 36496]
S3 hamachi;Hamachi Network Interface; G:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-08-26 25280]
S3 Monfilt;Monfilt; G:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 npkcrypt;npkcrypt; \??\H:\Program Files\Interlude\system\npkcrypt.sys []
S3 npkycryp;npkycryp; \??\D:\HRY\RO\npkycryp.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; G:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); G:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-09-19 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); G:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; G:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-09-19 123648]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver; G:\WINDOWS\system32\DRIVERS\ss_bserd.sys [2009-09-19 100224]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; G:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbprint;Třída USB Printer; G:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Ovladač skeneru USB; G:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; G:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; G:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; G:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 zlportio;zlportio; \??\H:\Program Files\Karaoke Deluxe\zlportio.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; G:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 dgdersvc;Device Error Recovery Service; G:\WINDOWS\system32\dgdersvc.exe [2009-12-22 95568]
R2 FileZilla Server;FileZilla Server FTP server; G:\Program Files\FileZilla Server\FileZilla Server.exe [2010-10-17 742912]
R2 FsUsbExService;FsUsbExService; G:\WINDOWS\system32\FsUsbExService.Exe [2009-12-22 217088]
R2 NOD32krn;NOD32 Kernel Service; G:\Program Files\Eset\nod32krn.exe [2009-08-26 552064]
R2 NVSvc;NVIDIA Display Driver Service; G:\WINDOWS\system32\nvsvc32.exe [2010-04-03 154216]
R2 PnkBstrA;PnkBstrA; G:\WINDOWS\system32\PnkBstrA.exe [2009-10-09 66872]
R2 SbPF.Launcher;SbPF.Launcher; H:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-10-31 95528]
R2 SPF4;Sunbelt Personal Firewall 4; H:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-10-31 1365288]
R2 UxTuneUp;TuneUp Theme Extension; G:\WINDOWS\System32\svchost.exe [2004-08-17 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; G:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S3 aspnet_state;ASP.NET State Service; G:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; G:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu; H:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; G:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 IDriverT;InstallDriver Table Manager; G:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; G:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 npggsvc;nProtect GameGuard Service; G:\WINDOWS\system32\GameMon.des [2009-10-11 3369044]
S3 OpenVPNService;OpenVPN Service; H:\Program Files\OpenVPN\bin\openvpnserv.exe [2009-10-01 36352]
S3 ServiceLayer;ServiceLayer; G:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S4 gupdate;Služba Google Update (gupdate); G:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-15 135664]
S4 LightScribeService;LightScribeService Direct Disc Labeling Service; G:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-12-14 61440]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; G:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]
S4 NMIndexingService;NMIndexingService; G:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S4 TuneUp.Defrag;TuneUp Drive Defrag Service; G:\WINDOWS\System32\TuneUpDefragService.exe [2009-10-19 306432]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zmizeli vsechny ikony
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Re: Zmizeli vsechny ikony
Dobrý večer 
Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix
Spusťte combofix podle tohoto návoduhttp://www.bleepingcomputer.com/combofi ... t-combofix
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zmizeli vsechny ikony
pisu z druhyho pc,na prvnim se me nejak nedari vytvorit log z combofixu,vypnul jsem antivir i firewall,probehne tech 60 nebo kolik kroku,potom to pise at pockam ze program jeste neskoncil,potom to napise ze vytvorenej log bude umisten v C:/ combofix.txt jenze hned na to se da pocitac do uspornyho rezimu,monitor se vypne ale vetraky bezej jakoby byl pc zaplej a po naslednym restartu nikde zadnej log neni
/edit zkousel jsem to uz 4x,i znovu stahnout a vzdy to pri vytvareni logu "spadne"
/edit zkousel jsem to uz 4x,i znovu stahnout a vzdy to pri vytvareni logu "spadne"
Re: Zmizeli vsechny ikony
Zabalte mi složku C:/qoobox do raru a pošlete na www.leteckaposta.cz. Link vložte zde
Změnilo se něco s počítačem?
Změnilo se něco s počítačem?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zmizeli vsechny ikony
http://leteckaposta.cz/655209830 tady to je snad ono
Re: Zmizeli vsechny ikony
Tak musíme jinak
Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken
NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.
Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:
- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde
Stahněte MBAM z mého podpisu-Nainstalujte,dejte úplný sken
NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.
Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:
Kód: Vybrat vše
netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zmizeli vsechny ikony
ted dokonce i zmizeli ikony na liste windows( u firefoxu treba)
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Verze databáze: 5804
Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180
18.2.2011 22:40:53
mbam-log-2011-02-18 (22-40-53).txt
Typ kontroly: Rychlý test
Testované objekty: 137567
Uplynulý čas: 2 minut, 49 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Verze databáze: 5804
Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180
18.2.2011 22:40:53
mbam-log-2011-02-18 (22-40-53).txt
Typ kontroly: Rychlý test
Testované objekty: 137567
Uplynulý čas: 2 minut, 49 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)
Re: Zmizeli vsechny ikony
OTL:
OTL logfile created on: 18.2.2011 22:46:46 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = G:\Documents and Settings\Admin\Plocha
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 023,00 Mb Total Physical Memory | 454,00 Mb Available Physical Memory | 44,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): G:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = G: | %SystemRoot% = G:\WINDOWS | %ProgramFiles% = G:\Program Files
Drive C: | 39,06 Gb Total Space | 15,09 Gb Free Space | 38,64% Space Free | Partition Type: NTFS
Drive D: | 140,62 Gb Total Space | 22,88 Gb Free Space | 16,27% Space Free | Partition Type: NTFS
Drive E: | 6,61 Gb Total Space | 6,61 Gb Free Space | 99,98% Space Free | Partition Type: FAT32
Drive G: | 24,41 Gb Total Space | 6,28 Gb Free Space | 25,73% Space Free | Partition Type: NTFS
Drive H: | 273,67 Gb Total Space | 84,84 Gb Free Space | 31,00% Space Free | Partition Type: NTFS
Computer Name: PC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011.02.18 22:30:37 | 000,602,624 | ---- | M] (OldTimer Tools) -- G:\Documents and Settings\Admin\Plocha\OTL.exe
PRC - [2010.12.11 15:04:53 | 000,016,856 | ---- | M] (Mozilla Corporation) -- H:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2010.12.11 15:04:50 | 000,912,344 | ---- | M] (Mozilla Corporation) -- H:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.10.17 20:38:42 | 000,742,912 | ---- | M] (FileZilla Project) -- G:\Program Files\FileZilla Server\FileZilla server.exe
PRC - [2010.04.01 10:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- G:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2009.12.22 03:31:26 | 000,217,088 | ---- | M] (Teruten) -- G:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2009.12.22 03:31:02 | 000,095,568 | ---- | M] (Devguru Co., Ltd.) -- G:\WINDOWS\system32\dgdersvc.exe
PRC - [2009.08.26 18:59:09 | 000,949,376 | ---- | M] (Eset ) -- G:\Program Files\ESET\nod32kui.exe
PRC - [2009.08.26 18:59:09 | 000,552,064 | ---- | M] (Eset ) -- G:\Program Files\ESET\nod32krn.exe
PRC - [2009.07.27 03:37:50 | 000,180,224 | ---- | M] (PowerISO Computing, Inc.) -- H:\Program Files\PowerISO\PWRISOVM.EXE
PRC - [2009.03.25 17:02:56 | 005,245,440 | ---- | M] (QIP) -- H:\Program Files\QIP Infium\infium.exe
PRC - [2008.10.31 06:24:28 | 001,365,288 | ---- | M] (Sunbelt Software, Inc.) -- H:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
PRC - [2008.10.31 06:24:28 | 000,095,528 | ---- | M] (Sunbelt Software, Inc.) -- H:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
PRC - [2008.10.31 06:24:26 | 001,705,256 | ---- | M] (Sunbelt Software, Inc.) -- H:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
PRC - [2007.12.06 21:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) -- G:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
PRC - [2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) -- G:\WINDOWS\explorer.exe
========== Modules (SafeList) ==========
MOD - [2011.02.18 22:30:37 | 000,602,624 | ---- | M] (OldTimer Tools) -- G:\Documents and Settings\Admin\Plocha\OTL.exe
MOD - [2004.08.17 14:48:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- G:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2010.10.17 20:38:42 | 000,742,912 | ---- | M] (FileZilla Project) [Auto | Running] -- G:\Program Files\FileZilla Server\FileZilla Server.exe -- (FileZilla Server)
SRV - [2009.12.22 03:31:26 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- G:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2009.12.22 03:31:02 | 000,095,568 | ---- | M] (Devguru Co., Ltd.) [Auto | Running] -- G:\WINDOWS\system32\dgdersvc.exe -- (dgdersvc)
SRV - [2009.10.19 15:06:35 | 000,306,432 | ---- | M] (TuneUp Software GmbH) [Disabled | Stopped] -- G:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009.10.11 22:27:07 | 003,369,044 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- G:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2009.10.01 23:18:30 | 000,036,352 | ---- | M] () [On_Demand | Stopped] -- H:\Program Files\OpenVPN\bin\openvpnserv.exe -- (OpenVPNService)
SRV - [2009.08.26 18:59:09 | 000,552,064 | ---- | M] (Eset ) [Auto | Running] -- G:\Program Files\Eset\nod32krn.exe -- (NOD32krn)
SRV - [2009.07.26 06:43:14 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- H:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)
SRV - [2008.11.11 08:38:06 | 000,620,544 | ---- | M] (Nokia.) [On_Demand | Stopped] -- G:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008.10.31 06:24:28 | 001,365,288 | ---- | M] (Sunbelt Software, Inc.) [Auto | Running] -- H:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe -- (SPF4)
SRV - [2008.10.31 06:24:28 | 000,095,528 | ---- | M] (Sunbelt Software, Inc.) [Auto | Running] -- H:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe -- (SbPF.Launcher)
SRV - [2007.12.20 09:41:56 | 000,029,440 | ---- | M] (TuneUp Software GmbH) [Auto | Running] -- G:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2007.12.06 21:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) [Auto | Running] -- G:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)
SRV - [2004.08.17 14:49:22 | 000,006,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\wuauserv.dll -- (wuauserv)
========== Driver Services (SafeList) ==========
DRV - [2010.10.05 17:11:24 | 006,164,584 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2010.09.11 21:12:11 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- G:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.04.03 23:55:31 | 010,232,128 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009.12.22 03:31:26 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.12.22 03:31:02 | 000,018,136 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - [2009.11.18 06:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009.11.18 06:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009.10.01 23:18:44 | 000,025,984 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2009.09.19 06:30:10 | 000,123,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009.09.19 06:30:10 | 000,100,224 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\ss_bserd.sys -- (ss_bserd)
DRV - [2009.09.19 06:30:10 | 000,098,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009.09.19 06:30:10 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2009.08.26 20:25:55 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.08.26 18:59:09 | 000,512,096 | ---- | M] (Eset ) [Kernel | Auto | Running] -- G:\WINDOWS\system32\drivers\amon.sys -- (AMON)
DRV - [2009.08.26 18:59:09 | 000,015,424 | ---- | M] () [Kernel | System | Running] -- G:\WINDOWS\system32\drivers\nod32drv.sys -- (nod32drv)
DRV - [2009.07.27 03:43:18 | 000,058,908 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- G:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2008.10.31 06:09:06 | 000,270,888 | R--- | M] (Sunbelt Software, Inc.) [Kernel | System | Running] -- G:\WINDOWS\system32\drivers\SbFw.sys -- (SbFw)
DRV - [2008.08.26 08:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.06.21 03:54:54 | 000,066,600 | R--- | M] (Sunbelt Software, Inc.) [Kernel | System | Running] -- G:\WINDOWS\system32\drivers\sbhips.sys -- (sbhips)
DRV - [2008.06.21 03:54:54 | 000,065,576 | ---- | M] (Sunbelt Software, Inc.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\SbFwIm.sys -- (SBFWIMCL)
DRV - [2007.05.11 02:10:50 | 000,034,704 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio)
DRV - [2007.05.09 00:59:40 | 000,036,496 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb)
DRV - [2007.03.05 05:00:04 | 000,027,792 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\BlueletSCOAudio.sys -- (BlueletSCOAudio)
DRV - [2007.03.05 04:59:04 | 000,018,320 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\btnetdrv.sys -- (BT)
DRV - [2007.03.05 04:56:18 | 000,035,600 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- G:\WINDOWS\System32\Drivers\BTHidMgr.sys -- (BTHidMgr)
DRV - [2007.03.05 04:55:12 | 000,020,880 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- G:\WINDOWS\System32\Drivers\vbtenum.sys -- (BTHidEnum)
DRV - [2007.03.05 04:53:18 | 000,044,304 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr)
DRV - [2007.03.05 04:52:18 | 000,034,448 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\VComm.sys -- (VComm)
DRV - [2006.03.27 03:48:34 | 000,026,752 | R--- | M] (ASUSTek Computer Inc. ) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\ipfnd51.sys -- (ip100xp)
DRV - [2005.01.07 16:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004.12.06 16:55:20 | 000,126,720 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2004.10.29 04:21:14 | 000,025,067 | R--- | M] (Integrated Technology Express, Inc.) [Kernel | Boot | Running] -- G:\WINDOWS\system32\DRIVERS\iteraid.sys -- (iteraid)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: {b66bc4c3-6d25-4a10-8c59-01daa9063051}:1.5.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.1
FF - prefs.js..extensions.enabledItems: video.downloader.plugin@ffpimp.com:2.2
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: H:\Program Files\Mozilla Firefox\components [2010.12.11 15:05:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: H:\Program Files\Mozilla Firefox\plugins [2010.12.11 15:05:00 | 000,000,000 | ---D | M]
[2009.08.26 19:13:20 | 000,000,000 | ---D | M] (No name found) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Extensions
[2011.02.18 22:38:36 | 000,000,000 | ---D | M] (No name found) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\extensions
[2009.08.26 21:06:00 | 000,000,000 | ---D | M] (FoxGame) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\extensions\{b66bc4c3-6d25-4a10-8c59-01daa9063051}
[2010.10.21 21:12:52 | 000,000,000 | ---D | M] (DownloadHelper) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.10.21 21:12:53 | 000,000,000 | ---D | M] (Adblock Plus) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.08.23 00:15:43 | 000,000,000 | ---D | M] (Download Youtube Videos +) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\extensions\video.downloader.plugin@ffpimp.com
[2008.02.24 14:59:22 | 000,002,920 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\searchplugins\daemon-search.xml
[2009.05.31 01:03:56 | 000,001,546 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\searchplugins\wowhead.xml
File not found (No name found) -- G:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\W3O702FJ.DEFAULT\EXTENSIONS\{B66BC4C3-6D25-4A10-8C59-01DAA9063051}
File not found (No name found) -- G:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\W3O702FJ.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
File not found (No name found) -- G:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\W3O702FJ.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}
File not found (No name found) -- G:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\W3O702FJ.DEFAULT\EXTENSIONS\VIDEO.DOWNLOADER.PLUGIN@FFPIMP.COM
[2009.08.26 20:13:12 | 000,000,000 | ---D | M] (Java Quick Starter) -- H:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010.02.15 15:43:43 | 000,000,000 | ---D | M] (Java Console) -- H:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
O1 HOSTS File: ([2010.08.08 18:04:06 | 000,000,027 | ---- | M]) - G:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - G:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - G:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - G:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - G:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - G:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - G:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [nod32kui] G:\Program Files\Eset\nod32kui.exe (Eset )
O4 - HKLM..\Run: [NvCplDaemon] G:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] G:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PWRISOVM.EXE] H:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O4 - HKLM..\Run: [UpdateReminder] G:\Program Files\ESET\UpdateReminder.exe (ESET, spol. s r.o.)
O4 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003..\Run: [DAEMON Tools Lite] G:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003..\Run: [Infium] H:\Program Files\QIP Infium\infium.exe (QIP)
O4 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003..\Run: [Skype] G:\Documents and Settings\Admin\Plocha\Programy\Skype.exe (Skype Technologies S.A.)
O4 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003..\Run: [Steam] h:\program files\steam\steam.exe (Valve Corporation)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] H:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003..\RunOnce: [FlashPlayerUpdate] G:\WINDOWS\System32\Macromed\Flash\FlashUtil10h_ActiveX.exe (Adobe Systems, Inc.)
O4 - Startup: G:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\BlueSoleil.lnk = G:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - H:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - G:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - G:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - G:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - G:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - G:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - G:\WINDOWS\System32\imon.dll (Eset )
O12 - Plugin for: .spop - G:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - G:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - G:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: G:\Documents and Settings\Admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: G:\Documents and Settings\Admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.03.15 04:10:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009.05.08 13:08:24 | 000,000,000 | R--D | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.05.08 13:08:25 | 000,000,000 | R--D | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.05.08 14:08:26 | 000,000,000 | R--D | M] - E:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - G:\WINDOWS\system32\uxtuneup.dll (TuneUp Software GmbH)
NetSvcs: WmdmPmSp - File not found
NetSvcs: wuauserv - C:\WINDOWS\system32\wuauserv.dll (Microsoft Corporation)
Drivers32: msacm.ac3acm - G:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.divxa32 - G:\WINDOWS\System32\msaud32_divx.acm (Microsoft Corporation)
Drivers32: msacm.iac2 - G:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - G:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - G:\WINDOWS\System32\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - G:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - G:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - G:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.DIVX - G:\WINDOWS\System32\divx.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - G:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.I420 - G:\WINDOWS\System32\i420vfw.dll (www.helixcommunity.org)
Drivers32: vidc.iv31 - G:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - G:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - G:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - G:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - G:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - G:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: VIDC.XVID - G:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - G:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (56308606093492224)
========== Files/Folders - Created Within 30 Days ==========
[2011.02.18 22:31:58 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- G:\Documents and Settings\Admin\Plocha\mbam-setup-1.50.1.1100.exe
[2011.02.18 22:29:33 | 000,602,624 | ---- | C] (OldTimer Tools) -- G:\Documents and Settings\Admin\Plocha\OTL.exe
[2011.02.18 13:03:07 | 000,000,000 | -HSD | C] -- G:\RECYCLER
[2011.02.17 17:39:30 | 000,000,000 | ---D | C] -- G:\WINDOWS\temp
[2011.02.17 17:30:10 | 000,000,000 | ---D | C] -- G:\ComboFix
[2011.02.17 16:03:03 | 000,212,480 | ---- | C] (SteelWerX) -- G:\WINDOWS\SWXCACLS.exe
[2011.02.17 16:03:03 | 000,161,792 | ---- | C] (SteelWerX) -- G:\WINDOWS\SWREG.exe
[2011.02.17 16:03:03 | 000,136,704 | ---- | C] (SteelWerX) -- G:\WINDOWS\SWSC.exe
[2011.02.17 16:03:03 | 000,031,232 | ---- | C] (NirSoft) -- G:\WINDOWS\NIRCMD.exe
[2011.02.17 16:02:48 | 000,000,000 | ---D | C] -- G:\WINDOWS\ERDNT
[2011.02.17 16:02:30 | 000,000,000 | ---D | C] -- G:\Qoobox
[2011.02.16 16:52:32 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Skype
[2011.02.13 11:15:57 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Admin\Plocha\Fichtl-fotky
[2009.11.29 17:24:11 | 000,047,360 | ---- | C] (VSO Software) -- G:\Documents and Settings\Admin\Data aplikací\pcouffin.sys
========== Files - Modified Within 30 Days ==========
[2011.02.18 22:35:17 | 000,000,682 | ---- | M] () -- G:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.02.18 22:33:23 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- G:\Documents and Settings\Admin\Plocha\mbam-setup-1.50.1.1100.exe
[2011.02.18 22:30:37 | 000,602,624 | ---- | M] (OldTimer Tools) -- G:\Documents and Settings\Admin\Plocha\OTL.exe
[2011.02.18 17:16:52 | 000,000,376 | ---- | M] () -- G:\WINDOWS\tasks\1-Click Maintenance.job
[2011.02.18 16:03:56 | 000,084,871 | ---- | M] () -- G:\Documents and Settings\Admin\Plocha\Qoobox.rar
[2011.02.18 12:38:40 | 000,276,202 | ---- | M] () -- G:\WINDOWS\System32\NvApps.xml
[2011.02.18 12:38:34 | 000,002,048 | --S- | M] () -- G:\WINDOWS\bootstat.dat
[2011.02.17 17:44:24 | 1073,307,648 | ---- | M] () -- G:\WINDOWS\MEMORY.DMP
[2011.02.17 17:28:19 | 004,270,376 | R--- | M] () -- G:\Documents and Settings\Admin\Plocha\ComboFix.exe
[2011.02.17 12:49:23 | 000,000,986 | ---- | M] () -- G:\Documents and Settings\Admin\Plocha\FileZilla Server Interface.lnk
[2011.02.16 19:18:31 | 000,001,288 | ---- | M] () -- G:\Documents and Settings\Admin\Plocha\Zástupce - savy TITAN QUEST 12.12.2010.lnk
[2011.02.16 19:18:15 | 000,000,737 | ---- | M] () -- G:\Documents and Settings\All Users\Plocha\Play League of Legends.lnk
[2011.02.16 16:44:39 | 000,132,245 | ---- | M] () -- G:\Documents and Settings\Admin\Plocha\ikony.JPG
[2011.02.16 16:32:19 | 000,002,206 | ---- | M] () -- G:\WINDOWS\System32\wpa.dbl
[2011.02.16 12:50:14 | 000,000,336 | ---- | M] () -- G:\Documents and Settings\Admin\Dokumenty\spider.sav
[2011.02.12 18:39:02 | 000,109,568 | ---- | M] () -- G:\Documents and Settings\Admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.11 15:42:25 | 000,000,661 | ---- | M] () -- G:\Documents and Settings\Admin\Plocha\Pampuch.lnk
[2011.02.06 22:04:17 | 000,000,069 | ---- | M] () -- G:\WINDOWS\NeroDigital.ini
========== Files Created - No Company Name ==========
[2011.02.18 22:35:16 | 000,000,682 | ---- | C] () -- G:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.02.18 16:03:55 | 000,084,871 | ---- | C] () -- G:\Documents and Settings\Admin\Plocha\Qoobox.rar
[2011.02.17 17:27:20 | 004,270,376 | R--- | C] () -- G:\Documents and Settings\Admin\Plocha\ComboFix.exe
[2011.02.17 16:03:03 | 000,256,512 | ---- | C] () -- G:\WINDOWS\PEV.exe
[2011.02.17 16:03:03 | 000,098,816 | ---- | C] () -- G:\WINDOWS\sed.exe
[2011.02.17 16:03:03 | 000,089,088 | ---- | C] () -- G:\WINDOWS\MBR.exe
[2011.02.17 16:03:03 | 000,080,412 | ---- | C] () -- G:\WINDOWS\grep.exe
[2011.02.17 16:03:03 | 000,068,096 | ---- | C] () -- G:\WINDOWS\zip.exe
[2011.02.16 16:44:39 | 000,132,245 | ---- | C] () -- G:\Documents and Settings\Admin\Plocha\ikony.JPG
[2011.02.10 20:45:25 | 000,000,661 | ---- | C] () -- G:\Documents and Settings\Admin\Plocha\Pampuch.lnk
[2010.10.30 23:14:48 | 000,043,520 | ---- | C] () -- G:\WINDOWS\System32\CmdLineExt03.dll
[2010.09.30 17:53:13 | 000,002,192 | ---- | C] () -- G:\WINDOWS\WDICT32.INI
[2010.09.16 17:43:34 | 000,000,565 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\myMPQ.ini
[2010.08.03 20:03:15 | 000,110,592 | ---- | C] () -- G:\WINDOWS\System32\FsUsbExDevice.Dll
[2010.08.03 20:03:15 | 000,036,640 | ---- | C] () -- G:\WINDOWS\System32\FsUsbExDisk.Sys
[2010.08.03 20:02:42 | 000,002,528 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\$_hpcst$.hpc
[2010.07.30 00:27:42 | 000,165,376 | ---- | C] () -- G:\WINDOWS\System32\unrar.dll
[2010.07.30 00:27:41 | 000,000,038 | ---- | C] () -- G:\WINDOWS\avisplitter.ini
[2010.07.30 00:27:30 | 000,790,528 | ---- | C] () -- G:\WINDOWS\System32\xvidcore.dll
[2010.07.30 00:27:30 | 000,134,144 | ---- | C] () -- G:\WINDOWS\System32\xvidvfw.dll
[2010.07.30 00:27:11 | 000,108,032 | ---- | C] () -- G:\WINDOWS\System32\ff_vfw.dll
[2010.07.17 11:11:17 | 000,711,872 | ---- | C] () -- G:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2009.11.29 17:24:36 | 000,001,185 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\vso_ts_preview.xml
[2009.11.29 17:24:22 | 000,000,034 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\pcouffin.log
[2009.11.29 17:24:12 | 000,087,608 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\inst.exe
[2009.11.29 17:24:11 | 000,007,887 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\pcouffin.cat
[2009.11.29 17:24:11 | 000,001,144 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\pcouffin.inf
[2009.11.12 17:04:51 | 000,005,000 | ---- | C] () -- G:\Documents and Settings\All Users\Data aplikací\xqkcebzs.dik
[2009.11.12 17:04:48 | 000,004,886 | ---- | C] () -- G:\Documents and Settings\All Users\Data aplikací\kgkketov.ixb
[2009.11.09 03:08:10 | 000,974,848 | ---- | C] () -- G:\WINDOWS\System32\cis-2.4.dll
[2009.11.09 03:08:10 | 000,081,920 | ---- | C] () -- G:\WINDOWS\System32\issacapi_bs-2.3.dll
[2009.11.09 03:08:10 | 000,065,536 | ---- | C] () -- G:\WINDOWS\System32\issacapi_pe-2.3.dll
[2009.11.09 03:08:10 | 000,057,344 | ---- | C] () -- G:\WINDOWS\System32\issacapi_se-2.3.dll
[2009.11.06 16:49:46 | 000,000,000 | ---- | C] () -- G:\WINDOWS\EEventManager.INI
[2009.10.30 15:19:55 | 000,374,272 | ---- | C] () -- G:\WINDOWS\System32\mss32.dll
[2009.10.24 23:40:14 | 000,000,754 | ---- | C] () -- G:\WINDOWS\WORDPAD.INI
[2009.10.24 21:15:32 | 000,000,410 | ---- | C] () -- G:\WINDOWS\{27018D57-D152-44EF-BCE0-5E3B3445EABE}_WiseFW.ini
[2009.10.09 13:59:16 | 000,022,328 | ---- | C] () -- G:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.10.09 13:59:12 | 000,022,328 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\PnkBstrK.sys
[2009.10.03 11:02:58 | 000,000,069 | ---- | C] () -- G:\WINDOWS\NeroDigital.ini
[2009.10.01 17:24:07 | 000,004,580 | ---- | C] () -- G:\WINDOWS\WTRAN32.INI
[2009.08.29 17:10:11 | 000,000,322 | ---- | C] () -- G:\WINDOWS\wcx_ftp.ini
[2009.08.29 17:09:34 | 000,000,399 | ---- | C] () -- G:\WINDOWS\WINCMD.INI
[2009.08.26 20:01:28 | 000,691,696 | ---- | C] () -- G:\WINDOWS\System32\drivers\sptd.sys
[2009.08.26 19:25:28 | 000,004,249 | ---- | C] () -- G:\WINDOWS\ODBCINST.INI
[2009.08.26 19:01:23 | 000,015,424 | ---- | C] () -- G:\WINDOWS\System32\drivers\nod32drv.sys
[2009.08.26 18:50:55 | 000,000,390 | ---- | C] () -- G:\WINDOWS\ODBC.INI
[2009.08.26 18:32:07 | 000,000,097 | ---- | C] () -- G:\WINDOWS\System32\PICSDK.ini
[2009.08.26 18:28:32 | 000,000,026 | ---- | C] () -- G:\WINDOWS\CDE DX4000.ini
[2009.08.26 17:54:36 | 000,109,568 | ---- | C] () -- G:\Documents and Settings\Admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.08.02 23:21:54 | 000,197,912 | ---- | C] () -- G:\WINDOWS\System32\physxcudart_20.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelSwedish.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelSpanish.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelPortugese.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelKorean.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelJapanese.dll
[2009.08.02 23:21:52 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelGerman.dll
[2009.08.02 23:21:52 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelFrench.dll
[2009.04.22 00:19:06 | 000,172,173 | ---- | C] () -- G:\WINDOWS\System32\xlive.dll.cat
[2008.11.15 19:02:26 | 001,866,670 | ---- | C] () -- G:\WINDOWS\System32\libfftw3f-3.dll
[2008.04.05 18:53:24 | 000,140,288 | ---- | C] () -- G:\WINDOWS\System32\avsfilter.dll
[2005.10.10 14:49:00 | 000,573,440 | ---- | C] () -- G:\WINDOWS\System32\nvhwvid.dll
[2005.10.10 14:49:00 | 000,286,720 | ---- | C] () -- G:\WINDOWS\System32\nvnt4cpl.dll
[2005.09.13 04:09:34 | 000,004,608 | ---- | C] () -- G:\WINDOWS\System32\AvsRecursion.dll
[2004.08.17 14:49:10 | 000,081,920 | ---- | C] () -- G:\WINDOWS\System32\ieencode.dll
[2004.07.17 10:36:38 | 000,011,376 | ---- | C] () -- G:\WINDOWS\System32\drivers\secdrv.sys
[2004.01.30 05:44:56 | 001,627,136 | ---- | C] () -- G:\WINDOWS\System32\fftw3.dll
[2004.01.24 03:35:44 | 000,057,344 | ---- | C] () -- G:\WINDOWS\System32\avisynth_c.dll
========== LOP Check ==========
[2010.12.29 16:03:42 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Awem
[2009.11.22 14:37:41 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\BSplayer
[2009.12.18 20:44:11 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Command & Conquer 3 Tiberium Wars
[2009.10.09 13:21:11 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\DAEMON Tools
[2009.08.30 19:34:37 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\DAEMON Tools Lite
[2009.12.06 18:40:49 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Divo Games
[2009.11.25 16:17:03 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\EleFun Games
[2010.04.26 16:23:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\EPSON
[2010.10.22 17:15:20 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\GetRightToGo
[2009.10.30 16:25:04 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\ImgBurn
[2009.08.26 18:22:31 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\InterTrust
[2009.10.17 20:28:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\InterVideo
[2010.11.19 22:42:50 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\LolClient
[2010.05.30 12:32:26 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\md studio
[2009.12.23 21:21:37 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\MobMapUpdater
[2010.11.06 20:41:40 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Mumble
[2010.08.12 07:14:07 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS
[2010.05.30 12:27:47 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Plan It Green Files
[2010.10.14 19:55:51 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Quest3D
[2009.10.29 20:32:51 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Red Alert 3
[2010.08.03 19:58:48 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Samsung
[2010.10.30 23:15:06 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Sierra
[2010.08.11 09:45:17 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\SPORE
[2010.11.18 18:41:43 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010.12.27 19:44:01 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TeamViewer
[2010.09.15 15:53:00 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Trio
[2010.11.29 18:39:40 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TS3Client
[2009.10.19 15:01:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TuneUp Software
[2010.12.11 17:20:49 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Ubisoft
[2009.11.25 16:11:50 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\URSE Games
[2011.01.13 19:02:36 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Vso
[2010.06.01 23:21:44 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\BC
[2010.05.24 16:40:53 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\BCR
[2009.11.20 18:33:03 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\BioWare
[2009.09.24 16:14:33 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\Bluetooth
[2010.09.11 21:11:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2009.10.13 15:16:20 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\DivoGames
[2009.11.06 16:15:24 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\EPSON
[2010.10.16 09:58:51 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\espionServerData
[2010.07.16 21:37:12 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\FireGlow
[2010.04.11 14:11:35 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\GameXzone
[2009.09.29 14:13:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\LightScribe
[2010.11.17 16:15:00 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\PMB Files
[2010.11.18 15:40:22 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2010.08.03 20:03:20 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\Samsung
[2009.08.26 23:00:59 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\SugarGames
[2009.12.31 02:01:46 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\TEMP
[2009.10.19 15:06:26 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2010.12.11 16:57:18 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2009.11.06 16:14:15 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\UDL
[2009.10.24 21:21:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\XBlades
[2011.02.12 18:50:40 | 000,000,000 | -H-D | M] -- G:\Documents and Settings\All Users\Data aplikací\{0691F710-1ECA-4B5A-9727-25554F1BFDC6}
[2011.02.18 17:16:52 | 000,000,376 | ---- | M] () -- G:\WINDOWS\Tasks\1-Click Maintenance.job
[2010.12.13 07:01:52 | 000,000,374 | ---- | M] () -- G:\WINDOWS\Tasks\Úklid 1 kliknutím.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Steam" = "h:\program files\steam\steam.exe" -silent -- [2010.11.17 09:48:11 | 001,242,448 | ---- | M] (Valve Corporation)
"DAEMON Tools Lite" = "G:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2010.04.01 10:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd)
"Infium" = "H:\Program Files\QIP Infium\infium.exe" /autorun /autorun /autorun /autorun /autorun /autorun -- [2009.03.25 17:02:56 | 005,245,440 | ---- | M] (QIP)
"Skype" = "G:\Documents and Settings\Admin\Plocha\Programy\Skype.exe" /nosplash /minimized -- [2010.12.03 16:46:34 | 014,944,136 | R--- | M] (Skype Technologies S.A.)
< c:\windows\*.* /U >
[2 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.11.08 16:21:08 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\ABBYY
[2010.11.18 15:51:30 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Adobe
[2010.11.18 18:41:44 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Adobe Mini Bridge CS5
[2009.11.22 14:32:48 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Ahead
[2010.12.29 16:03:42 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Awem
[2009.11.22 14:37:41 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\BSplayer
[2009.12.18 20:44:11 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Command & Conquer 3 Tiberium Wars
[2009.10.09 13:21:11 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\DAEMON Tools
[2009.08.30 19:34:37 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\DAEMON Tools Lite
[2009.12.06 18:40:49 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Divo Games
[2009.11.25 16:17:03 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\EleFun Games
[2010.04.26 16:23:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\EPSON
[2010.10.22 17:15:20 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\GetRightToGo
[2010.01.15 11:58:18 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Google
[2009.08.26 19:48:49 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\GRETECH
[2010.07.12 16:07:16 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Hamachi
[2010.09.24 17:46:04 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Help
[2009.08.26 17:41:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Identities
[2009.10.30 16:25:04 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\ImgBurn
[2009.08.26 18:22:31 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\InterTrust
[2009.10.17 20:28:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\InterVideo
[2010.11.19 22:42:50 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\LolClient
[2010.07.21 08:11:39 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Macromedia
[2010.08.09 15:48:28 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Malwarebytes
[2010.05.30 12:32:26 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\md studio
[2010.02.07 15:16:27 | 000,000,000 | --SD | M] -- G:\Documents and Settings\Admin\Data aplikací\Microsoft
[2009.10.23 22:44:01 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Microsoft Games
[2009.12.23 21:21:37 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\MobMapUpdater
[2009.08.26 19:13:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Mozilla
[2010.11.06 20:41:40 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Mumble
[2010.08.12 07:14:07 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS
[2010.05.30 12:27:47 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Plan It Green Files
[2010.10.14 19:55:51 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Quest3D
[2009.10.29 20:32:51 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Red Alert 3
[2010.08.03 19:58:48 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Samsung
[2009.12.19 21:21:49 | 000,000,000 | RH-D | M] -- G:\Documents and Settings\Admin\Data aplikací\SecuROM
[2010.10.30 23:15:06 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Sierra
[2011.02.18 19:08:30 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Skype
[2011.02.18 16:09:24 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\skypePM
[2010.08.11 09:45:17 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\SPORE
[2010.11.18 18:41:43 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2009.08.26 20:10:21 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Sun
[2010.12.27 19:44:01 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TeamViewer
[2010.09.15 15:53:00 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Trio
[2010.11.29 18:39:40 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TS3Client
[2009.10.19 15:01:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TuneUp Software
[2010.12.11 17:20:49 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Ubisoft
[2009.11.25 16:11:50 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\URSE Games
[2010.02.11 14:56:32 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Ventrilo
[2011.01.13 19:02:36 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Vso
[2009.08.26 21:26:59 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Winamp
[2009.08.26 19:17:12 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\WinRAR
< %APPDATA%\*.exe /s >
[2010.11.14 19:06:00 | 000,087,608 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\inst.exe
[2007.03.22 11:46:40 | 000,126,976 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\GRETECH\GomPlayer\GrLauncher.exe
[2009.10.19 16:48:17 | 000,003,262 | R--- | M] () -- G:\Documents and Settings\Admin\Data aplikací\Microsoft\Installer\{10209B87-55D6-493E-A30A-12A265AA324E}\_5b0b29e7.exe
[2009.12.24 22:18:44 | 000,010,134 | R--- | M] () -- G:\Documents and Settings\Admin\Data aplikací\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2010.03.06 00:55:07 | 000,200,704 | ---- | M] (ESTsoft) -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS\OGREALMS Cabal\install\177789F\cabal.exe
[2010.03.06 00:55:07 | 000,200,704 | ---- | M] (ESTsoft) -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS\OGREALMS Cabal\install\177789F\og_cabal.exe
[2010.03.06 00:59:54 | 001,073,152 | ---- | M] (ESTsoft) -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS\OGREALMS Cabal\install\177789F\update.exe
[2009.07.09 04:24:17 | 000,036,864 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS\OGREALMS Cabal\install\177789F\launcher\update\ESTdnheadless.exe
[2009.07.09 04:25:42 | 000,016,384 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS\OGREALMS Cabal\install\177789F\launcher\update\w9xpopen.exe
< MD5 for: AGP440.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- G:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
< MD5 for: ATAPI.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- G:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- G:\WINDOWS\ERDNT\cache\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- G:\WINDOWS\system32\dllcache\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- G:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- G:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- G:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
< MD5 for: CDROM.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- G:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2004.08.03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- G:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.17 14:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- G:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2004.08.17 14:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- G:\WINDOWS\system32\cryptsvc.dll
[2004.08.17 14:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- G:\WINDOWS\system32\dllcache\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2004.08.17 14:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- G:\WINDOWS\ERDNT\cache\eventlog.dll
[2004.08.17 14:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- G:\WINDOWS\system32\dllcache\eventlog.dll
[2004.08.17 14:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- G:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- G:\WINDOWS\ERDNT\cache\explorer.exe
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- G:\WINDOWS\explorer.exe
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- G:\WINDOWS\system32\dllcache\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- G:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2004.08.03 21:59:14 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- G:\WINDOWS\system32\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- G:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
< MD5 for: ISAPNP.SYS >
[2001.10.24 10:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- G:\WINDOWS\system32\dllcache\isapnp.sys
[2001.10.24 10:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- G:\WINDOWS\system32\drivers\isapnp.sys
[2001.10.25 15:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- G:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\isapnp.sys
< MD5 for: LSASS.EXE >
[2004.08.17 14:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- G:\WINDOWS\ERDNT\cache\lsass.exe
[2004.08.17 14:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- G:\WINDOWS\system32\dllcache\lsass.exe
[2004.08.17 14:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- G:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2004.08.03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- G:\WINDOWS\ERDNT\cache\ndis.sys
[2004.08.03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- G:\WINDOWS\system32\dllcache\ndis.sys
[2004.08.03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- G:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2004.08.17 14:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- G:\WINDOWS\ERDNT\cache\netlogon.dll
[2004.08.17 14:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- G:\WINDOWS\system32\dllcache\netlogon.dll
[2004.08.17 14:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- G:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- G:\WINDOWS\ERDNT\cache\scecli.dll
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- G:\WINDOWS\system32\dllcache\scecli.dll
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- G:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.17 14:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- G:\WINDOWS\system32\dllcache\smss.exe
[2004.08.17 14:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- G:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2004.08.17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- G:\WINDOWS\ERDNT\cache\svchost.exe
[2004.08.17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- G:\WINDOWS\system32\dllcache\svchost.exe
[2004.08.17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- G:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2004.08.03 22:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- G:\WINDOWS\ERDNT\cache\tcpip.sys
[2004.08.03 22:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- G:\WINDOWS\system32\dllcache\tcpip.sys
[2004.08.03 22:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- G:\WINDOWS\system32\drivers\tcpip.sys
< MD5 for: USERINIT.EXE >
[2004.08.17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- G:\WINDOWS\ERDNT\cache\userinit.exe
[2004.08.17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- G:\WINDOWS\system32\dllcache\userinit.exe
[2004.08.17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- G:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2004.08.17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- G:\WINDOWS\ERDNT\cache\winlogon.exe
[2004.08.17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- G:\WINDOWS\system32\dllcache\winlogon.exe
[2004.08.17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- G:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.17 14:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- G:\WINDOWS\ERDNT\cache\ws2_32.dll
[2004.08.17 14:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- G:\WINDOWS\system32\dllcache\ws2_32.dll
[2004.08.17 14:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- G:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.09.11 21:12:11 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- G:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2009.08.26 19:19:55 | 000,094,208 | ---- | M] () -- G:\WINDOWS\system32\config\default.sav
[2009.08.26 19:19:55 | 000,663,552 | ---- | M] () -- G:\WINDOWS\system32\config\software.sav
[2009.08.26 19:19:55 | 000,479,232 | ---- | M] () -- G:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011.02.18 12:38:40 | 000,276,202 | ---- | M] () -- G:\WINDOWS\system32\NvApps.xml
[2011.02.16 16:32:19 | 000,002,206 | ---- | M] () -- G:\WINDOWS\system32\wpa.dbl
< End of report >
OTL logfile created on: 18.2.2011 22:46:46 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = G:\Documents and Settings\Admin\Plocha
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 023,00 Mb Total Physical Memory | 454,00 Mb Available Physical Memory | 44,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): G:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = G: | %SystemRoot% = G:\WINDOWS | %ProgramFiles% = G:\Program Files
Drive C: | 39,06 Gb Total Space | 15,09 Gb Free Space | 38,64% Space Free | Partition Type: NTFS
Drive D: | 140,62 Gb Total Space | 22,88 Gb Free Space | 16,27% Space Free | Partition Type: NTFS
Drive E: | 6,61 Gb Total Space | 6,61 Gb Free Space | 99,98% Space Free | Partition Type: FAT32
Drive G: | 24,41 Gb Total Space | 6,28 Gb Free Space | 25,73% Space Free | Partition Type: NTFS
Drive H: | 273,67 Gb Total Space | 84,84 Gb Free Space | 31,00% Space Free | Partition Type: NTFS
Computer Name: PC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011.02.18 22:30:37 | 000,602,624 | ---- | M] (OldTimer Tools) -- G:\Documents and Settings\Admin\Plocha\OTL.exe
PRC - [2010.12.11 15:04:53 | 000,016,856 | ---- | M] (Mozilla Corporation) -- H:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2010.12.11 15:04:50 | 000,912,344 | ---- | M] (Mozilla Corporation) -- H:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.10.17 20:38:42 | 000,742,912 | ---- | M] (FileZilla Project) -- G:\Program Files\FileZilla Server\FileZilla server.exe
PRC - [2010.04.01 10:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- G:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2009.12.22 03:31:26 | 000,217,088 | ---- | M] (Teruten) -- G:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2009.12.22 03:31:02 | 000,095,568 | ---- | M] (Devguru Co., Ltd.) -- G:\WINDOWS\system32\dgdersvc.exe
PRC - [2009.08.26 18:59:09 | 000,949,376 | ---- | M] (Eset ) -- G:\Program Files\ESET\nod32kui.exe
PRC - [2009.08.26 18:59:09 | 000,552,064 | ---- | M] (Eset ) -- G:\Program Files\ESET\nod32krn.exe
PRC - [2009.07.27 03:37:50 | 000,180,224 | ---- | M] (PowerISO Computing, Inc.) -- H:\Program Files\PowerISO\PWRISOVM.EXE
PRC - [2009.03.25 17:02:56 | 005,245,440 | ---- | M] (QIP) -- H:\Program Files\QIP Infium\infium.exe
PRC - [2008.10.31 06:24:28 | 001,365,288 | ---- | M] (Sunbelt Software, Inc.) -- H:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
PRC - [2008.10.31 06:24:28 | 000,095,528 | ---- | M] (Sunbelt Software, Inc.) -- H:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
PRC - [2008.10.31 06:24:26 | 001,705,256 | ---- | M] (Sunbelt Software, Inc.) -- H:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
PRC - [2007.12.06 21:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) -- G:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
PRC - [2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) -- G:\WINDOWS\explorer.exe
========== Modules (SafeList) ==========
MOD - [2011.02.18 22:30:37 | 000,602,624 | ---- | M] (OldTimer Tools) -- G:\Documents and Settings\Admin\Plocha\OTL.exe
MOD - [2004.08.17 14:48:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- G:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2010.10.17 20:38:42 | 000,742,912 | ---- | M] (FileZilla Project) [Auto | Running] -- G:\Program Files\FileZilla Server\FileZilla Server.exe -- (FileZilla Server)
SRV - [2009.12.22 03:31:26 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- G:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2009.12.22 03:31:02 | 000,095,568 | ---- | M] (Devguru Co., Ltd.) [Auto | Running] -- G:\WINDOWS\system32\dgdersvc.exe -- (dgdersvc)
SRV - [2009.10.19 15:06:35 | 000,306,432 | ---- | M] (TuneUp Software GmbH) [Disabled | Stopped] -- G:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009.10.11 22:27:07 | 003,369,044 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- G:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2009.10.01 23:18:30 | 000,036,352 | ---- | M] () [On_Demand | Stopped] -- H:\Program Files\OpenVPN\bin\openvpnserv.exe -- (OpenVPNService)
SRV - [2009.08.26 18:59:09 | 000,552,064 | ---- | M] (Eset ) [Auto | Running] -- G:\Program Files\Eset\nod32krn.exe -- (NOD32krn)
SRV - [2009.07.26 06:43:14 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- H:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)
SRV - [2008.11.11 08:38:06 | 000,620,544 | ---- | M] (Nokia.) [On_Demand | Stopped] -- G:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008.10.31 06:24:28 | 001,365,288 | ---- | M] (Sunbelt Software, Inc.) [Auto | Running] -- H:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe -- (SPF4)
SRV - [2008.10.31 06:24:28 | 000,095,528 | ---- | M] (Sunbelt Software, Inc.) [Auto | Running] -- H:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe -- (SbPF.Launcher)
SRV - [2007.12.20 09:41:56 | 000,029,440 | ---- | M] (TuneUp Software GmbH) [Auto | Running] -- G:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2007.12.06 21:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) [Auto | Running] -- G:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)
SRV - [2004.08.17 14:49:22 | 000,006,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\wuauserv.dll -- (wuauserv)
========== Driver Services (SafeList) ==========
DRV - [2010.10.05 17:11:24 | 006,164,584 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2010.09.11 21:12:11 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- G:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010.04.03 23:55:31 | 010,232,128 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009.12.22 03:31:26 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.12.22 03:31:02 | 000,018,136 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - [2009.11.18 06:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009.11.18 06:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009.10.01 23:18:44 | 000,025,984 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\tap0901.sys -- (tap0901)
DRV - [2009.09.19 06:30:10 | 000,123,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009.09.19 06:30:10 | 000,100,224 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\ss_bserd.sys -- (ss_bserd)
DRV - [2009.09.19 06:30:10 | 000,098,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009.09.19 06:30:10 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2009.08.26 20:25:55 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.08.26 18:59:09 | 000,512,096 | ---- | M] (Eset ) [Kernel | Auto | Running] -- G:\WINDOWS\system32\drivers\amon.sys -- (AMON)
DRV - [2009.08.26 18:59:09 | 000,015,424 | ---- | M] () [Kernel | System | Running] -- G:\WINDOWS\system32\drivers\nod32drv.sys -- (nod32drv)
DRV - [2009.07.27 03:43:18 | 000,058,908 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- G:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2008.10.31 06:09:06 | 000,270,888 | R--- | M] (Sunbelt Software, Inc.) [Kernel | System | Running] -- G:\WINDOWS\system32\drivers\SbFw.sys -- (SbFw)
DRV - [2008.08.26 08:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.06.21 03:54:54 | 000,066,600 | R--- | M] (Sunbelt Software, Inc.) [Kernel | System | Running] -- G:\WINDOWS\system32\drivers\sbhips.sys -- (sbhips)
DRV - [2008.06.21 03:54:54 | 000,065,576 | ---- | M] (Sunbelt Software, Inc.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\SbFwIm.sys -- (SBFWIMCL)
DRV - [2007.05.11 02:10:50 | 000,034,704 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio)
DRV - [2007.05.09 00:59:40 | 000,036,496 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb)
DRV - [2007.03.05 05:00:04 | 000,027,792 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\BlueletSCOAudio.sys -- (BlueletSCOAudio)
DRV - [2007.03.05 04:59:04 | 000,018,320 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\btnetdrv.sys -- (BT)
DRV - [2007.03.05 04:56:18 | 000,035,600 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- G:\WINDOWS\System32\Drivers\BTHidMgr.sys -- (BTHidMgr)
DRV - [2007.03.05 04:55:12 | 000,020,880 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- G:\WINDOWS\System32\Drivers\vbtenum.sys -- (BTHidEnum)
DRV - [2007.03.05 04:53:18 | 000,044,304 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr)
DRV - [2007.03.05 04:52:18 | 000,034,448 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\VComm.sys -- (VComm)
DRV - [2006.03.27 03:48:34 | 000,026,752 | R--- | M] (ASUSTek Computer Inc. ) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\ipfnd51.sys -- (ip100xp)
DRV - [2005.01.07 16:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- G:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004.12.06 16:55:20 | 000,126,720 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- G:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2004.10.29 04:21:14 | 000,025,067 | R--- | M] (Integrated Technology Express, Inc.) [Kernel | Boot | Running] -- G:\WINDOWS\system32\DRIVERS\iteraid.sys -- (iteraid)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: {b66bc4c3-6d25-4a10-8c59-01daa9063051}:1.5.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.1
FF - prefs.js..extensions.enabledItems: video.downloader.plugin@ffpimp.com:2.2
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: H:\Program Files\Mozilla Firefox\components [2010.12.11 15:05:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: H:\Program Files\Mozilla Firefox\plugins [2010.12.11 15:05:00 | 000,000,000 | ---D | M]
[2009.08.26 19:13:20 | 000,000,000 | ---D | M] (No name found) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Extensions
[2011.02.18 22:38:36 | 000,000,000 | ---D | M] (No name found) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\extensions
[2009.08.26 21:06:00 | 000,000,000 | ---D | M] (FoxGame) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\extensions\{b66bc4c3-6d25-4a10-8c59-01daa9063051}
[2010.10.21 21:12:52 | 000,000,000 | ---D | M] (DownloadHelper) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.10.21 21:12:53 | 000,000,000 | ---D | M] (Adblock Plus) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.08.23 00:15:43 | 000,000,000 | ---D | M] (Download Youtube Videos +) -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\extensions\video.downloader.plugin@ffpimp.com
[2008.02.24 14:59:22 | 000,002,920 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\searchplugins\daemon-search.xml
[2009.05.31 01:03:56 | 000,001,546 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\w3o702fj.default\searchplugins\wowhead.xml
File not found (No name found) -- G:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\W3O702FJ.DEFAULT\EXTENSIONS\{B66BC4C3-6D25-4A10-8C59-01DAA9063051}
File not found (No name found) -- G:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\W3O702FJ.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
File not found (No name found) -- G:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\W3O702FJ.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}
File not found (No name found) -- G:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\W3O702FJ.DEFAULT\EXTENSIONS\VIDEO.DOWNLOADER.PLUGIN@FFPIMP.COM
[2009.08.26 20:13:12 | 000,000,000 | ---D | M] (Java Quick Starter) -- H:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010.02.15 15:43:43 | 000,000,000 | ---D | M] (Java Console) -- H:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
O1 HOSTS File: ([2010.08.08 18:04:06 | 000,000,027 | ---- | M]) - G:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - G:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - G:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - G:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - G:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - G:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - G:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [nod32kui] G:\Program Files\Eset\nod32kui.exe (Eset )
O4 - HKLM..\Run: [NvCplDaemon] G:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] G:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PWRISOVM.EXE] H:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O4 - HKLM..\Run: [UpdateReminder] G:\Program Files\ESET\UpdateReminder.exe (ESET, spol. s r.o.)
O4 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003..\Run: [DAEMON Tools Lite] G:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003..\Run: [Infium] H:\Program Files\QIP Infium\infium.exe (QIP)
O4 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003..\Run: [Skype] G:\Documents and Settings\Admin\Plocha\Programy\Skype.exe (Skype Technologies S.A.)
O4 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003..\Run: [Steam] h:\program files\steam\steam.exe (Valve Corporation)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] H:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003..\RunOnce: [FlashPlayerUpdate] G:\WINDOWS\System32\Macromed\Flash\FlashUtil10h_ActiveX.exe (Adobe Systems, Inc.)
O4 - Startup: G:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\BlueSoleil.lnk = G:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - H:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - G:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - G:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - G:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - G:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - G:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - G:\WINDOWS\System32\imon.dll (Eset )
O12 - Plugin for: .spop - G:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - G:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - G:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: G:\Documents and Settings\Admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: G:\Documents and Settings\Admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.03.15 04:10:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009.05.08 13:08:24 | 000,000,000 | R--D | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.05.08 13:08:25 | 000,000,000 | R--D | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009.05.08 14:08:26 | 000,000,000 | R--D | M] - E:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - G:\WINDOWS\system32\uxtuneup.dll (TuneUp Software GmbH)
NetSvcs: WmdmPmSp - File not found
NetSvcs: wuauserv - C:\WINDOWS\system32\wuauserv.dll (Microsoft Corporation)
Drivers32: msacm.ac3acm - G:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.divxa32 - G:\WINDOWS\System32\msaud32_divx.acm (Microsoft Corporation)
Drivers32: msacm.iac2 - G:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - G:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - G:\WINDOWS\System32\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - G:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - G:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - G:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.DIVX - G:\WINDOWS\System32\divx.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - G:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.I420 - G:\WINDOWS\System32\i420vfw.dll (www.helixcommunity.org)
Drivers32: vidc.iv31 - G:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - G:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - G:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - G:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - G:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - G:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: VIDC.XVID - G:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - G:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (56308606093492224)
========== Files/Folders - Created Within 30 Days ==========
[2011.02.18 22:31:58 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- G:\Documents and Settings\Admin\Plocha\mbam-setup-1.50.1.1100.exe
[2011.02.18 22:29:33 | 000,602,624 | ---- | C] (OldTimer Tools) -- G:\Documents and Settings\Admin\Plocha\OTL.exe
[2011.02.18 13:03:07 | 000,000,000 | -HSD | C] -- G:\RECYCLER
[2011.02.17 17:39:30 | 000,000,000 | ---D | C] -- G:\WINDOWS\temp
[2011.02.17 17:30:10 | 000,000,000 | ---D | C] -- G:\ComboFix
[2011.02.17 16:03:03 | 000,212,480 | ---- | C] (SteelWerX) -- G:\WINDOWS\SWXCACLS.exe
[2011.02.17 16:03:03 | 000,161,792 | ---- | C] (SteelWerX) -- G:\WINDOWS\SWREG.exe
[2011.02.17 16:03:03 | 000,136,704 | ---- | C] (SteelWerX) -- G:\WINDOWS\SWSC.exe
[2011.02.17 16:03:03 | 000,031,232 | ---- | C] (NirSoft) -- G:\WINDOWS\NIRCMD.exe
[2011.02.17 16:02:48 | 000,000,000 | ---D | C] -- G:\WINDOWS\ERDNT
[2011.02.17 16:02:30 | 000,000,000 | ---D | C] -- G:\Qoobox
[2011.02.16 16:52:32 | 000,000,000 | ---D | C] -- G:\Program Files\Common Files\Skype
[2011.02.13 11:15:57 | 000,000,000 | ---D | C] -- G:\Documents and Settings\Admin\Plocha\Fichtl-fotky
[2009.11.29 17:24:11 | 000,047,360 | ---- | C] (VSO Software) -- G:\Documents and Settings\Admin\Data aplikací\pcouffin.sys
========== Files - Modified Within 30 Days ==========
[2011.02.18 22:35:17 | 000,000,682 | ---- | M] () -- G:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.02.18 22:33:23 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- G:\Documents and Settings\Admin\Plocha\mbam-setup-1.50.1.1100.exe
[2011.02.18 22:30:37 | 000,602,624 | ---- | M] (OldTimer Tools) -- G:\Documents and Settings\Admin\Plocha\OTL.exe
[2011.02.18 17:16:52 | 000,000,376 | ---- | M] () -- G:\WINDOWS\tasks\1-Click Maintenance.job
[2011.02.18 16:03:56 | 000,084,871 | ---- | M] () -- G:\Documents and Settings\Admin\Plocha\Qoobox.rar
[2011.02.18 12:38:40 | 000,276,202 | ---- | M] () -- G:\WINDOWS\System32\NvApps.xml
[2011.02.18 12:38:34 | 000,002,048 | --S- | M] () -- G:\WINDOWS\bootstat.dat
[2011.02.17 17:44:24 | 1073,307,648 | ---- | M] () -- G:\WINDOWS\MEMORY.DMP
[2011.02.17 17:28:19 | 004,270,376 | R--- | M] () -- G:\Documents and Settings\Admin\Plocha\ComboFix.exe
[2011.02.17 12:49:23 | 000,000,986 | ---- | M] () -- G:\Documents and Settings\Admin\Plocha\FileZilla Server Interface.lnk
[2011.02.16 19:18:31 | 000,001,288 | ---- | M] () -- G:\Documents and Settings\Admin\Plocha\Zástupce - savy TITAN QUEST 12.12.2010.lnk
[2011.02.16 19:18:15 | 000,000,737 | ---- | M] () -- G:\Documents and Settings\All Users\Plocha\Play League of Legends.lnk
[2011.02.16 16:44:39 | 000,132,245 | ---- | M] () -- G:\Documents and Settings\Admin\Plocha\ikony.JPG
[2011.02.16 16:32:19 | 000,002,206 | ---- | M] () -- G:\WINDOWS\System32\wpa.dbl
[2011.02.16 12:50:14 | 000,000,336 | ---- | M] () -- G:\Documents and Settings\Admin\Dokumenty\spider.sav
[2011.02.12 18:39:02 | 000,109,568 | ---- | M] () -- G:\Documents and Settings\Admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.11 15:42:25 | 000,000,661 | ---- | M] () -- G:\Documents and Settings\Admin\Plocha\Pampuch.lnk
[2011.02.06 22:04:17 | 000,000,069 | ---- | M] () -- G:\WINDOWS\NeroDigital.ini
========== Files Created - No Company Name ==========
[2011.02.18 22:35:16 | 000,000,682 | ---- | C] () -- G:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.02.18 16:03:55 | 000,084,871 | ---- | C] () -- G:\Documents and Settings\Admin\Plocha\Qoobox.rar
[2011.02.17 17:27:20 | 004,270,376 | R--- | C] () -- G:\Documents and Settings\Admin\Plocha\ComboFix.exe
[2011.02.17 16:03:03 | 000,256,512 | ---- | C] () -- G:\WINDOWS\PEV.exe
[2011.02.17 16:03:03 | 000,098,816 | ---- | C] () -- G:\WINDOWS\sed.exe
[2011.02.17 16:03:03 | 000,089,088 | ---- | C] () -- G:\WINDOWS\MBR.exe
[2011.02.17 16:03:03 | 000,080,412 | ---- | C] () -- G:\WINDOWS\grep.exe
[2011.02.17 16:03:03 | 000,068,096 | ---- | C] () -- G:\WINDOWS\zip.exe
[2011.02.16 16:44:39 | 000,132,245 | ---- | C] () -- G:\Documents and Settings\Admin\Plocha\ikony.JPG
[2011.02.10 20:45:25 | 000,000,661 | ---- | C] () -- G:\Documents and Settings\Admin\Plocha\Pampuch.lnk
[2010.10.30 23:14:48 | 000,043,520 | ---- | C] () -- G:\WINDOWS\System32\CmdLineExt03.dll
[2010.09.30 17:53:13 | 000,002,192 | ---- | C] () -- G:\WINDOWS\WDICT32.INI
[2010.09.16 17:43:34 | 000,000,565 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\myMPQ.ini
[2010.08.03 20:03:15 | 000,110,592 | ---- | C] () -- G:\WINDOWS\System32\FsUsbExDevice.Dll
[2010.08.03 20:03:15 | 000,036,640 | ---- | C] () -- G:\WINDOWS\System32\FsUsbExDisk.Sys
[2010.08.03 20:02:42 | 000,002,528 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\$_hpcst$.hpc
[2010.07.30 00:27:42 | 000,165,376 | ---- | C] () -- G:\WINDOWS\System32\unrar.dll
[2010.07.30 00:27:41 | 000,000,038 | ---- | C] () -- G:\WINDOWS\avisplitter.ini
[2010.07.30 00:27:30 | 000,790,528 | ---- | C] () -- G:\WINDOWS\System32\xvidcore.dll
[2010.07.30 00:27:30 | 000,134,144 | ---- | C] () -- G:\WINDOWS\System32\xvidvfw.dll
[2010.07.30 00:27:11 | 000,108,032 | ---- | C] () -- G:\WINDOWS\System32\ff_vfw.dll
[2010.07.17 11:11:17 | 000,711,872 | ---- | C] () -- G:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2009.11.29 17:24:36 | 000,001,185 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\vso_ts_preview.xml
[2009.11.29 17:24:22 | 000,000,034 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\pcouffin.log
[2009.11.29 17:24:12 | 000,087,608 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\inst.exe
[2009.11.29 17:24:11 | 000,007,887 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\pcouffin.cat
[2009.11.29 17:24:11 | 000,001,144 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\pcouffin.inf
[2009.11.12 17:04:51 | 000,005,000 | ---- | C] () -- G:\Documents and Settings\All Users\Data aplikací\xqkcebzs.dik
[2009.11.12 17:04:48 | 000,004,886 | ---- | C] () -- G:\Documents and Settings\All Users\Data aplikací\kgkketov.ixb
[2009.11.09 03:08:10 | 000,974,848 | ---- | C] () -- G:\WINDOWS\System32\cis-2.4.dll
[2009.11.09 03:08:10 | 000,081,920 | ---- | C] () -- G:\WINDOWS\System32\issacapi_bs-2.3.dll
[2009.11.09 03:08:10 | 000,065,536 | ---- | C] () -- G:\WINDOWS\System32\issacapi_pe-2.3.dll
[2009.11.09 03:08:10 | 000,057,344 | ---- | C] () -- G:\WINDOWS\System32\issacapi_se-2.3.dll
[2009.11.06 16:49:46 | 000,000,000 | ---- | C] () -- G:\WINDOWS\EEventManager.INI
[2009.10.30 15:19:55 | 000,374,272 | ---- | C] () -- G:\WINDOWS\System32\mss32.dll
[2009.10.24 23:40:14 | 000,000,754 | ---- | C] () -- G:\WINDOWS\WORDPAD.INI
[2009.10.24 21:15:32 | 000,000,410 | ---- | C] () -- G:\WINDOWS\{27018D57-D152-44EF-BCE0-5E3B3445EABE}_WiseFW.ini
[2009.10.09 13:59:16 | 000,022,328 | ---- | C] () -- G:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.10.09 13:59:12 | 000,022,328 | ---- | C] () -- G:\Documents and Settings\Admin\Data aplikací\PnkBstrK.sys
[2009.10.03 11:02:58 | 000,000,069 | ---- | C] () -- G:\WINDOWS\NeroDigital.ini
[2009.10.01 17:24:07 | 000,004,580 | ---- | C] () -- G:\WINDOWS\WTRAN32.INI
[2009.08.29 17:10:11 | 000,000,322 | ---- | C] () -- G:\WINDOWS\wcx_ftp.ini
[2009.08.29 17:09:34 | 000,000,399 | ---- | C] () -- G:\WINDOWS\WINCMD.INI
[2009.08.26 20:01:28 | 000,691,696 | ---- | C] () -- G:\WINDOWS\System32\drivers\sptd.sys
[2009.08.26 19:25:28 | 000,004,249 | ---- | C] () -- G:\WINDOWS\ODBCINST.INI
[2009.08.26 19:01:23 | 000,015,424 | ---- | C] () -- G:\WINDOWS\System32\drivers\nod32drv.sys
[2009.08.26 18:50:55 | 000,000,390 | ---- | C] () -- G:\WINDOWS\ODBC.INI
[2009.08.26 18:32:07 | 000,000,097 | ---- | C] () -- G:\WINDOWS\System32\PICSDK.ini
[2009.08.26 18:28:32 | 000,000,026 | ---- | C] () -- G:\WINDOWS\CDE DX4000.ini
[2009.08.26 17:54:36 | 000,109,568 | ---- | C] () -- G:\Documents and Settings\Admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.08.02 23:21:54 | 000,197,912 | ---- | C] () -- G:\WINDOWS\System32\physxcudart_20.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelSwedish.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelSpanish.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelPortugese.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelKorean.dll
[2009.08.02 23:21:54 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelJapanese.dll
[2009.08.02 23:21:52 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelGerman.dll
[2009.08.02 23:21:52 | 000,058,648 | ---- | C] () -- G:\WINDOWS\System32\AgCPanelFrench.dll
[2009.04.22 00:19:06 | 000,172,173 | ---- | C] () -- G:\WINDOWS\System32\xlive.dll.cat
[2008.11.15 19:02:26 | 001,866,670 | ---- | C] () -- G:\WINDOWS\System32\libfftw3f-3.dll
[2008.04.05 18:53:24 | 000,140,288 | ---- | C] () -- G:\WINDOWS\System32\avsfilter.dll
[2005.10.10 14:49:00 | 000,573,440 | ---- | C] () -- G:\WINDOWS\System32\nvhwvid.dll
[2005.10.10 14:49:00 | 000,286,720 | ---- | C] () -- G:\WINDOWS\System32\nvnt4cpl.dll
[2005.09.13 04:09:34 | 000,004,608 | ---- | C] () -- G:\WINDOWS\System32\AvsRecursion.dll
[2004.08.17 14:49:10 | 000,081,920 | ---- | C] () -- G:\WINDOWS\System32\ieencode.dll
[2004.07.17 10:36:38 | 000,011,376 | ---- | C] () -- G:\WINDOWS\System32\drivers\secdrv.sys
[2004.01.30 05:44:56 | 001,627,136 | ---- | C] () -- G:\WINDOWS\System32\fftw3.dll
[2004.01.24 03:35:44 | 000,057,344 | ---- | C] () -- G:\WINDOWS\System32\avisynth_c.dll
========== LOP Check ==========
[2010.12.29 16:03:42 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Awem
[2009.11.22 14:37:41 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\BSplayer
[2009.12.18 20:44:11 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Command & Conquer 3 Tiberium Wars
[2009.10.09 13:21:11 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\DAEMON Tools
[2009.08.30 19:34:37 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\DAEMON Tools Lite
[2009.12.06 18:40:49 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Divo Games
[2009.11.25 16:17:03 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\EleFun Games
[2010.04.26 16:23:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\EPSON
[2010.10.22 17:15:20 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\GetRightToGo
[2009.10.30 16:25:04 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\ImgBurn
[2009.08.26 18:22:31 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\InterTrust
[2009.10.17 20:28:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\InterVideo
[2010.11.19 22:42:50 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\LolClient
[2010.05.30 12:32:26 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\md studio
[2009.12.23 21:21:37 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\MobMapUpdater
[2010.11.06 20:41:40 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Mumble
[2010.08.12 07:14:07 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS
[2010.05.30 12:27:47 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Plan It Green Files
[2010.10.14 19:55:51 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Quest3D
[2009.10.29 20:32:51 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Red Alert 3
[2010.08.03 19:58:48 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Samsung
[2010.10.30 23:15:06 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Sierra
[2010.08.11 09:45:17 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\SPORE
[2010.11.18 18:41:43 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010.12.27 19:44:01 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TeamViewer
[2010.09.15 15:53:00 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Trio
[2010.11.29 18:39:40 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TS3Client
[2009.10.19 15:01:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TuneUp Software
[2010.12.11 17:20:49 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Ubisoft
[2009.11.25 16:11:50 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\URSE Games
[2011.01.13 19:02:36 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Vso
[2010.06.01 23:21:44 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\BC
[2010.05.24 16:40:53 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\BCR
[2009.11.20 18:33:03 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\BioWare
[2009.09.24 16:14:33 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\Bluetooth
[2010.09.11 21:11:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2009.10.13 15:16:20 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\DivoGames
[2009.11.06 16:15:24 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\EPSON
[2010.10.16 09:58:51 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\espionServerData
[2010.07.16 21:37:12 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\FireGlow
[2010.04.11 14:11:35 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\GameXzone
[2009.09.29 14:13:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\LightScribe
[2010.11.17 16:15:00 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\PMB Files
[2010.11.18 15:40:22 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2010.08.03 20:03:20 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\Samsung
[2009.08.26 23:00:59 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\SugarGames
[2009.12.31 02:01:46 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\TEMP
[2009.10.19 15:06:26 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2010.12.11 16:57:18 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2009.11.06 16:14:15 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\UDL
[2009.10.24 21:21:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\All Users\Data aplikací\XBlades
[2011.02.12 18:50:40 | 000,000,000 | -H-D | M] -- G:\Documents and Settings\All Users\Data aplikací\{0691F710-1ECA-4B5A-9727-25554F1BFDC6}
[2011.02.18 17:16:52 | 000,000,376 | ---- | M] () -- G:\WINDOWS\Tasks\1-Click Maintenance.job
[2010.12.13 07:01:52 | 000,000,374 | ---- | M] () -- G:\WINDOWS\Tasks\Úklid 1 kliknutím.job
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Steam" = "h:\program files\steam\steam.exe" -silent -- [2010.11.17 09:48:11 | 001,242,448 | ---- | M] (Valve Corporation)
"DAEMON Tools Lite" = "G:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2010.04.01 10:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd)
"Infium" = "H:\Program Files\QIP Infium\infium.exe" /autorun /autorun /autorun /autorun /autorun /autorun -- [2009.03.25 17:02:56 | 005,245,440 | ---- | M] (QIP)
"Skype" = "G:\Documents and Settings\Admin\Plocha\Programy\Skype.exe" /nosplash /minimized -- [2010.12.03 16:46:34 | 014,944,136 | R--- | M] (Skype Technologies S.A.)
< c:\windows\*.* /U >
[2 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010.11.08 16:21:08 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\ABBYY
[2010.11.18 15:51:30 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Adobe
[2010.11.18 18:41:44 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Adobe Mini Bridge CS5
[2009.11.22 14:32:48 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Ahead
[2010.12.29 16:03:42 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Awem
[2009.11.22 14:37:41 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\BSplayer
[2009.12.18 20:44:11 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Command & Conquer 3 Tiberium Wars
[2009.10.09 13:21:11 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\DAEMON Tools
[2009.08.30 19:34:37 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\DAEMON Tools Lite
[2009.12.06 18:40:49 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Divo Games
[2009.11.25 16:17:03 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\EleFun Games
[2010.04.26 16:23:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\EPSON
[2010.10.22 17:15:20 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\GetRightToGo
[2010.01.15 11:58:18 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Google
[2009.08.26 19:48:49 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\GRETECH
[2010.07.12 16:07:16 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Hamachi
[2010.09.24 17:46:04 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Help
[2009.08.26 17:41:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Identities
[2009.10.30 16:25:04 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\ImgBurn
[2009.08.26 18:22:31 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\InterTrust
[2009.10.17 20:28:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\InterVideo
[2010.11.19 22:42:50 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\LolClient
[2010.07.21 08:11:39 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Macromedia
[2010.08.09 15:48:28 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Malwarebytes
[2010.05.30 12:32:26 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\md studio
[2010.02.07 15:16:27 | 000,000,000 | --SD | M] -- G:\Documents and Settings\Admin\Data aplikací\Microsoft
[2009.10.23 22:44:01 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Microsoft Games
[2009.12.23 21:21:37 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\MobMapUpdater
[2009.08.26 19:13:02 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Mozilla
[2010.11.06 20:41:40 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Mumble
[2010.08.12 07:14:07 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS
[2010.05.30 12:27:47 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Plan It Green Files
[2010.10.14 19:55:51 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Quest3D
[2009.10.29 20:32:51 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Red Alert 3
[2010.08.03 19:58:48 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Samsung
[2009.12.19 21:21:49 | 000,000,000 | RH-D | M] -- G:\Documents and Settings\Admin\Data aplikací\SecuROM
[2010.10.30 23:15:06 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Sierra
[2011.02.18 19:08:30 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Skype
[2011.02.18 16:09:24 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\skypePM
[2010.08.11 09:45:17 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\SPORE
[2010.11.18 18:41:43 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2009.08.26 20:10:21 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Sun
[2010.12.27 19:44:01 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TeamViewer
[2010.09.15 15:53:00 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Trio
[2010.11.29 18:39:40 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TS3Client
[2009.10.19 15:01:19 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\TuneUp Software
[2010.12.11 17:20:49 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Ubisoft
[2009.11.25 16:11:50 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\URSE Games
[2010.02.11 14:56:32 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Ventrilo
[2011.01.13 19:02:36 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Vso
[2009.08.26 21:26:59 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\Winamp
[2009.08.26 19:17:12 | 000,000,000 | ---D | M] -- G:\Documents and Settings\Admin\Data aplikací\WinRAR
< %APPDATA%\*.exe /s >
[2010.11.14 19:06:00 | 000,087,608 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\inst.exe
[2007.03.22 11:46:40 | 000,126,976 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\GRETECH\GomPlayer\GrLauncher.exe
[2009.10.19 16:48:17 | 000,003,262 | R--- | M] () -- G:\Documents and Settings\Admin\Data aplikací\Microsoft\Installer\{10209B87-55D6-493E-A30A-12A265AA324E}\_5b0b29e7.exe
[2009.12.24 22:18:44 | 000,010,134 | R--- | M] () -- G:\Documents and Settings\Admin\Data aplikací\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2010.03.06 00:55:07 | 000,200,704 | ---- | M] (ESTsoft) -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS\OGREALMS Cabal\install\177789F\cabal.exe
[2010.03.06 00:55:07 | 000,200,704 | ---- | M] (ESTsoft) -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS\OGREALMS Cabal\install\177789F\og_cabal.exe
[2010.03.06 00:59:54 | 001,073,152 | ---- | M] (ESTsoft) -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS\OGREALMS Cabal\install\177789F\update.exe
[2009.07.09 04:24:17 | 000,036,864 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS\OGREALMS Cabal\install\177789F\launcher\update\ESTdnheadless.exe
[2009.07.09 04:25:42 | 000,016,384 | ---- | M] () -- G:\Documents and Settings\Admin\Data aplikací\OGREALMS\OGREALMS Cabal\install\177789F\launcher\update\w9xpopen.exe
< MD5 for: AGP440.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- G:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
< MD5 for: ATAPI.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- G:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- G:\WINDOWS\ERDNT\cache\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- G:\WINDOWS\system32\dllcache\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- G:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- G:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- G:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
< MD5 for: CDROM.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- G:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2004.08.03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- G:\WINDOWS\system32\drivers\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.17 14:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- G:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2004.08.17 14:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- G:\WINDOWS\system32\cryptsvc.dll
[2004.08.17 14:49:04 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- G:\WINDOWS\system32\dllcache\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2004.08.17 14:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- G:\WINDOWS\ERDNT\cache\eventlog.dll
[2004.08.17 14:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- G:\WINDOWS\system32\dllcache\eventlog.dll
[2004.08.17 14:49:08 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- G:\WINDOWS\system32\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- G:\WINDOWS\ERDNT\cache\explorer.exe
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- G:\WINDOWS\explorer.exe
[2004.08.17 14:49:24 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- G:\WINDOWS\system32\dllcache\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- G:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2004.08.03 21:59:14 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- G:\WINDOWS\system32\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.17 14:57:28 | 018,786,869 | ---- | M] () .cab file -- G:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
< MD5 for: ISAPNP.SYS >
[2001.10.24 10:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- G:\WINDOWS\system32\dllcache\isapnp.sys
[2001.10.24 10:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- G:\WINDOWS\system32\drivers\isapnp.sys
[2001.10.25 15:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- G:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\isapnp.sys
< MD5 for: LSASS.EXE >
[2004.08.17 14:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- G:\WINDOWS\ERDNT\cache\lsass.exe
[2004.08.17 14:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- G:\WINDOWS\system32\dllcache\lsass.exe
[2004.08.17 14:49:24 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- G:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2004.08.03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- G:\WINDOWS\ERDNT\cache\ndis.sys
[2004.08.03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- G:\WINDOWS\system32\dllcache\ndis.sys
[2004.08.03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- G:\WINDOWS\system32\drivers\ndis.sys
< MD5 for: NETLOGON.DLL >
[2004.08.17 14:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- G:\WINDOWS\ERDNT\cache\netlogon.dll
[2004.08.17 14:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- G:\WINDOWS\system32\dllcache\netlogon.dll
[2004.08.17 14:49:14 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- G:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- G:\WINDOWS\ERDNT\cache\scecli.dll
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- G:\WINDOWS\system32\dllcache\scecli.dll
[2004.08.17 14:49:18 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- G:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.17 14:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- G:\WINDOWS\system32\dllcache\smss.exe
[2004.08.17 14:49:28 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- G:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2004.08.17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- G:\WINDOWS\ERDNT\cache\svchost.exe
[2004.08.17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- G:\WINDOWS\system32\dllcache\svchost.exe
[2004.08.17 14:49:28 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- G:\WINDOWS\system32\svchost.exe
< MD5 for: TCPIP.SYS >
[2004.08.03 22:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- G:\WINDOWS\ERDNT\cache\tcpip.sys
[2004.08.03 22:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- G:\WINDOWS\system32\dllcache\tcpip.sys
[2004.08.03 22:14:42 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- G:\WINDOWS\system32\drivers\tcpip.sys
< MD5 for: USERINIT.EXE >
[2004.08.17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- G:\WINDOWS\ERDNT\cache\userinit.exe
[2004.08.17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- G:\WINDOWS\system32\dllcache\userinit.exe
[2004.08.17 14:49:28 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- G:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >
[2004.08.17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- G:\WINDOWS\ERDNT\cache\winlogon.exe
[2004.08.17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- G:\WINDOWS\system32\dllcache\winlogon.exe
[2004.08.17 14:49:28 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- G:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.17 14:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- G:\WINDOWS\ERDNT\cache\ws2_32.dll
[2004.08.17 14:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- G:\WINDOWS\system32\dllcache\ws2_32.dll
[2004.08.17 14:49:22 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- G:\WINDOWS\system32\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010.09.11 21:12:11 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- G:\WINDOWS\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2009.08.26 19:19:55 | 000,094,208 | ---- | M] () -- G:\WINDOWS\system32\config\default.sav
[2009.08.26 19:19:55 | 000,663,552 | ---- | M] () -- G:\WINDOWS\system32\config\software.sav
[2009.08.26 19:19:55 | 000,479,232 | ---- | M] () -- G:\WINDOWS\system32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011.02.18 12:38:40 | 000,276,202 | ---- | M] () -- G:\WINDOWS\system32\NvApps.xml
[2011.02.16 16:32:19 | 000,002,206 | ---- | M] () -- G:\WINDOWS\system32\wpa.dbl
< End of report >
Re: Zmizeli vsechny ikony
OTL Extras logfile created on: 18.2.2011 22:46:46 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = G:\Documents and Settings\Admin\Plocha
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 023,00 Mb Total Physical Memory | 454,00 Mb Available Physical Memory | 44,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): G:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = G: | %SystemRoot% = G:\WINDOWS | %ProgramFiles% = G:\Program Files
Drive C: | 39,06 Gb Total Space | 15,09 Gb Free Space | 38,64% Space Free | Partition Type: NTFS
Drive D: | 140,62 Gb Total Space | 22,88 Gb Free Space | 16,27% Space Free | Partition Type: NTFS
Drive E: | 6,61 Gb Total Space | 6,61 Gb Free Space | 99,98% Space Free | Partition Type: FAT32
Drive G: | 24,41 Gb Total Space | 6,28 Gb Free Space | 25,73% Space Free | Partition Type: NTFS
Drive H: | 273,67 Gb Total Space | 84,84 Gb Free Space | 31,00% Space Free | Partition Type: NTFS
Computer Name: PC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- H:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- "H:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"59101:TCP" = 59101:TCP:*:Enabled:Pando Media Booster
"59101:UDP" = 59101:UDP:*:Enabled:Pando Media Booster
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"59101:TCP" = 59101:TCP:*:Enabled:Pando Media Booster
"59101:UDP" = 59101:UDP:*:Enabled:Pando Media Booster
"8396:TCP" = 8396:TCP:*:Enabled:League of Legends Launcher
"8396:UDP" = 8396:UDP:*:Enabled:League of Legends Launcher
"6978:TCP" = 6978:TCP:*:Enabled:League of Legends Launcher
"6978:UDP" = 6978:UDP:*:Enabled:League of Legends Launcher
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"6920:TCP" = 6920:TCP:*:Enabled:League of Legends Launcher
"6920:UDP" = 6920:UDP:*:Enabled:League of Legends Launcher
"6935:TCP" = 6935:TCP:*:Enabled:League of Legends Launcher
"6935:UDP" = 6935:UDP:*:Enabled:League of Legends Launcher
"6975:TCP" = 6975:TCP:*:Enabled:League of Legends Launcher
"6975:UDP" = 6975:UDP:*:Enabled:League of Legends Launcher
"6906:TCP" = 6906:TCP:*:Enabled:League of Legends Launcher
"6906:UDP" = 6906:UDP:*:Enabled:League of Legends Launcher
"6919:TCP" = 6919:TCP:*:Enabled:League of Legends Launcher
"6919:UDP" = 6919:UDP:*:Enabled:League of Legends Launcher
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"G:\Program Files\Pando Networks\Media Booster\PMB.exe" = G:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"G:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe" = G:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil -- (IVT Corporation.)
"H:\Program Files\XBlades\xblades.exe" = H:\Program Files\XBlades\xblades.exe:*:Enabled:xblades.exe -- (Gaijin Entertainment)
"H:\Program Files\XBlades\launcher.exe" = H:\Program Files\XBlades\launcher.exe:*:Enabled:launcher.exe -- (Gaijin Entertainment)
"H:\Program Files\Dragon Age\DAOriginsLauncher.exe" = H:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:${SafeProductName} ${FirewallName_Launcher} -- (BioWare)
"H:\Program Files\Dragon Age\bin_ship\daorigins.exe" = H:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:${SafeProductName} ${FirewallName_Game} -- (BioWare)
"H:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe" = H:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:${SafeProductName} ${FirewallName_Updater} -- (BioWare)
"H:\Program Files\capcom\Bionic Commando Rearmed\bcr.exe" = H:\Program Files\capcom\Bionic Commando Rearmed\bcr.exe:*:Enabled:Bionic Commando Rearmed -- ()
"H:\Program Files\Steam\steamapps\common\alien swarm\srcds.exe" = H:\Program Files\Steam\steamapps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server -- ()
"H:\Program Files\Steam\steamapps\common\alien swarm\swarm.exe" = H:\Program Files\Steam\steamapps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm -- ()
"G:\Program Files\Pando Networks\Media Booster\PMB.exe" = G:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\Riot Games\League of Legends\air\LolClient.exe" = C:\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby -- (Adobe Systems Inc.)
"C:\Riot Games\League of Legends\game\League of Legends.exe" = C:\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client -- ()
"H:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe" = H:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead -- ()
"H:\Program Files\Steam\steamapps\common\left 4 dead 2\srcds.exe" = H:\Program Files\Steam\steamapps\common\left 4 dead 2\srcds.exe:*:Enabled:Left 4 Dead 2 Dedicated Server -- ()
"H:\Program Files\Steam\steamapps\common\left 4 dead 2\left4dead2.exe" = H:\Program Files\Steam\steamapps\common\left 4 dead 2\left4dead2.exe:*:Enabled:Left 4 Dead 2 -- ()
"H:\Program Files\Steam\steamapps\common\left 4 dead 2\bin\SDKLauncher.exe" = H:\Program Files\Steam\steamapps\common\left 4 dead 2\bin\SDKLauncher.exe:*:Enabled:Left 4 Dead 2 Authoring Tools -- ()
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}" = Microsoft Games for Windows - LIVE Redistributable
"{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{10209B87-55D6-493E-A30A-12A265AA324E}" = TQ Defiler
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{15095BF3-A3D7-4DDF-B193-3A496881E003}" = Microsoft .NET Framework 3.0
"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 17
"{27018D57-D152-44EF-BCE0-5E3B3445EABE}" = X-Blades
"{296D8550-CB06-48E4-9A8B-E5034FB64715}" = Command & Conquer™ Red Alert™ 3
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{34610DE0-3C13-42CA-8E32-01FFA38AB6E8}" = PC Connectivity Solution
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{412B69AF-C352-4F6F-A318-B92B3CB9ACC6}" = Titan Quest
"{438BB9B4-65FE-4626-91D9-A8F57B18001D}" = Bluesoleil2.6.0.8 Release 070517
"{48F22622-1CC2-4A83-9C1E-644DD96F832D}" = Epson Event Manager
"{491DD792-AD81-429C-9EB4-86DD3D22E333}" = Windows Communication Foundation
"{4D243BA7-9AC4-46D1-90E5-EEB88974F501}" = Microsoft Games for Windows - LIVE
"{52B65911-1559-4ED5-9461-46957FDD48CD}" = Borderlands
"{5888428E-699C-4E71-BF71-94EE06B497DA}" = TuneUp Utilities 2008
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{6DA45476-E594-432A-AD13-28A01E5F5035}_is1" = Convert MP3 V3.02
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7353BAE6-5E49-46C4-A9B5-8A269A313789}" = Crysis WARHEAD(R)
"{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}" = Windows Workflow Foundation
"{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page
"{82B1150E-9B37-49FC-83EB-D52197D900D0}" = Sunbelt Personal Firewall
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}" = Epson Easy Photo Print 2
"{8874FD36-7C9D-4573-8956-E368D6753D90}" = Worms Blast
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{909F8EBC-EC7F-48FF-0085-475D818F0F31}" = Need for Speed Underground 2
"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9DF0196F-B6B8-4C3A-8790-DE42AA530101}" = SPORE™
"{9F1B135A-F28C-45CD-9F6F-5989D62142E3}" = TQ Portable.NET
"{A61A59E2-5499-4164-B588-470387E149C9}" = TQ Defiler.NET
"{A87B11AC-4344-4E5D-8B12-8F471A87DAD9}" = LightScribe 1.4.136.1
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.1 - Czech
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Prameny
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B249D104-F05D-400D-B4E6-2E9703558C3B}_is1" = Re-MortalRO v1.0
"{B28B351F-1232-46EA-85EF-B8EA91641029}" = Nero 7 Essentials
"{B90450DF-E781-46FD-B1F1-0C86DA40E443}" = PIF DESIGNER
"{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}" = The Sims™ 3 Cestovní horečka
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C084BC61-E537-11DE-8616-005056806466}" = Google Earth
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}" = Kies
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DB219559-1F78-4343-9A6E-C2E987AD47A3}" = Bionic Commando Rearmed
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.1.4.338
"{DF315348-721C-40B8-BAE2-58C6C7D935A2}" = Empire Earth II
"{E1071C00-B001-4633-B9C3-164C856D5730}" = Bionic Commando
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{EDFB64A7-5BFD-4137-943D-5663149A15F5}" = Heroes of Might and Magic III Complete
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F9000000-0001-0000-0000-074957833700}" = ABBYY FineReader 9.0 Professional Edition
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AgeOfEmerald_is1" = Age Of Emerald
"Anders Kjersem - Startup Control Panel_is1" = Anders Kjersem: Startup Control Panel
"Around the World in 80 Days_is1" = Around the World in 80 Days
"Atlantis Quest_is1" = Atlantis Quest
"Bato_is1" = Bato
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Crysis WARHEAD(R)" = Crysis WARHEAD(R)
"Defcon_is1" = Defcon Patch 1.43
"Diamond Lines_is1" = Diamond Lines
"DriverCD" = DriverCD
"EPSON Printer and Utilities" = Software tiskárny EPSON
"EPSON Scanner" = EPSON Scan
"Epson Stylus SX110_TX110 Uživatelská příručka" = Epson Stylus SX110_TX110 Manuál
"EPSON SX110 Series" = EPSON SX110 Series Printer Uninstall
"FileZilla Server" = FileZilla Server (remove only)
"GallicPuzzle_is1" = Gallic Puzzle
"GOM Player" = GOM Player
"Hamachi" = Hamachi 1.0.3.0
"Heart Of Darkness" = Heart Of Darkness
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"ImgBurn" = ImgBurn
"InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"InstallShield_{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}" = Kies
"InstallShield_{EDFB64A7-5BFD-4137-943D-5663149A15F5}" = Heroes of Might and Magic III Complete
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.2.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Marine Puzzle_is1" = Marine Puzzle
"Microsoft .NET Framework 3.0" = Microsoft .NET Framework 3.0
"Mini Ninjas" = Mini Ninjas 1.0
"MozBackup" = MozBackup 1.4.9
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"MPEG2 Codec(libmpeg2/mad)" = MPEG2 Codec(libmpeg2/mad)
"Mumble" = Mumble and Murmur
"NOD32" = Antivirový systém NOD32
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenAL" = OpenAL
"OpenVPN" = OpenVPN 2.1_rc20
"Pirates_Battle_for_the_Caribbean_is1" = Pirates: Battle for the Caribbean
"PowerISO" = PowerISO
"PunkBusterSvc" = PunkBuster Services
"Puzzle Dimension_is1" = Puzzle Dimension
"qt7lite_is1" = QT Lite 3.0.0
"Raganrok Renewal" = Ragnarok Renewal
"RealAlt_is1" = Real Alternative 2.0.1
"Renegade" = Command & Conquer Renegade
"Revo Uninstaller" = Revo Uninstaller 1.83
"Rhombis_is1" = Rhombis
"RiseOfNations 1.0" = Microsoft Rise Of Nations
"Rome Puzzle_is1" = Rome Puzzle
"Steam App 500" = Left 4 Dead
"Steam App 550" = Left 4 Dead 2
"Steam App 560" = Left 4 Dead 2 Dedicated Server
"Steam App 563" = Left 4 Dead 2 Authoring Tools
"Steam App 630" = Alien Swarm
"SystemRequirementsLab" = System Requirements Lab
"TanarisRE 1.00" = TanarisRE 1.00
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TibetQuest_is1" = Tibet Quest
"Total Video Converter 3.70_is1" = Total Video Converter 3.70 100621
"Treasure Puzzle_is1" = Treasure Puzzle
"Trio_is1" = TriO: The Great Settlement
"Underwater Puzzle_is1" = Underwater Puzzle
"Vitamini Game_is1" = 1.0.5
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XviD4PSP5" = XviD4PSP 5.0
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"QIP Infium" = QIP Infium 2.0.9030 RC4
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 10.2.2011 14:21:53 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace cs16_install.exe, verze 0.0.0.0, chybující modul
cs16_install.exe, verze 0.0.0.0, adresa chyby 0x0001499a.
Error - 10.2.2011 14:26:42 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace bulanci.exe, verze 0.0.0.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 10.2.2011 16:30:41 | Computer Name = PC | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.
Error - 12.2.2011 7:03:05 | Computer Name = PC | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.
Error - 12.2.2011 13:50:47 | Computer Name = PC | Source = MsiInstaller | ID = 11327
Description = Product: Crysis WARHEAD(R) -- Error 1327. Invalid Drive: K:\
Error - 12.2.2011 13:51:07 | Computer Name = PC | Source = MsiInstaller | ID = 11327
Description = Product: Crysis WARHEAD(R) -- Error 1327. Invalid Drive: K:\
Error - 12.2.2011 17:52:16 | Computer Name = PC | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.
Error - 13.2.2011 6:18:51 | Computer Name = PC | Source = MsiInstaller | ID = 11327
Description = Product: Crysis WARHEAD(R) -- Error 1327. Invalid Drive: K:\
Error - 13.2.2011 15:33:39 | Computer Name = PC | Source = MsiInstaller | ID = 11327
Description = Product: Crysis WARHEAD(R) -- Error 1327. Invalid Drive: K:\
Error - 15.2.2011 10:29:40 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace defcon.exe, verze 1.0.0.1, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
[ System Events ]
Error - 16.8.2010 6:45:15 | Computer Name = PC | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Dragon Age: Prameny - aktualizace obsahu.
Error - 16.8.2010 20:31:43 | Computer Name = PC | Source = DCOM | ID = 10010
Description = Server {B2B3C70A-B20F-40B7-90C5-EA7E946C16E0} se v daném časovém limitu
neregistroval u služby DCOM.
Error - 20.8.2010 1:50:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Služby IPSEC byla ukončena s následující chybou: %%10022
Error - 21.8.2010 16:05:15 | Computer Name = PC | Source = DCOM | ID = 10010
Description = Server {B2B3C70A-B20F-40B7-90C5-EA7E946C16E0} se v daném časovém limitu
neregistroval u služby DCOM.
Error - 21.8.2010 19:10:20 | Computer Name = PC | Source = Service Control Manager | ID = 7034
Description = Služba FsUsbExService byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 22.8.2010 2:06:07 | Computer Name = PC | Source = NetBT | ID = 4307
Description = Inicializace se nezdařila, protože přenos odmítl otevřít počáteční
adresy.
Error - 22.8.2010 2:06:20 | Computer Name = PC | Source = NetBT | ID = 4307
Description = Inicializace se nezdařila, protože přenos odmítl otevřít počáteční
adresy.
Error - 22.8.2010 2:07:16 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Služby IPSEC byla ukončena s následující chybou: %%10022
Error - 22.8.2010 2:07:36 | Computer Name = PC | Source = Service Control Manager | ID = 7031
Description = Služba Sunbelt Personal Firewall 4 byla nečekaně ukončena. Stalo se
to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Spustit nakonfigurovaný
program pro obnovení.
Error - 22.8.2010 11:50:34 | Computer Name = PC | Source = Dhcp | ID = 1000
Description = Zapůjčení adresy IP počítače 192.168.1.3 pro síťovou kartu se síťovou
adresou 001FC63536E9 byla ukončena.
< End of report >
OTL by OldTimer - Version 3.2.20.6 Folder = G:\Documents and Settings\Admin\Plocha
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1 023,00 Mb Total Physical Memory | 454,00 Mb Available Physical Memory | 44,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): G:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = G: | %SystemRoot% = G:\WINDOWS | %ProgramFiles% = G:\Program Files
Drive C: | 39,06 Gb Total Space | 15,09 Gb Free Space | 38,64% Space Free | Partition Type: NTFS
Drive D: | 140,62 Gb Total Space | 22,88 Gb Free Space | 16,27% Space Free | Partition Type: NTFS
Drive E: | 6,61 Gb Total Space | 6,61 Gb Free Space | 99,98% Space Free | Partition Type: FAT32
Drive G: | 24,41 Gb Total Space | 6,28 Gb Free Space | 25,73% Space Free | Partition Type: NTFS
Drive H: | 273,67 Gb Total Space | 84,84 Gb Free Space | 31,00% Space Free | Partition Type: NTFS
Computer Name: PC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- H:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- "H:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"59101:TCP" = 59101:TCP:*:Enabled:Pando Media Booster
"59101:UDP" = 59101:UDP:*:Enabled:Pando Media Booster
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"59101:TCP" = 59101:TCP:*:Enabled:Pando Media Booster
"59101:UDP" = 59101:UDP:*:Enabled:Pando Media Booster
"8396:TCP" = 8396:TCP:*:Enabled:League of Legends Launcher
"8396:UDP" = 8396:UDP:*:Enabled:League of Legends Launcher
"6978:TCP" = 6978:TCP:*:Enabled:League of Legends Launcher
"6978:UDP" = 6978:UDP:*:Enabled:League of Legends Launcher
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"6920:TCP" = 6920:TCP:*:Enabled:League of Legends Launcher
"6920:UDP" = 6920:UDP:*:Enabled:League of Legends Launcher
"6935:TCP" = 6935:TCP:*:Enabled:League of Legends Launcher
"6935:UDP" = 6935:UDP:*:Enabled:League of Legends Launcher
"6975:TCP" = 6975:TCP:*:Enabled:League of Legends Launcher
"6975:UDP" = 6975:UDP:*:Enabled:League of Legends Launcher
"6906:TCP" = 6906:TCP:*:Enabled:League of Legends Launcher
"6906:UDP" = 6906:UDP:*:Enabled:League of Legends Launcher
"6919:TCP" = 6919:TCP:*:Enabled:League of Legends Launcher
"6919:UDP" = 6919:UDP:*:Enabled:League of Legends Launcher
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"G:\Program Files\Pando Networks\Media Booster\PMB.exe" = G:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"G:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe" = G:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil -- (IVT Corporation.)
"H:\Program Files\XBlades\xblades.exe" = H:\Program Files\XBlades\xblades.exe:*:Enabled:xblades.exe -- (Gaijin Entertainment)
"H:\Program Files\XBlades\launcher.exe" = H:\Program Files\XBlades\launcher.exe:*:Enabled:launcher.exe -- (Gaijin Entertainment)
"H:\Program Files\Dragon Age\DAOriginsLauncher.exe" = H:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:${SafeProductName} ${FirewallName_Launcher} -- (BioWare)
"H:\Program Files\Dragon Age\bin_ship\daorigins.exe" = H:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:${SafeProductName} ${FirewallName_Game} -- (BioWare)
"H:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe" = H:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:${SafeProductName} ${FirewallName_Updater} -- (BioWare)
"H:\Program Files\capcom\Bionic Commando Rearmed\bcr.exe" = H:\Program Files\capcom\Bionic Commando Rearmed\bcr.exe:*:Enabled:Bionic Commando Rearmed -- ()
"H:\Program Files\Steam\steamapps\common\alien swarm\srcds.exe" = H:\Program Files\Steam\steamapps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server -- ()
"H:\Program Files\Steam\steamapps\common\alien swarm\swarm.exe" = H:\Program Files\Steam\steamapps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm -- ()
"G:\Program Files\Pando Networks\Media Booster\PMB.exe" = G:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\Riot Games\League of Legends\air\LolClient.exe" = C:\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby -- (Adobe Systems Inc.)
"C:\Riot Games\League of Legends\game\League of Legends.exe" = C:\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client -- ()
"H:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe" = H:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead -- ()
"H:\Program Files\Steam\steamapps\common\left 4 dead 2\srcds.exe" = H:\Program Files\Steam\steamapps\common\left 4 dead 2\srcds.exe:*:Enabled:Left 4 Dead 2 Dedicated Server -- ()
"H:\Program Files\Steam\steamapps\common\left 4 dead 2\left4dead2.exe" = H:\Program Files\Steam\steamapps\common\left 4 dead 2\left4dead2.exe:*:Enabled:Left 4 Dead 2 -- ()
"H:\Program Files\Steam\steamapps\common\left 4 dead 2\bin\SDKLauncher.exe" = H:\Program Files\Steam\steamapps\common\left 4 dead 2\bin\SDKLauncher.exe:*:Enabled:Left 4 Dead 2 Authoring Tools -- ()
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}" = Microsoft Games for Windows - LIVE Redistributable
"{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{10209B87-55D6-493E-A30A-12A265AA324E}" = TQ Defiler
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{15095BF3-A3D7-4DDF-B193-3A496881E003}" = Microsoft .NET Framework 3.0
"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 17
"{27018D57-D152-44EF-BCE0-5E3B3445EABE}" = X-Blades
"{296D8550-CB06-48E4-9A8B-E5034FB64715}" = Command & Conquer™ Red Alert™ 3
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{34610DE0-3C13-42CA-8E32-01FFA38AB6E8}" = PC Connectivity Solution
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{412B69AF-C352-4F6F-A318-B92B3CB9ACC6}" = Titan Quest
"{438BB9B4-65FE-4626-91D9-A8F57B18001D}" = Bluesoleil2.6.0.8 Release 070517
"{48F22622-1CC2-4A83-9C1E-644DD96F832D}" = Epson Event Manager
"{491DD792-AD81-429C-9EB4-86DD3D22E333}" = Windows Communication Foundation
"{4D243BA7-9AC4-46D1-90E5-EEB88974F501}" = Microsoft Games for Windows - LIVE
"{52B65911-1559-4ED5-9461-46957FDD48CD}" = Borderlands
"{5888428E-699C-4E71-BF71-94EE06B497DA}" = TuneUp Utilities 2008
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{6DA45476-E594-432A-AD13-28A01E5F5035}_is1" = Convert MP3 V3.02
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7353BAE6-5E49-46C4-A9B5-8A269A313789}" = Crysis WARHEAD(R)
"{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}" = Windows Workflow Foundation
"{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page
"{82B1150E-9B37-49FC-83EB-D52197D900D0}" = Sunbelt Personal Firewall
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}" = Epson Easy Photo Print 2
"{8874FD36-7C9D-4573-8956-E368D6753D90}" = Worms Blast
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{909F8EBC-EC7F-48FF-0085-475D818F0F31}" = Need for Speed Underground 2
"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9DF0196F-B6B8-4C3A-8790-DE42AA530101}" = SPORE™
"{9F1B135A-F28C-45CD-9F6F-5989D62142E3}" = TQ Portable.NET
"{A61A59E2-5499-4164-B588-470387E149C9}" = TQ Defiler.NET
"{A87B11AC-4344-4E5D-8B12-8F471A87DAD9}" = LightScribe 1.4.136.1
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.1 - Czech
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Prameny
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B249D104-F05D-400D-B4E6-2E9703558C3B}_is1" = Re-MortalRO v1.0
"{B28B351F-1232-46EA-85EF-B8EA91641029}" = Nero 7 Essentials
"{B90450DF-E781-46FD-B1F1-0C86DA40E443}" = PIF DESIGNER
"{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}" = The Sims™ 3 Cestovní horečka
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C084BC61-E537-11DE-8616-005056806466}" = Google Earth
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}" = Kies
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DB219559-1F78-4343-9A6E-C2E987AD47A3}" = Bionic Commando Rearmed
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.1.4.338
"{DF315348-721C-40B8-BAE2-58C6C7D935A2}" = Empire Earth II
"{E1071C00-B001-4633-B9C3-164C856D5730}" = Bionic Commando
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{EDFB64A7-5BFD-4137-943D-5663149A15F5}" = Heroes of Might and Magic III Complete
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F9000000-0001-0000-0000-074957833700}" = ABBYY FineReader 9.0 Professional Edition
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AgeOfEmerald_is1" = Age Of Emerald
"Anders Kjersem - Startup Control Panel_is1" = Anders Kjersem: Startup Control Panel
"Around the World in 80 Days_is1" = Around the World in 80 Days
"Atlantis Quest_is1" = Atlantis Quest
"Bato_is1" = Bato
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Crysis WARHEAD(R)" = Crysis WARHEAD(R)
"Defcon_is1" = Defcon Patch 1.43
"Diamond Lines_is1" = Diamond Lines
"DriverCD" = DriverCD
"EPSON Printer and Utilities" = Software tiskárny EPSON
"EPSON Scanner" = EPSON Scan
"Epson Stylus SX110_TX110 Uživatelská příručka" = Epson Stylus SX110_TX110 Manuál
"EPSON SX110 Series" = EPSON SX110 Series Printer Uninstall
"FileZilla Server" = FileZilla Server (remove only)
"GallicPuzzle_is1" = Gallic Puzzle
"GOM Player" = GOM Player
"Hamachi" = Hamachi 1.0.3.0
"Heart Of Darkness" = Heart Of Darkness
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"ImgBurn" = ImgBurn
"InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"InstallShield_{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}" = Kies
"InstallShield_{EDFB64A7-5BFD-4137-943D-5663149A15F5}" = Heroes of Might and Magic III Complete
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.2.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Marine Puzzle_is1" = Marine Puzzle
"Microsoft .NET Framework 3.0" = Microsoft .NET Framework 3.0
"Mini Ninjas" = Mini Ninjas 1.0
"MozBackup" = MozBackup 1.4.9
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"MPEG2 Codec(libmpeg2/mad)" = MPEG2 Codec(libmpeg2/mad)
"Mumble" = Mumble and Murmur
"NOD32" = Antivirový systém NOD32
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenAL" = OpenAL
"OpenVPN" = OpenVPN 2.1_rc20
"Pirates_Battle_for_the_Caribbean_is1" = Pirates: Battle for the Caribbean
"PowerISO" = PowerISO
"PunkBusterSvc" = PunkBuster Services
"Puzzle Dimension_is1" = Puzzle Dimension
"qt7lite_is1" = QT Lite 3.0.0
"Raganrok Renewal" = Ragnarok Renewal
"RealAlt_is1" = Real Alternative 2.0.1
"Renegade" = Command & Conquer Renegade
"Revo Uninstaller" = Revo Uninstaller 1.83
"Rhombis_is1" = Rhombis
"RiseOfNations 1.0" = Microsoft Rise Of Nations
"Rome Puzzle_is1" = Rome Puzzle
"Steam App 500" = Left 4 Dead
"Steam App 550" = Left 4 Dead 2
"Steam App 560" = Left 4 Dead 2 Dedicated Server
"Steam App 563" = Left 4 Dead 2 Authoring Tools
"Steam App 630" = Alien Swarm
"SystemRequirementsLab" = System Requirements Lab
"TanarisRE 1.00" = TanarisRE 1.00
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TibetQuest_is1" = Tibet Quest
"Total Video Converter 3.70_is1" = Total Video Converter 3.70 100621
"Treasure Puzzle_is1" = Treasure Puzzle
"Trio_is1" = TriO: The Great Settlement
"Underwater Puzzle_is1" = Underwater Puzzle
"Vitamini Game_is1" = 1.0.5
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XviD4PSP5" = XviD4PSP 5.0
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1004336348-1220945662-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"QIP Infium" = QIP Infium 2.0.9030 RC4
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 10.2.2011 14:21:53 | Computer Name = PC | Source = Application Error | ID = 1000
Description = Chybující aplikace cs16_install.exe, verze 0.0.0.0, chybující modul
cs16_install.exe, verze 0.0.0.0, adresa chyby 0x0001499a.
Error - 10.2.2011 14:26:42 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace bulanci.exe, verze 0.0.0.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 10.2.2011 16:30:41 | Computer Name = PC | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.
Error - 12.2.2011 7:03:05 | Computer Name = PC | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.
Error - 12.2.2011 13:50:47 | Computer Name = PC | Source = MsiInstaller | ID = 11327
Description = Product: Crysis WARHEAD(R) -- Error 1327. Invalid Drive: K:\
Error - 12.2.2011 13:51:07 | Computer Name = PC | Source = MsiInstaller | ID = 11327
Description = Product: Crysis WARHEAD(R) -- Error 1327. Invalid Drive: K:\
Error - 12.2.2011 17:52:16 | Computer Name = PC | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.
Error - 13.2.2011 6:18:51 | Computer Name = PC | Source = MsiInstaller | ID = 11327
Description = Product: Crysis WARHEAD(R) -- Error 1327. Invalid Drive: K:\
Error - 13.2.2011 15:33:39 | Computer Name = PC | Source = MsiInstaller | ID = 11327
Description = Product: Crysis WARHEAD(R) -- Error 1327. Invalid Drive: K:\
Error - 15.2.2011 10:29:40 | Computer Name = PC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace defcon.exe, verze 1.0.0.1, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
[ System Events ]
Error - 16.8.2010 6:45:15 | Computer Name = PC | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Dragon Age: Prameny - aktualizace obsahu.
Error - 16.8.2010 20:31:43 | Computer Name = PC | Source = DCOM | ID = 10010
Description = Server {B2B3C70A-B20F-40B7-90C5-EA7E946C16E0} se v daném časovém limitu
neregistroval u služby DCOM.
Error - 20.8.2010 1:50:38 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Služby IPSEC byla ukončena s následující chybou: %%10022
Error - 21.8.2010 16:05:15 | Computer Name = PC | Source = DCOM | ID = 10010
Description = Server {B2B3C70A-B20F-40B7-90C5-EA7E946C16E0} se v daném časovém limitu
neregistroval u služby DCOM.
Error - 21.8.2010 19:10:20 | Computer Name = PC | Source = Service Control Manager | ID = 7034
Description = Služba FsUsbExService byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 22.8.2010 2:06:07 | Computer Name = PC | Source = NetBT | ID = 4307
Description = Inicializace se nezdařila, protože přenos odmítl otevřít počáteční
adresy.
Error - 22.8.2010 2:06:20 | Computer Name = PC | Source = NetBT | ID = 4307
Description = Inicializace se nezdařila, protože přenos odmítl otevřít počáteční
adresy.
Error - 22.8.2010 2:07:16 | Computer Name = PC | Source = Service Control Manager | ID = 7023
Description = Služba Služby IPSEC byla ukončena s následující chybou: %%10022
Error - 22.8.2010 2:07:36 | Computer Name = PC | Source = Service Control Manager | ID = 7031
Description = Služba Sunbelt Personal Firewall 4 byla nečekaně ukončena. Stalo se
to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Spustit nakonfigurovaný
program pro obnovení.
Error - 22.8.2010 11:50:34 | Computer Name = PC | Source = Dhcp | ID = 1000
Description = Zapůjčení adresy IP počítače 192.168.1.3 pro síťovou kartu se síťovou
adresou 001FC63536E9 byla ukončena.
< End of report >
Re: Zmizeli vsechny ikony
Vy máte nelegální NOD?
Odkdy máte ty problémy s ikonami, neinstaloval jste něco?
Odkdy máte ty problémy s ikonami, neinstaloval jste něco?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zmizeli vsechny ikony
nod je nakej trial od kamose...
no,nevzpominam si,ze bych neco instaloval,spis jsem nekolik her a programu mazal,bratr rikal,ze ty ikony pravdepodobne zmizeli kdyz zkousel pustit jednu starou hru (liero),jenze jsem zkousel obnovu k datumu,kdy to liero nepoustel a nic se nestalo
kdyz dam pravym vlastnosti a zkusim zmenit ikonu rucne,tak jakoby vidim vsechny ikony,ale po nakliknuti se nic nezmeni
no,nevzpominam si,ze bych neco instaloval,spis jsem nekolik her a programu mazal,bratr rikal,ze ty ikony pravdepodobne zmizeli kdyz zkousel pustit jednu starou hru (liero),jenze jsem zkousel obnovu k datumu,kdy to liero nepoustel a nic se nestalo
kdyz dam pravym vlastnosti a zkusim zmenit ikonu rucne,tak jakoby vidim vsechny ikony,ale po nakliknuti se nic nezmeni
Re: Zmizeli vsechny ikony
Trial na jak dlouho? Jakou máte verzi Nodu?
Zkuste tento program
http://sapcupgrades.com/Spywaretools/daft.exe
-stahněte, spusťte
-dejte sken, červeně označené řádky označte a klikněte na fix
-pak dejte vědět zda to pomohlo
Zkuste tento programhttp://sapcupgrades.com/Spywaretools/daft.exe
-stahněte, spusťte
-dejte sken, červeně označené řádky označte a klikněte na fix
-pak dejte vědět zda to pomohlo
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zmizeli vsechny ikony
naslo to jeden problem a ten jsem opravil,jenze to nepomohlo...ale kdyz jsem tak koukal na ten program a co delal,tak me napadlo jeste neco - tune up 2008 - "pruvodce opravou",spustil jsem to a hned na prvni strance: problem: ikony jsou zobrazeny chybne,dal jsem opravit problem a najednou to jde,ikony se sami obnovili,i tem ve startu se vratili jejich puvodni ikony,diky za pomoc,ten daft me privedl na "spravnou stopu"
Re: Zmizeli vsechny ikony
Já jsem si taky myslela, že máte nějaké popletené asociace 
.
Ale ještě mi neutíkejte, dořešíme ten nelegální NOD. VZorný návštěvník a nelegální program, no fuj
.
A taky mám pocit, že máte verzi NOd2.7, mýlím se? Ten už není podporovaný.
Prostě NOd odinstalujte a dejte nějaký free antivir, Avast nebo Aviru a pak sem vložte nový log ze Rsitu.
.Ale ještě mi neutíkejte, dořešíme ten nelegální NOD. VZorný návštěvník a nelegální program, no fuj
.A taky mám pocit, že máte verzi NOd2.7, mýlím se? Ten už není podporovaný.
Prostě NOd odinstalujte a dejte nějaký free antivir, Avast nebo Aviru a pak sem vložte nový log ze Rsitu.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zmizeli vsechny ikony
je to staricka 2.7 ktera je 16 denni trial... i po roce je to 16 denni trial,normalne funguje a jelikoz na tomhle starym pc uz temer nic nedelam,hry nehraju a poradne se tu neda ani psat ve wordu,tak to uz nejak nebudu resit,chtel jsem jinej antivir,ale vsechny meli vetsi naroky,zkousel jsem avast i aviru,ktery si klidne vzaly i 100MB ram a jelikoz mam celkem 1GB jsou pro me uplne nepouzitelny(kdyz uz neco nahodou delam,musim vypinat i skype protoze se to jinak seka),tendle nod si veme jen 30MB coz je idelani,cim novejsi veci jsou,tim vic ram si berou (viz novej skype a jeho 120MB)
mam totiz originalni dvojlicenci na ESS4(kterej je na novym pc a mel bejt i na tomhle starym),ale ta na tomhle starym pc hodne zrala vykon,proto takovyhle reseni,nebudu kvuli tomu extra kupovat starej nod 2.7
mam totiz originalni dvojlicenci na ESS4(kterej je na novym pc a mel bejt i na tomhle starym),ale ta na tomhle starym pc hodne zrala vykon,proto takovyhle reseni,nebudu kvuli tomu extra kupovat starej nod 2.7
Naposledy upravil(a) Alfajk dne 19 úno 2011 12:19, celkem upraveno 1 x.
Přispějete na provoz fóra?
