Ahojte, píšem, lebo by potrebovala som vašu pomoc.
Včera okolo polnoci sa mi len tak z ničoho nič objavili tieto problémy:
- nedalo sa mi nijako posunúť z dolnej časti nejakej internetovej stránky do hornej, aj keď som si otvorila novú, automaticky som to mala dole a nedalo sa s tým pohnúť
- keď som chcela spustiť programy Everest alebo CC cleaner, len si to pýtalo tie povolenia, ale ďalej sa nič nedialo
- keď som klikla na Štart v tom políčku Hľadať mi to lomítko behalo od jednej časti políčka do druhej a nestálo
Pozerala som sa aj na aviru, ale tá nič neukazovala. Tieto problémy trvali asi 15 minút, potom sa všetko vrátilo do normálu. Priateľ mi kázal stiahnuť si "Malbam" a ten mi po hodine našiel len tri súbory typu Spyware.
Pomožte mi, prosím! Čo mám robiť?
Prikladám môj log.
Logfile of random's system information tool 1.08 (written by random/random)
Run by Petra a Zuzana at 2011-04-04 23:57:35
Microsoft Windows 7 Home Premium
System drive C: has 101 GB (67%) free of 150 GB
Total RAM: 3963 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:57:55, on 4.4.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Petra a Zuzana.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.autocompletepro.com/?si=7148&bi=400
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.toggle.com/en/index.php?rvs=google
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Magentic Toolbar - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll
O2 - BHO: SuggestMeYesBHO - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {43F31A50-EBB0-4926-A058-9F89EDC21C41} - C:\PROGRA~2\TNSAUD~1\iaudit_t.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Updater For Magentic Toolbar - {B3312915-9368-4FE4-8D4E-B60E5B36D0FF} - C:\Program Files (x86)\magentictb\auxi\magenticAu.dll
O2 - BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Magentic Toolbar - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll
O3 - Toolbar: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra button: Informácie o aplikácii TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - http://monitor.idot.sk/info (file missing)
O9 - Extra 'Tools' menuitem: Plugin TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - http://monitor.idot.sk/info (file missing)
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: acaptuser32.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\Common Files\PCSuite\Services\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12652 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe"
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_0000068c
\??\C:\Windows\system32\conhost.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
WLIDSvcM.exe 432
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4f2ebd0b-a2a8-4a98-9ac0-49adff744845 -SystemEventPortName:HostProcess-01fe92c2-b3fb-4480-8590-566190a8ff68 -IoCancelEventPortName:HostProcess-d6bc5c3d-a705-4d81-81a5-f8a03562ecd8 -NonStateChangingEventPortName:HostProcess-8b6865c8-2937-4c18-9ae4-5f41eb3c4640 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2c946c28-18a7-409a-ad8b-bcec34bebf1f
"C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe"
C:\Windows\system32\rundll32.exe "C:\Users\PETRAA~1\AppData\Local\Google\Chrome\APPLIC~1\100648~1.204\gcswf32.dll",BrokerMain browser=chrome
"C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\10.0.648.204\gcswf32.dll" --lang=cs --plugin-data-dir="C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\User Data\Default" --channel=1468.0729E800.1191721973 /prefetch:4 --flash-broker=1492
"C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C84D80.540918540 /prefetch:3
"C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C84780.1674235308 /prefetch:3
"C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C72A80.373582326 /prefetch:3
"C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C72900.1961355630 /prefetch:3
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 596 600 608 65536 604
"C:\Users\Petra a Zuzana\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
AC-Pro - C:\Program Files (x86)\AutocompletePro\64\AutocompletePro64.dll [2010-11-10 111616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07C92F45-3193-4FD9-AF54-B1925707C872}]
Magentic Toolbar - C:\Program Files (x86)\magentictb\magenticDx.dll [2010-08-31 86696]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
AC-Pro - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll [2010-06-14 97760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43F31A50-EBB0-4926-A058-9F89EDC21C41}]
C:\PROGRA~2\TNSAUD~1\iaudit_t.dll [2010-11-11 651720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B3312915-9368-4FE4-8D4E-B60E5B36D0FF}]
Updater For Magentic Toolbar - C:\Program Files (x86)\magentictb\auxi\magenticAu.dll [2010-08-31 262312]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]
pdfforge Toolbar - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll [2010-10-22 726016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-26 1385864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-03-13 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2010-03-25 1548096]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-26 1385864]
{07C92F45-3193-4FD9-AF54-B1925707C872} - Magentic Toolbar - C:\Program Files (x86)\magentictb\magenticDx.dll [2010-08-31 86696]
{B922D405-6D13-4A2B-AE89-08A030DA4402} - pdfforge Toolbar - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll [2010-10-22 726016]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-03-26 10135584]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Petra a Zuzana\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-10 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files (x86)\ICQ7.2\ICQ.exe silent loginmode=4 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Magentic]
C:\PROGRA~2\Magentic\bin\Magentic.exe [2010-05-11 486632]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Network Error Advisor]
C:\Program Files (x86)\magentictb\ExeRunner.exe [2010-03-31 58368]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher]
C:\Program Files (x86)\Nokia\Nokia Software Launcher\NSLauncher.exe [2006-11-28 2658304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PcSync]
C:\Program Files (x86)\Nokia\Nokia PC Suite 6\PcSync2.exe [2006-06-27 1449984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files (x86)\Winamp\winampa.exe [2010-07-12 74752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Petra a Zuzana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE [2010-06-07 1195520]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCU"=C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [2009-10-15 375000]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-10 98304]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2010-11-12 281768]
""= []
"SearchSettings"=C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [2010-10-22 524288]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="acaptuser64.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2011-04-04 23:57:36 ----D---- C:\Program Files\trend micro
2011-04-04 23:57:35 ----D---- C:\rsit
2011-03-13 12:15:55 ----D---- C:\ProgramData\Sun
2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\javaws.exe
2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\javaw.exe
2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\java.exe
2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2011-03-13 12:15:35 ----D---- C:\Program Files (x86)\Java
2011-03-13 12:15:13 ----D---- C:\ProgramData\McAfee
2011-03-09 10:48:26 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2011-03-09 10:48:26 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2011-03-09 10:48:26 ----A---- C:\Windows\system32\FntCache.dll
2011-03-09 10:48:26 ----A---- C:\Windows\system32\DWrite.dll
2011-03-09 10:48:26 ----A---- C:\Windows\system32\d2d1.dll
2011-03-09 10:48:25 ----A---- C:\Windows\system32\EncDec.dll
2011-03-09 10:48:25 ----A---- C:\Windows\system32\CPFilters.dll
2011-03-09 10:48:24 ----A---- C:\Windows\SYSWOW64\sbe.dll
2011-03-09 10:48:24 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2011-03-09 10:48:24 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2011-03-09 10:48:24 ----A---- C:\Windows\system32\sbe.dll
2011-03-09 10:48:22 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2011-03-09 10:48:22 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2011-03-09 10:48:22 ----A---- C:\Windows\system32\mstscax.dll
2011-03-09 10:48:22 ----A---- C:\Windows\system32\mstsc.exe
======List of files/folders modified in the last 1 months======
2011-04-04 23:57:46 ----D---- C:\Windows\Prefetch
2011-04-04 23:57:36 ----RD---- C:\Program Files
2011-04-04 23:57:36 ----D---- C:\Windows\Temp
2011-04-04 22:30:19 ----D---- C:\Windows\System32
2011-04-04 22:30:19 ----D---- C:\Windows\inf
2011-04-04 22:30:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-04-04 20:38:37 ----A---- C:\Windows\SYSWOW64\log.txt
2011-04-04 09:14:40 ----D---- C:\Windows\system32\config
2011-04-03 12:33:17 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\Winamp
2011-04-03 10:40:48 ----D---- C:\Windows
2011-04-01 11:22:04 ----SHD---- C:\System Volume Information
2011-03-31 00:41:50 ----SHD---- C:\Windows\Installer
2011-03-31 00:41:44 ----D---- C:\Program Files (x86)\Windows Live
2011-03-27 21:41:09 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\ICQ
2011-03-25 01:48:56 ----D---- C:\Windows\system32\catroot
2011-03-24 12:47:19 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\Skype
2011-03-24 10:49:28 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\skypePM
2011-03-20 01:16:37 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers
2011-03-16 11:43:46 ----D---- C:\Windows\system32\catroot2
2011-03-14 13:25:22 ----D---- C:\Program Files (x86)\ICQ7.4
2011-03-13 13:37:28 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\vlc
2011-03-13 12:15:55 ----HD---- C:\ProgramData
2011-03-13 12:15:55 ----D---- C:\Program Files (x86)\Common Files
2011-03-13 12:15:42 ----D---- C:\Windows\SysWOW64
2011-03-13 12:15:35 ----RD---- C:\Program Files (x86)
2011-03-12 23:45:42 ----D---- C:\Windows\debug
2011-03-10 12:48:25 ----D---- C:\Windows\winsxs
2011-03-10 01:16:08 ----A---- C:\Windows\system32\MRT.exe
2011-03-08 17:31:54 ----D---- C:\Windows\system32\drivers
2011-03-08 17:31:54 ----D---- C:\ProgramData\Norton
2011-03-08 17:31:53 ----D---- C:\Windows\Tasks
2011-03-08 17:31:53 ----D---- C:\Windows\system32\Tasks
2011-03-08 17:31:53 ----D---- C:\ProgramData\Symantec
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-14 834544]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2010-04-27 21544]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-03-02 116568]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-14 254528]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-11-25 83120]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-11-11 6108672]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-03-26 2307616]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys [2008-05-02 23552]
S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmbx64.sys [2008-05-02 18432]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2008-05-02 8704]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltx64j.sys [2008-05-02 8704]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-11-11 202752]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2011-03-19 269480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2010-11-12 135336]
R2 Application Updater;Application Updater; C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2010-10-22 386560]
R2 BCUService;Browser Configuration Utility Service; C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-15 223464]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 268824]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2320920]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-01-03 651720]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\Common Files\PCSuite\Services\ServiceLayer.exe [2006-06-05 174080]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-10-11 1255736]
-----------------EOF-----------------
Peťa
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím vás o kontrolu tohto môjho logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím vás o kontrolu tohto môjho logu
Zdravim, pekny den preji a vitam Vas u nas na foru 
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
netsvcs drivers32 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s c:\windows\*.* /U %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s /md5start adp3132.sys AGP440.sys ahcix86.sys ahcix86s.sys atapi.sys autochk.exe cdrom.sys cngaudit.dll cryptsvc.dll eNetHook.dll eventlog.dll explorer.exe hal.dll Changer.sys iaStor.sys iastorv.sys IdeChnDr.sys isapnp.sys JakNDis.sys KR10N.sys logevent.dll lsass.exe mv61xx.sys ndis.sys netlogon.dll ntelogon.dll nvata.sys nvatabus.sys nvgts.sys nvraid.sys nvrd32.sys nvstor.sys nvstor32.sys scecli.dll sceclt.dll smss.exe svchost.exe symmpi.sys tcpip.sys userinit.exe vaxscsi.sys viamraid.sys viasraid.sys ViPrt.sys winlogon.exe ws2_32.dll /md5stop %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 CREATERESTOREPOINT- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím vás o kontrolu tohto môjho logu
Dobrý deň, urobila som presne to, čo ste mi povedali, ale stalo sa toto:
asi po dvoch minutach sa to zaseklo a nerobilo to nič a aj po tom čase, čo sa mali objaviť tie logy, nic sa sa neobjavilo. Skusala som to zatvorit, ale napisalo mi, ze nemoze, ze caka nejaku vyzvu odo mna. Tak som to zatvorila cez spravcu uloh a skusila este raz znovu. Situacia sa opakovala az na to, ze mi to slo zatvorit normalne.
To bolo vcera vecer. Dnes doobedu, ked som zapla pocitac, tak sa mi na ploche objavili 3 take polopriesvitne ikonky - photothumb.db, desktop.ini a desktop. ini - to prve som chcela otvorit (ako .pdf), ale neslo to a zostalo to tak. Pytala som sa mojej sestry, ci o tom nieco vie, ale povedala ze nie.
Co mam urobit dalej?
Peťa
asi po dvoch minutach sa to zaseklo a nerobilo to nič a aj po tom čase, čo sa mali objaviť tie logy, nic sa sa neobjavilo. Skusala som to zatvorit, ale napisalo mi, ze nemoze, ze caka nejaku vyzvu odo mna. Tak som to zatvorila cez spravcu uloh a skusila este raz znovu. Situacia sa opakovala az na to, ze mi to slo zatvorit normalne.
To bolo vcera vecer. Dnes doobedu, ked som zapla pocitac, tak sa mi na ploche objavili 3 take polopriesvitne ikonky - photothumb.db, desktop.ini a desktop. ini - to prve som chcela otvorit (ako .pdf), ale neslo to a zostalo to tak. Pytala som sa mojej sestry, ci o tom nieco vie, ale povedala ze nie.
Co mam urobit dalej?
Peťa
Re: Prosím vás o kontrolu tohto môjho logu
tech polopruhlednych souboru si nevsimejte - jsou to skryte soubory, OTL se odkrylo - na zaver leceni je zase zakryjeme Prihlaste se do nouzoveho rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti) Aplikujte znouvu OTL, pokud se sekne, tak znovu do nouzaku a do spodniho okenka skript nevkladejte - jen nastavte zaskrtnuti jak je psano a dejte Prohledat"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím vás o kontrolu tohto môjho logu
Dobrý deň,
urobila som presne to, čo ste mi povedali. Bolo to OK, tu vkladám tie logy (ale nevojdú sa celé, tak po kúskoch)
OTL logfile created on: 7.4.2011 9:56:30 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Petra a Zuzana\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 76,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,48 Gb Total Space | 98,94 Gb Free Space | 67,54% Space Free | Partition Type: NTFS
Drive D: | 319,28 Gb Total Space | 263,00 Gb Free Space | 82,37% Space Free | Partition Type: NTFS
Computer Name: PETRAAZUZANA-PC | User Name: Petra a Zuzana | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
========== Modules (SafeList) ==========
MOD - [2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
MOD - [2010.08.21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.04.06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:64bit: - [2009.11.11 06:58:54 | 000,202,752 | ---- | M] (AMD) [Auto | Stopped] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011.03.19 13:07:14 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.01.03 12:40:19 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.11.12 14:14:54 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.10.22 17:38:46 | 000,386,560 | ---- | M] (Spigot, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.10.15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009.09.30 14:02:50 | 002,320,920 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2009.09.30 14:02:48 | 000,268,824 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2006.06.05 14:59:18 | 000,174,080 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\PCSuite\Services\ServiceLayer.exe -- (ServiceLayer)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011.02.14 00:25:23 | 000,254,528 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2010.11.25 14:01:19 | 000,083,120 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2010.11.14 11:56:23 | 000,834,544 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.04.27 11:56:38 | 000,021,544 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2010.03.04 15:43:00 | 000,346,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.03.02 13:35:01 | 000,116,568 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2009.11.11 07:34:52 | 006,108,672 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.09.30 16:34:30 | 000,121,872 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009.09.17 06:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:06:32 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.05.02 11:59:08 | 000,008,704 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64j.sys -- (UsbserFilt)
DRV:64bit: - [2008.05.02 11:58:50 | 000,008,704 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2008.05.02 11:58:48 | 000,023,552 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdcx64)
DRV:64bit: - [2008.05.02 11:58:48 | 000,018,432 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcdx64)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\URLSearchHook: {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[2010.11.24 00:02:20 | 000,003,187 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\acpro.xml
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\64\AutocompletePro64.dll (SimplyGen)
O2 - BHO: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll ()
O2 - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll (SimplyGen)
O2 - BHO: () - {43F31A50-EBB0-4926-A058-9F89EDC21C41} - C:\Program Files (x86)\TNS Audit meter\iaudit_t.dll (TNS SK s.r.o.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Updater For Magentic Toolbar) - {B3312915-9368-4FE4-8D4E-B60E5B36D0FF} - C:\Program Files (x86)\magentictb\auxi\magenticAu.dll (Visicom Media)
O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3:64bit: - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [BCU] C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [SearchSettings] C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Informácie o aplikácii TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - File not found
O9 - Extra 'Tools' menuitem : Plugin TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - File not found
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.5.18.5 10.5.18.2 195.80.171.4
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O20:64bit: - AppInit_DLLs: (acaptuser64.dll) - C:\Windows\SysNative\acaptuser64.dll (Adobe Systems, Inc.)
O20 - AppInit_DLLs: (acaptuser32.dll) - C:\Windows\SysWow64\acaptuser32.dll (Adobe Systems, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 7 Days ==========
[2011.04.05 20:18:44 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
[2011.04.05 18:30:53 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia
[2011.04.05 18:29:46 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia
[2011.04.05 18:28:25 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Hist (1)
[2011.04.05 00:13:47 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\AppData\Roaming\Malwarebytes
[2011.04.05 00:13:43 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011.04.05 00:13:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.04.05 00:13:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.04.05 00:13:40 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011.04.05 00:13:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011.04.05 00:12:05 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Petra a Zuzana\Desktop\mbam-setup-1.50.1.1100.exe
[2011.04.04 23:57:36 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.04.04 23:57:35 | 000,000,000 | ---D | C] -- C:\rsit
========== Files - Modified Within 7 Days ==========
[2011.04.07 09:53:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.04.07 09:53:22 | 3117,015,040 | -HS- | M] () -- C:\hiberfil.sys
[2011.04.07 09:32:31 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.04.07 09:32:31 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.04.07 09:29:25 | 001,470,062 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.04.07 09:29:25 | 000,631,054 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2011.04.07 09:29:25 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.04.07 09:29:25 | 000,121,708 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2011.04.07 09:29:25 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.04.06 22:02:00 | 000,000,998 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000UA.job
[2011.04.06 20:02:00 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000Core.job
[2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
[2011.04.05 18:32:53 | 000,096,104 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Diferencialna diagnoza dutych organov na mikroskopickych preparatoch.pdf
[2011.04.05 18:30:42 | 004,932,159 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia.rar
[2011.04.05 18:29:31 | 001,660,491 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia.rar
[2011.04.05 18:28:04 | 000,589,958 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Hist (1).zip
[2011.04.05 13:39:55 | 000,647,058 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\2_Vnutorne_prostredie.pdf
[2011.04.05 13:39:44 | 000,432,228 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\3_Vyznam_vapnika.pdf
[2011.04.05 00:13:43 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.05 00:12:00 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Petra a Zuzana\Desktop\mbam-setup-1.50.1.1100.exe
[2011.04.04 23:56:45 | 000,832,273 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\RSITx64.exe
========== Files Created - No Company Name ==========
[2011.04.05 18:32:55 | 000,096,104 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Diferencialna diagnoza dutych organov na mikroskopickych preparatoch.pdf
[2011.04.05 18:30:43 | 004,932,159 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia.rar
[2011.04.05 18:29:32 | 001,660,491 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia.rar
[2011.04.05 18:28:11 | 000,589,958 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Hist (1).zip
[2011.04.05 13:39:57 | 000,647,058 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\2_Vnutorne_prostredie.pdf
[2011.04.05 13:39:48 | 000,432,228 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\3_Vyznam_vapnika.pdf
[2011.04.05 00:13:43 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.04 23:57:06 | 000,832,273 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\RSITx64.exe
[2011.01.25 19:19:11 | 000,004,096 | -H-- | C] () -- C:\Users\Petra a Zuzana\AppData\Local\keyfile3.drm
[2011.01.02 22:21:05 | 000,047,616 | ---- | C] () -- C:\Windows\SysWow64\pdf995mon64.dll
[2011.01.02 22:21:05 | 000,000,059 | ---- | C] () -- C:\Windows\wpd99.drv
[2010.12.20 20:41:05 | 000,000,067 | ---- | C] () -- C:\Windows\smrpro.INI
[2010.11.24 00:16:46 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010.11.01 22:29:01 | 001,503,232 | ---- | C] () -- C:\Windows\SysWow64\ptj.exe
[2010.11.01 22:29:01 | 001,103,360 | ---- | C] () -- C:\Windows\SysWow64\cidfont.dll
[2010.11.01 22:29:00 | 004,369,408 | ---- | C] () -- C:\Windows\SysWow64\pdftk.exe
[2010.11.01 22:29:00 | 000,235,008 | ---- | C] () -- C:\Windows\SysWow64\office.exe
[2010.11.01 22:18:06 | 000,000,701 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\init.dll
[2010.11.01 22:18:06 | 000,000,006 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\SYSTEM32.dll
[2010.11.01 22:17:55 | 000,000,701 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\sound.dll
[2010.11.01 22:17:23 | 000,116,736 | ---- | C] () -- C:\Windows\SysWow64\redmonnt.dll
[2010.10.25 23:07:13 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.10.11 16:35:39 | 000,125,440 | ---- | C] () -- C:\Windows\dx7ogl32.dll
[2010.10.10 16:26:28 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2010.10.10 11:51:00 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.10.10 11:41:40 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2009.08.27 09:04:14 | 000,207,400 | R--- | C] () -- C:\Windows\GSetup.exe
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2008.10.07 10:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2008.10.07 10:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
[2005.12.07 13:31:00 | 000,202,752 | R--- | C] () -- C:\Windows\SysWow64\CddbCdda.dll
[2003.04.07 11:38:32 | 000,005,746 | ---- | C] () -- C:\Windows\SysWow64\OUTLPERF.INI
========== LOP Check ==========
[2010.12.20 00:48:29 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\AnvSoft
[2011.01.04 17:32:59 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\astragon Software GmbH
[2011.02.13 19:11:22 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Audacity
[2010.10.10 21:54:26 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Canneverbe Limited
[2010.11.14 20:17:59 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DAEMON Tools Lite
[2011.01.24 12:41:29 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Datalayer
[2010.11.25 20:38:53 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoft
[2011.03.20 01:16:37 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.02.13 19:14:01 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Free Sound Recorder
[2011.02.04 18:12:20 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\GetRightToGo
[2011.03.27 21:41:09 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\ICQ
[2010.11.24 00:16:55 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Leawo
[2010.10.14 11:58:21 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\magentictb
[2010.11.24 00:16:55 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Moyea
[2010.12.20 23:53:49 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\NCH Swift Sound
[2010.12.28 14:58:23 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Nokia
[2010.10.10 13:58:31 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\OpenOffice.org
[2010.12.28 14:59:30 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\PC Suite
[2010.10.31 00:11:45 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\PhotoScape
[2011.02.04 18:55:05 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Power MP3 Cutter
[2011.02.04 18:16:14 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Power Mp3 Recorder
[2011.01.14 01:01:25 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\uTorrent
[2010.11.01 23:38:27 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\XnView
[2010.11.01 22:20:00 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\YCanPDF
[2011.03.27 10:35:21 | 000,032,580 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< Logfile of random's system information tool 1.08 (written by random/random) >
Invalid Switch: random)
< Run by Petra a Zuzana at 2011-04-04 23:57:35 >
< Microsoft Windows 7 Home Premium >
< System drive C: has 101 GB (67%) free of 150 GB >
< Total RAM: 3963 MB (76% free) >
< >
< Logfile of Trend Micro HijackThis v2.0.4 >
< Scan saved at 23:57:55, on 4.4.2011 >
< Platform: Windows 7 (WinNT 6.00.3504) >
< MSIE: Internet Explorer v8.00 (8.00.7600.16722) >
< Boot mode: Normal >
< >
< Running processes: >
< C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe >
[2011.01.20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
< C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe >
[2009.10.15 14:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
< C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe >
[2010.11.12 14:14:54 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
< C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe >
[2010.10.22 17:47:26 | 000,524,288 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
< C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe >
[2010.10.29 15:49:28 | 000,249,064 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
< C:\Program Files (x86)\Internet Explorer\IELowutil.exe >
[2009.07.14 03:14:21 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Windows\SysWOW64\rundll32.exe >
[2009.07.14 03:14:31 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rundll32.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Program Files\trend micro\Petra a Zuzana.exe >
[2011.04.04 23:57:36 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\trend micro\Petra a Zuzana.exe
< >
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/ >
Invalid Switch:
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 >
Invalid Switch: ?LinkId=69157
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 >
Invalid Switch: ?LinkId=54896
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = >
< R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = >
< R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm >
urobila som presne to, čo ste mi povedali. Bolo to OK, tu vkladám tie logy (ale nevojdú sa celé, tak po kúskoch)
OTL logfile created on: 7.4.2011 9:56:30 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Petra a Zuzana\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 76,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,48 Gb Total Space | 98,94 Gb Free Space | 67,54% Space Free | Partition Type: NTFS
Drive D: | 319,28 Gb Total Space | 263,00 Gb Free Space | 82,37% Space Free | Partition Type: NTFS
Computer Name: PETRAAZUZANA-PC | User Name: Petra a Zuzana | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
========== Modules (SafeList) ==========
MOD - [2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
MOD - [2010.08.21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.04.06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:64bit: - [2009.11.11 06:58:54 | 000,202,752 | ---- | M] (AMD) [Auto | Stopped] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011.03.19 13:07:14 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.01.03 12:40:19 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.11.12 14:14:54 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.10.22 17:38:46 | 000,386,560 | ---- | M] (Spigot, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.10.15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009.09.30 14:02:50 | 002,320,920 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2009.09.30 14:02:48 | 000,268,824 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2006.06.05 14:59:18 | 000,174,080 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\PCSuite\Services\ServiceLayer.exe -- (ServiceLayer)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011.02.14 00:25:23 | 000,254,528 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2010.11.25 14:01:19 | 000,083,120 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2010.11.14 11:56:23 | 000,834,544 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.04.27 11:56:38 | 000,021,544 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2010.03.04 15:43:00 | 000,346,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.03.02 13:35:01 | 000,116,568 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2009.11.11 07:34:52 | 006,108,672 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.09.30 16:34:30 | 000,121,872 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009.09.17 06:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:06:32 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.05.02 11:59:08 | 000,008,704 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64j.sys -- (UsbserFilt)
DRV:64bit: - [2008.05.02 11:58:50 | 000,008,704 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2008.05.02 11:58:48 | 000,023,552 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdcx64)
DRV:64bit: - [2008.05.02 11:58:48 | 000,018,432 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcdx64)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\URLSearchHook: {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[2010.11.24 00:02:20 | 000,003,187 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\acpro.xml
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\64\AutocompletePro64.dll (SimplyGen)
O2 - BHO: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll ()
O2 - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll (SimplyGen)
O2 - BHO: () - {43F31A50-EBB0-4926-A058-9F89EDC21C41} - C:\Program Files (x86)\TNS Audit meter\iaudit_t.dll (TNS SK s.r.o.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Updater For Magentic Toolbar) - {B3312915-9368-4FE4-8D4E-B60E5B36D0FF} - C:\Program Files (x86)\magentictb\auxi\magenticAu.dll (Visicom Media)
O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3:64bit: - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [BCU] C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [SearchSettings] C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Informácie o aplikácii TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - File not found
O9 - Extra 'Tools' menuitem : Plugin TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - File not found
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.5.18.5 10.5.18.2 195.80.171.4
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O20:64bit: - AppInit_DLLs: (acaptuser64.dll) - C:\Windows\SysNative\acaptuser64.dll (Adobe Systems, Inc.)
O20 - AppInit_DLLs: (acaptuser32.dll) - C:\Windows\SysWow64\acaptuser32.dll (Adobe Systems, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 7 Days ==========
[2011.04.05 20:18:44 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
[2011.04.05 18:30:53 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia
[2011.04.05 18:29:46 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia
[2011.04.05 18:28:25 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Hist (1)
[2011.04.05 00:13:47 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\AppData\Roaming\Malwarebytes
[2011.04.05 00:13:43 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011.04.05 00:13:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.04.05 00:13:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.04.05 00:13:40 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011.04.05 00:13:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011.04.05 00:12:05 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Petra a Zuzana\Desktop\mbam-setup-1.50.1.1100.exe
[2011.04.04 23:57:36 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.04.04 23:57:35 | 000,000,000 | ---D | C] -- C:\rsit
========== Files - Modified Within 7 Days ==========
[2011.04.07 09:53:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.04.07 09:53:22 | 3117,015,040 | -HS- | M] () -- C:\hiberfil.sys
[2011.04.07 09:32:31 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.04.07 09:32:31 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.04.07 09:29:25 | 001,470,062 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.04.07 09:29:25 | 000,631,054 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2011.04.07 09:29:25 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.04.07 09:29:25 | 000,121,708 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2011.04.07 09:29:25 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.04.06 22:02:00 | 000,000,998 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000UA.job
[2011.04.06 20:02:00 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000Core.job
[2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
[2011.04.05 18:32:53 | 000,096,104 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Diferencialna diagnoza dutych organov na mikroskopickych preparatoch.pdf
[2011.04.05 18:30:42 | 004,932,159 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia.rar
[2011.04.05 18:29:31 | 001,660,491 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia.rar
[2011.04.05 18:28:04 | 000,589,958 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Hist (1).zip
[2011.04.05 13:39:55 | 000,647,058 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\2_Vnutorne_prostredie.pdf
[2011.04.05 13:39:44 | 000,432,228 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\3_Vyznam_vapnika.pdf
[2011.04.05 00:13:43 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.05 00:12:00 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Petra a Zuzana\Desktop\mbam-setup-1.50.1.1100.exe
[2011.04.04 23:56:45 | 000,832,273 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\RSITx64.exe
========== Files Created - No Company Name ==========
[2011.04.05 18:32:55 | 000,096,104 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Diferencialna diagnoza dutych organov na mikroskopickych preparatoch.pdf
[2011.04.05 18:30:43 | 004,932,159 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia.rar
[2011.04.05 18:29:32 | 001,660,491 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia.rar
[2011.04.05 18:28:11 | 000,589,958 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Hist (1).zip
[2011.04.05 13:39:57 | 000,647,058 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\2_Vnutorne_prostredie.pdf
[2011.04.05 13:39:48 | 000,432,228 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\3_Vyznam_vapnika.pdf
[2011.04.05 00:13:43 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.04 23:57:06 | 000,832,273 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\RSITx64.exe
[2011.01.25 19:19:11 | 000,004,096 | -H-- | C] () -- C:\Users\Petra a Zuzana\AppData\Local\keyfile3.drm
[2011.01.02 22:21:05 | 000,047,616 | ---- | C] () -- C:\Windows\SysWow64\pdf995mon64.dll
[2011.01.02 22:21:05 | 000,000,059 | ---- | C] () -- C:\Windows\wpd99.drv
[2010.12.20 20:41:05 | 000,000,067 | ---- | C] () -- C:\Windows\smrpro.INI
[2010.11.24 00:16:46 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010.11.01 22:29:01 | 001,503,232 | ---- | C] () -- C:\Windows\SysWow64\ptj.exe
[2010.11.01 22:29:01 | 001,103,360 | ---- | C] () -- C:\Windows\SysWow64\cidfont.dll
[2010.11.01 22:29:00 | 004,369,408 | ---- | C] () -- C:\Windows\SysWow64\pdftk.exe
[2010.11.01 22:29:00 | 000,235,008 | ---- | C] () -- C:\Windows\SysWow64\office.exe
[2010.11.01 22:18:06 | 000,000,701 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\init.dll
[2010.11.01 22:18:06 | 000,000,006 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\SYSTEM32.dll
[2010.11.01 22:17:55 | 000,000,701 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\sound.dll
[2010.11.01 22:17:23 | 000,116,736 | ---- | C] () -- C:\Windows\SysWow64\redmonnt.dll
[2010.10.25 23:07:13 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.10.11 16:35:39 | 000,125,440 | ---- | C] () -- C:\Windows\dx7ogl32.dll
[2010.10.10 16:26:28 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2010.10.10 11:51:00 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.10.10 11:41:40 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2009.08.27 09:04:14 | 000,207,400 | R--- | C] () -- C:\Windows\GSetup.exe
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2008.10.07 10:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2008.10.07 10:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
[2005.12.07 13:31:00 | 000,202,752 | R--- | C] () -- C:\Windows\SysWow64\CddbCdda.dll
[2003.04.07 11:38:32 | 000,005,746 | ---- | C] () -- C:\Windows\SysWow64\OUTLPERF.INI
========== LOP Check ==========
[2010.12.20 00:48:29 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\AnvSoft
[2011.01.04 17:32:59 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\astragon Software GmbH
[2011.02.13 19:11:22 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Audacity
[2010.10.10 21:54:26 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Canneverbe Limited
[2010.11.14 20:17:59 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DAEMON Tools Lite
[2011.01.24 12:41:29 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Datalayer
[2010.11.25 20:38:53 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoft
[2011.03.20 01:16:37 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.02.13 19:14:01 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Free Sound Recorder
[2011.02.04 18:12:20 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\GetRightToGo
[2011.03.27 21:41:09 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\ICQ
[2010.11.24 00:16:55 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Leawo
[2010.10.14 11:58:21 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\magentictb
[2010.11.24 00:16:55 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Moyea
[2010.12.20 23:53:49 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\NCH Swift Sound
[2010.12.28 14:58:23 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Nokia
[2010.10.10 13:58:31 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\OpenOffice.org
[2010.12.28 14:59:30 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\PC Suite
[2010.10.31 00:11:45 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\PhotoScape
[2011.02.04 18:55:05 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Power MP3 Cutter
[2011.02.04 18:16:14 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Power Mp3 Recorder
[2011.01.14 01:01:25 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\uTorrent
[2010.11.01 23:38:27 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\XnView
[2010.11.01 22:20:00 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\YCanPDF
[2011.03.27 10:35:21 | 000,032,580 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< Logfile of random's system information tool 1.08 (written by random/random) >
Invalid Switch: random)
< Run by Petra a Zuzana at 2011-04-04 23:57:35 >
< Microsoft Windows 7 Home Premium >
< System drive C: has 101 GB (67%) free of 150 GB >
< Total RAM: 3963 MB (76% free) >
< >
< Logfile of Trend Micro HijackThis v2.0.4 >
< Scan saved at 23:57:55, on 4.4.2011 >
< Platform: Windows 7 (WinNT 6.00.3504) >
< MSIE: Internet Explorer v8.00 (8.00.7600.16722) >
< Boot mode: Normal >
< >
< Running processes: >
< C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe >
[2011.01.20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
< C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe >
[2009.10.15 14:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
< C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe >
[2010.11.12 14:14:54 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
< C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe >
[2010.10.22 17:47:26 | 000,524,288 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
< C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe >
[2010.10.29 15:49:28 | 000,249,064 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
< C:\Program Files (x86)\Internet Explorer\IELowutil.exe >
[2009.07.14 03:14:21 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Windows\SysWOW64\rundll32.exe >
[2009.07.14 03:14:31 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rundll32.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Program Files\trend micro\Petra a Zuzana.exe >
[2011.04.04 23:57:36 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\trend micro\Petra a Zuzana.exe
< >
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/ >
Invalid Switch:
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 >
Invalid Switch: ?LinkId=69157
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 >
Invalid Switch: ?LinkId=54896
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = >
< R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = >
< R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm >
Re: Prosím vás o kontrolu tohto môjho logu
Dobrý deň,
urobila som presne to, čo ste mi povedali. Bolo to OK, tu vkladám tie logy (ale nevojdú sa celé, tak po kúskoch)
OTL logfile created on: 7.4.2011 9:56:30 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Petra a Zuzana\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 76,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,48 Gb Total Space | 98,94 Gb Free Space | 67,54% Space Free | Partition Type: NTFS
Drive D: | 319,28 Gb Total Space | 263,00 Gb Free Space | 82,37% Space Free | Partition Type: NTFS
Computer Name: PETRAAZUZANA-PC | User Name: Petra a Zuzana | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
========== Modules (SafeList) ==========
MOD - [2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
MOD - [2010.08.21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.04.06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:64bit: - [2009.11.11 06:58:54 | 000,202,752 | ---- | M] (AMD) [Auto | Stopped] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011.03.19 13:07:14 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.01.03 12:40:19 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.11.12 14:14:54 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.10.22 17:38:46 | 000,386,560 | ---- | M] (Spigot, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.10.15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009.09.30 14:02:50 | 002,320,920 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2009.09.30 14:02:48 | 000,268,824 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2006.06.05 14:59:18 | 000,174,080 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\PCSuite\Services\ServiceLayer.exe -- (ServiceLayer)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011.02.14 00:25:23 | 000,254,528 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2010.11.25 14:01:19 | 000,083,120 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2010.11.14 11:56:23 | 000,834,544 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.04.27 11:56:38 | 000,021,544 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2010.03.04 15:43:00 | 000,346,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.03.02 13:35:01 | 000,116,568 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2009.11.11 07:34:52 | 006,108,672 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.09.30 16:34:30 | 000,121,872 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009.09.17 06:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:06:32 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.05.02 11:59:08 | 000,008,704 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64j.sys -- (UsbserFilt)
DRV:64bit: - [2008.05.02 11:58:50 | 000,008,704 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2008.05.02 11:58:48 | 000,023,552 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdcx64)
DRV:64bit: - [2008.05.02 11:58:48 | 000,018,432 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcdx64)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\URLSearchHook: {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[2010.11.24 00:02:20 | 000,003,187 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\acpro.xml
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\64\AutocompletePro64.dll (SimplyGen)
O2 - BHO: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll ()
O2 - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll (SimplyGen)
O2 - BHO: () - {43F31A50-EBB0-4926-A058-9F89EDC21C41} - C:\Program Files (x86)\TNS Audit meter\iaudit_t.dll (TNS SK s.r.o.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Updater For Magentic Toolbar) - {B3312915-9368-4FE4-8D4E-B60E5B36D0FF} - C:\Program Files (x86)\magentictb\auxi\magenticAu.dll (Visicom Media)
O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3:64bit: - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [BCU] C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [SearchSettings] C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Informácie o aplikácii TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - File not found
O9 - Extra 'Tools' menuitem : Plugin TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - File not found
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.5.18.5 10.5.18.2 195.80.171.4
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O20:64bit: - AppInit_DLLs: (acaptuser64.dll) - C:\Windows\SysNative\acaptuser64.dll (Adobe Systems, Inc.)
O20 - AppInit_DLLs: (acaptuser32.dll) - C:\Windows\SysWow64\acaptuser32.dll (Adobe Systems, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 7 Days ==========
[2011.04.05 20:18:44 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
[2011.04.05 18:30:53 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia
[2011.04.05 18:29:46 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia
[2011.04.05 18:28:25 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Hist (1)
[2011.04.05 00:13:47 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\AppData\Roaming\Malwarebytes
[2011.04.05 00:13:43 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011.04.05 00:13:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.04.05 00:13:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.04.05 00:13:40 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011.04.05 00:13:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011.04.05 00:12:05 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Petra a Zuzana\Desktop\mbam-setup-1.50.1.1100.exe
[2011.04.04 23:57:36 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.04.04 23:57:35 | 000,000,000 | ---D | C] -- C:\rsit
========== Files - Modified Within 7 Days ==========
[2011.04.07 09:53:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.04.07 09:53:22 | 3117,015,040 | -HS- | M] () -- C:\hiberfil.sys
[2011.04.07 09:32:31 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.04.07 09:32:31 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.04.07 09:29:25 | 001,470,062 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.04.07 09:29:25 | 000,631,054 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2011.04.07 09:29:25 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.04.07 09:29:25 | 000,121,708 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2011.04.07 09:29:25 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.04.06 22:02:00 | 000,000,998 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000UA.job
[2011.04.06 20:02:00 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000Core.job
[2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
[2011.04.05 18:32:53 | 000,096,104 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Diferencialna diagnoza dutych organov na mikroskopickych preparatoch.pdf
[2011.04.05 18:30:42 | 004,932,159 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia.rar
[2011.04.05 18:29:31 | 001,660,491 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia.rar
[2011.04.05 18:28:04 | 000,589,958 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Hist (1).zip
[2011.04.05 13:39:55 | 000,647,058 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\2_Vnutorne_prostredie.pdf
[2011.04.05 13:39:44 | 000,432,228 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\3_Vyznam_vapnika.pdf
[2011.04.05 00:13:43 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.05 00:12:00 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Petra a Zuzana\Desktop\mbam-setup-1.50.1.1100.exe
[2011.04.04 23:56:45 | 000,832,273 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\RSITx64.exe
========== Files Created - No Company Name ==========
[2011.04.05 18:32:55 | 000,096,104 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Diferencialna diagnoza dutych organov na mikroskopickych preparatoch.pdf
[2011.04.05 18:30:43 | 004,932,159 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia.rar
[2011.04.05 18:29:32 | 001,660,491 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia.rar
[2011.04.05 18:28:11 | 000,589,958 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Hist (1).zip
[2011.04.05 13:39:57 | 000,647,058 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\2_Vnutorne_prostredie.pdf
[2011.04.05 13:39:48 | 000,432,228 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\3_Vyznam_vapnika.pdf
[2011.04.05 00:13:43 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.04 23:57:06 | 000,832,273 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\RSITx64.exe
[2011.01.25 19:19:11 | 000,004,096 | -H-- | C] () -- C:\Users\Petra a Zuzana\AppData\Local\keyfile3.drm
[2011.01.02 22:21:05 | 000,047,616 | ---- | C] () -- C:\Windows\SysWow64\pdf995mon64.dll
[2011.01.02 22:21:05 | 000,000,059 | ---- | C] () -- C:\Windows\wpd99.drv
[2010.12.20 20:41:05 | 000,000,067 | ---- | C] () -- C:\Windows\smrpro.INI
[2010.11.24 00:16:46 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010.11.01 22:29:01 | 001,503,232 | ---- | C] () -- C:\Windows\SysWow64\ptj.exe
[2010.11.01 22:29:01 | 001,103,360 | ---- | C] () -- C:\Windows\SysWow64\cidfont.dll
[2010.11.01 22:29:00 | 004,369,408 | ---- | C] () -- C:\Windows\SysWow64\pdftk.exe
[2010.11.01 22:29:00 | 000,235,008 | ---- | C] () -- C:\Windows\SysWow64\office.exe
[2010.11.01 22:18:06 | 000,000,701 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\init.dll
[2010.11.01 22:18:06 | 000,000,006 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\SYSTEM32.dll
[2010.11.01 22:17:55 | 000,000,701 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\sound.dll
[2010.11.01 22:17:23 | 000,116,736 | ---- | C] () -- C:\Windows\SysWow64\redmonnt.dll
[2010.10.25 23:07:13 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.10.11 16:35:39 | 000,125,440 | ---- | C] () -- C:\Windows\dx7ogl32.dll
[2010.10.10 16:26:28 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2010.10.10 11:51:00 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.10.10 11:41:40 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2009.08.27 09:04:14 | 000,207,400 | R--- | C] () -- C:\Windows\GSetup.exe
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2008.10.07 10:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2008.10.07 10:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
[2005.12.07 13:31:00 | 000,202,752 | R--- | C] () -- C:\Windows\SysWow64\CddbCdda.dll
[2003.04.07 11:38:32 | 000,005,746 | ---- | C] () -- C:\Windows\SysWow64\OUTLPERF.INI
========== LOP Check ==========
[2010.12.20 00:48:29 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\AnvSoft
[2011.01.04 17:32:59 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\astragon Software GmbH
[2011.02.13 19:11:22 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Audacity
[2010.10.10 21:54:26 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Canneverbe Limited
[2010.11.14 20:17:59 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DAEMON Tools Lite
[2011.01.24 12:41:29 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Datalayer
[2010.11.25 20:38:53 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoft
[2011.03.20 01:16:37 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.02.13 19:14:01 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Free Sound Recorder
[2011.02.04 18:12:20 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\GetRightToGo
[2011.03.27 21:41:09 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\ICQ
[2010.11.24 00:16:55 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Leawo
[2010.10.14 11:58:21 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\magentictb
[2010.11.24 00:16:55 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Moyea
[2010.12.20 23:53:49 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\NCH Swift Sound
[2010.12.28 14:58:23 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Nokia
[2010.10.10 13:58:31 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\OpenOffice.org
[2010.12.28 14:59:30 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\PC Suite
[2010.10.31 00:11:45 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\PhotoScape
[2011.02.04 18:55:05 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Power MP3 Cutter
[2011.02.04 18:16:14 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Power Mp3 Recorder
[2011.01.14 01:01:25 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\uTorrent
[2010.11.01 23:38:27 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\XnView
[2010.11.01 22:20:00 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\YCanPDF
[2011.03.27 10:35:21 | 000,032,580 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< Logfile of random's system information tool 1.08 (written by random/random) >
Invalid Switch: random)
< Run by Petra a Zuzana at 2011-04-04 23:57:35 >
< Microsoft Windows 7 Home Premium >
< System drive C: has 101 GB (67%) free of 150 GB >
< Total RAM: 3963 MB (76% free) >
< >
< Logfile of Trend Micro HijackThis v2.0.4 >
< Scan saved at 23:57:55, on 4.4.2011 >
< Platform: Windows 7 (WinNT 6.00.3504) >
< MSIE: Internet Explorer v8.00 (8.00.7600.16722) >
< Boot mode: Normal >
< >
< Running processes: >
< C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe >
[2011.01.20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
< C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe >
[2009.10.15 14:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
< C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe >
[2010.11.12 14:14:54 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
< C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe >
[2010.10.22 17:47:26 | 000,524,288 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
< C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe >
[2010.10.29 15:49:28 | 000,249,064 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
< C:\Program Files (x86)\Internet Explorer\IELowutil.exe >
[2009.07.14 03:14:21 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Windows\SysWOW64\rundll32.exe >
[2009.07.14 03:14:31 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rundll32.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Program Files\trend micro\Petra a Zuzana.exe >
[2011.04.04 23:57:36 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\trend micro\Petra a Zuzana.exe
< >
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/ >
Invalid Switch:
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 >
Invalid Switch: ?LinkId=69157
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 >
Invalid Switch: ?LinkId=54896
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = >
< R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = >
< R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm >
urobila som presne to, čo ste mi povedali. Bolo to OK, tu vkladám tie logy (ale nevojdú sa celé, tak po kúskoch)
OTL logfile created on: 7.4.2011 9:56:30 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Petra a Zuzana\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 76,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,48 Gb Total Space | 98,94 Gb Free Space | 67,54% Space Free | Partition Type: NTFS
Drive D: | 319,28 Gb Total Space | 263,00 Gb Free Space | 82,37% Space Free | Partition Type: NTFS
Computer Name: PETRAAZUZANA-PC | User Name: Petra a Zuzana | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
========== Modules (SafeList) ==========
MOD - [2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
MOD - [2010.08.21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2010.04.06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:64bit: - [2009.11.11 06:58:54 | 000,202,752 | ---- | M] (AMD) [Auto | Stopped] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011.03.19 13:07:14 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.01.03 12:40:19 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.11.12 14:14:54 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.10.22 17:38:46 | 000,386,560 | ---- | M] (Spigot, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.10.15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009.09.30 14:02:50 | 002,320,920 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2009.09.30 14:02:48 | 000,268,824 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2006.06.05 14:59:18 | 000,174,080 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\PCSuite\Services\ServiceLayer.exe -- (ServiceLayer)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011.02.14 00:25:23 | 000,254,528 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2010.11.25 14:01:19 | 000,083,120 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2010.11.14 11:56:23 | 000,834,544 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.04.27 11:56:38 | 000,021,544 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2010.03.04 15:43:00 | 000,346,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.03.02 13:35:01 | 000,116,568 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2009.11.11 07:34:52 | 006,108,672 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.09.30 16:34:30 | 000,121,872 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009.09.17 06:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:06:32 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.05.02 11:59:08 | 000,008,704 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64j.sys -- (UsbserFilt)
DRV:64bit: - [2008.05.02 11:58:50 | 000,008,704 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2008.05.02 11:58:48 | 000,023,552 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdcx64)
DRV:64bit: - [2008.05.02 11:58:48 | 000,018,432 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcdx64)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=7148&bi=400
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\URLSearchHook: {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[2010.11.24 00:02:20 | 000,003,187 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\acpro.xml
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\64\AutocompletePro64.dll (SimplyGen)
O2 - BHO: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll ()
O2 - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll (SimplyGen)
O2 - BHO: () - {43F31A50-EBB0-4926-A058-9F89EDC21C41} - C:\Program Files (x86)\TNS Audit meter\iaudit_t.dll (TNS SK s.r.o.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Updater For Magentic Toolbar) - {B3312915-9368-4FE4-8D4E-B60E5B36D0FF} - C:\Program Files (x86)\magentictb\auxi\magenticAu.dll (Visicom Media)
O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3:64bit: - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [BCU] C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [SearchSettings] C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Informácie o aplikácii TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - File not found
O9 - Extra 'Tools' menuitem : Plugin TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - File not found
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.5.18.5 10.5.18.2 195.80.171.4
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O20:64bit: - AppInit_DLLs: (acaptuser64.dll) - C:\Windows\SysNative\acaptuser64.dll (Adobe Systems, Inc.)
O20 - AppInit_DLLs: (acaptuser32.dll) - C:\Windows\SysWow64\acaptuser32.dll (Adobe Systems, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 7 Days ==========
[2011.04.05 20:18:44 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
[2011.04.05 18:30:53 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia
[2011.04.05 18:29:46 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia
[2011.04.05 18:28:25 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\Desktop\Hist (1)
[2011.04.05 00:13:47 | 000,000,000 | ---D | C] -- C:\Users\Petra a Zuzana\AppData\Roaming\Malwarebytes
[2011.04.05 00:13:43 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011.04.05 00:13:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.04.05 00:13:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.04.05 00:13:40 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011.04.05 00:13:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011.04.05 00:12:05 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Petra a Zuzana\Desktop\mbam-setup-1.50.1.1100.exe
[2011.04.04 23:57:36 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.04.04 23:57:35 | 000,000,000 | ---D | C] -- C:\rsit
========== Files - Modified Within 7 Days ==========
[2011.04.07 09:53:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.04.07 09:53:22 | 3117,015,040 | -HS- | M] () -- C:\hiberfil.sys
[2011.04.07 09:32:31 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.04.07 09:32:31 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.04.07 09:29:25 | 001,470,062 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.04.07 09:29:25 | 000,631,054 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2011.04.07 09:29:25 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.04.07 09:29:25 | 000,121,708 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2011.04.07 09:29:25 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.04.06 22:02:00 | 000,000,998 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000UA.job
[2011.04.06 20:02:00 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000Core.job
[2011.04.05 20:18:36 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Petra a Zuzana\Desktop\OTL.exe
[2011.04.05 18:32:53 | 000,096,104 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Diferencialna diagnoza dutych organov na mikroskopickych preparatoch.pdf
[2011.04.05 18:30:42 | 004,932,159 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia.rar
[2011.04.05 18:29:31 | 001,660,491 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia.rar
[2011.04.05 18:28:04 | 000,589,958 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\Hist (1).zip
[2011.04.05 13:39:55 | 000,647,058 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\2_Vnutorne_prostredie.pdf
[2011.04.05 13:39:44 | 000,432,228 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\3_Vyznam_vapnika.pdf
[2011.04.05 00:13:43 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.05 00:12:00 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Petra a Zuzana\Desktop\mbam-setup-1.50.1.1100.exe
[2011.04.04 23:56:45 | 000,832,273 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\RSITx64.exe
========== Files Created - No Company Name ==========
[2011.04.05 18:32:55 | 000,096,104 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Diferencialna diagnoza dutych organov na mikroskopickych preparatoch.pdf
[2011.04.05 18:30:43 | 004,932,159 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Histologia-patologia.rar
[2011.04.05 18:29:32 | 001,660,491 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Elektronova_mikroskopia.rar
[2011.04.05 18:28:11 | 000,589,958 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\Hist (1).zip
[2011.04.05 13:39:57 | 000,647,058 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\2_Vnutorne_prostredie.pdf
[2011.04.05 13:39:48 | 000,432,228 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\3_Vyznam_vapnika.pdf
[2011.04.05 00:13:43 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.04 23:57:06 | 000,832,273 | ---- | C] () -- C:\Users\Petra a Zuzana\Desktop\RSITx64.exe
[2011.01.25 19:19:11 | 000,004,096 | -H-- | C] () -- C:\Users\Petra a Zuzana\AppData\Local\keyfile3.drm
[2011.01.02 22:21:05 | 000,047,616 | ---- | C] () -- C:\Windows\SysWow64\pdf995mon64.dll
[2011.01.02 22:21:05 | 000,000,059 | ---- | C] () -- C:\Windows\wpd99.drv
[2010.12.20 20:41:05 | 000,000,067 | ---- | C] () -- C:\Windows\smrpro.INI
[2010.11.24 00:16:46 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010.11.01 22:29:01 | 001,503,232 | ---- | C] () -- C:\Windows\SysWow64\ptj.exe
[2010.11.01 22:29:01 | 001,103,360 | ---- | C] () -- C:\Windows\SysWow64\cidfont.dll
[2010.11.01 22:29:00 | 004,369,408 | ---- | C] () -- C:\Windows\SysWow64\pdftk.exe
[2010.11.01 22:29:00 | 000,235,008 | ---- | C] () -- C:\Windows\SysWow64\office.exe
[2010.11.01 22:18:06 | 000,000,701 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\init.dll
[2010.11.01 22:18:06 | 000,000,006 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\SYSTEM32.dll
[2010.11.01 22:17:55 | 000,000,701 | ---- | C] () -- C:\Users\Petra a Zuzana\AppData\Roaming\sound.dll
[2010.11.01 22:17:23 | 000,116,736 | ---- | C] () -- C:\Windows\SysWow64\redmonnt.dll
[2010.10.25 23:07:13 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.10.11 16:35:39 | 000,125,440 | ---- | C] () -- C:\Windows\dx7ogl32.dll
[2010.10.10 16:26:28 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2010.10.10 11:51:00 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.10.10 11:41:40 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2009.08.27 09:04:14 | 000,207,400 | R--- | C] () -- C:\Windows\GSetup.exe
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2008.10.07 10:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2008.10.07 10:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2008.10.07 10:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
[2005.12.07 13:31:00 | 000,202,752 | R--- | C] () -- C:\Windows\SysWow64\CddbCdda.dll
[2003.04.07 11:38:32 | 000,005,746 | ---- | C] () -- C:\Windows\SysWow64\OUTLPERF.INI
========== LOP Check ==========
[2010.12.20 00:48:29 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\AnvSoft
[2011.01.04 17:32:59 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\astragon Software GmbH
[2011.02.13 19:11:22 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Audacity
[2010.10.10 21:54:26 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Canneverbe Limited
[2010.11.14 20:17:59 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DAEMON Tools Lite
[2011.01.24 12:41:29 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Datalayer
[2010.11.25 20:38:53 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoft
[2011.03.20 01:16:37 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.02.13 19:14:01 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Free Sound Recorder
[2011.02.04 18:12:20 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\GetRightToGo
[2011.03.27 21:41:09 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\ICQ
[2010.11.24 00:16:55 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Leawo
[2010.10.14 11:58:21 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\magentictb
[2010.11.24 00:16:55 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Moyea
[2010.12.20 23:53:49 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\NCH Swift Sound
[2010.12.28 14:58:23 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Nokia
[2010.10.10 13:58:31 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\OpenOffice.org
[2010.12.28 14:59:30 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\PC Suite
[2010.10.31 00:11:45 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\PhotoScape
[2011.02.04 18:55:05 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Power MP3 Cutter
[2011.02.04 18:16:14 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\Power Mp3 Recorder
[2011.01.14 01:01:25 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\uTorrent
[2010.11.01 23:38:27 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\XnView
[2010.11.01 22:20:00 | 000,000,000 | ---D | M] -- C:\Users\Petra a Zuzana\AppData\Roaming\YCanPDF
[2011.03.27 10:35:21 | 000,032,580 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< Logfile of random's system information tool 1.08 (written by random/random) >
Invalid Switch: random)
< Run by Petra a Zuzana at 2011-04-04 23:57:35 >
< Microsoft Windows 7 Home Premium >
< System drive C: has 101 GB (67%) free of 150 GB >
< Total RAM: 3963 MB (76% free) >
< >
< Logfile of Trend Micro HijackThis v2.0.4 >
< Scan saved at 23:57:55, on 4.4.2011 >
< Platform: Windows 7 (WinNT 6.00.3504) >
< MSIE: Internet Explorer v8.00 (8.00.7600.16722) >
< Boot mode: Normal >
< >
< Running processes: >
< C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe >
[2011.01.20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
< C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe >
[2009.10.15 14:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
< C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe >
[2010.11.12 14:14:54 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
< C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe >
[2010.10.22 17:47:26 | 000,524,288 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
< C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe >
[2010.10.29 15:49:28 | 000,249,064 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
< C:\Program Files (x86)\Internet Explorer\IELowutil.exe >
[2009.07.14 03:14:21 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Windows\SysWOW64\rundll32.exe >
[2009.07.14 03:14:31 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rundll32.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Program Files\trend micro\Petra a Zuzana.exe >
[2011.04.04 23:57:36 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\trend micro\Petra a Zuzana.exe
< >
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/ >
Invalid Switch:
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 >
Invalid Switch: ?LinkId=69157
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 >
Invalid Switch: ?LinkId=54896
< R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.toggle.com/en/index.php?rvs=google >
Invalid Switch: index.php?rvs=google
< R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400 >
Invalid Switch: ?si=7148&bi=400
< R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = >
< R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = >
< R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm >
Re: Prosím vás o kontrolu tohto môjho logu
< R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = >
< R3 - URLSearchHook: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll >
< R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll >
< F2 - REG:system.ini: UserInit=userinit.exe >
< O2 - BHO: Magentic Toolbar - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll >
< O2 - BHO: SuggestMeYesBHO - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll >
< O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll >
< O2 - BHO: (no name) - {43F31A50-EBB0-4926-A058-9F89EDC21C41} - C:\PROGRA~2\TNSAUD~1\iaudit_t.dll >
< O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll >
< O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll >
< O2 - BHO: Updater For Magentic Toolbar - {B3312915-9368-4FE4-8D4E-B60E5B36D0FF} - C:\Program Files (x86)\magentictb\auxi\magenticAu.dll >
< O2 - BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll >
< O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll >
< O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll >
< O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll >
< O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll >
< O3 - Toolbar: Magentic Toolbar - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll >
< O3 - Toolbar: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll >
< O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll >
< O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll >
< O4 - HKLM\..\Run: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" >
< O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun >
< O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min >
< O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" >
< O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" >
< O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun >
Invalid Switch: autoRun
< O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun >
< O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') >
Invalid Switch: autoRun (User 'LOCAL SERVICE')
< O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') >
< O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') >
Invalid Switch: autoRun (User 'NETWORK SERVICE')
< O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') >
< O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present >
< O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present >
< O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html >
Invalid Switch: AcroIEAppendSelLinks.html
< O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html >
Invalid Switch: AcroIEAppend.html
< O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html >
Invalid Switch: AcroIECaptureSelLinks.html
< O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html >
Invalid Switch: AcroIECapture.html
< O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000 >
< O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm >
< O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe >
< O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe >
< O9 - Extra button: Informácie o aplikácii TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - http://monitor.idot.sk/info (file missing) >
Invalid Switch: info (file missing)
< O9 - Extra 'Tools' menuitem: Plugin TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - http://monitor.idot.sk/info (file missing) >
Invalid Switch: info (file missing)
< O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL >
< O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll >
< O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll >
< O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab >
Invalid Switch: swflash.cab
< O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL >
< O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll >
< O20 - AppInit_DLLs: acaptuser32.dll >
< O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) >
< O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) >
< O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe >
< O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe >
< O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing) >
< O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe >
< O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe >
< O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) >
< O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) >
< O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe >
< O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) >
< O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe >
< O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) >
< O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) >
< O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) >
< O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) >
< O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) >
< O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\Common Files\PCSuite\Services\ServiceLayer.exe >
< O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) >
< O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) >
< O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) >
< O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) >
< O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe >
< O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) >
< O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) >
< O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) >
< O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) >
< O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) >
< O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) >
< O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) >
< >
< -- >
< End of file - 12652 bytes >
< >
< ======Listing Processes====== >
< >
< \SystemRoot\System32\smss.exe >
< %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 >
< wininit.exe >
< %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 >
< C:\Windows\system32\services.exe >
< C:\Windows\system32\lsass.exe >
< C:\Windows\system32\lsm.exe >
< winlogon.exe >
< C:\Windows\system32\svchost.exe -k DcomLaunch >
< C:\Windows\system32\svchost.exe -k RPCSS >
< C:\Windows\system32\atiesrxx.exe >
< C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted >
< C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted >
< C:\Windows\system32\svchost.exe -k LocalService >
< C:\Windows\system32\svchost.exe -k NetworkService >
< atieclxx >
< C:\Windows\System32\spoolsv.exe >
< "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe" >
[2010.11.12 14:14:54 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
< C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork >
< "taskhost.exe" >
< "C:\Windows\system32\Dwm.exe" >
< "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe" >
[2011.03.19 13:07:14 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
< C:\Windows\Explorer.EXE >
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
< "C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe" >
[2010.10.22 17:38:46 | 000,386,560 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
< "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe" >
[2009.10.15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
< "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe" >
[2009.09.30 14:02:48 | 000,268,824 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
< C:\Windows\system32\svchost.exe -k imgsvc >
< "C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_0000068c >
< \??\C:\Windows\system32\conhost.exe >
< "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" >
[2010.09.21 14:49:00 | 002,286,976 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
< "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s >
< "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun >
< "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun >
< "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" >
[2009.10.15 14:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
< "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min >
< "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" >
< "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" >
[2010.10.22 17:47:26 | 000,524,288 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
< "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" >
[2010.10.29 15:49:28 | 000,249,064 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
< "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0 >
< WLIDSvcM.exe 432 >
< C:\Windows\system32\SearchIndexer.exe /Embedding >
Invalid Switch: Embedding
< C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted >
< "C:\Program Files\Windows Media Player\wmpnetwk.exe" >
[2009.07.14 03:39:56 | 001,525,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
< C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation >
< C:\Windows\System32\svchost.exe -k LocalServicePeerNet >
< C:\Windows\system32\wbem\wmiprvse.exe >
[2009.07.14 03:14:47 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
< C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7} >
Invalid Switch: Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
< "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe" >
[2009.09.30 14:02:50 | 002,320,920 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
< C:\Windows\System32\svchost.exe -k secsvcs >
< "C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding >
< "C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4f2ebd0b-a2a8-4a98-9ac0-49adff744845 -SystemEventPortName:HostProcess-01fe92c2-b3fb-4480-8590-566190a8ff68 -IoCancelEventPortName:HostProcess-d6bc5c3d-a705-4d81-81a5-f8a03562ecd8 -NonStateChangingEventPortName:HostProcess-8b6865c8-2937-4c18-9ae4-5f41eb3c4640 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2c946c28-18a7-409a-ad8b-bcec34bebf1f >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Windows\system32\rundll32.exe "C:\Users\PETRAA~1\AppData\Local\Google\Chrome\APPLIC~1\100648~1.204\gcswf32.dll",BrokerMain browser=chrome >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\10.0.648.204\gcswf32.dll" --lang=cs --plugin-data-dir="C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\User Data\Default" --channel=1468.0729E800.1191721973 /prefetch:4 --flash-broker=1492 >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C84D80.540918540 /prefetch:3 >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C84780.1674235308 /prefetch:3 >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C72A80.373582326 /prefetch:3 >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C72900.1961355630 /prefetch:3 >
< "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" >
< "C:\Windows\system32\SearchFilterHost.exe" 0 596 600 608 65536 604 >
< "C:\Users\Petra a Zuzana\Desktop\RSITx64.exe" >
[2011.04.04 23:56:45 | 000,832,273 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\RSITx64.exe
< >
< ======Scheduled tasks folder====== >
< >
< C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000Core.job >
[2011.04.06 20:02:00 | 000,000,946 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000Core.job
< C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000UA.job >
[2011.04.06 22:02:00 | 000,000,998 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000UA.job
< >
< ======Registry dump====== >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}] >
< AC-Pro - C:\Program Files (x86)\AutocompletePro\64\AutocompletePro64.dll [2010-11-10 111616] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] >
< Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07C92F45-3193-4FD9-AF54-B1925707C872}] >
< Magentic Toolbar - C:\Program Files (x86)\magentictb\magenticDx.dll [2010-08-31 86696] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}] >
< AC-Pro - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll [2010-06-14 97760] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] >
< Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43F31A50-EBB0-4926-A058-9F89EDC21C41}] >
< C:\PROGRA~2\TNSAUD~1\iaudit_t.dll [2010-11-11 651720] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] >
< Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}] >
< Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B3312915-9368-4FE4-8D4E-B60E5B36D0FF}] >
< Updater For Magentic Toolbar - C:\Program Files (x86)\magentictb\auxi\magenticAu.dll [2010-08-31 262312] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}] >
< pdfforge Toolbar - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll [2010-10-22 726016] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] >
< Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-26 1385864] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] >
< Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-03-13 41760] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}] >
< SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] >
< {32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2010-03-25 1548096] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] >
< {D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-26 1385864] >
< {07C92F45-3193-4FD9-AF54-B1925707C872} - Magentic Toolbar - C:\Program Files (x86)\magentictb\magenticDx.dll [2010-08-31 86696] >
< {B922D405-6D13-4A2B-AE89-08A030DA4402} - pdfforge Toolbar - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll [2010-10-22 726016] >
< {32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000] >
< {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480] >
< >
< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] >
< "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-03-26 10135584] >
< >
< [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] >
< "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072] >
< "DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0] >
< C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher] >
< C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] >
< C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] >
< C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] >
< C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] >
< C:\Users\Petra a Zuzana\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-10 136176] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ] >
< C:\Program Files (x86)\ICQ7.2\ICQ.exe silent loginmode=4 [] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Magentic] >
< C:\PROGRA~2\Magentic\bin\Magentic.exe [2010-05-11 486632] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Network Error Advisor] >
< C:\Program Files (x86)\magentictb\ExeRunner.exe [2010-03-31 58368] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher] >
< C:\Program Files (x86)\Nokia\Nokia Software Launcher\NSLauncher.exe [2006-11-28 2658304] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PcSync] >
< C:\Program Files (x86)\Nokia\Nokia PC Suite 6\PcSync2.exe [2006-06-27 1449984] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] >
< C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] >
< C:\Program Files (x86)\Winamp\winampa.exe [2010-07-12 74752] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Petra a Zuzana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk] >
< C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE [2010-06-07 1195520] >
< >
< [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] >
< "BCU"=C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [2009-10-15 375000] >
< "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-10 98304] >
< "avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2010-11-12 281768] >
< ""= [] >
< "SearchSettings"=C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [2010-10-22 524288] >
< "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] >
< "AppInit_DLLs"="acaptuser64.dll" >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] >
< WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} >
< >
< [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] >
< "SecurityProviders"=credssp.dll >
< >
< R3 - URLSearchHook: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll >
< R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll >
< F2 - REG:system.ini: UserInit=userinit.exe >
< O2 - BHO: Magentic Toolbar - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll >
< O2 - BHO: SuggestMeYesBHO - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll >
< O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll >
< O2 - BHO: (no name) - {43F31A50-EBB0-4926-A058-9F89EDC21C41} - C:\PROGRA~2\TNSAUD~1\iaudit_t.dll >
< O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll >
< O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll >
< O2 - BHO: Updater For Magentic Toolbar - {B3312915-9368-4FE4-8D4E-B60E5B36D0FF} - C:\Program Files (x86)\magentictb\auxi\magenticAu.dll >
< O2 - BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll >
< O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll >
< O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll >
< O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll >
< O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll >
< O3 - Toolbar: Magentic Toolbar - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll >
< O3 - Toolbar: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll >
< O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll >
< O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll >
< O4 - HKLM\..\Run: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" >
< O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun >
< O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min >
< O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" >
< O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" >
< O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun >
Invalid Switch: autoRun
< O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun >
< O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') >
Invalid Switch: autoRun (User 'LOCAL SERVICE')
< O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') >
< O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') >
Invalid Switch: autoRun (User 'NETWORK SERVICE')
< O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') >
< O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present >
< O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present >
< O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html >
Invalid Switch: AcroIEAppendSelLinks.html
< O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html >
Invalid Switch: AcroIEAppend.html
< O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html >
Invalid Switch: AcroIECaptureSelLinks.html
< O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html >
Invalid Switch: AcroIECapture.html
< O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000 >
< O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm >
< O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe >
< O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe >
< O9 - Extra button: Informácie o aplikácii TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - http://monitor.idot.sk/info (file missing) >
Invalid Switch: info (file missing)
< O9 - Extra 'Tools' menuitem: Plugin TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - http://monitor.idot.sk/info (file missing) >
Invalid Switch: info (file missing)
< O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL >
< O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll >
< O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll >
< O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab >
Invalid Switch: swflash.cab
< O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL >
< O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll >
< O20 - AppInit_DLLs: acaptuser32.dll >
< O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) >
< O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) >
< O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe >
< O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe >
< O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing) >
< O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe >
< O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe >
< O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) >
< O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) >
< O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe >
< O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) >
< O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe >
< O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) >
< O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) >
< O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) >
< O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) >
< O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) >
< O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\Common Files\PCSuite\Services\ServiceLayer.exe >
< O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) >
< O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) >
< O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) >
< O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) >
< O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe >
< O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) >
< O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) >
< O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) >
< O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) >
< O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) >
< O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) >
< O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) >
< >
< -- >
< End of file - 12652 bytes >
< >
< ======Listing Processes====== >
< >
< \SystemRoot\System32\smss.exe >
< %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 >
< wininit.exe >
< %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 >
< C:\Windows\system32\services.exe >
< C:\Windows\system32\lsass.exe >
< C:\Windows\system32\lsm.exe >
< winlogon.exe >
< C:\Windows\system32\svchost.exe -k DcomLaunch >
< C:\Windows\system32\svchost.exe -k RPCSS >
< C:\Windows\system32\atiesrxx.exe >
< C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted >
< C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted >
< C:\Windows\system32\svchost.exe -k LocalService >
< C:\Windows\system32\svchost.exe -k NetworkService >
< atieclxx >
< C:\Windows\System32\spoolsv.exe >
< "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe" >
[2010.11.12 14:14:54 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
< C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork >
< "taskhost.exe" >
< "C:\Windows\system32\Dwm.exe" >
< "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe" >
[2011.03.19 13:07:14 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
< C:\Windows\Explorer.EXE >
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
< "C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe" >
[2010.10.22 17:38:46 | 000,386,560 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
< "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe" >
[2009.10.15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
< "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe" >
[2009.09.30 14:02:48 | 000,268,824 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
< C:\Windows\system32\svchost.exe -k imgsvc >
< "C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_0000068c >
< \??\C:\Windows\system32\conhost.exe >
< "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" >
[2010.09.21 14:49:00 | 002,286,976 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
< "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s >
< "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun >
< "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun >
< "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" >
[2009.10.15 14:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
< "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min >
< "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" >
< "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" >
[2010.10.22 17:47:26 | 000,524,288 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
< "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" >
[2010.10.29 15:49:28 | 000,249,064 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
< "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0 >
< WLIDSvcM.exe 432 >
< C:\Windows\system32\SearchIndexer.exe /Embedding >
Invalid Switch: Embedding
< C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted >
< "C:\Program Files\Windows Media Player\wmpnetwk.exe" >
[2009.07.14 03:39:56 | 001,525,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
< C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation >
< C:\Windows\System32\svchost.exe -k LocalServicePeerNet >
< C:\Windows\system32\wbem\wmiprvse.exe >
[2009.07.14 03:14:47 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
< C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7} >
Invalid Switch: Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
< "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe" >
[2009.09.30 14:02:50 | 002,320,920 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
< C:\Windows\System32\svchost.exe -k secsvcs >
< "C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding >
< "C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4f2ebd0b-a2a8-4a98-9ac0-49adff744845 -SystemEventPortName:HostProcess-01fe92c2-b3fb-4480-8590-566190a8ff68 -IoCancelEventPortName:HostProcess-d6bc5c3d-a705-4d81-81a5-f8a03562ecd8 -NonStateChangingEventPortName:HostProcess-8b6865c8-2937-4c18-9ae4-5f41eb3c4640 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2c946c28-18a7-409a-ad8b-bcec34bebf1f >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" >
[2011.03.23 19:49:21 | 001,004,088 | ---- | M] (Google Inc.) -- C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe
< C:\Windows\system32\rundll32.exe "C:\Users\PETRAA~1\AppData\Local\Google\Chrome\APPLIC~1\100648~1.204\gcswf32.dll",BrokerMain browser=chrome >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\10.0.648.204\gcswf32.dll" --lang=cs --plugin-data-dir="C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\User Data\Default" --channel=1468.0729E800.1191721973 /prefetch:4 --flash-broker=1492 >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C84D80.540918540 /prefetch:3 >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C84780.1674235308 /prefetch:3 >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C72A80.373582326 /prefetch:3 >
< "C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_3/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_14/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=1468.07C72900.1961355630 /prefetch:3 >
< "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" >
< "C:\Windows\system32\SearchFilterHost.exe" 0 596 600 608 65536 604 >
< "C:\Users\Petra a Zuzana\Desktop\RSITx64.exe" >
[2011.04.04 23:56:45 | 000,832,273 | ---- | M] () -- C:\Users\Petra a Zuzana\Desktop\RSITx64.exe
< >
< ======Scheduled tasks folder====== >
< >
< C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000Core.job >
[2011.04.06 20:02:00 | 000,000,946 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000Core.job
< C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000UA.job >
[2011.04.06 22:02:00 | 000,000,998 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000UA.job
< >
< ======Registry dump====== >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}] >
< AC-Pro - C:\Program Files (x86)\AutocompletePro\64\AutocompletePro64.dll [2010-11-10 111616] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] >
< Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07C92F45-3193-4FD9-AF54-B1925707C872}] >
< Magentic Toolbar - C:\Program Files (x86)\magentictb\magenticDx.dll [2010-08-31 86696] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}] >
< AC-Pro - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll [2010-06-14 97760] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] >
< Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43F31A50-EBB0-4926-A058-9F89EDC21C41}] >
< C:\PROGRA~2\TNSAUD~1\iaudit_t.dll [2010-11-11 651720] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] >
< Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}] >
< Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B3312915-9368-4FE4-8D4E-B60E5B36D0FF}] >
< Updater For Magentic Toolbar - C:\Program Files (x86)\magentictb\auxi\magenticAu.dll [2010-08-31 262312] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}] >
< pdfforge Toolbar - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll [2010-10-22 726016] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] >
< Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-26 1385864] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] >
< Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-03-13 41760] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}] >
< SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] >
< {32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2010-03-25 1548096] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] >
< {D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-26 1385864] >
< {07C92F45-3193-4FD9-AF54-B1925707C872} - Magentic Toolbar - C:\Program Files (x86)\magentictb\magenticDx.dll [2010-08-31 86696] >
< {B922D405-6D13-4A2B-AE89-08A030DA4402} - pdfforge Toolbar - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll [2010-10-22 726016] >
< {32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000] >
< {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480] >
< >
< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] >
< "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-03-26 10135584] >
< >
< [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] >
< "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072] >
< "DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0] >
< C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher] >
< C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] >
< C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] >
< C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] >
< C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] >
< C:\Users\Petra a Zuzana\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-10 136176] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ] >
< C:\Program Files (x86)\ICQ7.2\ICQ.exe silent loginmode=4 [] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Magentic] >
< C:\PROGRA~2\Magentic\bin\Magentic.exe [2010-05-11 486632] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Network Error Advisor] >
< C:\Program Files (x86)\magentictb\ExeRunner.exe [2010-03-31 58368] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher] >
< C:\Program Files (x86)\Nokia\Nokia Software Launcher\NSLauncher.exe [2006-11-28 2658304] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PcSync] >
< C:\Program Files (x86)\Nokia\Nokia PC Suite 6\PcSync2.exe [2006-06-27 1449984] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] >
< C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] >
< C:\Program Files (x86)\Winamp\winampa.exe [2010-07-12 74752] >
< >
< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Petra a Zuzana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk] >
< C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE [2010-06-07 1195520] >
< >
< [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] >
< "BCU"=C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [2009-10-15 375000] >
< "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-10 98304] >
< "avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2010-11-12 281768] >
< ""= [] >
< "SearchSettings"=C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [2010-10-22 524288] >
< "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064] >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] >
< "AppInit_DLLs"="acaptuser64.dll" >
< >
< [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] >
< WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} >
< >
< [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] >
< "SecurityProviders"=credssp.dll >
< >
Re: Prosím vás o kontrolu tohto môjho logu
< [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] >
< >
< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] >
< "ConsentPromptBehaviorAdmin"=5 >
< "ConsentPromptBehaviorUser"=3 >
< "EnableUIADesktopToggle"=0 >
< "dontdisplaylastusername"=0 >
< "legalnoticecaption"= >
< "legalnoticetext"= >
< "shutdownwithoutlogon"=1 >
< "undockwithoutlogon"=1 >
< >
< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] >
< "NoActiveDesktop"=1 >
< "NoActiveDesktopChanges"=1 >
< "ForceActiveDesktopOn"=0 >
< >
< [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] >
< >
< [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] >
< >
< ======File associations====== >
< >
< .js - edit - C:\Windows\System32\Notepad.exe %1 >
< .js - open - C:\Windows\System32\WScript.exe "%1" %* >
< >
< ======List of files/folders created in the last 1 months====== >
Invalid Switch: folders created in the last 1 months======
< >
< 2011-04-04 23:57:36 ----D---- C:\Program Files\trend micro >
< 2011-04-04 23:57:35 ----D---- C:\rsit >
< 2011-03-13 12:15:55 ----D---- C:\ProgramData\Sun >
< 2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\javaws.exe >
< 2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\javaw.exe >
< 2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\java.exe >
< 2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\deployJava1.dll >
< 2011-03-13 12:15:35 ----D---- C:\Program Files (x86)\Java >
< 2011-03-13 12:15:13 ----D---- C:\ProgramData\McAfee >
< 2011-03-09 10:48:26 ----A---- C:\Windows\SYSWOW64\DWrite.dll >
< 2011-03-09 10:48:26 ----A---- C:\Windows\SYSWOW64\d2d1.dll >
< 2011-03-09 10:48:26 ----A---- C:\Windows\system32\FntCache.dll >
< 2011-03-09 10:48:26 ----A---- C:\Windows\system32\DWrite.dll >
< 2011-03-09 10:48:26 ----A---- C:\Windows\system32\d2d1.dll >
< 2011-03-09 10:48:25 ----A---- C:\Windows\system32\EncDec.dll >
< 2011-03-09 10:48:25 ----A---- C:\Windows\system32\CPFilters.dll >
< 2011-03-09 10:48:24 ----A---- C:\Windows\SYSWOW64\sbe.dll >
< 2011-03-09 10:48:24 ----A---- C:\Windows\SYSWOW64\EncDec.dll >
< 2011-03-09 10:48:24 ----A---- C:\Windows\SYSWOW64\CPFilters.dll >
< 2011-03-09 10:48:24 ----A---- C:\Windows\system32\sbe.dll >
< 2011-03-09 10:48:22 ----A---- C:\Windows\SYSWOW64\mstscax.dll >
< 2011-03-09 10:48:22 ----A---- C:\Windows\SYSWOW64\mstsc.exe >
< 2011-03-09 10:48:22 ----A---- C:\Windows\system32\mstscax.dll >
< 2011-03-09 10:48:22 ----A---- C:\Windows\system32\mstsc.exe >
< >
< ======List of files/folders modified in the last 1 months====== >
Invalid Switch: folders modified in the last 1 months======
< >
< 2011-04-04 23:57:46 ----D---- C:\Windows\Prefetch >
< 2011-04-04 23:57:36 ----RD---- C:\Program Files >
< 2011-04-04 23:57:36 ----D---- C:\Windows\Temp >
< 2011-04-04 22:30:19 ----D---- C:\Windows\System32 >
< 2011-04-04 22:30:19 ----D---- C:\Windows\inf >
< 2011-04-04 22:30:19 ----A---- C:\Windows\system32\PerfStringBackup.INI >
< 2011-04-04 20:38:37 ----A---- C:\Windows\SYSWOW64\log.txt >
< 2011-04-04 09:14:40 ----D---- C:\Windows\system32\config >
< 2011-04-03 12:33:17 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\Winamp >
< 2011-04-03 10:40:48 ----D---- C:\Windows >
< 2011-04-01 11:22:04 ----SHD---- C:\System Volume Information >
< 2011-03-31 00:41:50 ----SHD---- C:\Windows\Installer >
< 2011-03-31 00:41:44 ----D---- C:\Program Files (x86)\Windows Live >
< 2011-03-27 21:41:09 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\ICQ >
< 2011-03-25 01:48:56 ----D---- C:\Windows\system32\catroot >
< 2011-03-24 12:47:19 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\Skype >
< 2011-03-24 10:49:28 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\skypePM >
< 2011-03-20 01:16:37 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers >
< 2011-03-16 11:43:46 ----D---- C:\Windows\system32\catroot2 >
< 2011-03-14 13:25:22 ----D---- C:\Program Files (x86)\ICQ7.4 >
< 2011-03-13 13:37:28 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\vlc >
< 2011-03-13 12:15:55 ----HD---- C:\ProgramData >
< 2011-03-13 12:15:55 ----D---- C:\Program Files (x86)\Common Files >
< 2011-03-13 12:15:42 ----D---- C:\Windows\SysWOW64 >
< 2011-03-13 12:15:35 ----RD---- C:\Program Files (x86) >
< 2011-03-12 23:45:42 ----D---- C:\Windows\debug >
< 2011-03-10 12:48:25 ----D---- C:\Windows\winsxs >
< 2011-03-10 01:16:08 ----A---- C:\Windows\system32\MRT.exe >
< 2011-03-08 17:31:54 ----D---- C:\Windows\system32\drivers >
< 2011-03-08 17:31:54 ----D---- C:\ProgramData\Norton >
< 2011-03-08 17:31:53 ----D---- C:\Windows\Tasks >
< 2011-03-08 17:31:53 ----D---- C:\Windows\system32\Tasks >
< 2011-03-08 17:31:53 ----D---- C:\ProgramData\Symantec >
< >
< ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== >
< >
< R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352] >
< R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096] >
< R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-14 834544] >
< R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2010-04-27 21544] >
< R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-03-02 116568] >
< R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-14 254528] >
< R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-11-25 83120] >
< R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872] >
< R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-11-11 6108672] >
< R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] >
< R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-03-26 2307616] >
< R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144] >
< R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984] >
< S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [] >
< S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys [2008-05-02 23552] >
< S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmbx64.sys [2008-05-02 18432] >
< S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2008-05-02 8704] >
< S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768] >
< S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltx64j.sys [2008-05-02 8704] >
< S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448] >
< >
< ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== >
< >
< R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-11-11 202752] >
< R2 AntiVirService;Avira AntiVir Guard; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2011-03-19 269480] >
< R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2010-11-12 135336] >
< R2 Application Updater;Application Updater; C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2010-10-22 386560] >
< R2 BCUService;Browser Configuration Utility Service; C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-15 223464] >
< R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 268824] >
< R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2320920] >
< R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976] >
< S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] >
< S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] >
< S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272] >
< S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-01-03 651720] >
< S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] >
< S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\Common Files\PCSuite\Services\ServiceLayer.exe [2006-06-05 174080] >
< S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-10-11 1255736] >
< >
< -----------------EOF----------------- >
========== Alternate Data Streams ==========
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:BAC2F271
< End of report >¨
OTL Extras logfile created on: 7.4.2011 9:56:30 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Petra a Zuzana\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 76,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,48 Gb Total Space | 98,94 Gb Free Space | 67,54% Space Free | Partition Type: NTFS
Drive D: | 319,28 Gb Total Space | 263,00 Gb Free Space | 82,37% Space Free | Partition Type: NTFS
Computer Name: PETRAAZUZANA-PC | User Name: Petra a Zuzana | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0BB92499-E07A-531D-D9DF-D85862F6EAAD}" = ATI Catalyst Install Manager
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{42822DCA-21E7-49C6-20DE-9FAC7A4980C2}" = ATI Problem Report Wizard
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{6B06B783-FEBA-944A-C1DE-26032C12AA7C}" = ccc-utility64
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{AC76BA86-1033-0000-0064-0003D0000004}" = Adobe Acrobat 9 Pro Extended 64-bit Add-On
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver
"{BF43EB10-2DB9-480E-A6AD-C44B8674473C}" = Nokia Phone Browser 64-bit
"{CF2F961A-6B53-4618-A6EB-74EE5D3BE0D0}" = PC Connectivity Solution 64-bit components
"{F2DEDF1D-AFB2-CCFD-54C4-05BED30C75ED}" = ATI AVIVO64 Codecs
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{038E0E55-9758-49A1-892D-5226FAED5395}" = CCC Help Italian
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D80391C-0A72-43BB-9BC2-143F63CC111D}" = Nokia PC Connectivity Solution
"{0E0DF90C-D0BA-4C89-9262-AD78D1A3DE51}" = HP USB Disk Storage Format Tool
"{0E94871C-623C-464F-A117-B8474BFF84E1}" = Nokia MTP driver
"{12499C3D-9197-EF35-0499-2FD15F0B3750}" = CCC Help German
"{14021E77-2FC1-4972-8C51-08808CD62838}_is1" = Leawo MP4 Converter version 3.0.0.1
"{1695F36D-6501-8139-FCC4-C8EAEDD8CEE0}" = CCC Help Polish
"{1C5509E5-0217-8D75-AE02-29F492990EC6}" = Catalyst Control Center HydraVision Full
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{204F1BCA-E5C9-091E-797D-F1C89BC8EABC}" = CCC Help English
"{23D6C05C-E8BB-0812-7C96-33F0E25A6388}" = HydraVision
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 24
"{28B94253-5729-4C30-8DE4-F2A0A63149B0}" = OpenOffice.org 3.2
"{2C85BCF9-4CD2-3428-F61F-DFC8120DA962}" = Catalyst Control Center Localization All
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34EA290B-46FE-842B-570D-B7FD8DA524CE}" = CCC Help Finnish
"{36424AC9-1F0A-5F04-EE8A-AA67AFFF0E38}" = CCC Help Thai
"{37FF2633-E9CF-2BEA-07E5-5C7CEB95D19C}" = CCC Help Hungarian
"{3888AA11-8C88-75FE-C777-9091A30906F1}" = CCC Help Chinese Traditional
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0427.1
"{3FB5B60F-1DBE-4E41-D1B6-7725D2EB6C28}" = CCC Help Swedish
"{43787BBC-2502-F521-D190-4D0F3D3F577D}" = CCC Help Korean
"{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}" = Windows Live UX Platform Language Pack
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{531317A5-586A-4E36-87C1-CA823447B375}" = Nokia PC Suite
"{54CE40CB-EEF3-4BB8-B5FA-C2B1F2C1C639}" = Nokia Video Manager
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5BA93046-491F-0DAF-BD71-6950CAB9C3B3}" = CCC Help Norwegian
"{5CCABD37-479D-4304-B1A5-67952C25F8F2}" = Nokia Software Launcher
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6882DD11-33B8-4DEA-8305-7E765BF74BD3}" = Nokia Connectivity Cable Driver
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6FA1BBE7-C9C9-A690-B02B-DA870D870C85}" = ccc-core-static
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}" = ICQ7.4
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{793A82B9-A40A-24B2-64D2-E94861E2394E}" = Catalyst Control Center Graphics Previews Common
"{8213E9E7-AFAF-79B8-DB19-F86FA9461F65}" = CCC Help Chinese Standard
"{826BAFB7-04F7-FADE-9498-ADBCEBFE1BDB}" = CCC Help Greek
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{8792CEDD-7FFF-A9FC-430C-357D9277715D}" = Catalyst Control Center InstallProxy
"{87BB78C4-F36D-4D93-A7C7-F80F18219848}" = AMD DnD V1.0.19
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{8B03690C-8D38-FE9D-7018-69217FC80377}" = CCC Help French
"{8D4E9553-BCEB-6FEC-2792-49957375B43D}" = CCC Help Spanish
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{9011041B-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{9026041B-6000-11D3-8CFE-0150048383C9}" = Microsoft Office XP Web Components
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95C489A8-CB62-493C-8312-CA34ED2A3F12}" = CCC Help Dutch
"{97C82B44-D408-4F14-9252-47FC1636D23E}_is1" = IZArc 4.1.2
"{9CA76423-9C56-0E19-0FAC-29312B65387C}" = CCC Help Turkish
"{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1" = Convert AVI to MP4 1.3
"{A1F46482-7396-F8E7-305A-3D705A7118D2}" = CCC Help Portuguese
"{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}" = Browser Configuration Utility
"{A93F5A52-4BFB-FC4B-711B-A7DBF2D0B3D7}" = CCC Help Japanese
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAF4238F-7C29-451D-9925-C753271A5728}" = Microsoft Visual C++ Run Time Lib Setup
"{AC54E544-3E42-443C-A91D-A00A6974C592}" = NVIDIA PhysX v8.10.13
"{AC76BA86-1033-F400-7761-000000000004}" = Adobe Acrobat 9 Pro Extended - English, Français, Deutsch
"{AC76BA86-1033-F400-7761-000000000004}{AC76BA86-1033-F400-7761-000000000004}" = Adobe Acrobat 9 Pro Extended - English, Français, Deutsch
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.0 - Czech
"{AEM384L1-28E3-1232-1233-1JD74JDIEK32}_is1" = PDFTigerDriver
"{B1BFDF6B-3C03-46fe-B5D7-BABB0063D8E0}" = pdfforge Toolbar v4.1
"{B365F570-2800-9F57-1E82-EC6F6C53BB3E}" = Catalyst Control Center Graphics Full Existing
"{C1505E9E-C2EF-71EE-2440-2A47F909C2ED}" = CCC Help Czech
"{C6B61052-2A15-1322-4EBD-1A8D6CCED0DA}" = CCC Help Russian
"{CAF9161C-0D5C-9C91-5A07-16C8AD61742B}" = Catalyst Control Center Graphics Full New
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D5F587D9-7C72-F53B-5463-B05E781315E1}" = CCC Help Danish
"{DE252510-5687-4C60-A705-C43E19F12C9D}_is1" = PDFTiger Kernel
"{DFB61AE1-6C02-5388-EABD-35F872D95018}" = Catalyst Control Center Graphics Light
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1806FC2-13EE-A21F-F4A0-705D55BA47DE}" = Catalyst Control Center Core Implementation
"{FB366EEB-C608-0993-CB9E-54789A6107DC}" = Catalyst Control Center Graphics Previews Vista
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"3D Realistic Fireplace 3 Screen Saver_is1" = 3D Realistic Fireplace Screen Saver 3.9.2
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Aiseesoft PDF to Image Converter_is1" = Aiseesoft PDF to Image Converter
"Any Video Converter_is1" = Any Video Converter 3.1.7
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.12 (Unicode)
"AutocompletePro3_is1" = AutocompletePro
"AVI To MP4 Converter_is1" = AVI To MP4 Converter 1.0
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"BFGC" = Big Fish Games: Game Manager
"Cake Mania" = Cake Mania (remove only)
"DAEMON Tools Lite" = DAEMON Tools Lite
"DoremiSoft AVI to MP4 Converter" = DoremiSoft AVI to MP4 Converter 1.0
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30
"Fahr-Simulator 2009_is1" = Fahr-Simulator 2009 Demo
"Free 3GP Video Converter_is1" = Free 3GP Video Converter version 3.7.15
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7
"Free DVD Video Burner_is1" = Free DVD Video Burner version 2.4
"Free Sound Recorder_is1" = Free Sound Recorder 2010 v9.2.1
"Free Video to DVD Converter_is1" = Free Video to DVD Converter version 1.6
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.9.34.305
"GoldWave v5.58" = GoldWave v5.58
"GPL Ghostscript 8.71" = GPL Ghostscript 8.71
"HarryPotter7Screensaver" = HarryPotter7Screensaver
"iCoolsoft HD Video Converter_is1" = iCoolsoft HD Video Converter
"ImTOO Video Converter Ultimate" = ImTOO Video Converter Ultimate
"KLiteCodecPack_is1" = K-Lite Codec Pack 6.1.0 (Basic)
"LAME for Audacity_is1" = LAME v3.98.3 for Audacity
"Magentic" = Magentic
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MixPad" = MixPad Audio Mixer
"office Convert Pdf to Jpg Jpeg Tiff Free_is1" = office Convert Pdf to Jpg Jpeg Tiff Free 6.4
"OmniFormat" = OmniFormat
"Pdf995" = Pdf995
"PDFTiger_is1" = PDFTiger
"PhotoScape" = PhotoScape
"Power MP3 Recorder Cutter_is1" = Power MP3 Recorder Cutter v5.2.0.0
"RealAlt_is1" = Real Alternative 1.9.0 Lite
"Super Mp3 Recorder Professional_is1" = Super Mp3 Recorder Professional v6.2
"Uninstall_is1" = Uninstall 1.0.0.1
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.4
"WavePad" = WavePad Sound Editor
"Winamp" = Winamp
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"XnView_is1" = XnView 1.97
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"iAudit meter" = Plugin TNS Audit - meter
"UnityWebPlayer" = Unity Web Player
"Winamp Detect" = Winamp Detector Plug-in
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 5.1.2011 9:01:57 | Computer Name = PetraaZuzana-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 0.0.0.0, časové razítko:
0x4cffee6d Název chybujícího modulu: gcswf32.dll, verze: 10.1.103.20, časové razítko:
0x4cd9f257 Kód výjimky: 0xc0000005 Posun chyby: 0x000cd43d ID chybujícího procesu:
0x678 Čas spuštění chybující aplikace: 0x01cbacd8ba55e4fa Cesta k chybující aplikaci:
C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe Cesta
k chybujícímu modulu: C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\8.0.552.224\gcswf32.dll
ID
zprávy: f9a4c3f3-18cb-11e0-b4a9-1c6f652ae09b
Error - 9.1.2011 8:31:59 | Computer Name = PetraaZuzana-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: iexplore.exe, verze: 8.0.7600.16700, časové
razítko: 0x4cd23213 Název chybujícího modulu: iaudit_t.dll_unloaded, verze: 0.0.0.0,
časové razítko: 0x2a425e19 Kód výjimky: 0xc0000005 Posun chyby: 0x038817d3 ID chybujícího
procesu: 0x42c Čas spuštění chybující aplikace: 0x01cbaff90a4ac170 Cesta k chybující
aplikaci: C:\Program Files (x86)\Internet Explorer\iexplore.exe Cesta k chybujícímu
modulu: iaudit_t.dll ID zprávy: 736aab89-1bec-11e0-a989-1c6f652ae09b
Error - 13.1.2011 17:49:53 | Computer Name = PetraaZuzana-PC | Source = Application Hang | ID = 1002
Description = Program IZArc.exe verze 4.1.2.2012 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
11cc Čas spuštění: 01cbb36b362dbd52 Čas ukončení: 10 Cesta k aplikaci: C:\PROGRA~2\IZArc\IZArc.exe
ID
hlášení: 0832740b-1f5f-11e0-b453-1c6f652ae09b
Error - 14.1.2011 10:46:35 | Computer Name = PetraaZuzana-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Symantec
Eraser Control driver. System Error: Systém nemůže nalézt uvedený soubor. .
Error - 24.1.2011 6:42:19 | Computer Name = PetraaZuzana-PC | Source = Application Hang | ID = 1002
Description = Program explorer.exe verze 6.1.7600.16450 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: bd0 Čas spuštění: 01cbbbb349601a02 Čas ukončení: 21 Cesta k aplikaci: C:\Windows\explorer.exe
ID
hlášení: 9ab43dbf-27a6-11e0-b4c2-1c6f652ae09b
Error - 26.2.2011 7:26:16 | Computer Name = PetraaZuzana-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: winamp.exe, verze: 5.5.8.2985, časové razítko:
0x4c3b43ea Název chybujícího modulu: gen_ff.dll, verze: 0.0.0.0, časové razítko:
0x4c3b43f6 Kód výjimky: 0xc0000005 Posun chyby: 0x0001066d ID chybujícího procesu:
0xdc Čas spuštění chybující aplikace: 0x01cbd5a7f52767e0 Cesta k chybující aplikaci:
C:\Program Files (x86)\Winamp\winamp.exe Cesta k chybujícímu modulu: C:\Program
Files (x86)\Winamp\Plugins\gen_ff.dll ID zprávy: 3937c099-419b-11e0-bf2d-1c6f652ae09b
Error - 26.2.2011 10:45:06 | Computer Name = PetraaZuzana-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: winamp.exe, verze: 5.5.8.2985, časové razítko:
0x4c3b43ea Název chybujícího modulu: gen_ff.dll, verze: 0.0.0.0, časové razítko:
0x4c3b43f6 Kód výjimky: 0xc0000005 Posun chyby: 0x0001066d ID chybujícího procesu:
0x3bc Čas spuštění chybující aplikace: 0x01cbd5c3bb5e96d9 Cesta k chybující aplikaci:
C:\Program Files (x86)\Winamp\winamp.exe Cesta k chybujícímu modulu: C:\Program
Files (x86)\Winamp\Plugins\gen_ff.dll ID zprávy: ffffd64b-41b6-11e0-bf2d-1c6f652ae09b
Error - 26.2.2011 10:48:49 | Computer Name = PetraaZuzana-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: winamp.exe, verze: 5.5.8.2985, časové razítko:
0x4c3b43ea Název chybujícího modulu: gen_ff.dll, verze: 0.0.0.0, časové razítko:
0x4c3b43f6 Kód výjimky: 0xc0000005 Posun chyby: 0x0001066d ID chybujícího procesu:
0x13ec Čas spuštění chybující aplikace: 0x01cbd5c443dfad97 Cesta k chybující aplikaci:
C:\Program Files (x86)\Winamp\winamp.exe Cesta k chybujícímu modulu: C:\Program
Files (x86)\Winamp\Plugins\gen_ff.dll ID zprávy: 84e6b6d4-41b7-11e0-bf2d-1c6f652ae09b
Error - 28.2.2011 13:08:16 | Computer Name = PetraaZuzana-PC | Source = Application Hang | ID = 1002
Description = Program Explorer.EXE verze 6.1.7600.16450 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 5a0 Čas spuštění: 01cbd71bebec6da3 Čas ukončení: 15255 Cesta k aplikaci:
C:\Windows\Explorer.EXE ID hlášení: 45e062a8-435d-11e0-8b63-1c6f652ae09b
Error - 22.3.2011 14:30:58 | Computer Name = PetraaZuzana-PC | Source = Application Hang | ID = 1002
Description = Program ICQ.exe verze 7.4.0.4629 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
1050 Čas spuštění: 01cbe8bef1ea5cb9 Čas ukončení: 20 Cesta k aplikaci: C:\Program
Files (x86)\ICQ7.4\ICQ.exe ID hlášení: 8482a002-54b2-11e0-b4e5-1c6f652ae09b
[ System Events ]
Error - 24.1.2011 13:08:17 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 24.1.2011 18:03:24 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 4:37:50 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 12:01:55 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 12:18:45 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 13:24:46 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 14:35:16 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 17:16:33 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 26.1.2011 5:17:48 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 26.1.2011 10:40:43 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
< End of report >
Ták, tu je to- dúfam, že je to celé a v poriadku. Čo teraz s tým? Máte už nejakú predstavu, že čo tam mám a či je to vážne?
Peťa
< >
< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] >
< "ConsentPromptBehaviorAdmin"=5 >
< "ConsentPromptBehaviorUser"=3 >
< "EnableUIADesktopToggle"=0 >
< "dontdisplaylastusername"=0 >
< "legalnoticecaption"= >
< "legalnoticetext"= >
< "shutdownwithoutlogon"=1 >
< "undockwithoutlogon"=1 >
< >
< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] >
< "NoActiveDesktop"=1 >
< "NoActiveDesktopChanges"=1 >
< "ForceActiveDesktopOn"=0 >
< >
< [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] >
< >
< [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] >
< >
< ======File associations====== >
< >
< .js - edit - C:\Windows\System32\Notepad.exe %1 >
< .js - open - C:\Windows\System32\WScript.exe "%1" %* >
< >
< ======List of files/folders created in the last 1 months====== >
Invalid Switch: folders created in the last 1 months======
< >
< 2011-04-04 23:57:36 ----D---- C:\Program Files\trend micro >
< 2011-04-04 23:57:35 ----D---- C:\rsit >
< 2011-03-13 12:15:55 ----D---- C:\ProgramData\Sun >
< 2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\javaws.exe >
< 2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\javaw.exe >
< 2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\java.exe >
< 2011-03-13 12:15:42 ----A---- C:\Windows\SYSWOW64\deployJava1.dll >
< 2011-03-13 12:15:35 ----D---- C:\Program Files (x86)\Java >
< 2011-03-13 12:15:13 ----D---- C:\ProgramData\McAfee >
< 2011-03-09 10:48:26 ----A---- C:\Windows\SYSWOW64\DWrite.dll >
< 2011-03-09 10:48:26 ----A---- C:\Windows\SYSWOW64\d2d1.dll >
< 2011-03-09 10:48:26 ----A---- C:\Windows\system32\FntCache.dll >
< 2011-03-09 10:48:26 ----A---- C:\Windows\system32\DWrite.dll >
< 2011-03-09 10:48:26 ----A---- C:\Windows\system32\d2d1.dll >
< 2011-03-09 10:48:25 ----A---- C:\Windows\system32\EncDec.dll >
< 2011-03-09 10:48:25 ----A---- C:\Windows\system32\CPFilters.dll >
< 2011-03-09 10:48:24 ----A---- C:\Windows\SYSWOW64\sbe.dll >
< 2011-03-09 10:48:24 ----A---- C:\Windows\SYSWOW64\EncDec.dll >
< 2011-03-09 10:48:24 ----A---- C:\Windows\SYSWOW64\CPFilters.dll >
< 2011-03-09 10:48:24 ----A---- C:\Windows\system32\sbe.dll >
< 2011-03-09 10:48:22 ----A---- C:\Windows\SYSWOW64\mstscax.dll >
< 2011-03-09 10:48:22 ----A---- C:\Windows\SYSWOW64\mstsc.exe >
< 2011-03-09 10:48:22 ----A---- C:\Windows\system32\mstscax.dll >
< 2011-03-09 10:48:22 ----A---- C:\Windows\system32\mstsc.exe >
< >
< ======List of files/folders modified in the last 1 months====== >
Invalid Switch: folders modified in the last 1 months======
< >
< 2011-04-04 23:57:46 ----D---- C:\Windows\Prefetch >
< 2011-04-04 23:57:36 ----RD---- C:\Program Files >
< 2011-04-04 23:57:36 ----D---- C:\Windows\Temp >
< 2011-04-04 22:30:19 ----D---- C:\Windows\System32 >
< 2011-04-04 22:30:19 ----D---- C:\Windows\inf >
< 2011-04-04 22:30:19 ----A---- C:\Windows\system32\PerfStringBackup.INI >
< 2011-04-04 20:38:37 ----A---- C:\Windows\SYSWOW64\log.txt >
< 2011-04-04 09:14:40 ----D---- C:\Windows\system32\config >
< 2011-04-03 12:33:17 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\Winamp >
< 2011-04-03 10:40:48 ----D---- C:\Windows >
< 2011-04-01 11:22:04 ----SHD---- C:\System Volume Information >
< 2011-03-31 00:41:50 ----SHD---- C:\Windows\Installer >
< 2011-03-31 00:41:44 ----D---- C:\Program Files (x86)\Windows Live >
< 2011-03-27 21:41:09 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\ICQ >
< 2011-03-25 01:48:56 ----D---- C:\Windows\system32\catroot >
< 2011-03-24 12:47:19 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\Skype >
< 2011-03-24 10:49:28 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\skypePM >
< 2011-03-20 01:16:37 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\DVDVideoSoftIEHelpers >
< 2011-03-16 11:43:46 ----D---- C:\Windows\system32\catroot2 >
< 2011-03-14 13:25:22 ----D---- C:\Program Files (x86)\ICQ7.4 >
< 2011-03-13 13:37:28 ----D---- C:\Users\Petra a Zuzana\AppData\Roaming\vlc >
< 2011-03-13 12:15:55 ----HD---- C:\ProgramData >
< 2011-03-13 12:15:55 ----D---- C:\Program Files (x86)\Common Files >
< 2011-03-13 12:15:42 ----D---- C:\Windows\SysWOW64 >
< 2011-03-13 12:15:35 ----RD---- C:\Program Files (x86) >
< 2011-03-12 23:45:42 ----D---- C:\Windows\debug >
< 2011-03-10 12:48:25 ----D---- C:\Windows\winsxs >
< 2011-03-10 01:16:08 ----A---- C:\Windows\system32\MRT.exe >
< 2011-03-08 17:31:54 ----D---- C:\Windows\system32\drivers >
< 2011-03-08 17:31:54 ----D---- C:\ProgramData\Norton >
< 2011-03-08 17:31:53 ----D---- C:\Windows\Tasks >
< 2011-03-08 17:31:53 ----D---- C:\Windows\system32\Tasks >
< 2011-03-08 17:31:53 ----D---- C:\ProgramData\Symantec >
< >
< ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== >
< >
< R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352] >
< R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096] >
< R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-14 834544] >
< R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2010-04-27 21544] >
< R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-03-02 116568] >
< R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-14 254528] >
< R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-11-25 83120] >
< R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872] >
< R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-11-11 6108672] >
< R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] >
< R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-03-26 2307616] >
< R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144] >
< R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984] >
< S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [] >
< S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys [2008-05-02 23552] >
< S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmbx64.sys [2008-05-02 18432] >
< S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2008-05-02 8704] >
< S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768] >
< S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltx64j.sys [2008-05-02 8704] >
< S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448] >
< >
< ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== >
< >
< R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-11-11 202752] >
< R2 AntiVirService;Avira AntiVir Guard; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2011-03-19 269480] >
< R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2010-11-12 135336] >
< R2 Application Updater;Application Updater; C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2010-10-22 386560] >
< R2 BCUService;Browser Configuration Utility Service; C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-15 223464] >
< R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 268824] >
< R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2320920] >
< R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976] >
< S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] >
< S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] >
< S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272] >
< S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-01-03 651720] >
< S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] >
< S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\Common Files\PCSuite\Services\ServiceLayer.exe [2006-06-05 174080] >
< S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-10-11 1255736] >
< >
< -----------------EOF----------------- >
========== Alternate Data Streams ==========
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:BAC2F271
< End of report >¨
OTL Extras logfile created on: 7.4.2011 9:56:30 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Petra a Zuzana\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 76,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,48 Gb Total Space | 98,94 Gb Free Space | 67,54% Space Free | Partition Type: NTFS
Drive D: | 319,28 Gb Total Space | 263,00 Gb Free Space | 82,37% Space Free | Partition Type: NTFS
Computer Name: PETRAAZUZANA-PC | User Name: Petra a Zuzana | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0BB92499-E07A-531D-D9DF-D85862F6EAAD}" = ATI Catalyst Install Manager
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{42822DCA-21E7-49C6-20DE-9FAC7A4980C2}" = ATI Problem Report Wizard
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{6B06B783-FEBA-944A-C1DE-26032C12AA7C}" = ccc-utility64
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{AC76BA86-1033-0000-0064-0003D0000004}" = Adobe Acrobat 9 Pro Extended 64-bit Add-On
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver
"{BF43EB10-2DB9-480E-A6AD-C44B8674473C}" = Nokia Phone Browser 64-bit
"{CF2F961A-6B53-4618-A6EB-74EE5D3BE0D0}" = PC Connectivity Solution 64-bit components
"{F2DEDF1D-AFB2-CCFD-54C4-05BED30C75ED}" = ATI AVIVO64 Codecs
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{038E0E55-9758-49A1-892D-5226FAED5395}" = CCC Help Italian
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D80391C-0A72-43BB-9BC2-143F63CC111D}" = Nokia PC Connectivity Solution
"{0E0DF90C-D0BA-4C89-9262-AD78D1A3DE51}" = HP USB Disk Storage Format Tool
"{0E94871C-623C-464F-A117-B8474BFF84E1}" = Nokia MTP driver
"{12499C3D-9197-EF35-0499-2FD15F0B3750}" = CCC Help German
"{14021E77-2FC1-4972-8C51-08808CD62838}_is1" = Leawo MP4 Converter version 3.0.0.1
"{1695F36D-6501-8139-FCC4-C8EAEDD8CEE0}" = CCC Help Polish
"{1C5509E5-0217-8D75-AE02-29F492990EC6}" = Catalyst Control Center HydraVision Full
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{204F1BCA-E5C9-091E-797D-F1C89BC8EABC}" = CCC Help English
"{23D6C05C-E8BB-0812-7C96-33F0E25A6388}" = HydraVision
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 24
"{28B94253-5729-4C30-8DE4-F2A0A63149B0}" = OpenOffice.org 3.2
"{2C85BCF9-4CD2-3428-F61F-DFC8120DA962}" = Catalyst Control Center Localization All
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34EA290B-46FE-842B-570D-B7FD8DA524CE}" = CCC Help Finnish
"{36424AC9-1F0A-5F04-EE8A-AA67AFFF0E38}" = CCC Help Thai
"{37FF2633-E9CF-2BEA-07E5-5C7CEB95D19C}" = CCC Help Hungarian
"{3888AA11-8C88-75FE-C777-9091A30906F1}" = CCC Help Chinese Traditional
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0427.1
"{3FB5B60F-1DBE-4E41-D1B6-7725D2EB6C28}" = CCC Help Swedish
"{43787BBC-2502-F521-D190-4D0F3D3F577D}" = CCC Help Korean
"{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}" = Windows Live UX Platform Language Pack
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{531317A5-586A-4E36-87C1-CA823447B375}" = Nokia PC Suite
"{54CE40CB-EEF3-4BB8-B5FA-C2B1F2C1C639}" = Nokia Video Manager
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5BA93046-491F-0DAF-BD71-6950CAB9C3B3}" = CCC Help Norwegian
"{5CCABD37-479D-4304-B1A5-67952C25F8F2}" = Nokia Software Launcher
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6882DD11-33B8-4DEA-8305-7E765BF74BD3}" = Nokia Connectivity Cable Driver
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6FA1BBE7-C9C9-A690-B02B-DA870D870C85}" = ccc-core-static
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}" = ICQ7.4
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{793A82B9-A40A-24B2-64D2-E94861E2394E}" = Catalyst Control Center Graphics Previews Common
"{8213E9E7-AFAF-79B8-DB19-F86FA9461F65}" = CCC Help Chinese Standard
"{826BAFB7-04F7-FADE-9498-ADBCEBFE1BDB}" = CCC Help Greek
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{8792CEDD-7FFF-A9FC-430C-357D9277715D}" = Catalyst Control Center InstallProxy
"{87BB78C4-F36D-4D93-A7C7-F80F18219848}" = AMD DnD V1.0.19
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{8B03690C-8D38-FE9D-7018-69217FC80377}" = CCC Help French
"{8D4E9553-BCEB-6FEC-2792-49957375B43D}" = CCC Help Spanish
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{9011041B-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{9026041B-6000-11D3-8CFE-0150048383C9}" = Microsoft Office XP Web Components
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95C489A8-CB62-493C-8312-CA34ED2A3F12}" = CCC Help Dutch
"{97C82B44-D408-4F14-9252-47FC1636D23E}_is1" = IZArc 4.1.2
"{9CA76423-9C56-0E19-0FAC-29312B65387C}" = CCC Help Turkish
"{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1" = Convert AVI to MP4 1.3
"{A1F46482-7396-F8E7-305A-3D705A7118D2}" = CCC Help Portuguese
"{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}" = Browser Configuration Utility
"{A93F5A52-4BFB-FC4B-711B-A7DBF2D0B3D7}" = CCC Help Japanese
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAF4238F-7C29-451D-9925-C753271A5728}" = Microsoft Visual C++ Run Time Lib Setup
"{AC54E544-3E42-443C-A91D-A00A6974C592}" = NVIDIA PhysX v8.10.13
"{AC76BA86-1033-F400-7761-000000000004}" = Adobe Acrobat 9 Pro Extended - English, Français, Deutsch
"{AC76BA86-1033-F400-7761-000000000004}{AC76BA86-1033-F400-7761-000000000004}" = Adobe Acrobat 9 Pro Extended - English, Français, Deutsch
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.0 - Czech
"{AEM384L1-28E3-1232-1233-1JD74JDIEK32}_is1" = PDFTigerDriver
"{B1BFDF6B-3C03-46fe-B5D7-BABB0063D8E0}" = pdfforge Toolbar v4.1
"{B365F570-2800-9F57-1E82-EC6F6C53BB3E}" = Catalyst Control Center Graphics Full Existing
"{C1505E9E-C2EF-71EE-2440-2A47F909C2ED}" = CCC Help Czech
"{C6B61052-2A15-1322-4EBD-1A8D6CCED0DA}" = CCC Help Russian
"{CAF9161C-0D5C-9C91-5A07-16C8AD61742B}" = Catalyst Control Center Graphics Full New
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D5F587D9-7C72-F53B-5463-B05E781315E1}" = CCC Help Danish
"{DE252510-5687-4C60-A705-C43E19F12C9D}_is1" = PDFTiger Kernel
"{DFB61AE1-6C02-5388-EABD-35F872D95018}" = Catalyst Control Center Graphics Light
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1806FC2-13EE-A21F-F4A0-705D55BA47DE}" = Catalyst Control Center Core Implementation
"{FB366EEB-C608-0993-CB9E-54789A6107DC}" = Catalyst Control Center Graphics Previews Vista
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"3D Realistic Fireplace 3 Screen Saver_is1" = 3D Realistic Fireplace Screen Saver 3.9.2
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Aiseesoft PDF to Image Converter_is1" = Aiseesoft PDF to Image Converter
"Any Video Converter_is1" = Any Video Converter 3.1.7
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.12 (Unicode)
"AutocompletePro3_is1" = AutocompletePro
"AVI To MP4 Converter_is1" = AVI To MP4 Converter 1.0
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"BFGC" = Big Fish Games: Game Manager
"Cake Mania" = Cake Mania (remove only)
"DAEMON Tools Lite" = DAEMON Tools Lite
"DoremiSoft AVI to MP4 Converter" = DoremiSoft AVI to MP4 Converter 1.0
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30
"Fahr-Simulator 2009_is1" = Fahr-Simulator 2009 Demo
"Free 3GP Video Converter_is1" = Free 3GP Video Converter version 3.7.15
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7
"Free DVD Video Burner_is1" = Free DVD Video Burner version 2.4
"Free Sound Recorder_is1" = Free Sound Recorder 2010 v9.2.1
"Free Video to DVD Converter_is1" = Free Video to DVD Converter version 1.6
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.9.34.305
"GoldWave v5.58" = GoldWave v5.58
"GPL Ghostscript 8.71" = GPL Ghostscript 8.71
"HarryPotter7Screensaver" = HarryPotter7Screensaver
"iCoolsoft HD Video Converter_is1" = iCoolsoft HD Video Converter
"ImTOO Video Converter Ultimate" = ImTOO Video Converter Ultimate
"KLiteCodecPack_is1" = K-Lite Codec Pack 6.1.0 (Basic)
"LAME for Audacity_is1" = LAME v3.98.3 for Audacity
"Magentic" = Magentic
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MixPad" = MixPad Audio Mixer
"office Convert Pdf to Jpg Jpeg Tiff Free_is1" = office Convert Pdf to Jpg Jpeg Tiff Free 6.4
"OmniFormat" = OmniFormat
"Pdf995" = Pdf995
"PDFTiger_is1" = PDFTiger
"PhotoScape" = PhotoScape
"Power MP3 Recorder Cutter_is1" = Power MP3 Recorder Cutter v5.2.0.0
"RealAlt_is1" = Real Alternative 1.9.0 Lite
"Super Mp3 Recorder Professional_is1" = Super Mp3 Recorder Professional v6.2
"Uninstall_is1" = Uninstall 1.0.0.1
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.4
"WavePad" = WavePad Sound Editor
"Winamp" = Winamp
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"XnView_is1" = XnView 1.97
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"iAudit meter" = Plugin TNS Audit - meter
"UnityWebPlayer" = Unity Web Player
"Winamp Detect" = Winamp Detector Plug-in
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 5.1.2011 9:01:57 | Computer Name = PetraaZuzana-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 0.0.0.0, časové razítko:
0x4cffee6d Název chybujícího modulu: gcswf32.dll, verze: 10.1.103.20, časové razítko:
0x4cd9f257 Kód výjimky: 0xc0000005 Posun chyby: 0x000cd43d ID chybujícího procesu:
0x678 Čas spuštění chybující aplikace: 0x01cbacd8ba55e4fa Cesta k chybující aplikaci:
C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\chrome.exe Cesta
k chybujícímu modulu: C:\Users\Petra a Zuzana\AppData\Local\Google\Chrome\Application\8.0.552.224\gcswf32.dll
ID
zprávy: f9a4c3f3-18cb-11e0-b4a9-1c6f652ae09b
Error - 9.1.2011 8:31:59 | Computer Name = PetraaZuzana-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: iexplore.exe, verze: 8.0.7600.16700, časové
razítko: 0x4cd23213 Název chybujícího modulu: iaudit_t.dll_unloaded, verze: 0.0.0.0,
časové razítko: 0x2a425e19 Kód výjimky: 0xc0000005 Posun chyby: 0x038817d3 ID chybujícího
procesu: 0x42c Čas spuštění chybující aplikace: 0x01cbaff90a4ac170 Cesta k chybující
aplikaci: C:\Program Files (x86)\Internet Explorer\iexplore.exe Cesta k chybujícímu
modulu: iaudit_t.dll ID zprávy: 736aab89-1bec-11e0-a989-1c6f652ae09b
Error - 13.1.2011 17:49:53 | Computer Name = PetraaZuzana-PC | Source = Application Hang | ID = 1002
Description = Program IZArc.exe verze 4.1.2.2012 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
11cc Čas spuštění: 01cbb36b362dbd52 Čas ukončení: 10 Cesta k aplikaci: C:\PROGRA~2\IZArc\IZArc.exe
ID
hlášení: 0832740b-1f5f-11e0-b453-1c6f652ae09b
Error - 14.1.2011 10:46:35 | Computer Name = PetraaZuzana-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Symantec
Eraser Control driver. System Error: Systém nemůže nalézt uvedený soubor. .
Error - 24.1.2011 6:42:19 | Computer Name = PetraaZuzana-PC | Source = Application Hang | ID = 1002
Description = Program explorer.exe verze 6.1.7600.16450 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: bd0 Čas spuštění: 01cbbbb349601a02 Čas ukončení: 21 Cesta k aplikaci: C:\Windows\explorer.exe
ID
hlášení: 9ab43dbf-27a6-11e0-b4c2-1c6f652ae09b
Error - 26.2.2011 7:26:16 | Computer Name = PetraaZuzana-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: winamp.exe, verze: 5.5.8.2985, časové razítko:
0x4c3b43ea Název chybujícího modulu: gen_ff.dll, verze: 0.0.0.0, časové razítko:
0x4c3b43f6 Kód výjimky: 0xc0000005 Posun chyby: 0x0001066d ID chybujícího procesu:
0xdc Čas spuštění chybující aplikace: 0x01cbd5a7f52767e0 Cesta k chybující aplikaci:
C:\Program Files (x86)\Winamp\winamp.exe Cesta k chybujícímu modulu: C:\Program
Files (x86)\Winamp\Plugins\gen_ff.dll ID zprávy: 3937c099-419b-11e0-bf2d-1c6f652ae09b
Error - 26.2.2011 10:45:06 | Computer Name = PetraaZuzana-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: winamp.exe, verze: 5.5.8.2985, časové razítko:
0x4c3b43ea Název chybujícího modulu: gen_ff.dll, verze: 0.0.0.0, časové razítko:
0x4c3b43f6 Kód výjimky: 0xc0000005 Posun chyby: 0x0001066d ID chybujícího procesu:
0x3bc Čas spuštění chybující aplikace: 0x01cbd5c3bb5e96d9 Cesta k chybující aplikaci:
C:\Program Files (x86)\Winamp\winamp.exe Cesta k chybujícímu modulu: C:\Program
Files (x86)\Winamp\Plugins\gen_ff.dll ID zprávy: ffffd64b-41b6-11e0-bf2d-1c6f652ae09b
Error - 26.2.2011 10:48:49 | Computer Name = PetraaZuzana-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: winamp.exe, verze: 5.5.8.2985, časové razítko:
0x4c3b43ea Název chybujícího modulu: gen_ff.dll, verze: 0.0.0.0, časové razítko:
0x4c3b43f6 Kód výjimky: 0xc0000005 Posun chyby: 0x0001066d ID chybujícího procesu:
0x13ec Čas spuštění chybující aplikace: 0x01cbd5c443dfad97 Cesta k chybující aplikaci:
C:\Program Files (x86)\Winamp\winamp.exe Cesta k chybujícímu modulu: C:\Program
Files (x86)\Winamp\Plugins\gen_ff.dll ID zprávy: 84e6b6d4-41b7-11e0-bf2d-1c6f652ae09b
Error - 28.2.2011 13:08:16 | Computer Name = PetraaZuzana-PC | Source = Application Hang | ID = 1002
Description = Program Explorer.EXE verze 6.1.7600.16450 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 5a0 Čas spuštění: 01cbd71bebec6da3 Čas ukončení: 15255 Cesta k aplikaci:
C:\Windows\Explorer.EXE ID hlášení: 45e062a8-435d-11e0-8b63-1c6f652ae09b
Error - 22.3.2011 14:30:58 | Computer Name = PetraaZuzana-PC | Source = Application Hang | ID = 1002
Description = Program ICQ.exe verze 7.4.0.4629 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
1050 Čas spuštění: 01cbe8bef1ea5cb9 Čas ukončení: 20 Cesta k aplikaci: C:\Program
Files (x86)\ICQ7.4\ICQ.exe ID hlášení: 8482a002-54b2-11e0-b4e5-1c6f652ae09b
[ System Events ]
Error - 24.1.2011 13:08:17 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 24.1.2011 18:03:24 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 4:37:50 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 12:01:55 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 12:18:45 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 13:24:46 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 14:35:16 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 25.1.2011 17:16:33 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 26.1.2011 5:17:48 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
Error - 26.1.2011 10:40:43 | Computer Name = PetraaZuzana-PC | Source = bowser | ID = 8003
Description =
< End of report >
Ták, tu je to- dúfam, že je to celé a v poriadku. Čo teraz s tým? Máte už nejakú predstavu, že čo tam mám a či je to vážne?
Peťa
Re: Prosím vás o kontrolu tohto môjho logu
ahoj,
aby si tu nebola len tak "volnepohodena" - pokial pride kolega odinstaluj:
Ask Toolbar
pdfforge Toolbar
SearchSettings
aby si tu nebola len tak "volnepohodena" - pokial pride kolega odinstaluj:
Ask Toolbar
pdfforge Toolbar
SearchSettings
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím vás o kontrolu tohto môjho logu
Dekuji kolegovi za zaskok, az budete mit odinstalovano, tak napiste A jeste poprosim logy mi uploadnete sem http://vyosek.ic.cz/havet/uploader.php - jsou nejak divne barevne, asi chybka pri kopirovani - tak at je mam v cajku"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím vás o kontrolu tohto môjho logu
Ahojte,
tak, tie prvé dva toolbary som odinstalovala, to SearchSettings je toto? : O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
Ak áno, môžem to fixnúť v rsite?
Peťa
tak, tie prvé dva toolbary som odinstalovala, to SearchSettings je toto? : O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
Ak áno, môžem to fixnúť v rsite?
Peťa
Re: Prosím vás o kontrolu tohto môjho logu
ano FIXni
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím vás o kontrolu tohto môjho logu
Prosim uploadnete mi tam ty soubory OTL.txt a Extras.txt - pres ne domazeme co bude potreba...vyosek píše:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím vás o kontrolu tohto môjho logu
Dobrý deň,
tie logy, co ste chceli, som Vám tam už upla (dúfam, že to bude v poriadku O:-))
Keď som chcela vymazať ten riadok so SearchSettings z hjt, tak som ho tam už nenašla.
A inak, bolo by super, keby ste mi už povedali niečo konkrétne, aby som vedela, že čo a ako. O:-)
Peťa
tie logy, co ste chceli, som Vám tam už upla (dúfam, že to bude v poriadku O:-))
Keď som chcela vymazať ten riadok so SearchSettings z hjt, tak som ho tam už nenašla.
A inak, bolo by super, keby ste mi už povedali niečo konkrétne, aby som vedela, že čo a ako. O:-)
Peťa
Re: Prosím vás o kontrolu tohto môjho logu
Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.toggle.com/en/index.php?rvs=google IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400 IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.toggle.com/en/index.php?rvs=google IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.autocompletepro.com/?si=7148&bi=400 IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400 IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.autocompletepro.com/?si=7148&bi=400 IE - HKU\S-1-5-21-4076740759-1847732635-2203308258-1000\..\URLSearchHook: {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.) O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKLM\..\Toolbar: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files (x86)\magentictb\magenticDx.dll () O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [] File not found O9 - Extra Button: Informácie o aplikácii TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - File not found O9 - Extra 'Tools' menuitem : Plugin TNS Audit - meter - {912B1533-A668-41B3-92E6-627B150EDB90} - File not found O13 - gopher Prefix: missing O13 - gopher Prefix: missing O18:[b]64bit:[/b] - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\msdaipp - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. [2011.04.06 22:02:00 | 000,000,998 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000UA.job [2011.04.06 20:02:00 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4076740759-1847732635-2203308258-1000Core.job @Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:BAC2F271 :reg [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- "SearchSettings"=- "SunJavaUpdateSched"=- :files C:\Program Files (x86)\pdfforge Toolbar C:\Program Files (x86)\Ask.com C:\Program Files (x86)\DAEMON Tools Toolbar %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp /s :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH]- Nasledne kliknete na Opravit ci Run FIX
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?