nekolikrat restart pc, pomale nacitani

Zpráva

#16 Příspěvek od **Caroprd111** » 05 úno 2011 11:22

Proveďte znovu sken pomocí OTL dle předchozího návodu z 4.2.2011 17:03

Foxtrot · #17 Příspěvek od **Foxtrot** » 05 úno 2011 11:58

Vytvořil se pouze soubor OTL.

OTL logfile created on: 5.2.2011 11:42:11 - Run 2
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Users\Ondřej\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

6,00 Gb Total Physical Memory | 4,00 Gb Available Physical Memory | 72,00% Memory free
12,00 Gb Paging File | 10,00 Gb Available in Paging File | 86,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 897,23 Gb Total Space | 201,51 Gb Free Space | 22,46% Space Free | Partition Type: NTFS
Drive G: | 34,18 Gb Total Space | 34,09 Gb Free Space | 99,74% Space Free | Partition Type: NTFS

Computer Name: ONDŘEJ-PC | User Name: Ondřej | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.02.05 11:41:37 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\Ondřej\Desktop\OTL.exe
PRC - [2011.01.24 21:49:40 | 000,075,136 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2011.01.12 16:41:42 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
PRC - [2011.01.05 11:59:50 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010.12.06 08:31:52 | 001,910,152 | ---- | M] (LogMeIn Inc.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2010.12.03 20:39:33 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010.11.16 17:47:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\Windows\SysWOW64\ZoneLabs\vsmon.exe
PRC - [2010.11.16 17:46:04 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2010.09.01 05:26:04 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
PRC - [2010.04.02 14:21:50 | 001,109,632 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\TurboV EVO\TurboVHelp.exe
PRC - [2009.12.28 14:33:02 | 000,096,896 | R--- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
PRC - [2009.03.30 07:32:40 | 000,032,768 | R--- | M] () -- C:\Windows\DAODx.exe
PRC - [2009.02.23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe

========== Modules (SafeList) ==========

MOD - [2011.02.05 11:41:37 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\Ondřej\Desktop\OTL.exe
MOD - [2010.08.21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
MOD - [2010.02.08 16:19:52 | 000,053,248 | ---- | M] () -- C:\Program Files\ASUS\TurboV EVO\HookKey32.dll
MOD - [2009.07.14 02:15:31 | 000,154,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imagehlp.dll
MOD - [2009.07.14 02:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\normaliz.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011.01.12 16:44:02 | 000,042,360 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV:64bit: - [2011.01.12 16:41:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2011.01.05 03:57:44 | 000,203,776 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2011.01.04 22:07:10 | 000,354,304 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2010.11.03 21:30:12 | 001,030,600 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2010.08.19 17:43:23 | 000,386,344 | ---- | M] () [Auto | Running] -- C:\Program Files\CyberLink\Shared files\RichVideo64.exe -- (RichVideo64)
SRV:64bit: - [2010.06.17 05:23:36 | 000,194,496 | ---- | M] (Advanced Micro Devices) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe -- (AMD Reservation Manager)
SRV:64bit: - [2010.05.06 10:30:22 | 000,357,456 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011.01.24 21:49:40 | 000,075,136 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2011.01.23 11:16:40 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.01.06 14:08:57 | 003,129,432 | ---- | M] () [Auto | Running] -- c:\Program Files (x86)\Common Files\Akamai\netsession_win_dbc0250.dll -- (Akamai)
SRV - [2011.01.05 11:59:50 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010.12.08 13:12:10 | 000,147,336 | ---- | M] (LogMeIn, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe -- (LMIMaint)
SRV - [2010.12.08 13:12:04 | 000,373,640 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2010.12.06 08:31:50 | 002,101,640 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2010.11.16 17:47:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\Windows\SysWOW64\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2010.11.08 12:04:20 | 000,407,424 | ---- | M] (LogMeIn, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe -- (LogMeIn)
SRV - [2010.08.19 11:17:28 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010.08.03 12:06:04 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service)
SRV - [2010.08.03 11:08:30 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2010.07.01 03:45:02 | 000,136,616 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe -- (AODService)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.12.28 14:33:02 | 000,096,896 | R--- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe -- (AsSysCtrlService)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009.02.23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2011.01.28 15:00:52 | 000,254,528 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011.01.05 04:37:14 | 008,283,136 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011.01.05 03:19:38 | 000,294,400 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010.12.21 15:04:06 | 000,170,640 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2010.12.21 15:04:06 | 000,141,264 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2010.12.21 13:47:38 | 000,125,296 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2010.12.08 13:12:30 | 000,087,456 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV:64bit: - [2010.11.17 13:04:32 | 000,115,216 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2010.09.28 15:44:52 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2010.09.17 15:40:06 | 000,072,216 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV:64bit: - [2010.09.17 15:39:58 | 000,011,552 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lmimirr.sys -- (lmimirr)
DRV:64bit: - [2010.08.31 10:24:05 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.08.02 15:31:45 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2010.08.02 15:31:45 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2010.05.15 16:30:52 | 000,458,840 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vsdatant.sys -- (Vsdatant)
DRV:64bit: - [2010.05.06 10:21:46 | 000,125,456 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2010.03.18 10:00:16 | 000,057,936 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2010.03.18 10:00:00 | 000,063,568 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2010.03.04 14:43:00 | 000,346,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.02.18 09:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2010.02.03 15:56:56 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2010.01.22 11:22:22 | 000,180,224 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2010.01.22 11:22:18 | 000,077,824 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2010.01.11 12:28:35 | 000,115,824 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID)
DRV:64bit: - [2009.11.23 16:38:00 | 000,016,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LGVirHid.sys -- (LGVirHid)
DRV:64bit: - [2009.11.23 16:37:50 | 000,022,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGBusEnum.sys -- (LGBusEnum)
DRV:64bit: - [2009.10.19 13:45:54 | 000,039,480 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2009.07.16 04:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009.07.14 02:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 02:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 21:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.05.18 12:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2008.09.17 13:14:00 | 000,012,744 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Entech64.sys -- (ENTECH64)
DRV:64bit: - [2008.08.14 07:48:33 | 000,024,064 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ctafiltv.sys -- (Ctafiltv)
DRV - [2010.09.17 15:40:06 | 000,015,928 | ---- | M] (LogMeIn, Inc.) [Kernel | Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\rainfo.sys -- (LMIInfo)
DRV - [2004.06.22 14:44:50 | 000,005,632 | ---- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\Entech64.sys -- (ENTECH64)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3662217667-1811486626-224088579-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
IE - HKU\S-1-5-21-3662217667-1811486626-224088579-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = DB C1 D0 17 97 39 CB 01 [binary data]
IE - HKU\S-1-5-21-3662217667-1811486626-224088579-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3662217667-1811486626-224088579-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\S-1-5-21-3662217667-1811486626-224088579-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "chrome://speeddial/content/speeddial.xul"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: DeviceDetection@logitech.com:1.20.0.66
FF - prefs.js..extensions.enabledItems: jayakrishnan@gmail.com:1.3.2
FF - prefs.js..extensions.enabledItems: smarterwiki@wikiatic.com:4.1.8
FF - prefs.js..extensions.enabledItems: support@auto-hide-ip.com:1.0
FF - prefs.js..extensions.enabledItems: youtube2mp3@mondayx.de:1.0.7
FF - prefs.js..extensions.enabledItems: {003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2010.25.36
FF - prefs.js..extensions.enabledItems: {097d3191-e6fa-4728-9826-b533d755359d}:0.7.12
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.8.1
FF - prefs.js..extensions.enabledItems: {64161300-e22b-11db-8314-0800200c9a66}:0.9.5.8
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2
FF - prefs.js..extensions.enabledItems: {c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}:4.0
FF - prefs.js..extensions.enabledItems: {91da5e8a-3318-4f8c-b67e-5964de3ab546}:2.6.0.15
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}:0.4.6
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.10
FF - prefs.js..extensions.enabledItems: {a6ca9b3b-5e52-4f47-85d8-cca35bb57596}:1.4.9
FF - prefs.js..extensions.enabledItems: {AE37D527-6604-461c-8102-975CF8053A2F}:0.5.3.1
FF - prefs.js..extensions.enabledItems: {4df2d0b1-441c-423f-b7a4-f7516f170aab}:0.2.4
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:2.0
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.type: 0

FF - HKLM\software\mozilla\Firefox\Extensions\\i0ffxtbr@IObitBar.com: C:\Program Files (x86)\IObitBar\toolbar\1.bin
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.02.04 10:35:47 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.02.04 10:35:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011.02.04 12:21:40 | 000,000,000 | ---D | M]

[2010.07.22 16:48:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Extensions
[2011.02.05 11:33:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions
[2010.09.16 15:57:43 | 000,000,000 | ---D | M] (WebTran) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2010.11.18 16:58:43 | 000,000,000 | ---D | M] (All-in-One Sidebar) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{097d3191-e6fa-4728-9826-b533d755359d}
[2011.02.05 11:29:38 | 000,000,000 | ---D | M] (FlashGot) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2011.02.05 11:29:39 | 000,000,000 | ---D | M] (Image Zoom) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}
[2010.07.22 17:16:14 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.02.05 11:29:39 | 000,000,000 | ---D | M] (Adaptive Referer Remover) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{4df2d0b1-441c-423f-b7a4-f7516f170aab}
[2010.12.10 14:49:07 | 000,000,000 | ---D | M] (Speed Dial) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{64161300-e22b-11db-8314-0800200c9a66}
[2011.02.04 13:27:23 | 000,000,000 | ---D | M] (ZoneAlarm Security Toolbar) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{91da5e8a-3318-4f8c-b67e-5964de3ab546}
[2011.02.05 11:29:39 | 000,000,000 | ---D | M] (Sage) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596}
[2011.02.05 11:29:39 | 000,000,000 | ---D | M] (FireFTP) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}
[2011.02.05 11:29:39 | 000,000,000 | ---D | M] (BBCode) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{AE37D527-6604-461c-8102-975CF8053A2F}
[2011.01.10 18:13:42 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.12.11 10:57:33 | 000,000,000 | ---D | M] (Easy Youtube Video Downloader) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}
[2011.02.05 11:29:39 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011.02.05 11:29:39 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2010.09.22 20:49:13 | 000,000,000 | ---D | M] (Разпознаване на устройство Logitech) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\DeviceDetection@logitech.com
[2010.09.16 16:28:56 | 000,000,000 | ---D | M] (Translate) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\jayakrishnan@gmail.com
[2011.02.05 11:29:38 | 000,000,000 | ---D | M] (FastestFox) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\smarterwiki@wikiatic.com
[2010.07.27 11:58:02 | 000,000,000 | ---D | M] (Auto Hide IP) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\support@auto-hide-ip.com
[2010.07.22 17:16:14 | 000,000,000 | ---D | M] (YouTube to MP3) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\youtube2mp3@mondayx.de
[2011.02.05 11:33:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010.07.22 17:00:32 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.07.22 17:03:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.08.16 16:21:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.10.16 10:43:01 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010.12.28 16:32:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011.02.03 22:07:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{003D3EDC-99B9-4A34-9C20-60CB94F7E829}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{097D3191-E6FA-4728-9826-B533D755359D}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{19503E42-CA3C-4C27-B1E2-9CDB2170EE34}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{1A2D0EC4-75F5-4C91-89C4-3656F6E44B68}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{20A82645-C095-46ED-80E3-08825760534B}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{4DF2D0B1-441C-423F-B7A4-F7516F170AAB}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{64161300-E22B-11DB-8314-0800200C9A66}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{91DA5E8A-3318-4F8C-B67E-5964DE3AB546}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{A6CA9B3B-5E52-4F47-85D8-CCA35BB57596}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{A7C6CF7F-112C-4500-A7EA-39801A327E5F}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{AE37D527-6604-461C-8102-975CF8053A2F}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{C0C9A2C7-2E5C-4447-BC53-97718BC91E1B}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\{DDC359D1-844A-42A7-9AA1-88A850A938A8}
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\DEVICEDETECTION@LOGITECH.COM
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\JAYAKRISHNAN@GMAIL.COM
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\SMARTERWIKI@WIKIATIC.COM
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\SUPPORT@AUTO-HIDE-IP.COM
File not found (No name found) -- C:\USERS\ONDĹ™EJ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\5163027Y.DEFAULT\EXTENSIONS\YOUTUBE2MP3@MONDAYX.DE
[2008.11.11 08:38:54 | 000,663,552 | ---- | M] (BitComet) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npBitCometAgent.dll
[2009.02.11 20:16:16 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npbittorrent.dll
[2010.11.12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.03.30 11:57:04 | 000,098,304 | ---- | M] (NHN USA Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npijjiautoinstallpluginff.dll
[2009.01.29 04:08:04 | 000,132,528 | ---- | M] (NHN USA Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npijjiCHPlugin.dll
[2009.08.17 06:42:14 | 000,073,728 | ---- | M] (NHN USA Inc. ) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npijjiFFPlugin1.dll
[2009.10.06 10:40:40 | 000,098,304 | ---- | M] (OGPlanet Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npOGPPlugin.dll
[2010.12.03 19:08:29 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.12.03 19:08:29 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.12.03 19:08:29 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.12.03 19:08:29 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.12.03 19:08:29 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2011.02.04 21:37:18 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Toolbar BHO) - {EFA17361-CDC0-4927-9AFC-BAAD1F96B2AE} - File not found
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-3662217667-1811486626-224088579-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab (Creative Software AutoUpdate)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab (Creative Software AutoUpdate Support Package)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - Reg Error: Key error. - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{e5861290-93d8-11df-9f7a-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{e5861290-93d8-11df-9f7a-806e6f6e6963}\Shell\AutoRun\command - "" = D:\O2ADSLCD.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
Drivers32: vidc.i420 - C:\Windows\SysWow64\i420vfw.dll (http://www.helixcommunity.org)
Drivers32: vidc.VP60 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
Drivers32: vidc.yv12 - C:\Windows\SysWow64\yv12vfw.dll (http://www.helixcommunity.org)

Foxtrot · #18 Příspěvek od **Foxtrot** » 05 úno 2011 11:59

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011.02.05 11:41:36 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Users\Ondřej\Desktop\OTL.exe
[2011.02.04 21:36:44 | 000,000,000 | ---D | C] -- C:\_OTL
[2011.02.04 16:51:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011.02.04 16:51:46 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.02.04 14:22:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZoneAlarm
[2011.02.04 14:22:38 | 000,058,368 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsregexp.dll
[2011.02.04 14:22:33 | 000,104,448 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\zlcommdb.dll
[2011.02.04 14:22:32 | 000,069,120 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\zlcomm.dll
[2011.02.04 14:22:29 | 000,043,008 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vswmi.dll
[2011.02.04 14:22:28 | 001,238,528 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\zpeng25.dll
[2011.02.04 14:22:28 | 000,110,080 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsxml.dll
[2011.02.04 14:22:27 | 000,302,592 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vspubapi.dll
[2011.02.04 14:22:27 | 000,112,128 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsdata.dll
[2011.02.04 14:22:27 | 000,108,032 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsmonapi.dll
[2011.02.04 14:22:27 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ZoneLabs
[2011.02.04 14:22:20 | 000,458,840 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysNative\drivers\vsdatant.sys
[2011.02.04 14:22:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zone Labs
[2011.02.04 14:21:55 | 000,715,264 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsutil.dll
[2011.02.04 14:21:55 | 000,228,864 | ---- | C] (Check Point Software Technologies LTD) -- C:\Windows\SysWow64\vsinit.dll
[2011.02.04 13:50:39 | 000,000,000 | ---D | C] -- C:\Windows\Internet Logs
[2011.02.04 13:27:56 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\Documents\ForceField Shared Files
[2011.02.04 13:27:50 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\CheckPoint
[2011.02.04 13:27:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2011.02.04 13:26:53 | 000,000,000 | ---D | C] -- C:\Program Files\CheckPoint
[2011.02.04 13:25:47 | 000,374,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2011.02.04 13:23:56 | 000,000,000 | ---D | C] -- C:\ProgramData\CheckPoint
[2011.02.04 12:21:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2011.02.04 12:21:40 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2011.02.04 12:21:40 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2011.02.04 10:38:51 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.02.04 10:35:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
[2011.02.04 08:37:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\N360x64
[2011.02.04 08:37:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\N360x64\0401000.020
[2011.02.04 08:37:32 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
[2011.02.03 21:55:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton 360
[2011.02.03 21:53:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[2011.02.03 21:45:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2011.02.03 21:43:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Symantec
[2011.02.03 21:43:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Symantec
[2011.02.03 21:35:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
[2011.02.03 21:28:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2011.02.03 21:22:15 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2011.02.03 19:36:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011.02.03 18:20:11 | 000,000,000 | ---D | C] -- C:\rafazon
[2011.02.03 17:57:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab Setup Files
[2011.02.02 16:43:24 | 000,000,000 | ---D | C] -- C:\Windows\Roaming
[2011.02.02 16:43:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Motive
[2011.02.02 13:33:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011.02.01 13:28:53 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portforward.com
[2011.02.01 13:28:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PFPortChecker
[2011.02.01 13:19:35 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Simple Port Forwarding
[2011.02.01 13:19:33 | 000,000,000 | ---D | C] -- C:\Windows\Simple Port Forwarding
[2011.02.01 13:19:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Simple Port Forwarding
[2011.01.31 17:22:35 | 000,000,000 | ---D | C] -- C:\mineserver
[2011.01.31 11:18:31 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\LogMeIn
[2011.01.31 11:18:27 | 000,087,456 | ---- | C] (LogMeIn, Inc.) -- C:\Windows\SysNative\LMIRfsClientNP.dll
[2011.01.31 11:18:27 | 000,072,216 | ---- | C] (LogMeIn, Inc.) -- C:\Windows\SysNative\drivers\LMIRfsDriver.sys
[2011.01.31 11:18:27 | 000,033,152 | ---- | C] (LogMeIn, Inc.) -- C:\Windows\SysNative\LMIport.dll
[2011.01.31 11:18:22 | 000,080,768 | ---- | C] (LogMeIn, Inc.) -- C:\Windows\SysNative\LMIinit.dll
[2011.01.31 11:18:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn
[2011.01.31 11:12:07 | 000,033,856 | -H-- | C] (LogMeIn, Inc.) -- C:\Windows\SysNative\hamachi.sys
[2011.01.31 11:12:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2011.01.31 11:12:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2011.01.31 11:11:28 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\LogMeIn Hamachi
[2011.01.29 16:22:39 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\.minecraft
[2011.01.29 15:26:40 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\minecraft záloha
[2011.01.29 14:44:59 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\.minecraft – kopie
[2011.01.29 13:22:32 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\AMD
[2011.01.29 13:22:29 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2011.01.29 13:21:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ATI Stream SDK v2
[2011.01.29 13:21:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Stream
[2011.01.29 13:21:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011.01.29 13:21:41 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2011.01.29 13:21:39 | 000,046,136 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdiox64.sys
[2011.01.29 13:21:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2011.01.28 17:44:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011.01.28 17:43:49 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011.01.28 17:43:48 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011.01.28 17:43:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2011.01.28 15:00:52 | 000,254,528 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2011.01.28 14:58:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2011.01.28 14:41:42 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MagicISO
[2011.01.28 14:41:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicISO
[2011.01.28 14:41:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MagicISO
[2011.01.28 14:34:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pixbyte
[2011.01.28 13:41:12 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\Mumble
[2011.01.28 13:40:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble
[2011.01.28 13:23:58 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\X-Chat 2
[2011.01.28 13:23:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\X-Chat 2
[2011.01.28 13:23:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\X-Chat 2
[2011.01.27 20:58:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CDex
[2011.01.27 16:02:07 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Empire of Magic
[2011.01.27 15:59:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EOM
[2011.01.24 21:19:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex
[2011.01.22 22:38:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Empire of Magic
[2011.01.22 19:15:20 | 000,000,000 | ---D | C] -- C:\NST
[2011.01.22 19:06:40 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\NeoSmart_Technologies
[2011.01.22 19:06:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NeoSmart Technologies
[2011.01.22 19:06:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NeoSmart Technologies
[2011.01.22 16:38:57 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1C
[2011.01.22 16:27:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\1C
[2011.01.21 17:43:52 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\2.minecraft- starý minecraft
[2011.01.19 16:58:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Charles Forsyth
[2011.01.19 16:58:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Charles Forsyth
[2011.01.18 21:10:22 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\Documents\My Recordings
[2011.01.18 21:08:19 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\SynthMaker
[2011.01.18 21:06:28 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Acoustica
[2011.01.18 21:06:27 | 000,057,344 | ---- | C] (NexiTech, Inc.) -- C:\Windows\SysWow64\Wnaspint.dll
[2011.01.18 21:05:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Acoustica Shared Effects
[2011.01.18 21:00:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VST
[2011.01.18 20:09:01 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\PACE Anti-Piracy
[2011.01.18 20:09:01 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\PACE Anti-Piracy
[2011.01.18 20:09:01 | 000,000,000 | ---D | C] -- C:\ProgramData\PACE Anti-Piracy
[2011.01.18 20:09:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PACE Anti-Piracy
[2011.01.18 16:00:51 | 000,000,000 | ---D | C] -- C:\ProgramData\PaceAP
[2011.01.18 15:25:40 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnalogX
[2011.01.16 18:22:50 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\Documents\CyberLink
[2011.01.16 18:22:27 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\CyberLink
[2011.01.16 18:22:08 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
[2011.01.16 18:18:42 | 000,000,000 | ---D | C] -- C:\ProgramData\SmartSound Software Inc
[2011.01.16 18:18:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SmartSound Software
[2011.01.16 18:18:41 | 000,000,000 | ---D | C] -- C:\ProgramData\eSellerate
[2011.01.16 18:18:28 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector
[2011.01.16 18:18:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cyberlink
[2011.01.16 18:17:28 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink
[2011.01.16 18:16:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Temp
[2011.01.16 18:16:20 | 000,000,000 | ---D | C] -- C:\ProgramData\CLSK
[2011.01.15 21:17:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lame For Audacity
[2011.01.15 21:17:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Audacity
[2011.01.15 21:15:56 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Audacity
[2011.01.15 21:15:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
[2011.01.15 20:51:38 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP4Converter
[2011.01.15 20:51:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP4Converter
[2011.01.15 20:51:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MP4Converter
[2011.01.15 17:32:05 | 000,000,000 | ---D | C] -- C:\test
[2011.01.12 14:30:07 | 004,068,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2011.01.12 14:30:07 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2011.01.12 14:30:07 | 001,837,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2011.01.12 14:30:07 | 001,540,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2011.01.12 14:30:07 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10warp.dll
[2011.01.12 14:30:07 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2011.01.12 14:30:07 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d2d1.dll
[2011.01.12 14:30:07 | 000,662,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2011.01.12 14:30:06 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2011.01.12 14:30:06 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DWrite.dll
[2011.01.12 14:30:06 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2011.01.12 14:30:06 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2011.01.12 14:30:05 | 001,863,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2011.01.12 14:30:05 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2011.01.12 14:30:05 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2011.01.12 14:30:05 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2011.01.12 14:30:05 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2011.01.12 14:30:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2011.01.12 14:30:05 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll
[2011.01.12 14:30:05 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1core.dll
[2011.01.12 14:30:05 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2011.01.12 14:30:04 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2011.01.12 14:30:04 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2011.01.12 14:30:04 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2011.01.12 14:30:04 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1.dll
[2011.01.12 14:30:04 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2011.01.12 14:30:04 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll
[2011.01.12 14:30:02 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbc32.dll
[2011.01.12 14:30:01 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2011.01.08 12:33:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2011.01.07 21:50:34 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\Pinnacle
[2011.01.07 21:48:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Ultimate Collection
[2011.01.07 21:47:28 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\My Projects
[2011.01.07 21:39:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle
[2011.01.07 18:32:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2011.01.07 18:32:02 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\uTorrent

========== Files - Modified Within 30 Days ==========

[2011.02.05 11:41:37 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\Ondřej\Desktop\OTL.exe
[2011.02.05 11:41:05 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.02.05 11:12:39 | 000,014,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.02.05 11:12:39 | 000,014,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.02.05 11:05:19 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.02.05 11:05:09 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.02.05 11:04:59 | 535,437,311 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.04 21:37:18 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2011.02.04 16:51:47 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.02.04 14:22:51 | 000,420,800 | ---- | M] () -- C:\Windows\SysNative\drivers\vsconfig.xml
[2011.02.04 14:22:39 | 000,001,066 | ---- | M] () -- C:\Users\Ondřej\Desktop\ZoneAlarm Security.lnk
[2011.02.04 10:35:47 | 000,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011.02.01 17:01:30 | 013,138,607 | ---- | M] () -- C:\mineserver.zip
[2011.01.31 11:18:17 | 000,001,024 | ---- | M] () -- C:\.rnd
[2011.01.31 11:12:05 | 000,000,926 | ---- | M] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
[2011.01.29 17:59:06 | 001,577,412 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.01.29 17:59:06 | 000,666,408 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2011.01.29 17:59:06 | 000,652,150 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.01.29 17:59:06 | 000,140,102 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2011.01.29 17:59:06 | 000,121,082 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.01.29 12:42:50 | 000,001,151 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink PowerDirector.lnk
[2011.01.29 12:32:54 | 110,771,477 | ---- | M] () -- C:\Users\Ondřej\Desktop\20110128-21-1.png
[2011.01.28 17:44:18 | 000,001,783 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011.01.28 15:00:52 | 000,254,528 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2011.01.28 15:00:27 | 005,282,760 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011.01.28 13:23:45 | 000,001,010 | ---- | M] () -- C:\Users\Ondřej\Desktop\X-Chat 2.lnk
[2011.01.26 21:11:44 | 000,867,349 | ---- | M] () -- C:\Users\Ondřej\Desktop\Foxtrot-plocha.jpg
[2011.01.26 20:16:10 | 000,270,904 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2011.01.26 20:16:10 | 000,270,904 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011.01.26 20:14:49 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2011.01.24 21:49:40 | 000,075,136 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011.01.24 21:42:45 | 000,001,732 | ---- | M] () -- C:\Users\Ondřej\Desktop\BFBC2Game.exe – zástupce.lnk
[2011.01.24 21:10:19 | 000,195,420 | -H-- | M] () -- C:\Windows\SysWow64\mlfcache.dat
[2011.01.23 21:08:46 | 000,000,000 | ---- | M] () -- C:\Windows\XXLGSC
[2011.01.21 17:33:40 | 000,232,501 | ---- | M] () -- C:\Users\Ondřej\Desktop\Minecraft.exe
[2011.01.18 20:48:16 | 000,900,015 | ---- | M] () -- C:\Windows\SysWow64\TmpA2656790
[2011.01.18 20:32:29 | 000,900,015 | ---- | M] () -- C:\Windows\SysWow64\TmpA1709661
[2011.01.17 19:15:21 | 000,198,565 | ---- | M] () -- C:\Users\Ondřej\Documents\Jinonická vyhlídka.docx
[2011.01.16 18:18:28 | 000,000,392 | -HS- | M] () -- C:\Users\Ondřej\Desktop\desktop (2).ini
[2011.01.16 15:45:58 | 000,016,896 | ---- | M] () -- C:\Users\Ondřej\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.01.12 21:52:47 | 000,016,871 | ---- | M] () -- C:\Users\Ondřej\Documents\Důsledky 1.docx
[2011.01.12 19:56:27 | 015,080,482 | ---- | M] () -- C:\Users\Ondřej\Desktop\minecraft – kopie – kopie – kopie (2).jar
[2011.01.10 16:30:20 | 000,000,684 | ---- | M] () -- C:\Users\Ondřej\Desktop\ostatní.lnk
[2011.01.09 22:29:20 | 000,007,605 | ---- | M] () -- C:\Users\Ondřej\AppData\Local\Resmon.ResmonCfg
[2011.01.08 17:13:47 | 000,000,383 | RH-- | M] () -- C:\Windows\ctfile.rfc
[2011.01.08 17:13:21 | 000,466,520 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2011.01.08 17:13:21 | 000,445,016 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2011.01.08 17:13:21 | 000,123,480 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2011.01.08 17:13:21 | 000,109,144 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll

========== Files Created - No Company Name ==========

[2011.02.04 16:51:47 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.02.04 14:22:39 | 000,001,066 | ---- | C] () -- C:\Users\Ondřej\Desktop\ZoneAlarm Security.lnk
[2011.02.04 14:22:27 | 000,420,800 | ---- | C] () -- C:\Windows\SysNative\drivers\vsconfig.xml
[2011.02.04 10:35:47 | 000,001,939 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011.02.01 16:59:59 | 013,138,607 | ---- | C] () -- C:\mineserver.zip
[2011.01.31 11:18:17 | 000,001,024 | ---- | C] () -- C:\.rnd
[2011.01.31 11:18:04 | 000,000,988 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn.lnk
[2011.01.31 11:11:23 | 000,000,926 | ---- | C] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
[2011.01.29 12:29:43 | 110,771,477 | ---- | C] () -- C:\Users\Ondřej\Desktop\20110128-21-1.png
[2011.01.28 17:44:18 | 000,001,783 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011.01.28 13:23:45 | 000,001,010 | ---- | C] () -- C:\Users\Ondřej\Desktop\X-Chat 2.lnk
[2011.01.26 21:11:44 | 000,867,349 | ---- | C] () -- C:\Users\Ondřej\Desktop\Foxtrot-plocha.jpg
[2011.01.24 21:42:47 | 000,001,732 | ---- | C] () -- C:\Users\Ondřej\Desktop\BFBC2Game.exe – zástupce.lnk
[2011.01.22 16:27:21 | 001,963,520 | ---- | C] () -- C:\Windows\setup_rangers_2.exe
[2011.01.21 17:33:30 | 000,232,501 | ---- | C] () -- C:\Users\Ondřej\Desktop\Minecraft.exe
[2011.01.18 20:48:16 | 000,900,015 | ---- | C] () -- C:\Windows\SysWow64\TmpA2656790
[2011.01.18 20:32:29 | 000,900,015 | ---- | C] () -- C:\Windows\SysWow64\TmpA1709661
[2011.01.17 19:14:57 | 000,198,565 | ---- | C] () -- C:\Users\Ondřej\Documents\Jinonická vyhlídka.docx
[2011.01.16 18:18:28 | 000,001,151 | ---- | C] () -- C:\Users\Public\Desktop\CyberLink PowerDirector.lnk
[2011.01.13 18:49:50 | 015,080,482 | ---- | C] () -- C:\Users\Ondřej\Desktop\minecraft – kopie – kopie – kopie (2).jar
[2011.01.12 21:52:47 | 000,016,871 | ---- | C] () -- C:\Users\Ondřej\Documents\Důsledky 1.docx
[2010.12.05 20:29:20 | 001,555,466 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010.11.20 15:56:22 | 000,000,132 | ---- | C] () -- C:\Users\Ondřej\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2010.11.12 20:28:23 | 000,016,896 | ---- | C] () -- C:\Users\Ondřej\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.11.12 20:17:41 | 000,027,648 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll
[2010.10.14 01:36:44 | 000,179,263 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2010.10.09 15:56:33 | 000,001,154 | ---- | C] () -- C:\Users\Ondřej\AppData\Roaming\MTUpdate.txt
[2010.09.09 13:52:07 | 000,001,189 | ---- | C] () -- C:\Users\Ondřej\AppData\Roaming\vso_ts_preview.xml
[2010.09.06 17:26:01 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2010.08.31 10:33:39 | 000,217,088 | ---- | C] () -- C:\Windows\SysWow64\libmySQL.dll
[2010.08.31 10:33:39 | 000,102,400 | ---- | C] () -- C:\Windows\SysWow64\TrackerNET.dll
[2010.08.31 10:29:29 | 000,000,471 | ---- | C] () -- C:\Windows\SIERRA.INI
[2010.08.25 10:23:31 | 000,000,297 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2010.08.03 12:21:20 | 000,000,061 | ---- | C] () -- C:\Windows\sbwin.ini
[2010.08.03 11:09:33 | 000,000,504 | ---- | C] () -- C:\Windows\CtaMCcfg.ini
[2010.08.03 11:09:28 | 000,148,480 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2010.08.03 11:09:28 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2010.07.27 12:05:39 | 000,000,302 | ---- | C] () -- C:\ProgramData\Setting.dat
[2010.07.27 12:05:39 | 000,000,022 | ---- | C] () -- C:\Users\Ondřej\AppData\Roaming\UserFlag.ini
[2010.07.25 15:24:02 | 000,000,034 | ---- | C] () -- C:\Windows\WTRDCTM.INI
[2010.07.23 12:16:25 | 000,007,605 | ---- | C] () -- C:\Users\Ondřej\AppData\Local\Resmon.ResmonCfg
[2010.07.20 10:11:43 | 000,003,972 | ---- | C] () -- C:\Windows\SysWow64\drivers\PciBus.sys
[2010.07.20 09:41:50 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2010.07.20 09:41:50 | 000,013,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2010.07.20 09:41:49 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2010.07.20 09:41:49 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2010.07.20 09:36:11 | 000,044,252 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2010.07.20 09:35:48 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2010.07.20 09:35:44 | 000,030,662 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.04.02 13:30:14 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[2008.09.18 08:45:54 | 000,001,515 | ---- | C] () -- C:\Windows\Ctacfg.ini

========== LOP Check ==========

[2011.01.29 16:42:29 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\.minecraft
[2011.01.29 14:45:03 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\.minecraft – kopie
[2011.01.28 10:29:13 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\2.minecraft- starý minecraft
[2011.01.18 21:06:28 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Acoustica
[2010.10.26 17:58:48 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\AnvSoft
[2011.01.28 15:02:13 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Audacity
[2010.11.04 19:20:23 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Autodesk
[2010.07.27 11:57:56 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\AutoHideIP
[2010.10.18 17:02:25 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\avidemux
[2010.11.13 12:53:54 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011.02.04 13:27:50 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\CheckPoint
[2010.08.31 11:32:52 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\DAEMON Tools Lite
[2011.02.04 12:03:02 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\ESET
[2010.12.06 12:42:21 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\FileZilla
[2010.09.05 13:04:35 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\FreeCommander
[2010.12.05 20:23:42 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\GetRightToGo
[2010.07.27 11:57:21 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Hide IP NG
[2011.02.04 21:32:44 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\IObit
[2011.02.04 09:22:04 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\LangSoft
[2010.07.25 14:03:31 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Leadertech
[2010.07.25 10:12:27 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\MAXON
[2011.01.29 15:26:48 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\minecraft záloha
[2011.01.28 13:41:12 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Mumble
[2011.01.18 20:09:02 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\PACE Anti-Piracy
[2010.07.25 20:45:22 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Sinvise Systems
[2010.10.04 20:07:04 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Subversion
[2011.01.18 21:08:19 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\SynthMaker
[2010.09.28 17:06:12 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\TS3Client
[2010.12.05 16:27:12 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Tunngle
[2011.01.23 11:05:27 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\uTorrent
[2010.09.09 14:32:20 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Vso
[2011.02.04 19:04:05 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\X-Chat 2
[2010.08.03 17:33:39 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\XRay Engine
[2010.12.27 06:49:44 | 000,032,604 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Custom Scans ==========

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< c:\windows\*.* /U >

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011.01.29 16:42:29 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\.minecraft
[2011.01.29 14:45:03 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\.minecraft – kopie
[2011.01.28 10:29:13 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\2.minecraft- starý minecraft
[2011.01.18 21:06:28 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Acoustica
[2010.11.23 15:55:32 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Adobe
[2010.10.26 17:58:48 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\AnvSoft
[2010.07.25 13:25:50 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Apple Computer
[2010.07.22 16:31:57 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\ATI
[2011.01.28 15:02:13 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Audacity
[2010.11.04 19:20:23 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Autodesk
[2010.07.27 11:57:56 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\AutoHideIP
[2010.10.18 17:02:25 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\avidemux
[2010.11.13 12:53:54 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011.02.04 13:27:50 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\CheckPoint
[2010.08.03 12:18:59 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Creative
[2011.01.16 18:22:27 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\CyberLink
[2010.08.31 11:32:52 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\DAEMON Tools Lite
[2011.02.04 12:03:02 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\ESET
[2010.12.06 12:42:21 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\FileZilla
[2010.09.05 13:04:35 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\FreeCommander
[2010.12.05 20:23:42 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\GetRightToGo
[2011.01.31 11:11:21 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Hamachi
[2010.07.27 11:57:21 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Hide IP NG
[2010.07.22 16:31:40 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Identities
[2011.02.04 21:32:44 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\IObit
[2011.02.04 09:22:04 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\LangSoft
[2010.07.25 14:03:31 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Leadertech
[2010.07.25 14:02:30 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Logishrd
[2010.07.25 14:03:36 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Logitech
[2010.07.22 16:32:16 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Macromedia
[2010.07.25 10:12:27 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\MAXON
[2009.07.14 16:36:31 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Media Center Programs
[2010.10.09 15:58:13 | 000,000,000 | --SD | M] -- C:\Users\Ondřej\AppData\Roaming\Microsoft
[2011.01.29 15:26:48 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\minecraft záloha
[2010.07.22 16:48:54 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Mozilla
[2011.01.28 13:41:12 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Mumble
[2011.01.18 20:09:02 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\PACE Anti-Piracy
[2010.08.01 15:57:23 | 000,000,000 | RH-D | M] -- C:\Users\Ondřej\AppData\Roaming\SecuROM
[2010.07.25 20:45:22 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Sinvise Systems
[2011.02.04 14:19:26 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Skype
[2011.02.04 13:50:59 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\skypePM
[2010.10.04 20:07:04 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Subversion
[2011.01.18 21:08:19 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\SynthMaker
[2010.09.28 17:06:12 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\TS3Client
[2010.12.05 16:27:12 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Tunngle
[2011.01.23 11:05:27 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\uTorrent
[2011.02.04 16:10:18 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\vlc
[2010.09.09 14:32:20 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Vso
[2011.01.03 19:12:27 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\WinRAR
[2011.02.04 19:04:05 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\X-Chat 2
[2010.08.03 17:33:39 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\XRay Engine

< %APPDATA%\*.exe /s >
[2010.07.25 14:03:31 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2010.08.31 12:44:48 | 000,069,632 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Installer\{675C161A-889A-4D35-8361-EA74BADCE0E6}\Launcher.exe_D45EC2594A194656B588C2C360DD18EA_2.exe
[2010.08.31 12:44:48 | 000,069,632 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Installer\{675C161A-889A-4D35-8361-EA74BADCE0E6}\srcds.exe_D45EC2594A194656B588C2C360DD18EA.exe
[2010.12.24 20:03:04 | 000,010,134 | R--- | M] () -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2011.02.05 11:33:46 | 000,188,152 | ---- | M] () -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\FlashGot.exe
[2007.12.30 05:01:18 | 000,307,200 | ---- | M] (Simon Tatham) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\WINNT_x86-msvc\psftp.exe
[2007.12.30 05:01:18 | 000,172,032 | ---- | M] (Simon Tatham) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\5163027y.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\WINNT_x86-msvc\puttygen.exe

< MD5 for: AGP440.SYS >
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009.07.14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\SysNative\cryptsvc.dll
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2010.03.12 23:47:22 | 000,006,440 | ---- | M] () MD5=ACD301711FC165ED77A8D364D407BAF9 -- C:\Program Files\CyberLink\PowerDirector\EventLog.dll

< MD5 for: EXPLORER.EXE >
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009.08.03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009.10.31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009.08.03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll

< MD5 for: IASTORV.SYS >
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys

< MD5 for: LSASS.EXE >
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe

< MD5 for: NDIS.SYS >
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\SysNative\drivers\ndis.sys
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\drivers\nvraid.sys
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\drivers\nvstor.sys
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< MD5 for: SMSS.EXE >
[2009.07.14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009.07.14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2010.06.14 07:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2010.04.09 12:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16569_none_0f2ca8c580036f65\tcpip.sys
[2010.06.14 07:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\SysNative\drivers\tcpip.sys
[2010.06.14 07:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009.07.14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2010.04.09 08:56:29 | 001,892,232 | ---- | M] (Microsoft Corporation) MD5=A9C0F786AC1F736891D05CE0A1D29DEB -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20687_none_0f9ea52499331463\tcpip.sys

< MD5 for: USERINIT.EXE >
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009.07.14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009.10.28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< MD5 for: WS2_32.DLL >
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\SysNative\ws2_32.dll
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2010.09.01 05:29:28 | 011,406,848 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\wmp.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2010.09.01 05:29:28 | 011,406,848 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\wmp.dll

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
No captured output from command...

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

< End of report >

#19 Příspěvek od **Caroprd111** » 05 úno 2011 12:42

Jak se chová PC

Foxtrot · #20 Příspěvek od **Foxtrot** » 05 úno 2011 13:44

Určitě je to lepší než na začátku, ale stále mi někdy padá. Vždy ze začátku, když se načítá plocha, programy atd...
Jak tak koukám tak to asi nebude vir.

Vypnul jsem automatický restart PC po chybě a BSoD mi napsat tohle:

DRIVER_IRQL_NOT_LESS_OR_EQUAL

Technical information:

*** STOP: 0x000000D1 (0xFFFFF880054E73F8, 0x0000000000000002, 0x0000000000000000, 0xFFFFF880010B7C50)

*** ataport.sys - Address FFFFF880010B7C50 base at FFFFF880010B6000, DateStamp 4a5bc118

Foxtrot · #21 Příspěvek od **Foxtrot** » 05 úno 2011 14:07

Teď jsem několikrát restartoval a vypnul a zapnul pc a už nepadá.

Ten pád ze kterého je BSoD se stal, když jsem se pokoušel odinstalovat PowerDirector, takže teď pc už docela funguje.

PS: Pokud znovu spadne, tak sem dám co napsal BSoD.

#22 Příspěvek od **Caroprd111** » 05 úno 2011 14:11

Ok, otestujte chování Pc a pak se ozvěte.

Foxtrot · #23 Příspěvek od **Foxtrot** » 05 úno 2011 14:31

Vyměnil jsem router a připojil pc na novou síť, pc jsem restartoval, načetlo se, chvíli běželo a asi za minutu spadlo.
Tady je co psal BSoD:

IRQL_NOT_LESS_OR_EQUAL

Technical information

*** STOP: 0x0000000A (0x0000000000000001, 0x0000000000000002, 0x0000000000000000, 0x FFFFF80002EF02B3)

#24 Příspěvek od **Caroprd111** » 05 úno 2011 14:45

Poprosil jsem kolegu, který se specializuje na BSOD. Prosím o strpení.

Foxtrot · #25 Příspěvek od **Foxtrot** » 05 úno 2011 15:06

Děkuji za vaši ochotu, při řešení mého problému.

Takže, PC mi pokaždé po zapnutí spadlo, asi 1-3 minuty po načtení (Stihl jsem se akorát dostat sem do fora a spadlo.)
V nouzovém režimu spadlo okamžitě.

Opravdu nechápu čím by to mohlo být, předtím, když jsem sem dal ten první výpis z BSoD, tak jsem pc zapnul a vypnul několikrát a nespadlo, teď spadlo pětkrát po sobě.

Mám 5 výpisů z BSoD:

1.:

SYSTEM_SERVICE_EXCEPTION

Technical information

*** STOP: 0x0000003B (0x00000000C0000005, 0xFFFFF800031B6C9A, 0xFFFFF8800B0D0CF0, 0x0000000000000000)

2.:

Technical information

*** STOP: 0x0000001E (0xFFFFFFFFC0000005, 0xFFFFF80002E6B5A1, 0x0000000000000000, 0xFFFFFFFFFFFFFFFF)

3.:

IRQL_NOT_LESS_OR_EQUAL

Technical information

*** STOP: 0x0000000A (0x0000000000000000, 0x0000000000000002, 0x0000000000000000, 0xFFFFF80002EDC2B3)

4.:

Technical information

*** STOP: 0x0000001E (0xFFFFFFFFC0000005, 0xFFFFF80002E515A1, 0x0000000000000000, 0xFFFFFFFFFFFFFFFF)

5.:

Technical information

*** STOP: 0x0000001E (0xFFFFFFFFC0000005, 0xFFFFF800022995A1, 0x0000000000000000, 0xFFFFFFFFFFFFFFFF)

MiliNess · #26 Příspěvek od **MiliNess** » 05 úno 2011 22:33

Dobrý večer, mrkněte se do složky Windows\Minidump, soubory které tam najdete zabalte v RARu a upněte na www.leteckaposta.cz

Foxtrot · #27 Příspěvek od **Foxtrot** » 05 úno 2011 22:58

Zde je jediný soubor, který ve složce byl:

Kód: Vybrat vše

http://leteckaposta.cz/379718681

PS: Pokud mi PC znovu bude padat, mám zde dávat výpisy z BSoD jako předtím ?

MiliNess · #28 Příspěvek od **MiliNess** » 05 úno 2011 23:30

Nemusíte

#29 Příspěvek od **Caroprd111** » 06 úno 2011 19:54

Pokračujte podle návodu http://www.bleepingcomputer.com/combofi ... t-combofix

Foxtrot · #30 Příspěvek od **Foxtrot** » 06 úno 2011 21:50

Pokaždé, když se pokusím ComboFix zapnout, tak mi PC buď spadne do BSoD, nebo zatuhne a musím ho restartovat.

VIRY.CZ

nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani

Re: nekolikrat restart pc, pomale nacitani