Re: vir na skypu icq
Napsal: 23 pro 2012 20:38
Dobra, nez to projdu a sepisu opravny skript, bude to nejakou dobu travt.
Stránka 2 z 3
Re: vir na skypu icq
Napsal: 23 pro 2012 20:41
děkuju strašně moc
Re: vir na skypu icq
Napsal: 23 pro 2012 20:53
Nemas zac, od toho jsme tady 
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Najdete tento soubor C:\Program Files\trend micro\uzivatel.exe a spustte ho.
Kliknete na Main menu a na Do a system scan only
U techto radku dejte vlevo zatrzitko
Kliknete na nápis Fix checked a potvrdte
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe , ulozte nejlepe na plochu a spustte.
Do leveho okna zkopirujte tento skript (vcetne te dvojtecky pred slovem commands)
Kliknete na MoveIt a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu sem dejte log, ktery na vas vyskoci, nebo bude zde C:\_OTM\MovedFiles\xxxxxxxx_xxxxxx (misto tech x budou cisla, predstavujici datum a cas spusteni)
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Najdete tento soubor C:\Program Files\trend micro\uzivatel.exe a spustte ho.Kliknete na Main menu a na Do a system scan only
U techto radku dejte vlevo zatrzitko
Kód: Vybrat vše
R3 - URLSearchHook: SimilarSites - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: aTube Toolbar - {bfc39e47-d643-4dc2-aa1d-61377501c844} - C:\Program Files\atube\atubeX.dll
O2 - BHO: aTube Toolbar - {bfc39e47-d643-4dc2-aa1d-61377501c844} - C:\Program Files\atube\atubeX.dll
O2 - BHO: Vizuální záložky - {C93F72A2-2162-4BBA-A07A-F13663C297A6} - C:\Program Files\Yandex\YandexBarIE\fastdial.dll
O2 - BHO: Skinner - {d6451db9-67e1-4ca3-bfba-4d77fface17f} - C:\Program Files\FBSkiny.com\adxloader.dll
O2 - BHO: Norton Safe Web Lite BHO - {F0DA78E9-6B60-42fb-BC26-EF2CFB8C8FF3} - C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\coIEPlg.dll
O3 - Toolbar: Norton Safe Web Lite - {30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\coIEPlg.dll
O3 - Toolbar: Yandex.Bar - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll
O3 - Toolbar: SimilarSites - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll
O3 - Toolbar: aTube Toolbar - {bfc39e47-d643-4dc2-aa1d-61377501c844} - C:\Program Files\atube\atubeX.dll
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKCU\..\Run: [RegistryBooster] "C:\Program Files\Uniblue\RegistryBooster\launcher.exe" delay 20000
O4 - HKCU\..\Run: [BitComet] "C:\Documents and Settings\uzivatel\Plocha\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [GameXN GO] "C:\Documents and Settings\All Users\Data aplikací\GameXN\GameXNGO.exe" /startup
O4 - HKCU\..\Run: [Facebook Update] "C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.285\SSScheduler.exe
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)
O9 - Extra button: SimilarSites - {807DF5E0-4EF7-48a8-A405-239F3E29FFA9} - C:\Program Files\SimilarSites\similarsites.dll
O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)
Do leveho okna zkopirujte tento skript (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
:services
Guard.Mail.ru
JavaQuickStarterService
gupdate
SkinnerUpdateService
AdobeFlashPlayerUpdateSvc
gupdatem
McComponentHostService
SwitchBoard
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-DELL-uzivatel.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2096127116-1238224839-3554051525-1005Core.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2096127116-1238224839-3554051525-1005UA.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Norton Security Scan for uzivatel.job
C:\WINDOWS\tasks\PCConfidential.job
C:\WINDOWS\tasks\RMSchedule.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{63353BEE-0FC1-4FE6-BF77-81C2C314AD70}.job
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\ffxtlbr@babylon.com
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\toolbar@ask.com
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\askcom.xml
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\icqplugin-1.xml
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\icqplugin.xml
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""=-
Po restartu sem dejte log, ktery na vas vyskoci, nebo bude zde C:\_OTM\MovedFiles\xxxxxxxx_xxxxxx (misto tech x budou cisla, predstavujici datum a cas spusteni)
Re: vir na skypu icq
Napsal: 23 pro 2012 21:31
tu první část sem udělala,ale při tý druhý,dala sem teda ten OTM,do levýho okna zkopírovala,dala Movelt,ale počítač se mi najednou celej zasekl a zmizela spodní lišta se Startem,takový to modrý prostě celý zmizelo a měla sem tam přesýpací hodina,taks em asi 5 minut čekala,nic,vypla sem pc a zkusila to znovu,ale stalo se mi to samé,žádný log sem na ploše neměla,jen nějaký lock,ale to je hrozně krátké : ,DELL/uzivatel,DELL,05.11.2011 21:04,file:///C:/Documents%20and%20Settings/uzivatel/Data%20aplikac%C3%AD/OpenOffice.org/3;
takže to asi není ono,co mám dělat ?
takže to asi není ono,co mám dělat ?
Re: vir na skypu icq
Napsal: 23 pro 2012 21:36
To ze zmizela spodni lista i ikony je v poradku, to je soucast prace programu. Nekdy to trva dele nez 5 minut. Ale pokud to bylo fakt seknute a program nic nedelal, je mozne, ze ho neco blokovalo.
Zkus OTM spustit jeste jednou, ale tentokrat v nouzovem rezimu
Zkus OTM spustit jeste jednou, ale tentokrat v nouzovem rezimu
Dostanete se do nej takto:
restartujte pc, mackejte klavesu F8 - pripadne jinou, zalezi na typu stroje - a zvolte moznost nouzovy rezim, nebo kdyby to neslo, zde je jiny postup http://forum.viry.cz/viewtopic.php?f=46&t=7554
Re: vir na skypu icq
Napsal: 23 pro 2012 22:05
Márty84 píše:To ze zmizela spodni lista i ikony je v poradku, to je soucast prace programu. Nekdy to trva dele nez 5 minut. Ale pokud to bylo fakt seknute a program nic nedelal, je mozne, ze ho neco blokovalo.
Zkus OTM spustit jeste jednou, ale tentokrat v nouzovem rezimu
Dostanete se do nej takto:
restartujte pc, mackejte klavesu F8 - pripadne jinou, zalezi na typu stroje - a zvolte moznost nouzovy rezim, nebo kdyby to neslo, zde je jiny postup http://forum.viry.cz/viewtopic.php?f=46&t=7554
sice to trvalo dlouho,ale mam to :
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: 380
->Temp folder emptied: 143737 bytes
->Temporary Internet Files folder emptied: 2429129 bytes
->Java cache emptied: 25493434 bytes
->FireFox cache emptied: 3291798 bytes
User: Administrator
->Temp folder emptied: 757929 bytes
->Temporary Internet Files folder emptied: 2495545 bytes
->Java cache emptied: 463 bytes
->FireFox cache emptied: 20759818 bytes
->Google Chrome cache emptied: 594288 bytes
->Flash cache emptied: 56967 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 4785594 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: uzivatel
->Temp folder emptied: 1231292615 bytes
->Temporary Internet Files folder emptied: 264319820 bytes
->Java cache emptied: 94899456 bytes
->FireFox cache emptied: 80088046 bytes
->Google Chrome cache emptied: 162304976 bytes
->Flash cache emptied: 396510 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2134153 bytes
%systemroot%\System32 .tmp files removed: 3770824 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2074619360 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 284646446 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 668743014 bytes
Total Files Cleaned = 4 700,00 mb
[EMPTYFLASH]
User: 380
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
->Flash cache emptied: 0 bytes
User: LocalService
User: NetworkService
User: uzivatel
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== SERVICES/DRIVERS ==========
Service Guard.Mail.ru stopped successfully!
Service Guard.Mail.ru deleted successfully!
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service SkinnerUpdateService stopped successfully!
Service SkinnerUpdateService deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service McComponentHostService stopped successfully!
Service McComponentHostService deleted successfully!
Service SwitchBoard stopped successfully!
Service SwitchBoard deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-DELL-uzivatel.job moved successfully.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2096127116-1238224839-3554051525-1005Core.job moved successfully.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2096127116-1238224839-3554051525-1005UA.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\Norton Security Scan for uzivatel.job moved successfully.
C:\WINDOWS\tasks\PCConfidential.job moved successfully.
C:\WINDOWS\tasks\RMSchedule.job moved successfully.
C:\WINDOWS\tasks\User_Feed_Synchronization-{63353BEE-0FC1-4FE6-BF77-81C2C314AD70}.job moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\ffxtlbr@babylon.com\defaults\preferences folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\ffxtlbr@babylon.com\defaults folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\ffxtlbr@babylon.com\content\imgs folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\ffxtlbr@babylon.com\content folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\ffxtlbr@babylon.com\components folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\ffxtlbr@babylon.com folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\toolbar@ask.com\searchplugins folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\toolbar@ask.com\defaults\preferences folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\toolbar@ask.com\defaults folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\toolbar@ask.com\chrome\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\toolbar@ask.com\chrome\content folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\toolbar@ask.com\chrome folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\toolbar@ask.com folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\modules\foundation folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\modules folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\META-INF folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\defaults\preferences folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\defaults\dynamic-preferences folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\defaults folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\components folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\chrome folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\cbapp\parts\xb\ui\behaviour folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\cbapp\parts\xb\ui folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\cbapp\parts\xb folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\cbapp\parts\platform folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\cbapp\parts\native folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\cbapp\parts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru\cbapp folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\yasearch@yandex.ru folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\askcom.xml moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\icqplugin.xml moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
OTM by OldTimer - Version 3.1.21.0 log created on 12232012_215742
Re: vir na skypu icq
Napsal: 23 pro 2012 22:26
Nemusis porad pri odpovedi davat mou citaci
Vyborne, smazalo to skoro 5GB smeti.
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe , ulozte na plochu a spustte.
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Vyborne, smazalo to skoro 5GB smeti.
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe , ulozte na plochu a spustte.Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Re: vir na skypu icq
Napsal: 24 pro 2012 11:22
tady Extras.Txt
OTL Extras logfile created on: 24.12.2012 10:37:12 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,31 Gb Available Physical Memory | 65,50% Memory free
3,85 Gb Paging File | 3,33 Gb Available in Paging File | 86,71% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,00 Gb Total Space | 38,49 Gb Free Space | 25,83% Space Free | Partition Type: NTFS
Computer Name: DELL | User Name: uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
[HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"11864:TCP" = 11864:TCP:*:Enabled:BitComet 11864 TCP
"11864:UDP" = 11864:UDP:*:Enabled:BitComet 11864 UDP
"14203:TCP" = 14203:TCP:*:Enabled:BitComet 14203 TCP
"14203:UDP" = 14203:UDP:*:Enabled:BitComet 14203 UDP
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\WINDOWS\system32\rundll32.exe" = C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App -- (Microsoft Corporation)
"C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager
"C:\Documents and Settings\uzivatel\Plocha\BitComet\BitComet.exe" = C:\Documents and Settings\uzivatel\Plocha\BitComet\BitComet.exe:*:Enabled:BitComet.exe
"C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation)
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager
"C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe" = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin -- (Skype Limited)
"C:\Program Files\atube\dtUser.exe" = C:\Program Files\atube\dtUser.exe:*:Enabled:aTube Toolbar DTX Broker -- (Visicom Media Inc.)
"C:\Documents and Settings\uzivatel\5769025146832167526\winsvc.exe" = C:\Documents and Settings\uzivatel\5769025146832167526\winsvc.exe:*:Enabled:Microsoft Windows Update
"C:\Program Files\PANDORA.TV\PanService\PanProcess.exe" = C:\Program Files\PANDORA.TV\PanService\PanProcess.exe:*:Enabled:PanProcess -- (PandoraTV)
"C:\Program Files\PANDORA.TV\PanService\PandoraService.exe" = C:\Program Files\PANDORA.TV\PanService\PandoraService.exe:*:Enabled:PandoraService -- (Pandora.TV)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{03BA5299-62AC-4FAD-B917-C40A94BF4DD5}_is1" = Svět koní - Já chci skákat
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{23E797E9-F852-4AEA-93F0-772ED2B9D9F9}" = OpenOffice.org 3.1
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 17
"{2DF8D09C-7D3C-4164-96DF-08EBF6E881C2}" = Matik 6-9 DEMO
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3515DF4C-3529-407E-A1E1-E2C0EDB36FF0}" = KwiClick
"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
"{3C9D2B2E-53A2-4098-B931-2621C5D9822B}" = Living Marine Aquarium 2
"{4F62B1AE-E778-49E2-9C57-C1C65A122098}" = Zoner Callisto 5
"{5D2DC067-CE89-49B9-B250-96F9BA3937D4}" = Star Stable 3
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{65739FA2-0444-4AB2-B598-872406539EBD}" = pdfforge Toolbar v6.6
"{7683B745-6060-41FD-AA75-0BBB383FEAD4}" = SweetIM for Messenger 3.7
"{79872596-B887-E700-8D56-CADBC78BA5DE}" = Adobe Download Assistant
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel(R) Matrix Storage Manager
"{90AF0409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office PowerPoint Viewer 2003
"{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{95140000-00AF-0405-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{95140000-00AF-0409-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A6069297-A8FF-443D-9B86-58D02FC011C6}" = Yandex.Bar v barvách Seznamu 6.7 pro Internet Explorer
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-A91000000001}" = Adobe Reader 9.1 - Czech
"{ACEB2BAF-96DF-48FD-ADD5-43842D4C443D}" = Adobe AIR
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}" = Internet Explorer Toolbar 4.6 by SweetPacks
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D4FF925E-2C0F-46F3-B102-832403952C1F}" = Pony Ranch
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{E0363CCC-3535-4BAA-9F2C-200F548675D6}" = TuneUp Utilities Language Pack (cs-CZ)
"{F827DB7E-9F8F-46BA-9F22-46CE2CEE1D7E}" = Barbie(TM) Dobrodružství s koňmi(TM)
"2011 Gabriela Guncikova_is1" = 2011 Gabriela Guncikova
"2011 Martin Harich_is1" = 2011 Martin Harich
"2011 Michal Seps_is1" = 2011 Michal Seps
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"7-Zip" = 7-Zip 4.65
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"asterisk key" = Asterisk Key 10.0
"ATI Display Driver" = ATI Display Driver
"atube" = aTube Toolbar
"aTube Catcher" = aTube Catcher
"avast" = avast! Free Antivirus
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"DivX Setup" = DivX Setup
"Easy GIF Animator_is1" = Easy GIF Animator 5.2
"FBSkiny.com" = FBSkiny.com
"FreeCommander_is1" = FreeCommander 2008.06c
"Google Chrome" = Google Chrome
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"ie8" = Windows Internet Explorer 8
"Karaoke Editor_is1" = Verze 1.12
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 5.1.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.65.1.1000
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 17.0.1 (x86 cs)" = Mozilla Firefox 17.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MpcStar" = MpcStar 5.4
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"My Horse and Me 2" = Můj kamarád kůň 2
"Nero - Burning Rom!UninstallKey" = Nero 6
"Nero BurnRights!UninstallKey" = Nero BurnRights
"NSS" = Norton Security Scan
"NST" = Norton Safe Web Lite
"PhotoFiltre" = PhotoFiltre
"PhotoFiltre Studio" = PhotoFiltre Studio
"PhotoScape" = PhotoScape
"rajče.net_is1" = rajče verze 57 sestavení 192
"Registry Mechanic_is1" = Registry Mechanic 10.0
"SimilarSites" = SimilarSites
"Smilies" = Smilies
"StepMania" = StepMania 3.9 (remove only)
"The KMPlayer" = The KMPlayer (remove only)
"VLC media player" = VLC media player 1.0.1
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGimp-2.0_is1" = GIMP 2.6.6
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Game Organizer" = GameXN GO
"PhotoFiltre Studio X" = PhotoFiltre Studio X
"szn-software-postak" = Seznam Pošťák 2 (Pouze já.)
========== Last 20 Event Log Errors ==========
[ Antivirus Events ]
Error - 9.11.2009 8:12:24 | Computer Name = DELL | Source = avast! | ID = 33554522
Description =
Error - 21.4.2010 10:36:57 | Computer Name = DELL | Source = avast! | ID = 33554522
Description =
[ Application Events ]
Error - 13.12.2012 6:11:11 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module embd3260.dll, version 6.0.13.116, stamp 49f0e1fa, debug? 0, fault
address 0x0002f1cd.
Error - 16.12.2012 4:06:19 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module embd3260.dll, version 6.0.13.116, stamp 49f0e1fa, debug? 0, fault
address 0x0002f1cd.
Error - 16.12.2012 6:02:20 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module similarsites.dll, version 1.0.0.0, stamp 4f29668e, debug? 0, fault
address 0x0000dc01.
Error - 16.12.2012 6:02:28 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module similarsites.dll, version 1.0.0.0, stamp 4f29668e, debug? 0, fault
address 0x0000dc01.
Error - 16.12.2012 6:02:38 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module similarsites.dll, version 1.0.0.0, stamp 4f29668e, debug? 0, fault
address 0x0000dc01.
Error - 16.12.2012 10:49:46 | Computer Name = DELL | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace wmplayer.exe, verze 11.0.5721.5145, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 16.12.2012 10:49:47 | Computer Name = DELL | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace wmplayer.exe, verze 11.0.5721.5145, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 23.12.2012 8:09:10 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module similarsites.dll, version 1.0.0.0, stamp 4f29668e, debug? 0, fault
address 0x0000dc01.
Error - 23.12.2012 9:34:53 | Computer Name = DELL | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 17.0.1.4715, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 23.12.2012 9:49:16 | Computer Name = DELL | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace mbam.exe, verze 1.62.0.140, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 23.12.2012 13:30:21 | Computer Name = DELL | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 17.0.1.4715, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
[ System Events ]
Error - 23.12.2012 16:57:54 | Computer Name = DELL | Source = Service Control Manager | ID = 7001
Description = Služba Klient DHCP závisí na službě Rozhraní NetBios nad protokolem
TCP/IP, která neuspěla při spuštění v důsledku následující chyby: %%31
Error - 23.12.2012 16:57:54 | Computer Name = DELL | Source = Service Control Manager | ID = 7001
Description = Služba Klient DNS závisí na službě Ovladač protokolu TCP/IP, která
neuspěla při spuštění v důsledku následující chyby: %%31
Error - 23.12.2012 16:57:54 | Computer Name = DELL | Source = Service Control Manager | ID = 7001
Description = Služba Podpora rozhraní NetBIOS nad protokolem TCP/IP závisí na službě
AFD, která neuspěla při spuštění v důsledku následující chyby: %%31
Error - 23.12.2012 16:57:54 | Computer Name = DELL | Source = Service Control Manager | ID = 7001
Description = Služba Služby IPSEC závisí na službě Ovladač IPSEC, která neuspěla
při spuštění v důsledku následující chyby: %%31
Error - 23.12.2012 16:57:54 | Computer Name = DELL | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Aavmker4 AFD aswRdr aswSnx aswSP aswTdi Fips intelppm IPSec MRxSmb NetBIOS NetBT
RasAcd
Rdbss
Tcpip
Error - 23.12.2012 17:01:49 | Computer Name = DELL | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 23.12.2012 17:03:59 | Computer Name = DELL | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
TuneUp Utilities Service.
Error - 23.12.2012 17:03:59 | Computer Name = DELL | Source = Service Control Manager | ID = 7000
Description = Služba TuneUp Utilities Service neuspěla při spuštění v důsledku následující
chyby: %%1053
Error - 24.12.2012 5:19:34 | Computer Name = DELL | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
TuneUp Utilities Service.
Error - 24.12.2012 5:19:34 | Computer Name = DELL | Source = Service Control Manager | ID = 7000
Description = Služba TuneUp Utilities Service neuspěla při spuštění v důsledku následující
chyby: %%1053
< End of report >
OTL Extras logfile created on: 24.12.2012 10:37:12 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,31 Gb Available Physical Memory | 65,50% Memory free
3,85 Gb Paging File | 3,33 Gb Available in Paging File | 86,71% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,00 Gb Total Space | 38,49 Gb Free Space | 25,83% Space Free | Partition Type: NTFS
Computer Name: DELL | User Name: uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
[HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"11864:TCP" = 11864:TCP:*:Enabled:BitComet 11864 TCP
"11864:UDP" = 11864:UDP:*:Enabled:BitComet 11864 UDP
"14203:TCP" = 14203:TCP:*:Enabled:BitComet 14203 TCP
"14203:UDP" = 14203:UDP:*:Enabled:BitComet 14203 UDP
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\WINDOWS\system32\rundll32.exe" = C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App -- (Microsoft Corporation)
"C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager
"C:\Documents and Settings\uzivatel\Plocha\BitComet\BitComet.exe" = C:\Documents and Settings\uzivatel\Plocha\BitComet\BitComet.exe:*:Enabled:BitComet.exe
"C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation)
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager
"C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe" = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin -- (Skype Limited)
"C:\Program Files\atube\dtUser.exe" = C:\Program Files\atube\dtUser.exe:*:Enabled:aTube Toolbar DTX Broker -- (Visicom Media Inc.)
"C:\Documents and Settings\uzivatel\5769025146832167526\winsvc.exe" = C:\Documents and Settings\uzivatel\5769025146832167526\winsvc.exe:*:Enabled:Microsoft Windows Update
"C:\Program Files\PANDORA.TV\PanService\PanProcess.exe" = C:\Program Files\PANDORA.TV\PanService\PanProcess.exe:*:Enabled:PanProcess -- (PandoraTV)
"C:\Program Files\PANDORA.TV\PanService\PandoraService.exe" = C:\Program Files\PANDORA.TV\PanService\PandoraService.exe:*:Enabled:PandoraService -- (Pandora.TV)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{03BA5299-62AC-4FAD-B917-C40A94BF4DD5}_is1" = Svět koní - Já chci skákat
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{23E797E9-F852-4AEA-93F0-772ED2B9D9F9}" = OpenOffice.org 3.1
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 17
"{2DF8D09C-7D3C-4164-96DF-08EBF6E881C2}" = Matik 6-9 DEMO
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3515DF4C-3529-407E-A1E1-E2C0EDB36FF0}" = KwiClick
"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
"{3C9D2B2E-53A2-4098-B931-2621C5D9822B}" = Living Marine Aquarium 2
"{4F62B1AE-E778-49E2-9C57-C1C65A122098}" = Zoner Callisto 5
"{5D2DC067-CE89-49B9-B250-96F9BA3937D4}" = Star Stable 3
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{65739FA2-0444-4AB2-B598-872406539EBD}" = pdfforge Toolbar v6.6
"{7683B745-6060-41FD-AA75-0BBB383FEAD4}" = SweetIM for Messenger 3.7
"{79872596-B887-E700-8D56-CADBC78BA5DE}" = Adobe Download Assistant
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel(R) Matrix Storage Manager
"{90AF0409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office PowerPoint Viewer 2003
"{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{95140000-00AF-0405-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{95140000-00AF-0409-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A6069297-A8FF-443D-9B86-58D02FC011C6}" = Yandex.Bar v barvách Seznamu 6.7 pro Internet Explorer
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-A91000000001}" = Adobe Reader 9.1 - Czech
"{ACEB2BAF-96DF-48FD-ADD5-43842D4C443D}" = Adobe AIR
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}" = Internet Explorer Toolbar 4.6 by SweetPacks
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D4FF925E-2C0F-46F3-B102-832403952C1F}" = Pony Ranch
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{E0363CCC-3535-4BAA-9F2C-200F548675D6}" = TuneUp Utilities Language Pack (cs-CZ)
"{F827DB7E-9F8F-46BA-9F22-46CE2CEE1D7E}" = Barbie(TM) Dobrodružství s koňmi(TM)
"2011 Gabriela Guncikova_is1" = 2011 Gabriela Guncikova
"2011 Martin Harich_is1" = 2011 Martin Harich
"2011 Michal Seps_is1" = 2011 Michal Seps
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"7-Zip" = 7-Zip 4.65
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"asterisk key" = Asterisk Key 10.0
"ATI Display Driver" = ATI Display Driver
"atube" = aTube Toolbar
"aTube Catcher" = aTube Catcher
"avast" = avast! Free Antivirus
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"DivX Setup" = DivX Setup
"Easy GIF Animator_is1" = Easy GIF Animator 5.2
"FBSkiny.com" = FBSkiny.com
"FreeCommander_is1" = FreeCommander 2008.06c
"Google Chrome" = Google Chrome
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"ie8" = Windows Internet Explorer 8
"Karaoke Editor_is1" = Verze 1.12
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 5.1.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.65.1.1000
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 17.0.1 (x86 cs)" = Mozilla Firefox 17.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MpcStar" = MpcStar 5.4
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"My Horse and Me 2" = Můj kamarád kůň 2
"Nero - Burning Rom!UninstallKey" = Nero 6
"Nero BurnRights!UninstallKey" = Nero BurnRights
"NSS" = Norton Security Scan
"NST" = Norton Safe Web Lite
"PhotoFiltre" = PhotoFiltre
"PhotoFiltre Studio" = PhotoFiltre Studio
"PhotoScape" = PhotoScape
"rajče.net_is1" = rajče verze 57 sestavení 192
"Registry Mechanic_is1" = Registry Mechanic 10.0
"SimilarSites" = SimilarSites
"Smilies" = Smilies
"StepMania" = StepMania 3.9 (remove only)
"The KMPlayer" = The KMPlayer (remove only)
"VLC media player" = VLC media player 1.0.1
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGimp-2.0_is1" = GIMP 2.6.6
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Game Organizer" = GameXN GO
"PhotoFiltre Studio X" = PhotoFiltre Studio X
"szn-software-postak" = Seznam Pošťák 2 (Pouze já.)
========== Last 20 Event Log Errors ==========
[ Antivirus Events ]
Error - 9.11.2009 8:12:24 | Computer Name = DELL | Source = avast! | ID = 33554522
Description =
Error - 21.4.2010 10:36:57 | Computer Name = DELL | Source = avast! | ID = 33554522
Description =
[ Application Events ]
Error - 13.12.2012 6:11:11 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module embd3260.dll, version 6.0.13.116, stamp 49f0e1fa, debug? 0, fault
address 0x0002f1cd.
Error - 16.12.2012 4:06:19 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module embd3260.dll, version 6.0.13.116, stamp 49f0e1fa, debug? 0, fault
address 0x0002f1cd.
Error - 16.12.2012 6:02:20 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module similarsites.dll, version 1.0.0.0, stamp 4f29668e, debug? 0, fault
address 0x0000dc01.
Error - 16.12.2012 6:02:28 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module similarsites.dll, version 1.0.0.0, stamp 4f29668e, debug? 0, fault
address 0x0000dc01.
Error - 16.12.2012 6:02:38 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module similarsites.dll, version 1.0.0.0, stamp 4f29668e, debug? 0, fault
address 0x0000dc01.
Error - 16.12.2012 10:49:46 | Computer Name = DELL | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace wmplayer.exe, verze 11.0.5721.5145, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 16.12.2012 10:49:47 | Computer Name = DELL | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace wmplayer.exe, verze 11.0.5721.5145, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 23.12.2012 8:09:10 | Computer Name = DELL | Source = .NET Runtime 2.0 Error Reporting | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18702, stamp 49b3ad2e,
faulting module similarsites.dll, version 1.0.0.0, stamp 4f29668e, debug? 0, fault
address 0x0000dc01.
Error - 23.12.2012 9:34:53 | Computer Name = DELL | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 17.0.1.4715, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 23.12.2012 9:49:16 | Computer Name = DELL | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace mbam.exe, verze 1.62.0.140, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 23.12.2012 13:30:21 | Computer Name = DELL | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 17.0.1.4715, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
[ System Events ]
Error - 23.12.2012 16:57:54 | Computer Name = DELL | Source = Service Control Manager | ID = 7001
Description = Služba Klient DHCP závisí na službě Rozhraní NetBios nad protokolem
TCP/IP, která neuspěla při spuštění v důsledku následující chyby: %%31
Error - 23.12.2012 16:57:54 | Computer Name = DELL | Source = Service Control Manager | ID = 7001
Description = Služba Klient DNS závisí na službě Ovladač protokolu TCP/IP, která
neuspěla při spuštění v důsledku následující chyby: %%31
Error - 23.12.2012 16:57:54 | Computer Name = DELL | Source = Service Control Manager | ID = 7001
Description = Služba Podpora rozhraní NetBIOS nad protokolem TCP/IP závisí na službě
AFD, která neuspěla při spuštění v důsledku následující chyby: %%31
Error - 23.12.2012 16:57:54 | Computer Name = DELL | Source = Service Control Manager | ID = 7001
Description = Služba Služby IPSEC závisí na službě Ovladač IPSEC, která neuspěla
při spuštění v důsledku následující chyby: %%31
Error - 23.12.2012 16:57:54 | Computer Name = DELL | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Aavmker4 AFD aswRdr aswSnx aswSP aswTdi Fips intelppm IPSec MRxSmb NetBIOS NetBT
RasAcd
Rdbss
Tcpip
Error - 23.12.2012 17:01:49 | Computer Name = DELL | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 23.12.2012 17:03:59 | Computer Name = DELL | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
TuneUp Utilities Service.
Error - 23.12.2012 17:03:59 | Computer Name = DELL | Source = Service Control Manager | ID = 7000
Description = Služba TuneUp Utilities Service neuspěla při spuštění v důsledku následující
chyby: %%1053
Error - 24.12.2012 5:19:34 | Computer Name = DELL | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
TuneUp Utilities Service.
Error - 24.12.2012 5:19:34 | Computer Name = DELL | Source = Service Control Manager | ID = 7000
Description = Služba TuneUp Utilities Service neuspěla při spuštění v důsledku následující
chyby: %%1053
< End of report >
Re: vir na skypu icq
Napsal: 24 pro 2012 11:24
tadyj e OTL.Txt druhá půlka je v dalším
OTL logfile created on: 24.12.2012 10:37:12 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,31 Gb Available Physical Memory | 65,50% Memory free
3,85 Gb Paging File | 3,33 Gb Available in Paging File | 86,71% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,00 Gb Total Space | 38,49 Gb Free Space | 25,83% Space Free | Partition Type: NTFS
Computer Name: DELL | User Name: uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012.12.24 10:36:01 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory\OTL.exe
PRC - [2012.12.08 17:05:13 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.10.30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2012.09.29 19:54:26 | 000,766,536 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012.09.29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012.09.29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012.09.28 09:25:56 | 000,586,904 | ---- | M] (PandoraTV) -- C:\Program Files\PANDORA.TV\PanService\PanProcess.exe
PRC - [2012.09.28 09:25:54 | 000,625,304 | ---- | M] (Pandora.TV) -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
PRC - [2010.08.05 08:46:02 | 000,583,640 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2010.05.23 06:39:05 | 000,126,904 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\ccSvcHst.exe
PRC - [2010.03.01 13:15:28 | 000,451,224 | ---- | M] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\postak.exe
PRC - [2009.05.18 09:50:18 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2009.05.18 09:50:18 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.07.06 06:15:00 | 000,151,552 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2006.07.06 06:14:30 | 000,090,112 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
========== Modules (No Company Name) ==========
MOD - [2012.12.24 05:21:10 | 002,041,344 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12122400\algo.dll
MOD - [2012.12.23 18:14:38 | 002,041,344 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12122301\algo.dll
MOD - [2012.12.08 17:05:12 | 002,397,152 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.10.22 11:15:10 | 001,277,952 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\avformat-53.dll
MOD - [2012.07.09 17:57:30 | 002,090,496 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\avcodec-53.dll
MOD - [2012.03.23 10:07:34 | 000,224,768 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\libupnp.dll
MOD - [2011.12.06 16:19:48 | 000,133,632 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\avutil-51.dll
MOD - [2010.03.01 13:15:28 | 000,451,224 | ---- | M] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\postak.exe
MOD - [2010.03.01 13:15:20 | 000,806,552 | ---- | M] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\email.2.dll
MOD - [2010.03.01 13:14:50 | 001,107,608 | ---- | M] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\core.2.dll
MOD - [2009.05.14 23:28:28 | 000,970,752 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2001.10.28 16:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll
========== Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012.12.08 17:05:12 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.11.02 15:57:16 | 001,699,168 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.09.29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012.09.29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012.09.28 09:25:54 | 000,625,304 | ---- | M] (Pandora.TV) [Auto | Running] -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe -- (PanService)
SRV - [2010.08.05 08:46:02 | 000,583,640 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010.05.23 06:39:05 | 000,126,904 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\ccSvcHst.exe -- (NSL)
SRV - [2006.07.06 06:14:30 | 000,090,112 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2012.10.30 23:51:58 | 000,738,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012.10.30 23:51:58 | 000,361,032 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012.10.30 23:51:58 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012.10.30 23:51:58 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012.10.30 23:51:57 | 000,097,608 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012.10.30 23:51:56 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2012.10.30 23:51:56 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012.09.29 19:54:26 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012.09.19 09:50:50 | 000,010,088 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2006.07.14 09:45:20 | 000,156,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2005.11.16 14:36:00 | 001,047,816 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005.04.19 04:37:06 | 000,971,264 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\SimilarSites.dll (SimilarSites)
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes,DefaultScope = firmy.cz-200137
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\{56266BEF-F680-45EB-BFCC-85B50F2183D9}: "URL" = http://websearch.ask.com/redirect?clien ... F9DF0B62E8
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\{92B97DE2-BF29-479E-B163-6F6D1365268F}: "URL" = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\firmy.cz-200137: "URL" = http://www.firmy.cz/phr/{searchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\mapy.cz-200137: "URL" = http://www.mapy.cz/?sourceid=quicksearc ... earchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\seznam.cz-200137: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\videa.seznam.cz-200137: "URL" = http://videa.seznam.cz/?q={searchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\zbozi.cz-200137: "URL" = http://www.zbozi.cz/?sourceid=quicksear ... earchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=971163&ilc=12"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: fbskiny%40firefox:1.0
FF - prefs.js..extensions.enabledAddons: jqs%40sun.com:1.0
FF - prefs.js..extensions.enabledAddons: %7B23fcfd51-4958-4f00-80a3-ae97e717ed8b%7D:2.1.2.145
FF - prefs.js..extensions.enabledAddons: %7BE71B541F-5E72-5555-A47C-E47863195841%7D:1.0.28
FF - prefs.js..extensions.enabledAddons: %7B800b5000-a755-47e1-992b-48a1c1357f07%7D:1.5.3
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..extensions.enabledItems: ffxtlbr@babylon.com:1.2.0
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145
FF - prefs.js..extensions.enabledItems: fbskiny@firefox:1.0
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: vinceturk@gmail.com:2.6.0.715
FF - prefs.js..extensions.enabledItems: {203FB6B2-2E1E-4474-863B-4C483ECCE78E}:1.0.1
FF - prefs.js..extensions.enabledItems: wtxpcom@mybrowserbar.com:6.5
FF - prefs.js..extensions.enabledItems: pdfforge@mybrowserbar.com:6.5
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... r=1.5.3&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{203FB6B2-2E1E-4474-863B-4C483ECCE78E}: C:\Documents and Settings\All Users\Data aplikací\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_1.0.1.8\coFFNST\ [2011.02.16 17:19:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.05.02 16:13:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012.12.07 22:40:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.12.08 17:05:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.12.08 17:04:53 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\extensions\\vinceturk@gmail.com: C:\Program Files\KwiClick LLC\KwiClick\ [2010.11.20 15:42:17 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\extensions\\fbskiny@firefox: C:\Program Files\FBSkiny.com\fbskiny@firefox [2012.09.09 13:56:31 | 000,000,000 | ---D | M]
[2009.10.22 13:50:10 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Extensions
[2012.12.23 22:01:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions
[2012.09.09 13:59:21 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012.12.23 14:31:58 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012.11.14 17:33:15 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2012.12.16 10:52:48 | 000,000,000 | ---D | M] (aTube Toolbar) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}
[2012.12.17 21:49:54 | 000,000,000 | ---D | M] ("SimilarSites") -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}
[2012.05.25 19:01:38 | 000,002,015 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\firmy.cz-200138.xml
[2012.05.25 19:01:38 | 000,002,078 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\mapy.cz-200138.xml
[2012.05.25 19:01:38 | 000,002,019 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\videa.seznam.cz-200138.xml
[2012.11.14 17:34:10 | 000,001,946 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\ybqs-firmy.xml
[2012.11.14 17:34:10 | 000,002,040 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\ybqs-mapy.xml
[2012.11.14 17:34:10 | 000,002,126 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\ybqs-seznam.xml
[2012.11.14 17:34:10 | 000,001,951 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\ybqs-sz_vidia.xml
[2012.11.14 17:34:10 | 000,002,096 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\ybqs-zbozi.xml
[2012.05.25 19:01:38 | 000,002,146 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\zbozi.cz-200138.xml
[2012.12.22 20:51:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\UZIVATEL\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\LFA5OL5W.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\UZIVATEL\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\LFA5OL5W.DEFAULT\EXTENSIONS\{E71B541F-5E72-5555-A47C-E47863195841}
[2012.05.02 16:13:28 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
[2012.09.09 13:56:31 | 000,000,000 | ---D | M] (FBSKINY.com) -- C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX
[2009.10.14 12:16:28 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2012.12.08 17:05:13 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.09.09 05:49:04 | 001,037,112 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2012.11.18 12:39:49 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.11.18 12:39:49 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.11.10 14:57:07 | 000,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2012.11.18 12:39:49 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.11.18 12:39:49 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.11.18 12:39:49 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - homepage: http://www.seznam.cz/?clid=6826
CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.seznam.cz/?clid=6826
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni\2.0.1_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.6_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.1.0.1_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.0.0.1_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni\2.0.1_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.6_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.1.0.1_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.0.0.1_0\
O1 HOSTS File: ([2012.12.23 22:01:26 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Norton Safe Web Lite) - {30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\coIEPlg.dll File not found
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Yandex.Bar) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll ()
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Yandex.Bar) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll ()
O3 - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\Toolbar\WebBrowser: (Norton Safe Web Lite) - {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\coIEPlg.dll File not found
O3 - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\Toolbar\WebBrowser: (Yandex.Bar) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll ()
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005..\Run: [Seznam Postak] C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\postak.exe ()
O4 - Startup: C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O4 - Startup: C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{23C82925-C87A-47A6-9D4A-A7DBADE0795D}: DhcpNameServer = 192.168.2.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.09.18 07:53:18 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{4f4a7ce8-5617-11e1-88df-00123f70c0f5}\Shell - "" = AutoRun
O33 - MountPoints2\{4f4a7ce8-5617-11e1-88df-00123f70c0f5}\Shell\AutoRun\command - "" = J:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.tscc - C:\DOCUME~1\uzivatel\Plocha\MpcStar\Codecs\tscc\tsccvid.dll File not found
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2012.12.23 21:54:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Plocha\tadyktoje
[2012.12.23 21:17:37 | 000,522,240 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\uzivatel\Plocha\OTM.exe
[2012.12.23 21:04:02 | 000,000,000 | ---D | C] -- C:\_OTM
[2012.12.23 19:55:59 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.12.23 19:55:59 | 000,000,000 | ---D | C] -- C:\rsit
[2012.12.23 17:23:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2012.12.23 17:23:12 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.12.23 17:23:12 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.12.23 14:45:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\Malwarebytes
[2012.12.23 14:45:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2012.12.23 11:05:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\ICQ Search
[2012.12.23 11:05:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\{DCD48218-E972-4d0c-9E5F-43462BC13E3B}
[2012.12.23 11:05:19 | 000,000,000 | ---D | C] -- C:\Program Files\Guard-ICQ
[2012.12.23 11:04:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2012.12.22 19:59:16 | 000,000,000 | RHSD | C] -- C:\Documents and Settings\uzivatel\5769025146832167526
[2012.12.16 11:50:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2012.12.16 11:07:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Plocha\sreens
[2012.12.16 11:02:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\searchresultstb
[2012.12.16 10:54:43 | 000,031,584 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2012.12.16 10:54:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TuneUp Utilities 2013
[2012.12.16 10:54:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\TuneUp Software
[2012.12.16 10:53:57 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013
[2012.12.16 10:53:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2012.12.16 10:53:30 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2012.12.16 10:53:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2012.12.16 10:51:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\atube
[2012.12.16 10:51:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\aTube Catcher
[2012.12.16 10:51:41 | 000,000,000 | ---D | C] -- C:\Program Files\atube
[2012.12.16 10:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\DsNET Corp
[2012.12.16 09:53:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\AskToolbar
[2012.12.16 09:53:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\SimilarSites
[2012.12.16 09:53:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\APN
[2012.12.16 09:53:07 | 000,000,000 | ---D | C] -- C:\Program Files\SimilarSites
[2012.12.16 09:53:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\SimilarSites
[2012.12.16 09:52:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PANDORATV
[2012.12.16 09:52:18 | 000,000,000 | ---D | C] -- C:\Program Files\PANDORA.TV
[2012.12.16 09:52:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Nabídka Start\Programy\The KMPlayer
[2012.12.16 09:51:52 | 000,000,000 | ---D | C] -- C:\Program Files\The KMPlayer
[2012.12.16 09:07:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Easy GIF Animator
[2012.12.16 09:07:23 | 000,000,000 | ---D | C] -- C:\Program Files\Easy GIF Animator
[2012.12.08 17:04:47 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
========== Files - Modified Within 30 Days ==========
[2012.12.24 10:40:10 | 000,000,318 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2012.12.24 10:40:07 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.12.24 10:20:19 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.12.24 10:18:25 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.12.23 22:01:26 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2012.12.23 21:17:37 | 000,522,240 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uzivatel\Plocha\OTM.exe
[2012.12.23 20:34:11 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\RSIT.exe
[2012.12.23 20:08:27 | 000,547,175 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\adwcleaner.exe
[2012.12.23 17:23:16 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.12.23 15:56:56 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.12.23 13:17:30 | 000,000,000 | -H-- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\winsvcns.sys
[2012.12.23 11:25:26 | 1236,107,192 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Navzdy.spolu.2012.DVDRip.XviD.AC3.CZ[lightfenix].avi
[2012.12.23 11:19:51 | 000,076,800 | ---- | M] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.12.22 13:26:11 | 003,545,952 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.12.20 20:17:31 | 959,817,570 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\PoslednĂ-pĂseĹ-cz-2010-avi
[2012.12.16 13:23:59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll
[2012.12.16 13:23:59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll
[2012.12.16 10:51:59 | 000,000,839 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\aTube Catcher.lnk
[2012.12.16 09:52:12 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\KMPlayer.lnk
[2012.12.16 09:07:27 | 000,000,656 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Easy GIF Animator.lnk
[2012.12.15 15:38:17 | 000,190,492 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0459.jpg
[2012.12.15 15:38:14 | 000,196,336 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0470.jpg
[2012.12.15 15:38:08 | 000,178,678 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0458.jpg
[2012.12.13 11:25:21 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.12.12 18:05:28 | 002,167,246 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\rodinka.png
[2012.12.12 16:05:18 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012.12.12 16:05:18 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012.12.11 14:04:18 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.12.09 11:56:40 | 000,005,058 | ---- | M] () -- C:\Documents and Settings\uzivatel\.recently-used.xbel
[2012.12.07 22:40:37 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
========== Files Created - No Company Name ==========
[2012.12.24 10:40:07 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.12.23 20:34:10 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\RSIT.exe
[2012.12.23 20:08:26 | 000,547,175 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\adwcleaner.exe
[2012.12.23 17:23:16 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.12.23 11:20:23 | 1236,107,192 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Navzdy.spolu.2012.DVDRip.XviD.AC3.CZ[lightfenix].avi
[2012.12.22 19:59:25 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\uzivatel\Data aplikací\winsvcns.sys
[2012.12.20 20:14:42 | 959,817,570 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\PoslednĂ-pĂseĹ-cz-2010-avi
[2012.12.16 10:51:59 | 000,000,839 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\aTube Catcher.lnk
[2012.12.16 09:52:12 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\KMPlayer.lnk
[2012.12.16 09:07:27 | 000,000,656 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Easy GIF Animator.lnk
[2012.12.15 15:37:58 | 000,196,336 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0470.jpg
[2012.12.15 15:37:54 | 000,190,492 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0459.jpg
[2012.12.15 15:37:54 | 000,178,678 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0458.jpg
[2012.12.12 18:05:24 | 002,167,246 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\rodinka.png
[2012.12.09 11:56:40 | 000,005,058 | ---- | C] () -- C:\Documents and Settings\uzivatel\.recently-used.xbel
[2012.12.07 22:40:36 | 000,000,318 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2012.12.07 18:29:34 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.03.31 11:48:10 | 000,034,679 | ---- | C] () -- C:\Documents and Settings\uzivatel\(((((((((((((((((.png
[2012.02.16 14:13:55 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.02.03 19:55:15 | 000,000,025 | ---- | C] () -- C:\Documents and Settings\uzivatel\Data aplikací\mainhst.zgh
[2011.04.18 15:22:01 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2011.01.13 16:48:41 | 000,076,800 | ---- | C] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
========== ZeroAccess Check ==========
[2010.12.24 18:32:17 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 07:51:56 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 11:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 07:52:06 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2009.10.14 12:22:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\380\Data aplikací\OpenOffice.org
[2012.12.07 20:37:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Data aplikací\OpenOffice.org
[2012.12.07 19:54:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Data aplikací\Yandex
[2012.12.07 20:17:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Data aplikací\Zoner
[2010.06.13 14:48:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2012.12.16 10:53:29 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2012.02.13 14:47:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.09.01 18:41:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Easybits GO
[2012.12.23 21:00:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GameXN
[2012.09.25 10:20:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Graboid Inc
[2012.12.23 20:18:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2011.11.04 15:09:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2012.12.16 09:53:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SimilarSites
[2012.12.23 19:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2012.12.16 10:54:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2012.05.25 19:01:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Yandex
[2012.10.10 14:45:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Zoner
[2012.12.16 10:53:30 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2012.12.16 11:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2012.12.23 11:05:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\{DCD48218-E972-4d0c-9E5F-43462BC13E3B}
[2012.12.19 16:29:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\atube
[2012.02.12 13:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\BitComet
[2012.04.08 17:16:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011.11.04 14:43:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\com.adobe.downloadassistant.AdobeDownloadAssistant
[2010.11.20 15:44:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\com.w3i.FlipToast
[2012.02.12 13:57:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\CometPlayer
[2012.02.13 15:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite
[2012.12.23 19:35:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\go
[2012.12.16 10:40:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\gtk-2.0
[2012.12.23 11:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ICQ Search
[2009.10.14 12:23:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\OpenOffice.org
[2012.05.25 19:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Opera
[2012.05.25 14:37:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\PhotoFiltre Studio X
[2011.04.28 17:06:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\PhotoScape
[2010.12.12 19:01:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Registry Mechanic
[2012.12.16 11:02:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\searchresultstb
[2012.12.16 09:53:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\SimilarSites
[2012.02.12 13:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\tigerplayer
[2012.12.16 10:54:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\TuneUp Software
[2012.05.02 18:11:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Uniblue
[2012.07.23 07:53:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\wtxpcom
[2012.05.25 19:01:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Yandex
[2012.02.03 19:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ZipGenius
[2012.10.10 14:45:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Zoner
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.09.18 07:51:55 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2009.09.18 07:58:06 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2012.12.07 22:40:36 | 000,000,318 | -H-- | C] () -- C:\WINDOWS\Tasks\avast! Emergency Update.job
< >
< MD5 for: AGP440.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.18 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.18 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.18 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.18 13:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.18 13:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 23:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 23:01:30 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2004.08.18 13:00:00 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 23:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: IASTOR.SYS >
[2006.07.06 05:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\Drivers\Sata dos\iastor.sys
[2006.07.06 05:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver\iaStor.sys
[2006.07.06 07:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\WINDOWS\OemDir\iaStor.sys
[2006.07.06 05:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\WINDOWS\system32\drivers\iaStor.sys
[2006.07.06 07:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\WINDOWS\system32\ReinstallBackups\0013\DriverFiles\iaStor.sys
[2006.07.06 06:01:32 | 000,484,864 | ---- | M] (Intel Corporation) MD5=6A3C354BFC163B81F6EF2FC421280DB5 -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver64\IaStor.sys
< MD5 for: ISAPNP.SYS >
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.24 10:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2004.08.18 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\isapnp.sys
[2008.04.14 06:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 06:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2004.08.18 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.18 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2004.08.18 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2004.08.18 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.18 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 07:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 07:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2012.09.29 19:54:26 | 000,218,184 | ---- | M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.18 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2004.08.18 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2012.09.29 19:54:26 | 000,218,184 | ---- | M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.18 13:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[27 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[44 C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\*.tmp -> ]
[2 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
[2010.11.28 17:28:40 | 001,701,888 | ---- | M] () -- C:\SpeedMat.exe
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2012.10.10 06:19:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Adobe
[2012.12.19 16:29:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\atube
[2012.02.12 13:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\BitComet
[2012.04.08 17:16:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011.11.04 14:43:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\com.adobe.downloadassistant.AdobeDownloadAssistant
[2010.11.20 15:44:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\com.w3i.FlipToast
[2012.02.12 13:57:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\CometPlayer
[2012.02.13 15:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite
[2012.05.02 16:13:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\DivX
[2012.12.23 19:35:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\go
[2012.12.16 10:40:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\gtk-2.0
[2010.08.06 08:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Help
[2012.12.23 11:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ICQ Search
[2010.11.24 10:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Identities
[2009.11.17 10:29:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\InstallShield
[2009.10.22 13:53:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Macromedia
[2012.12.23 14:45:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Malwarebytes
[2010.02.11 18:26:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Media Player Classic
[2012.09.25 10:21:34 | 000,000,000 | --SD | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Microsoft
[2009.10.22 13:50:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla
[2009.10.14 12:23:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\OpenOffice.org
[2012.05.25 19:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Opera
[2012.05.25 14:37:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\PhotoFiltre Studio X
[2011.04.28 17:06:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\PhotoScape
[2009.11.03 21:58:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Real
[2010.12.12 19:01:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Registry Mechanic
[2012.12.16 11:02:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\searchresultstb
[2010.01.23 16:08:13 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\SecuROM
[2012.12.16 09:53:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\SimilarSites
[2012.12.22 20:50:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Skype
[2012.09.18 13:28:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\skypePM
[2009.10.22 19:36:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Sun
[2012.02.12 13:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\tigerplayer
[2012.12.16 10:54:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\TuneUp Software
[2012.05.02 18:11:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Uniblue
[2012.12.09 11:34:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\vlc
[2012.02.03 11:31:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\WinRAR
[2012.07.23 07:53:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\wtxpcom
[2012.05.25 19:01:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Yandex
[2012.02.03 19:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ZipGenius
[2012.10.10 14:45:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Zoner
< %APPDATA%\*.exe /s >
[2012.03.28 16:25:22 | 000,231,936 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\SimilarSites\chromeReset.exe
[2012.05.23 12:52:36 | 000,211,041 | ---- | M] (SimilarSites) -- C:\Documents and Settings\uzivatel\Data aplikací\SimilarSites\SimilarSites.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2009.09.18 09:46:06 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2009.09.18 09:46:06 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2009.09.18 09:46:06 | 000,471,040 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.12.22 13:26:11 | 003,545,952 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2012.12.24 10:20:19 | 000,012,598 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
< %SYSTEMDRIVE%\*.exe >
[2010.11.28 17:28:40 | 001,701,888 | ---- | M] () -- C:\SpeedMat.exe
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 07:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"Seznam Postak" = "C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\postak.exe" -s -- [2010.03.01 13:15:28 | 000,451,224 | ---- | M] ()
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...
< >
< type c:\boot.ini >> test.txt /c >
No captured output from command...
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.12.24 10:40:07 | 000,000,512 | ---- | M] () MD5=27488733902A0ED69443BB5FB57634C2 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2012.02.14 11:09:07 | 000,000,637 | ---- | M] () -- \Documents and Settings\uzivatel\Recent\The-Sims-2-ročné-obdobia-Crack,cdkey.lnk
[2011.05.22 15:08:20 | 000,000,180 | ---- | M] () -- \Program Files\EA GAMES\The Sims 2 Mazlíčci\TSBin\www.crack.sk.txt
[2009.03.20 23:45:12 | 000,062,238 | ---- | M] () -- \Program Files\GIMP-2.0\share\gimp\2.0\patterns\cracked.pat
< *keygen* /s >
[2007.11.10 21:00:26 | 000,002,231 | ---- | M] () -- \Program Files\EA GAMES\The Sims 2\TSBin\4dd-The Sims 2 Pets CZ +crack\The Sims 2 Pets crack\the sims 2 pets keygen.zip
[2007.11.10 21:00:26 | 000,002,231 | ---- | M] () -- \Program Files\EA GAMES\The Sims 2\TSBin\The Sims 2 Pets crack\the sims 2 pets keygen.zip
< *loader* /s >
[2011.10.31 12:02:44 | 000,004,176 | ---- | M] () -- \Documents and Settings\380\Data aplikací\Mozilla\Firefox\Profiles\los6blpl.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
[2011.10.31 12:02:44 | 000,004,176 | ---- | M] () -- \Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\h37347cz.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
[2012.12.07 20:33:43 | 000,002,981 | ---- | M] () -- \Documents and Settings\Administrator\Dokumenty\Add-in Express\adxloader.log
[2010.11.20 15:43:16 | 000,006,820 | ---- | M] () -- \Documents and Settings\uzivatel\Data aplikací\com.w3i.FlipToast\Local Store\currenttheme\Images\loader.gif
[2012.01.27 20:29:00 | 000,009,051 | ---- | M] () -- \Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.01.27 20:29:00 | 000,011,274 | ---- | M] () -- \Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.01.27 20:29:00 | 000,004,856 | ---- | M] () -- \Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2011.10.31 12:02:44 | 000,004,176 | ---- | M] () -- \Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
[2012.12.23 20:37:46 | 000,002,981 | ---- | M] () -- \Documents and Settings\uzivatel\Dokumenty\Add-in Express\adxloader.log
[2011.03.02 21:35:42 | 005,299,048 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\Photodownloader.exe
[2011.03.02 18:57:10 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\de_de\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\en_us\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\es_es\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\it_it\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\no_no\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2011.03.02 18:57:14 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2011.03.02 18:57:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2011.10.31 12:02:44 | 000,004,176 | ---- | M] () -- \Program Files\atube\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
[2012.09.09 13:56:32 | 000,000,281 | ---- | M] () -- \Program Files\FBSkiny.com\adxloader.dll.manifest
[2012.09.09 13:57:05 | 000,063,296 | ---- | M] () -- \Program Files\FBSkiny.com\adxloader.exe
[2012.09.09 13:56:31 | 000,678,400 | ---- | M] () -- \Program Files\FBSkiny.com\adxloader64.dll
[2009.03.17 19:51:04 | 000,003,614 | ---- | M] () -- \Program Files\GIMP-2.0\etc\gtk-2.0\gdk-pixbuf.loaders
[2009.03.20 23:19:24 | 000,016,536 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009.03.20 23:19:26 | 000,019,096 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009.03.20 23:19:28 | 000,027,288 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009.03.20 23:19:30 | 000,012,440 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2009.03.20 23:19:32 | 000,017,048 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009.03.20 23:19:34 | 000,019,608 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009.03.20 23:19:36 | 000,014,488 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009.03.20 23:19:38 | 000,019,096 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009.03.20 23:19:40 | 000,016,024 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009.03.20 23:19:42 | 000,011,928 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009.03.20 23:19:44 | 000,017,048 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009.03.20 23:19:46 | 000,016,536 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009.03.20 23:19:48 | 000,011,416 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009.03.20 23:19:50 | 000,013,976 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009.03.20 23:19:52 | 000,028,312 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2009.05.18 08:51:58 | 000,006,308 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.py
[2009.05.14 23:28:34 | 000,022,528 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2009.05.18 09:50:42 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2009.05.14 23:28:28 | 000,029,696 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2009.05.18 08:18:34 | 000,003,872 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\java\unoloader.jar
[2008.02.25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2005.06.07 12:25:46 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2004.08.18 13:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 23:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 23:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2011.04.26 06:58:16 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2011.10.28 10:22:54 | 000,009,622 | ---- | M] () -- \WINDOWS\system32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
< *minodlogin* /s >
OTL logfile created on: 24.12.2012 10:37:12 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,00 Gb Total Physical Memory | 1,31 Gb Available Physical Memory | 65,50% Memory free
3,85 Gb Paging File | 3,33 Gb Available in Paging File | 86,71% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,00 Gb Total Space | 38,49 Gb Free Space | 25,83% Space Free | Partition Type: NTFS
Computer Name: DELL | User Name: uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012.12.24 10:36:01 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory\OTL.exe
PRC - [2012.12.08 17:05:13 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.10.30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2012.09.29 19:54:26 | 000,766,536 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012.09.29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012.09.29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012.09.28 09:25:56 | 000,586,904 | ---- | M] (PandoraTV) -- C:\Program Files\PANDORA.TV\PanService\PanProcess.exe
PRC - [2012.09.28 09:25:54 | 000,625,304 | ---- | M] (Pandora.TV) -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
PRC - [2010.08.05 08:46:02 | 000,583,640 | ---- | M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2010.05.23 06:39:05 | 000,126,904 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\ccSvcHst.exe
PRC - [2010.03.01 13:15:28 | 000,451,224 | ---- | M] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\postak.exe
PRC - [2009.05.18 09:50:18 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2009.05.18 09:50:18 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.07.06 06:15:00 | 000,151,552 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2006.07.06 06:14:30 | 000,090,112 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
========== Modules (No Company Name) ==========
MOD - [2012.12.24 05:21:10 | 002,041,344 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12122400\algo.dll
MOD - [2012.12.23 18:14:38 | 002,041,344 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\12122301\algo.dll
MOD - [2012.12.08 17:05:12 | 002,397,152 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.10.22 11:15:10 | 001,277,952 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\avformat-53.dll
MOD - [2012.07.09 17:57:30 | 002,090,496 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\avcodec-53.dll
MOD - [2012.03.23 10:07:34 | 000,224,768 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\libupnp.dll
MOD - [2011.12.06 16:19:48 | 000,133,632 | ---- | M] () -- C:\Program Files\PANDORA.TV\PanService\avutil-51.dll
MOD - [2010.03.01 13:15:28 | 000,451,224 | ---- | M] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\postak.exe
MOD - [2010.03.01 13:15:20 | 000,806,552 | ---- | M] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\email.2.dll
MOD - [2010.03.01 13:14:50 | 001,107,608 | ---- | M] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\core.2.dll
MOD - [2009.05.14 23:28:28 | 000,970,752 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2001.10.28 16:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll
========== Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012.12.08 17:05:12 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.11.02 15:57:16 | 001,699,168 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.09.29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012.09.29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012.09.28 09:25:54 | 000,625,304 | ---- | M] (Pandora.TV) [Auto | Running] -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe -- (PanService)
SRV - [2010.08.05 08:46:02 | 000,583,640 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010.05.23 06:39:05 | 000,126,904 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\ccSvcHst.exe -- (NSL)
SRV - [2006.07.06 06:14:30 | 000,090,112 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2012.10.30 23:51:58 | 000,738,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012.10.30 23:51:58 | 000,361,032 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012.10.30 23:51:58 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012.10.30 23:51:58 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012.10.30 23:51:57 | 000,097,608 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012.10.30 23:51:56 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2012.10.30 23:51:56 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012.09.29 19:54:26 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012.09.19 09:50:50 | 000,010,088 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2006.07.14 09:45:20 | 000,156,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2005.11.16 14:36:00 | 001,047,816 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005.04.19 04:37:06 | 000,971,264 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\SimilarSites.dll (SimilarSites)
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={ ... rer:source?}
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes,DefaultScope = firmy.cz-200137
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\{56266BEF-F680-45EB-BFCC-85B50F2183D9}: "URL" = http://websearch.ask.com/redirect?clien ... F9DF0B62E8
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\{92B97DE2-BF29-479E-B163-6F6D1365268F}: "URL" = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\firmy.cz-200137: "URL" = http://www.firmy.cz/phr/{searchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\mapy.cz-200137: "URL" = http://www.mapy.cz/?sourceid=quicksearc ... earchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\seznam.cz-200137: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\videa.seznam.cz-200137: "URL" = http://videa.seznam.cz/?q={searchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\zbozi.cz-200137: "URL" = http://www.zbozi.cz/?sourceid=quicksear ... earchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=971163&ilc=12"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: fbskiny%40firefox:1.0
FF - prefs.js..extensions.enabledAddons: jqs%40sun.com:1.0
FF - prefs.js..extensions.enabledAddons: %7B23fcfd51-4958-4f00-80a3-ae97e717ed8b%7D:2.1.2.145
FF - prefs.js..extensions.enabledAddons: %7BE71B541F-5E72-5555-A47C-E47863195841%7D:1.0.28
FF - prefs.js..extensions.enabledAddons: %7B800b5000-a755-47e1-992b-48a1c1357f07%7D:1.5.3
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..extensions.enabledItems: ffxtlbr@babylon.com:1.2.0
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145
FF - prefs.js..extensions.enabledItems: fbskiny@firefox:1.0
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: vinceturk@gmail.com:2.6.0.715
FF - prefs.js..extensions.enabledItems: {203FB6B2-2E1E-4474-863B-4C483ECCE78E}:1.0.1
FF - prefs.js..extensions.enabledItems: wtxpcom@mybrowserbar.com:6.5
FF - prefs.js..extensions.enabledItems: pdfforge@mybrowserbar.com:6.5
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... r=1.5.3&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{203FB6B2-2E1E-4474-863B-4C483ECCE78E}: C:\Documents and Settings\All Users\Data aplikací\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_1.0.1.8\coFFNST\ [2011.02.16 17:19:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012.05.02 16:13:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012.12.07 22:40:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.12.08 17:05:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.12.08 17:04:53 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\extensions\\vinceturk@gmail.com: C:\Program Files\KwiClick LLC\KwiClick\ [2010.11.20 15:42:17 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\extensions\\fbskiny@firefox: C:\Program Files\FBSkiny.com\fbskiny@firefox [2012.09.09 13:56:31 | 000,000,000 | ---D | M]
[2009.10.22 13:50:10 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Extensions
[2012.12.23 22:01:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions
[2012.09.09 13:59:21 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012.12.23 14:31:58 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012.11.14 17:33:15 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2012.12.16 10:52:48 | 000,000,000 | ---D | M] (aTube Toolbar) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}
[2012.12.17 21:49:54 | 000,000,000 | ---D | M] ("SimilarSites") -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}
[2012.05.25 19:01:38 | 000,002,015 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\firmy.cz-200138.xml
[2012.05.25 19:01:38 | 000,002,078 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\mapy.cz-200138.xml
[2012.05.25 19:01:38 | 000,002,019 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\videa.seznam.cz-200138.xml
[2012.11.14 17:34:10 | 000,001,946 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\ybqs-firmy.xml
[2012.11.14 17:34:10 | 000,002,040 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\ybqs-mapy.xml
[2012.11.14 17:34:10 | 000,002,126 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\ybqs-seznam.xml
[2012.11.14 17:34:10 | 000,001,951 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\ybqs-sz_vidia.xml
[2012.11.14 17:34:10 | 000,002,096 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\ybqs-zbozi.xml
[2012.05.25 19:01:38 | 000,002,146 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\searchplugins\zbozi.cz-200138.xml
[2012.12.22 20:51:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\UZIVATEL\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\LFA5OL5W.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\UZIVATEL\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\LFA5OL5W.DEFAULT\EXTENSIONS\{E71B541F-5E72-5555-A47C-E47863195841}
[2012.05.02 16:13:28 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
[2012.09.09 13:56:31 | 000,000,000 | ---D | M] (FBSKINY.com) -- C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX
[2009.10.14 12:16:28 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2012.12.08 17:05:13 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.09.09 05:49:04 | 001,037,112 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2012.11.18 12:39:49 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.11.18 12:39:49 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.11.10 14:57:07 | 000,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2012.11.18 12:39:49 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.11.18 12:39:49 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.11.18 12:39:49 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - homepage: http://www.seznam.cz/?clid=6826
CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.seznam.cz/?clid=6826
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni\2.0.1_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.6_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.1.0.1_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.0.0.1_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni\2.0.1_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.6_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.1.0.1_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: No name found = C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.0.0.1_0\
O1 HOSTS File: ([2012.12.23 22:01:26 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Norton Safe Web Lite) - {30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\coIEPlg.dll File not found
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Yandex.Bar) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll ()
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Yandex.Bar) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll ()
O3 - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\Toolbar\WebBrowser: (Norton Safe Web Lite) - {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\coIEPlg.dll File not found
O3 - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\Toolbar\WebBrowser: (Yandex.Bar) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll ()
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005..\Run: [Seznam Postak] C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\postak.exe ()
O4 - Startup: C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O4 - Startup: C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{23C82925-C87A-47A6-9D4A-A7DBADE0795D}: DhcpNameServer = 192.168.2.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.09.18 07:53:18 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{4f4a7ce8-5617-11e1-88df-00123f70c0f5}\Shell - "" = AutoRun
O33 - MountPoints2\{4f4a7ce8-5617-11e1-88df-00123f70c0f5}\Shell\AutoRun\command - "" = J:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.FMVC - C:\WINDOWS\System32\fmcodec.DLL (Fox Magic Software)
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.tscc - C:\DOCUME~1\uzivatel\Plocha\MpcStar\Codecs\tscc\tsccvid.dll File not found
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2012.12.23 21:54:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Plocha\tadyktoje
[2012.12.23 21:17:37 | 000,522,240 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\uzivatel\Plocha\OTM.exe
[2012.12.23 21:04:02 | 000,000,000 | ---D | C] -- C:\_OTM
[2012.12.23 19:55:59 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.12.23 19:55:59 | 000,000,000 | ---D | C] -- C:\rsit
[2012.12.23 17:23:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2012.12.23 17:23:12 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.12.23 17:23:12 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.12.23 14:45:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\Malwarebytes
[2012.12.23 14:45:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2012.12.23 11:05:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\ICQ Search
[2012.12.23 11:05:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\{DCD48218-E972-4d0c-9E5F-43462BC13E3B}
[2012.12.23 11:05:19 | 000,000,000 | ---D | C] -- C:\Program Files\Guard-ICQ
[2012.12.23 11:04:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2012.12.22 19:59:16 | 000,000,000 | RHSD | C] -- C:\Documents and Settings\uzivatel\5769025146832167526
[2012.12.16 11:50:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2012.12.16 11:07:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Plocha\sreens
[2012.12.16 11:02:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\searchresultstb
[2012.12.16 10:54:43 | 000,031,584 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2012.12.16 10:54:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\TuneUp Utilities 2013
[2012.12.16 10:54:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\TuneUp Software
[2012.12.16 10:53:57 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013
[2012.12.16 10:53:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2012.12.16 10:53:30 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2012.12.16 10:53:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2012.12.16 10:51:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\atube
[2012.12.16 10:51:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\aTube Catcher
[2012.12.16 10:51:41 | 000,000,000 | ---D | C] -- C:\Program Files\atube
[2012.12.16 10:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\DsNET Corp
[2012.12.16 09:53:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\AskToolbar
[2012.12.16 09:53:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\SimilarSites
[2012.12.16 09:53:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\APN
[2012.12.16 09:53:07 | 000,000,000 | ---D | C] -- C:\Program Files\SimilarSites
[2012.12.16 09:53:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Data aplikací\SimilarSites
[2012.12.16 09:52:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PANDORATV
[2012.12.16 09:52:18 | 000,000,000 | ---D | C] -- C:\Program Files\PANDORA.TV
[2012.12.16 09:52:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Nabídka Start\Programy\The KMPlayer
[2012.12.16 09:51:52 | 000,000,000 | ---D | C] -- C:\Program Files\The KMPlayer
[2012.12.16 09:07:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Easy GIF Animator
[2012.12.16 09:07:23 | 000,000,000 | ---D | C] -- C:\Program Files\Easy GIF Animator
[2012.12.08 17:04:47 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
========== Files - Modified Within 30 Days ==========
[2012.12.24 10:40:10 | 000,000,318 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2012.12.24 10:40:07 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.12.24 10:20:19 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.12.24 10:18:25 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.12.23 22:01:26 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2012.12.23 21:17:37 | 000,522,240 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\uzivatel\Plocha\OTM.exe
[2012.12.23 20:34:11 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\RSIT.exe
[2012.12.23 20:08:27 | 000,547,175 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\adwcleaner.exe
[2012.12.23 17:23:16 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.12.23 15:56:56 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012.12.23 13:17:30 | 000,000,000 | -H-- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\winsvcns.sys
[2012.12.23 11:25:26 | 1236,107,192 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Navzdy.spolu.2012.DVDRip.XviD.AC3.CZ[lightfenix].avi
[2012.12.23 11:19:51 | 000,076,800 | ---- | M] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.12.22 13:26:11 | 003,545,952 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.12.20 20:17:31 | 959,817,570 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\PoslednĂ-pĂseĹ-cz-2010-avi
[2012.12.16 13:23:59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll
[2012.12.16 13:23:59 | 000,290,560 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll
[2012.12.16 10:51:59 | 000,000,839 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\aTube Catcher.lnk
[2012.12.16 09:52:12 | 000,000,710 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\KMPlayer.lnk
[2012.12.16 09:07:27 | 000,000,656 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Easy GIF Animator.lnk
[2012.12.15 15:38:17 | 000,190,492 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0459.jpg
[2012.12.15 15:38:14 | 000,196,336 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0470.jpg
[2012.12.15 15:38:08 | 000,178,678 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0458.jpg
[2012.12.13 11:25:21 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.12.12 18:05:28 | 002,167,246 | ---- | M] () -- C:\Documents and Settings\uzivatel\Plocha\rodinka.png
[2012.12.12 16:05:18 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012.12.12 16:05:18 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012.12.11 14:04:18 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.12.09 11:56:40 | 000,005,058 | ---- | M] () -- C:\Documents and Settings\uzivatel\.recently-used.xbel
[2012.12.07 22:40:37 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
========== Files Created - No Company Name ==========
[2012.12.24 10:40:07 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.12.23 20:34:10 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\RSIT.exe
[2012.12.23 20:08:26 | 000,547,175 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\adwcleaner.exe
[2012.12.23 17:23:16 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
[2012.12.23 11:20:23 | 1236,107,192 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Navzdy.spolu.2012.DVDRip.XviD.AC3.CZ[lightfenix].avi
[2012.12.22 19:59:25 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\uzivatel\Data aplikací\winsvcns.sys
[2012.12.20 20:14:42 | 959,817,570 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\PoslednĂ-pĂseĹ-cz-2010-avi
[2012.12.16 10:51:59 | 000,000,839 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\aTube Catcher.lnk
[2012.12.16 09:52:12 | 000,000,710 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\KMPlayer.lnk
[2012.12.16 09:07:27 | 000,000,656 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Easy GIF Animator.lnk
[2012.12.15 15:37:58 | 000,196,336 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0470.jpg
[2012.12.15 15:37:54 | 000,190,492 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0459.jpg
[2012.12.15 15:37:54 | 000,178,678 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\Fotografie 0458.jpg
[2012.12.12 18:05:24 | 002,167,246 | ---- | C] () -- C:\Documents and Settings\uzivatel\Plocha\rodinka.png
[2012.12.09 11:56:40 | 000,005,058 | ---- | C] () -- C:\Documents and Settings\uzivatel\.recently-used.xbel
[2012.12.07 22:40:36 | 000,000,318 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2012.12.07 18:29:34 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.03.31 11:48:10 | 000,034,679 | ---- | C] () -- C:\Documents and Settings\uzivatel\(((((((((((((((((.png
[2012.02.16 14:13:55 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.02.03 19:55:15 | 000,000,025 | ---- | C] () -- C:\Documents and Settings\uzivatel\Data aplikací\mainhst.zgh
[2011.04.18 15:22:01 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2011.01.13 16:48:41 | 000,076,800 | ---- | C] () -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
========== ZeroAccess Check ==========
[2010.12.24 18:32:17 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 07:51:56 | 001,499,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 11:56:05 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 07:52:06 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2009.10.14 12:22:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\380\Data aplikací\OpenOffice.org
[2012.12.07 20:37:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Data aplikací\OpenOffice.org
[2012.12.07 19:54:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Data aplikací\Yandex
[2012.12.07 20:17:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Data aplikací\Zoner
[2010.06.13 14:48:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2012.12.16 10:53:29 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2012.02.13 14:47:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.09.01 18:41:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Easybits GO
[2012.12.23 21:00:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\GameXN
[2012.09.25 10:20:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Graboid Inc
[2012.12.23 20:18:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2011.11.04 15:09:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2012.12.16 09:53:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SimilarSites
[2012.12.23 19:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2012.12.16 10:54:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2012.05.25 19:01:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Yandex
[2012.10.10 14:45:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Zoner
[2012.12.16 10:53:30 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2012.12.16 11:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\TuneUp Software
[2012.12.23 11:05:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\{DCD48218-E972-4d0c-9E5F-43462BC13E3B}
[2012.12.19 16:29:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\atube
[2012.02.12 13:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\BitComet
[2012.04.08 17:16:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011.11.04 14:43:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\com.adobe.downloadassistant.AdobeDownloadAssistant
[2010.11.20 15:44:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\com.w3i.FlipToast
[2012.02.12 13:57:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\CometPlayer
[2012.02.13 15:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite
[2012.12.23 19:35:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\go
[2012.12.16 10:40:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\gtk-2.0
[2012.12.23 11:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ICQ Search
[2009.10.14 12:23:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\OpenOffice.org
[2012.05.25 19:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Opera
[2012.05.25 14:37:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\PhotoFiltre Studio X
[2011.04.28 17:06:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\PhotoScape
[2010.12.12 19:01:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Registry Mechanic
[2012.12.16 11:02:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\searchresultstb
[2012.12.16 09:53:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\SimilarSites
[2012.02.12 13:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\tigerplayer
[2012.12.16 10:54:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\TuneUp Software
[2012.05.02 18:11:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Uniblue
[2012.07.23 07:53:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\wtxpcom
[2012.05.25 19:01:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Yandex
[2012.02.03 19:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ZipGenius
[2012.10.10 14:45:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Zoner
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.09.18 07:51:55 | 000,000,065 | RH-- | C] () -- C:\WINDOWS\Tasks\desktop.ini
[2009.09.18 07:58:06 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2012.12.07 22:40:36 | 000,000,318 | -H-- | C] () -- C:\WINDOWS\Tasks\avast! Emergency Update.job
< >
< MD5 for: AGP440.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004.08.18 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 07:52:12 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.18 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
< MD5 for: CDROM.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004.08.18 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2004.08.18 13:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 07:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll
< MD5 for: EVENTLOG.DLL >
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 07:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: EXPLORER.EXE >
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 07:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.18 13:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
< MD5 for: HAL.DLL >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 23:01:34 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 23:01:30 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2004.08.18 13:00:00 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll
< MD5 for: CHANGER.SYS >
[2004.08.18 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 23:11:00 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: IASTOR.SYS >
[2006.07.06 05:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\Drivers\Sata dos\iastor.sys
[2006.07.06 05:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver\iaStor.sys
[2006.07.06 07:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\WINDOWS\OemDir\iaStor.sys
[2006.07.06 05:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\WINDOWS\system32\drivers\iaStor.sys
[2006.07.06 07:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\WINDOWS\system32\ReinstallBackups\0013\DriverFiles\iaStor.sys
[2006.07.06 06:01:32 | 000,484,864 | ---- | M] (Intel Corporation) MD5=6A3C354BFC163B81F6EF2FC421280DB5 -- C:\Program Files\Intel\Intel Matrix Storage Manager\Driver64\IaStor.sys
< MD5 for: ISAPNP.SYS >
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 08:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2001.10.24 10:44:12 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2004.08.18 13:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386\isapnp.sys
[2008.04.14 06:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 06:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys
< MD5 for: LSASS.EXE >
[2004.08.18 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 07:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe
< MD5 for: NDIS.SYS >
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 23:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.18 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
< MD5 for: NETLOGON.DLL >
[2004.08.18 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 07:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2004.08.18 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 07:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SMSS.EXE >
[2004.08.18 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 07:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 07:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe
< MD5 for: SVCHOST.EXE >
[2012.09.29 19:54:26 | 000,218,184 | ---- | M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 07:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 23:50:18 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2004.08.18 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 07:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
< MD5 for: WINLOGON.EXE >
[2004.08.18 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2012.09.29 19:54:26 | 000,218,184 | ---- | M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 07:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe
< MD5 for: WS2_32.DLL >
[2004.08.18 13:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 07:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[27 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[44 C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\*.tmp -> ]
[2 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
[2010.11.28 17:28:40 | 001,701,888 | ---- | M] () -- C:\SpeedMat.exe
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2012.10.10 06:19:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Adobe
[2012.12.19 16:29:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\atube
[2012.02.12 13:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\BitComet
[2012.04.08 17:16:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011.11.04 14:43:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\com.adobe.downloadassistant.AdobeDownloadAssistant
[2010.11.20 15:44:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\com.w3i.FlipToast
[2012.02.12 13:57:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\CometPlayer
[2012.02.13 15:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite
[2012.05.02 16:13:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\DivX
[2012.12.23 19:35:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\go
[2012.12.16 10:40:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\gtk-2.0
[2010.08.06 08:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Help
[2012.12.23 11:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ICQ Search
[2010.11.24 10:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Identities
[2009.11.17 10:29:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\InstallShield
[2009.10.22 13:53:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Macromedia
[2012.12.23 14:45:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Malwarebytes
[2010.02.11 18:26:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Media Player Classic
[2012.09.25 10:21:34 | 000,000,000 | --SD | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Microsoft
[2009.10.22 13:50:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla
[2009.10.14 12:23:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\OpenOffice.org
[2012.05.25 19:01:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Opera
[2012.05.25 14:37:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\PhotoFiltre Studio X
[2011.04.28 17:06:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\PhotoScape
[2009.11.03 21:58:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Real
[2010.12.12 19:01:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Registry Mechanic
[2012.12.16 11:02:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\searchresultstb
[2010.01.23 16:08:13 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\SecuROM
[2012.12.16 09:53:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\SimilarSites
[2012.12.22 20:50:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Skype
[2012.09.18 13:28:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\skypePM
[2009.10.22 19:36:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Sun
[2012.02.12 13:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\tigerplayer
[2012.12.16 10:54:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\TuneUp Software
[2012.05.02 18:11:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Uniblue
[2012.12.09 11:34:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\vlc
[2012.02.03 11:31:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\WinRAR
[2012.07.23 07:53:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\wtxpcom
[2012.05.25 19:01:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Yandex
[2012.02.03 19:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\ZipGenius
[2012.10.10 14:45:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\uzivatel\Data aplikací\Zoner
< %APPDATA%\*.exe /s >
[2012.03.28 16:25:22 | 000,231,936 | ---- | M] () -- C:\Documents and Settings\uzivatel\Data aplikací\SimilarSites\chromeReset.exe
[2012.05.23 12:52:36 | 000,211,041 | ---- | M] (SimilarSites) -- C:\Documents and Settings\uzivatel\Data aplikací\SimilarSites\SimilarSites.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
[2009.09.18 09:46:06 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2009.09.18 09:46:06 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2009.09.18 09:46:06 | 000,471,040 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.12.22 13:26:11 | 003,545,952 | ---- | M] () -- C:\WINDOWS\system32\FNTCACHE.DAT
[2012.12.24 10:20:19 | 000,012,598 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
< %SYSTEMDRIVE%\*.exe >
[2010.11.28 17:28:40 | 001,701,888 | ---- | M] () -- C:\SpeedMat.exe
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 07:52:18 | 000,015,360 | ---- | M] (Microsoft Corporation)
"Seznam Postak" = "C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Seznam.cz\postak.exe" -s -- [2010.03.01 13:15:28 | 000,451,224 | ---- | M] ()
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...
< >
< type c:\boot.ini >> test.txt /c >
No captured output from command...
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.12.24 10:40:07 | 000,000,512 | ---- | M] () MD5=27488733902A0ED69443BB5FB57634C2 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2012.02.14 11:09:07 | 000,000,637 | ---- | M] () -- \Documents and Settings\uzivatel\Recent\The-Sims-2-ročné-obdobia-Crack,cdkey.lnk
[2011.05.22 15:08:20 | 000,000,180 | ---- | M] () -- \Program Files\EA GAMES\The Sims 2 Mazlíčci\TSBin\www.crack.sk.txt
[2009.03.20 23:45:12 | 000,062,238 | ---- | M] () -- \Program Files\GIMP-2.0\share\gimp\2.0\patterns\cracked.pat
< *keygen* /s >
[2007.11.10 21:00:26 | 000,002,231 | ---- | M] () -- \Program Files\EA GAMES\The Sims 2\TSBin\4dd-The Sims 2 Pets CZ +crack\The Sims 2 Pets crack\the sims 2 pets keygen.zip
[2007.11.10 21:00:26 | 000,002,231 | ---- | M] () -- \Program Files\EA GAMES\The Sims 2\TSBin\The Sims 2 Pets crack\the sims 2 pets keygen.zip
< *loader* /s >
[2011.10.31 12:02:44 | 000,004,176 | ---- | M] () -- \Documents and Settings\380\Data aplikací\Mozilla\Firefox\Profiles\los6blpl.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
[2011.10.31 12:02:44 | 000,004,176 | ---- | M] () -- \Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\h37347cz.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
[2012.12.07 20:33:43 | 000,002,981 | ---- | M] () -- \Documents and Settings\Administrator\Dokumenty\Add-in Express\adxloader.log
[2010.11.20 15:43:16 | 000,006,820 | ---- | M] () -- \Documents and Settings\uzivatel\Data aplikací\com.w3i.FlipToast\Local Store\currenttheme\Images\loader.gif
[2012.01.27 20:29:00 | 000,009,051 | ---- | M] () -- \Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.01.27 20:29:00 | 000,011,274 | ---- | M] () -- \Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.01.27 20:29:00 | 000,004,856 | ---- | M] () -- \Documents and Settings\uzivatel\Data aplikací\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2011.10.31 12:02:44 | 000,004,176 | ---- | M] () -- \Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
[2012.12.23 20:37:46 | 000,002,981 | ---- | M] () -- \Documents and Settings\uzivatel\Dokumenty\Add-in Express\adxloader.log
[2011.03.02 21:35:42 | 005,299,048 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\Photodownloader.exe
[2011.03.02 18:57:10 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\de_de\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\en_us\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\es_es\Photodownloader.ini
[2011.03.02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\it_it\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\no_no\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2011.03.02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2011.03.02 18:57:14 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2011.03.02 18:57:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2011.10.31 12:02:44 | 000,004,176 | ---- | M] () -- \Program Files\atube\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
[2012.09.09 13:56:32 | 000,000,281 | ---- | M] () -- \Program Files\FBSkiny.com\adxloader.dll.manifest
[2012.09.09 13:57:05 | 000,063,296 | ---- | M] () -- \Program Files\FBSkiny.com\adxloader.exe
[2012.09.09 13:56:31 | 000,678,400 | ---- | M] () -- \Program Files\FBSkiny.com\adxloader64.dll
[2009.03.17 19:51:04 | 000,003,614 | ---- | M] () -- \Program Files\GIMP-2.0\etc\gtk-2.0\gdk-pixbuf.loaders
[2009.03.20 23:19:24 | 000,016,536 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009.03.20 23:19:26 | 000,019,096 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009.03.20 23:19:28 | 000,027,288 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009.03.20 23:19:30 | 000,012,440 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2009.03.20 23:19:32 | 000,017,048 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009.03.20 23:19:34 | 000,019,608 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009.03.20 23:19:36 | 000,014,488 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009.03.20 23:19:38 | 000,019,096 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009.03.20 23:19:40 | 000,016,024 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009.03.20 23:19:42 | 000,011,928 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009.03.20 23:19:44 | 000,017,048 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009.03.20 23:19:46 | 000,016,536 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009.03.20 23:19:48 | 000,011,416 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009.03.20 23:19:50 | 000,013,976 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009.03.20 23:19:52 | 000,028,312 | ---- | M] () -- \Program Files\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2009.05.18 08:51:58 | 000,006,308 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.py
[2009.05.14 23:28:34 | 000,022,528 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2009.05.18 09:50:42 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2009.05.14 23:28:28 | 000,029,696 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2009.05.18 08:18:34 | 000,003,872 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\java\unoloader.jar
[2008.02.25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2005.06.07 12:25:46 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2004.08.18 13:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 23:01:48 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 23:01:50 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 07:51:40 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[2011.04.26 06:58:16 | 000,012,532 | ---- | M] () -- \WINDOWS\system32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2011.10.28 10:22:54 | 000,009,622 | ---- | M] () -- \WINDOWS\system32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
< *minodlogin* /s >
Re: vir na skypu icq
Napsal: 24 pro 2012 11:25
< *tnod* /s >
[2012.02.13 13:26:06 | 000,023,744 | ---- | M] () -- \Documents and Settings\uzivatel\Plocha\BitComet\rules\dhtnodes.dat
< *AutoKMS* /s >
< *activator* /s >
[2012.12.16 10:54:39 | 000,001,897 | ---- | M] () -- \Documents and Settings\All Users\Nabídka Start\Programy\TuneUp Utilities 2013\Všechny funkce\TuneUp Program Deactivator.lnk
[2012.11.02 15:54:14 | 000,318,304 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\ProgramDeactivator.exe
[2012.11.02 15:57:18 | 000,102,752 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe
[2009.09.25 14:00:00 | 000,003,006 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\deinstallation_programDeactivator_40x40.png
[2009.09.25 14:00:00 | 000,001,534 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\icon_ProgramDeactivator_16.png
[2009.09.25 14:00:00 | 000,004,191 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\icon_ProgramDeactivator_24x24.png
[2009.09.25 14:00:00 | 000,003,100 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\icon_ProgramDeactivator_32.png
[2009.09.25 14:00:00 | 000,006,373 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\icon_ProgramDeactivator_64.png
[2009.09.25 14:00:00 | 000,004,191 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\Integrator\images\panel2\iconProgramDeactivator.png
[2009.09.25 14:00:00 | 000,001,534 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\Integrator\images\panel6\ProgramDeactivator_16x16.png
< *serial* /s >
[2009.10.14 12:19:44 | 000,000,767 | ---- | M] () -- \Documents and Settings\380\Recent\NERO-6605-serial-number.lnk
[2011.05.14 19:08:13 | 000,000,175 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@majas-serials.blog[1].txt
[2011.05.24 14:59:41 | 000,000,345 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@online-serialy.vsetu[1].txt
[2011.07.12 19:51:53 | 000,000,422 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@serials4you[2].txt
[2011.07.14 19:17:19 | 000,000,455 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@serialy-online.vialoca[1].txt
[2011.07.14 16:31:12 | 000,000,339 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@serialyonline[2].txt
[2011.03.02 18:30:19 | 000,000,416 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@znamenikone-serial[1].txt
[2011.11.20 21:48:04 | 000,000,013 | ---- | M] () -- \Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Internet Explorer\DOMStore\8RVSJ777\www.serialzone[1].xml
[2011.06.10 16:11:10 | 000,000,101 | ---- | M] () -- \Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Internet Explorer\DOMStore\EZIWE62S\uzivatel.filmy-serialy[1].xml
[2011.06.10 16:11:05 | 000,000,101 | ---- | M] () -- \Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Internet Explorer\DOMStore\GRKHEEF0\www.filmy-serialy[1].xml
[2011.07.12 19:47:52 | 000,000,013 | ---- | M] () -- \Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Internet Explorer\DOMStore\P9R28BCV\www.serial-online[1].xml
[2012.04.11 00:15:28 | 000,434,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.10411.0\System.Runtime.Serialization.dll
[2012.07.30 20:12:51 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.10411.0\System.Runtime.Serialization.ni.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2004.08.18 13:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2012.11.16 06:49:23 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.12.27 18:33:11 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.11.16 15:08:06 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\709bb78b419d5d5e30f2acfd722abb29\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.11.16 15:05:31 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\7efd419147611323505605be3ecee5d5\System.Runtime.Serialization.ni.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2008.04.14 06:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 06:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2007.06.27 17:29:04 | 000,131,072 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\system.runtime.serialization.formatters.soap.dll
[2004.08.18 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2004.08.18 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 06:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1
< End of report >
[2012.02.13 13:26:06 | 000,023,744 | ---- | M] () -- \Documents and Settings\uzivatel\Plocha\BitComet\rules\dhtnodes.dat
< *AutoKMS* /s >
< *activator* /s >
[2012.12.16 10:54:39 | 000,001,897 | ---- | M] () -- \Documents and Settings\All Users\Nabídka Start\Programy\TuneUp Utilities 2013\Všechny funkce\TuneUp Program Deactivator.lnk
[2012.11.02 15:54:14 | 000,318,304 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\ProgramDeactivator.exe
[2012.11.02 15:57:18 | 000,102,752 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe
[2009.09.25 14:00:00 | 000,003,006 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\deinstallation_programDeactivator_40x40.png
[2009.09.25 14:00:00 | 000,001,534 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\icon_ProgramDeactivator_16.png
[2009.09.25 14:00:00 | 000,004,191 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\icon_ProgramDeactivator_24x24.png
[2009.09.25 14:00:00 | 000,003,100 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\icon_ProgramDeactivator_32.png
[2009.09.25 14:00:00 | 000,006,373 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\icon_ProgramDeactivator_64.png
[2009.09.25 14:00:00 | 000,004,191 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\Integrator\images\panel2\iconProgramDeactivator.png
[2009.09.25 14:00:00 | 000,001,534 | ---- | M] () -- \Program Files\TuneUp Utilities 2013\data\Integrator\images\panel6\ProgramDeactivator_16x16.png
< *serial* /s >
[2009.10.14 12:19:44 | 000,000,767 | ---- | M] () -- \Documents and Settings\380\Recent\NERO-6605-serial-number.lnk
[2011.05.14 19:08:13 | 000,000,175 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@majas-serials.blog[1].txt
[2011.05.24 14:59:41 | 000,000,345 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@online-serialy.vsetu[1].txt
[2011.07.12 19:51:53 | 000,000,422 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@serials4you[2].txt
[2011.07.14 19:17:19 | 000,000,455 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@serialy-online.vialoca[1].txt
[2011.07.14 16:31:12 | 000,000,339 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@serialyonline[2].txt
[2011.03.02 18:30:19 | 000,000,416 | ---- | M] () -- \Documents and Settings\uzivatel\Cookies\uzivatel@znamenikone-serial[1].txt
[2011.11.20 21:48:04 | 000,000,013 | ---- | M] () -- \Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Internet Explorer\DOMStore\8RVSJ777\www.serialzone[1].xml
[2011.06.10 16:11:10 | 000,000,101 | ---- | M] () -- \Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Internet Explorer\DOMStore\EZIWE62S\uzivatel.filmy-serialy[1].xml
[2011.06.10 16:11:05 | 000,000,101 | ---- | M] () -- \Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Internet Explorer\DOMStore\GRKHEEF0\www.filmy-serialy[1].xml
[2011.07.12 19:47:52 | 000,000,013 | ---- | M] () -- \Documents and Settings\uzivatel\Local Settings\Data aplikací\Microsoft\Internet Explorer\DOMStore\P9R28BCV\www.serial-online[1].xml
[2012.04.11 00:15:28 | 000,434,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.10411.0\System.Runtime.Serialization.dll
[2012.07.30 20:12:51 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.10411.0\System.Runtime.Serialization.ni.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2004.08.18 13:00:00 | 000,064,640 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\serial.sys
[2012.11.16 06:49:23 | 000,131,072 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.12.27 18:33:11 | 000,970,752 | ---- | M] () -- \WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.11.16 15:08:06 | 000,311,296 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\709bb78b419d5d5e30f2acfd722abb29\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.11.16 15:05:31 | 002,345,472 | ---- | M] () -- \WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\7efd419147611323505605be3ecee5d5\System.Runtime.Serialization.ni.dll
[2008.07.25 11:17:00 | 000,131,072 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.04.07 23:48:30 | 000,970,752 | ---- | M] () -- \WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2008.04.14 06:47:26 | 000,028,416 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\grserial.sys
[2008.04.14 06:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\serial.sys
[2007.06.27 17:29:04 | 000,131,072 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\system.runtime.serialization.formatters.soap.dll
[2004.08.18 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dpserial.dll
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\serialui.dll
[2004.08.18 13:00:00 | 000,053,520 | ---- | M] () -- \WINDOWS\system32\dllcache\dpserial.dll
[2004.08.18 13:00:00 | 000,014,336 | ---- | M] () -- \WINDOWS\system32\dllcache\serialui.dll
[2008.04.14 06:51:10 | 000,064,256 | ---- | M] () -- \WINDOWS\system32\drivers\serial.sys
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1
< End of report >
Re: vir na skypu icq
Napsal: 24 pro 2012 11:40
Odinstaluj MBAM Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Znovu spustte OTLDo spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
:otl
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\SimilarSites.dll (SimilarSites)
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\{56266BEF-F680-45EB-BFCC-85B50F2183D9}: "URL" = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_EU&apn_ptnrs=^RY&apn_dtid=^YYYYYY^V2^CZ&apn_uid=de09f1bb-5483-4ac9-8a79-544375be7255&apn_sauid=2609FF5D-FF58-4EAF-933F-19F9DF0B62E8
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\{92B97DE2-BF29-479E-B163-6F6D1365268F}: "URL" = http://search.yahoo.com/search?fr=chr-g ... =971163&p={searchTerms}
IE - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\SearchScopes\seznam.cz-200137: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=971163&ilc=12"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..extensions.enabledAddons: fbskiny%40firefox:1.0
FF - prefs.js..extensions.enabledAddons: %7B23fcfd51-4958-4f00-80a3-ae97e717ed8b%7D:2.1.2.145
FF - prefs.js..extensions.enabledAddons: %7BE71B541F-5E72-5555-A47C-E47863195841%7D:1.0.28
FF - prefs.js..extensions.enabledAddons: %7B800b5000-a755-47e1-992b-48a1c1357f07%7D:1.5.3
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..extensions.enabledItems: ffxtlbr@babylon.com:1.2.0
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145
FF - prefs.js..extensions.enabledItems: fbskiny@firefox:1.0
FF - prefs.js..extensions.enabledItems: {203FB6B2-2E1E-4474-863B-4C483ECCE78E}:1.0.1
FF - prefs.js..extensions.enabledItems: wtxpcom@mybrowserbar.com:6.5
FF - prefs.js..extensions.enabledItems: pdfforge@mybrowserbar.com:6.5
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q="
[2012.12.23 14:31:58 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012.11.14 17:33:15 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2012.12.16 10:52:48 | 000,000,000 | ---D | M] (aTube Toolbar) -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}
[2012.12.17 21:49:54 | 000,000,000 | ---D | M] ("SimilarSites") -- C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\UZIVATEL\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\LFA5OL5W.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\UZIVATEL\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\LFA5OL5W.DEFAULT\EXTENSIONS\{E71B541F-5E72-5555-A47C-E47863195841}
[2012.09.09 13:56:31 | 000,000,000 | ---D | M] (FBSKINY.com) -- C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX
[2011.09.09 05:49:04 | 001,037,112 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Yandex.Bar) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll ()
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Yandex.Bar) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll ()
O3 - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\Toolbar\WebBrowser: (Norton Safe Web Lite) - {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - C:\Program Files\Norton Safe Web Lite\Engine\1.0.1.8\coIEPlg.dll File not found
O3 - HKU\S-1-5-21-2096127116-1238224839-3554051525-1005\..\Toolbar\WebBrowser: (Yandex.Bar) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll ()
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
[2012.12.16 09:53:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\AskToolbar
[27 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[44 C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\*.tmp files -> C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\*.tmp -> ]
[2 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1
Po restartu se objevi novy log, ten sem dejte.
Kdyby se to zase seklo, tak to zkus zase v tom nouzovem rezimuRe: vir na skypu icq
Napsal: 24 pro 2012 11:58
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: 380
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: uzivatel
->Temp folder emptied: 10842508 bytes
->Temporary Internet Files folder emptied: 37571 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 94937441 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 962 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 32558 bytes
Total Files Cleaned = 101,00 mb
[EMPTYFLASH]
User: 380
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
->Flash cache emptied: 0 bytes
User: LocalService
User: NetworkService
User: uzivatel
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{FE69C007-C452-4d3e-86D2-1730DF8BC871} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FE69C007-C452-4d3e-86D2-1730DF8BC871}\ deleted successfully.
C:\Program Files\SimilarSites\SimilarSites.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\SearchScopes\{56266BEF-F680-45EB-BFCC-85B50F2183D9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{56266BEF-F680-45EB-BFCC-85B50F2183D9}\ not found.
Registry key HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\SearchScopes\{92B97DE2-BF29-479E-B163-6F6D1365268F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{92B97DE2-BF29-479E-B163-6F6D1365268F}\ not found.
Registry key HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\SearchScopes\{searchTerms}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{searchTerms}\ not found.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "chr-greentree_ff&type=971163&ilc=12" removed from browser.search.param.yahoo-fr
Prefs.js: "ICQ Search" removed from browser.search.selectedEngine
Prefs.js: false removed from browser.search.useDBForOrder
Prefs.js: fbskiny%40firefox:1.0 removed from extensions.enabledAddons
Prefs.js: %7B23fcfd51-4958-4f00-80a3-ae97e717ed8b%7D:2.1.2.145 removed from extensions.enabledAddons
Prefs.js: %7BE71B541F-5E72-5555-A47C-E47863195841%7D:1.0.28 removed from extensions.enabledAddons
Prefs.js: %7B800b5000-a755-47e1-992b-48a1c1357f07%7D:1.5.3 removed from extensions.enabledAddons
Prefs.js: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1 removed from extensions.enabledAddons
Prefs.js: ffxtlbr@babylon.com:1.2.0 removed from extensions.enabledItems
Prefs.js: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145 removed from extensions.enabledItems
Prefs.js: fbskiny@firefox:1.0 removed from extensions.enabledItems
Prefs.js: {203FB6B2-2E1E-4474-863B-4C483ECCE78E}:1.0.1 removed from extensions.enabledItems
Prefs.js: wtxpcom@mybrowserbar.com:6.5 removed from extensions.enabledItems
Prefs.js: pdfforge@mybrowserbar.com:6.5 removed from extensions.enabledItems
Prefs.js: "http://search.icq.com/search/afe_result ... r=1.5.3&q=" removed from keyword.URL
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\META-INF folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\defaults\preferences folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\defaults folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\components folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome\locale\zh-CN folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome\locale\en-US folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome\locale folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome\content folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\components folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\searchbar folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\options folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\weatherbutton\panels\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\weatherbutton\panels folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\weatherbutton\icons folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\weatherbutton folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\uwa folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\radio\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\radio\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\radio folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\default\scripts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\default\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\default\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\default folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\debugbar folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\locale\toolbar folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\locale\lib folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\locale folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\data\weather folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\data\search folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\data\rss folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\data\dynamicElements folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\data folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\scripts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\js folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2 folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\skin\scripts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\skin\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\skin\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\js folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.RadioBeta folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\js folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\skin\scripts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\skin\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\skin\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\js folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\newtab\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\newtab folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\modules folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\lib folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844} folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome\skin\classic folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome\locale\en-US folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome\locale folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome\content folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841} folder moved successfully.
C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX\defaults\preferences folder moved successfully.
C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX\defaults folder moved successfully.
C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX\chrome\content folder moved successfully.
C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX\chrome folder moved successfully.
C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX folder moved successfully.
C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll moved successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{91397D20-1446-11D4-8AF4-0040CA1127B6} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{91397D20-1446-11D4-8AF4-0040CA1127B6}\ deleted successfully.
C:\Program Files\Yandex\YandexBarIE\yndbar.dll moved successfully.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{91397D20-1446-11D4-8AF4-0040CA1127B6} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{91397D20-1446-11D4-8AF4-0040CA1127B6}\ not found.
File C:\Program Files\Yandex\YandexBarIE\yndbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{30CEEEA2-3742-40E4-85DD-812BF1CBB83D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30CEEEA2-3742-40E4-85DD-812BF1CBB83D}\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{91397D20-1446-11D4-8AF4-0040CA1127B6} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{91397D20-1446-11D4-8AF4-0040CA1127B6}\ not found.
File C:\Program Files\Yandex\YandexBarIE\yndbar.dll not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\WINDOWS\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\AskToolbar\APNU folder moved successfully.
C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\AskToolbar folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP101.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP11F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP13C.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP14B.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP150.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP157.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP15C.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP198.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1A4.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1DE.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1E1.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1F5.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP207.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP22.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP22D.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP252.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP28.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP281.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2EF.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3C4.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3D3.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4C0.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4DF.tmp\WindowsBase.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4DF.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4F9.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP52.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPA0.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPEC.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI20C.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA6.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB1.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt10.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt11.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt12.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt13.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt14.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt15.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt16.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt17.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt18.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt19.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1A.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1B.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1C.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1D.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1E.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1F.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt20.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt21.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt22.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt23.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt24.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt25.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt26.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt27.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt28.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt29.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt2B.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt2E.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt40.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt43.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt5.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt55.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt56.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt6.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt7.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt8.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt9.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtA.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtB.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtC.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtC8.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtD.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtE.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtF.tmp deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1 deleted successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 12242012_115431
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
========== COMMANDS ==========
[EMPTYTEMP]
User: 380
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: uzivatel
->Temp folder emptied: 10842508 bytes
->Temporary Internet Files folder emptied: 37571 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 94937441 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 962 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 32558 bytes
Total Files Cleaned = 101,00 mb
[EMPTYFLASH]
User: 380
User: Administrator
->Flash cache emptied: 0 bytes
User: All Users
User: Default User
->Flash cache emptied: 0 bytes
User: LocalService
User: NetworkService
User: uzivatel
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{FE69C007-C452-4d3e-86D2-1730DF8BC871} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FE69C007-C452-4d3e-86D2-1730DF8BC871}\ deleted successfully.
C:\Program Files\SimilarSites\SimilarSites.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\SearchScopes\{56266BEF-F680-45EB-BFCC-85B50F2183D9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{56266BEF-F680-45EB-BFCC-85B50F2183D9}\ not found.
Registry key HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\SearchScopes\{92B97DE2-BF29-479E-B163-6F6D1365268F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{92B97DE2-BF29-479E-B163-6F6D1365268F}\ not found.
Registry key HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\SearchScopes\{searchTerms}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{searchTerms}\ not found.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "chr-greentree_ff&type=971163&ilc=12" removed from browser.search.param.yahoo-fr
Prefs.js: "ICQ Search" removed from browser.search.selectedEngine
Prefs.js: false removed from browser.search.useDBForOrder
Prefs.js: fbskiny%40firefox:1.0 removed from extensions.enabledAddons
Prefs.js: %7B23fcfd51-4958-4f00-80a3-ae97e717ed8b%7D:2.1.2.145 removed from extensions.enabledAddons
Prefs.js: %7BE71B541F-5E72-5555-A47C-E47863195841%7D:1.0.28 removed from extensions.enabledAddons
Prefs.js: %7B800b5000-a755-47e1-992b-48a1c1357f07%7D:1.5.3 removed from extensions.enabledAddons
Prefs.js: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1 removed from extensions.enabledAddons
Prefs.js: ffxtlbr@babylon.com:1.2.0 removed from extensions.enabledItems
Prefs.js: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.145 removed from extensions.enabledItems
Prefs.js: fbskiny@firefox:1.0 removed from extensions.enabledItems
Prefs.js: {203FB6B2-2E1E-4474-863B-4C483ECCE78E}:1.0.1 removed from extensions.enabledItems
Prefs.js: wtxpcom@mybrowserbar.com:6.5 removed from extensions.enabledItems
Prefs.js: pdfforge@mybrowserbar.com:6.5 removed from extensions.enabledItems
Prefs.js: "http://search.icq.com/search/afe_result ... r=1.5.3&q=" removed from keyword.URL
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\META-INF folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\defaults\preferences folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\defaults folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\components folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome\locale\zh-CN folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome\locale\en-US folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome\locale folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome\content folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\chrome folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\components folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\searchbar folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\options folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\weatherbutton\panels\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\weatherbutton\panels folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\weatherbutton\icons folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\weatherbutton folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\uwa folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\radio\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\radio\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\radio folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\default\scripts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\default\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\default\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\default folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\panels folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib\debugbar folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin\lib folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\locale\toolbar folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\locale\lib folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\locale folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\data\weather folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\data\search folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\data\rss folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\data\dynamicElements folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\data folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\scripts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\js folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.YouTube_v2 folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\skin\scripts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\skin\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\skin\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\js folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.WebTV folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.RadioBeta folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\js folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.MyStartFacebook folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\skin\scripts folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\skin\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\skin\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\js folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate\css folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets\net.vmn.www.Bizrate folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\widgets folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\newtab\images folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\newtab folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\modules folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content\lib folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome\content folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}\chrome folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844} folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome\skin\classic folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome\skin folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome\locale\en-US folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome\locale folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome\content folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}\chrome folder moved successfully.
C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\lfa5ol5w.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841} folder moved successfully.
C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX\defaults\preferences folder moved successfully.
C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX\defaults folder moved successfully.
C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX\chrome\content folder moved successfully.
C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX\chrome folder moved successfully.
C:\PROGRAM FILES\FBSKINY.COM\FBSKINY@FIREFOX folder moved successfully.
C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll moved successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{91397D20-1446-11D4-8AF4-0040CA1127B6} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{91397D20-1446-11D4-8AF4-0040CA1127B6}\ deleted successfully.
C:\Program Files\Yandex\YandexBarIE\yndbar.dll moved successfully.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{91397D20-1446-11D4-8AF4-0040CA1127B6} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{91397D20-1446-11D4-8AF4-0040CA1127B6}\ not found.
File C:\Program Files\Yandex\YandexBarIE\yndbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{30CEEEA2-3742-40E4-85DD-812BF1CBB83D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30CEEEA2-3742-40E4-85DD-812BF1CBB83D}\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2096127116-1238224839-3554051525-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{91397D20-1446-11D4-8AF4-0040CA1127B6} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{91397D20-1446-11D4-8AF4-0040CA1127B6}\ not found.
File C:\Program Files\Yandex\YandexBarIE\yndbar.dll not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\WINDOWS\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\AskToolbar\APNU folder moved successfully.
C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\AskToolbar folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP101.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP11F.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP13C.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP14B.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP150.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP157.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP15C.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP198.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1A4.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1DE.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1E1.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1F5.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP207.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP22.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP22D.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP252.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP28.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP281.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2EF.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3C4.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3D3.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4C0.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4DF.tmp\WindowsBase.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4DF.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4F9.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP52.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPA0.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPEC.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI20C.tmp deleted successfully.
C:\WINDOWS\Installer\MSIA6.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB1.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt10.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt11.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt12.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt13.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt14.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt15.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt16.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt17.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt18.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt19.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1A.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1B.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1C.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1D.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1E.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt1F.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt20.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt21.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt22.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt23.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt24.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt25.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt26.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt27.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt28.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt29.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt2B.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt2E.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt40.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt43.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt5.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt55.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt56.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt6.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt7.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt8.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wt9.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtA.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtB.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtC.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtC8.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtD.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtE.tmp deleted successfully.
C:\WINDOWS\system32\config\systemprofile\Data aplikací\Application Updater\temp\~wtF.tmp deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1 deleted successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 12242012_115431
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: vir na skypu icq
Napsal: 24 pro 2012 12:02
Pokud nemate, zazalohujte si dulezita data (fotky, dokumenty, atd.) Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc! Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte ComboFix.
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace Kdyz windows nabehne, ale pri spousteni programu bude hlasena chyba, staci restartovat pc a bude to v poradkuRe: vir na skypu icq
Napsal: 24 pro 2012 14:44
a jak si to mám zazálohovat ?
Re: vir na skypu icq
Napsal: 24 pro 2012 14:53
Na flashku, cd, dvd, externi disk, internetove uloziste, kamkoliv. Jako na 99,9999% se nic nestane, ale u pc nikdy nevis.
Zalohovat by se melo pravidelne i bez pouziti ComboFixu
Ale klidne zalohovani preskoc, volba je na tobe. Varovana jsi byla
Zalohovat by se melo pravidelne i bez pouziti ComboFixu
Ale klidne zalohovani preskoc, volba je na tobe. Varovana jsi byla