VIRY.CZ

[2010.09.17 10:39:10 | 000,012,976 | ---- | M] () -- \Program Files\Trend Micro\Titanium\UI\MiniBrowser.cmpt\resources\loader.js
[2010.09.17 10:39:10 | 000,000,608 | ---- | M] () -- \Program Files\Trend Micro\Titanium\UI\MiniBrowser.cmpt\resources\en-us.lproj\loader.html
[2010.09.17 10:32:56 | 000,024,160 | ---- | M] () -- \Program Files\Trend Micro\Titanium\UIFramework\utilGenericLoader.dll
[2010.09.17 10:39:10 | 000,012,976 | ---- | M] () -- \Program Files\Trend Micro\Titanium\www\MiniBrowser.cmpt\resources\loader.js
[2010.09.17 10:39:10 | 000,000,608 | ---- | M] () -- \Program Files\Trend Micro\Titanium\www\MiniBrowser.cmpt\resources\en-us.lproj\loader.html
[2012.12.04 18:00:50 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012.12.04 18:00:50 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012.12.04 18:00:50 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2013.01.18 00:09:38 | 000,079,307 | ---- | M] () -- \ProgramData\TmForever\Cache\1AE8967790095B09969805FC28B2A158_racing4all.com%5cBilder%5cLoader%5cLoader0002.zip
[2013.01.18 00:09:41 | 000,000,050 | ---- | M] () -- \ProgramData\TmForever\Cache\1AE8967790095B09969805FC28B2A158_racing4all.com%5cBilder%5cLoader%5cLoader0002.zip.loc
[2012.12.04 18:00:50 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012.12.04 18:00:50 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012.12.04 18:00:50 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013.01.18 00:09:38 | 000,079,307 | ---- | M] () -- \Users\All Users\TmForever\Cache\1AE8967790095B09969805FC28B2A158_racing4all.com%5cBilder%5cLoader%5cLoader0002.zip
[2013.01.18 00:09:41 | 000,000,050 | ---- | M] () -- \Users\All Users\TmForever\Cache\1AE8967790095B09969805FC28B2A158_racing4all.com%5cBilder%5cLoader%5cLoader0002.zip.loc
[2013.04.11 20:35:08 | 000,002,082 | ---- | M] () -- \Users\Máma\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.13.20.29_0\js\pluginLoader.js
[2013.04.11 20:34:44 | 000,000,847 | ---- | M] () -- \Users\Máma\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.13.20.29_0\tb\al\ac\img\ajax-loader.gif
[2013.04.11 20:34:45 | 000,001,135 | ---- | M] () -- \Users\Máma\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.13.20.29_0\tb\al\ac\img\loader-icon.png
[2013.04.11 20:34:37 | 000,003,208 | ---- | M] () -- \Users\Máma\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.13.20.29_0\tb\al\ui\gf\img\loader.gif
[2013.04.11 20:33:58 | 000,001,849 | ---- | M] () -- \Users\Máma\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.13.20.29_0\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2013.01.21 09:45:38 | 000,013,317 | ---- | M] () -- \Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj\15_0\images\1024\page\loader-logo.png
[2013.02.25 11:42:45 | 000,000,275 | ---- | M] () -- \Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\V6HSV3K4\raketka.cz\data\raketka.cz\games\2542.swf\truckloader4.sol
[2012.09.05 19:38:29 | 000,061,727 | ---- | M] () -- \Users\Martin\AppData\Roaming\.techniclauncher\tekkit\ForgeModLoader-0.log
[2012.08.12 14:55:08 | 000,001,980 | ---- | M] () -- \Users\Martin\AppData\Roaming\.techniclauncher\tekkit\mods\ComputerCraft\org\luaj\vm2\luajc\JavaLoader.class
[2012.08.12 14:59:16 | 000,004,966 | ---- | M] () -- \Users\Martin\AppData\Roaming\.techniclauncher\voxelmodpack\ModLoader.txt
[2012.08.12 14:59:10 | 000,000,250 | ---- | M] () -- \Users\Martin\AppData\Roaming\.techniclauncher\voxelmodpack\config\ModLoader.cfg
[2012.08.12 14:57:36 | 000,000,833 | ---- | M] () -- \Users\Martin\AppData\Roaming\.techniclauncher\yogbox\config\ModLoader.cfg
[2012.08.12 14:57:30 | 000,000,047 | ---- | M] () -- \Users\Martin\AppData\Roaming\.techniclauncher\yogbox\config\mod_ModLoaderMp.cfg
[2012.08.30 09:21:26 | 002,198,976 | ---- | M] () -- \Users\Martin\AppData\Roaming\Kalydo\KalydoPlayer\bin2\kalydoloader.exe
[2012.11.19 23:15:42 | 000,000,847 | ---- | M] () -- \Users\Martin\AppData\Roaming\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\chrome\CT3220468\content\tb\al\ac\img\ajax-loader.gif
[2012.11.19 23:15:42 | 000,001,135 | ---- | M] () -- \Users\Martin\AppData\Roaming\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\chrome\CT3220468\content\tb\al\ac\img\loader-icon.png
[2012.11.19 23:15:42 | 000,003,208 | ---- | M] () -- \Users\Martin\AppData\Roaming\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\chrome\CT3220468\content\tb\al\ui\gf\img\loader.gif
[2012.11.19 23:15:42 | 000,001,849 | ---- | M] () -- \Users\Martin\AppData\Roaming\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\chrome\CT3220468\content\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2013.03.26 20:57:16 | 000,004,361 | ---- | M] () -- \Users\Týna\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.15.0.562_0\js\chromeBackstageLoader.js
[2013.03.26 20:57:17 | 000,003,100 | ---- | M] () -- \Users\Týna\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.15.0.562_0\js\pluginLoader.js
[2013.03.26 20:57:09 | 000,000,847 | ---- | M] () -- \Users\Týna\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.15.0.562_0\tb\al\ac\img\ajax-loader.gif
[2013.03.26 20:57:09 | 000,001,135 | ---- | M] () -- \Users\Týna\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.15.0.562_0\tb\al\ac\img\loader-icon.png
[2013.03.26 20:57:03 | 000,003,208 | ---- | M] () -- \Users\Týna\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.15.0.562_0\tb\al\ui\gf\img\loader.gif
[2013.03.26 20:56:48 | 000,001,849 | ---- | M] () -- \Users\Týna\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda\10.15.0.562_0\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2012.11.30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 06:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2011.02.16 19:01:45 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2011.02.16 19:01:45 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2011.02.16 19:01:45 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2011.02.11 13:11:06 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2011.02.11 13:11:06 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winload.exe_75835076
[2011.02.11 13:11:06 | 000,442,720 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winresume.exe_85cd1215
[2009.07.14 04:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 04:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2011.02.16 19:00:29 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 03:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2010.11.20 15:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009.07.14 03:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:22:35 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16816_none_0ad4ff55dce9d030\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.02 07:45:50 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16823_none_0ac72e8bdcf4a01c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:19:58 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.18 13:09:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17107_none_0ae0ab79dce0fb26\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:45:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:56:23 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:43:53 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_0adfad15dce1def6\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:50:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.20978_none_0b1fbd2cf6364a4e\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:12:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:42:56 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21306_none_0b6949e0f5ff7ec0\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:48:05 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:39:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_0b5e7bdaf60797d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:13:36 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_0cbc5ca5da0f5573\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:47:28 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17625_none_0caf8c25da193eb6\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 09:15:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_0d3c29cef3342a85\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 08:56:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21738_none_0d3159e2f33c4676\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll

========== Files - Unicode (All) ==========
[2013.04.11 20:29:41 | 000,000,059 | ---- | M] ()(C:\windows\System32\??) -- C:\windows\System32\Ȍ
[2013.04.11 20:29:41 | 000,000,059 | ---- | C] ()(C:\windows\System32\??) -- C:\windows\System32\Ȍ
[2012.09.05 18:29:51 | 000,000,059 | ---- | M] ()(C:\windows\System32\?ü) -- C:\windows\System32\ü
[2012.09.05 18:29:51 | 000,000,059 | ---- | C] ()(C:\windows\System32\?ü) -- C:\windows\System32\ü

========== Alternate Data Streams ==========

@Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:AB689DEA

< End of report >

OTL Extras logfile created on: 12.4.2013 20:49:38 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Máma\Desktop
Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

749,46 Mb Total Physical Memory | 164,08 Mb Available Physical Memory | 21,89% Memory free
1,73 Gb Paging File | 0,70 Gb Available in Paging File | 40,21% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 100,00 Gb Total Space | 63,59 Gb Free Space | 63,59% Space Free | Partition Type: NTFS
Drive D: | 183,07 Gb Total Space | 23,19 Gb Free Space | 12,67% Space Free | Partition Type: NTFS
Drive E: | 3,77 Gb Total Space | 3,46 Gb Free Space | 91,86% Space Free | Partition Type: FAT32

Computer Name: TYNA-PC | User Name: Máma | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)

[HKEY_USERS\S-1-5-21-976265568-3136085713-4227130884-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2DFA72A9-5373-4535-9B48-8E1F3CB36768}" = lport=8182 | protocol=6 | dir=in | name=java(tm) platform se binary |
"{450450EE-F1BD-4521-8528-8A6CF4332990}" = lport=5353 | protocol=17 | dir=in | name=java(tm) platform se binary |
"{7173D935-044A-462B-BEDC-BA3FD6A4DA68}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{E5DCA241-722C-4B3D-A608-C7408245F38F}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04227150-4AA0-4DCF-A68B-8DC203202368}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"{14357836-3E68-4E30-8371-A601FDAF696F}" = protocol=6 | dir=in | app=c:\windows\system32\msiexec.exe |
"{1AC2836E-DE02-4733-B2FF-CB5A9938DA80}" = protocol=6 | dir=in | app=d:\utorrent.exe |
"{305F1EAF-897E-4EB7-BADB-DBA9B0FBFD59}" = protocol=6 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe |
"{30C84CDC-58EA-4AD8-9547-D9D4278F1FAB}" = protocol=17 | dir=in | app=d:\utorrent.exe |
"{35F37BB5-21F7-4DD6-807C-9FB77D5EAC14}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{5BE55242-790C-46FC-A6D9-A0E8619B0BB1}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{6796BE35-4393-4874-9B20-2C640027EB2B}" = protocol=17 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe |
"{69C2E347-68A3-4EEC-8608-D950B734A5C7}" = protocol=6 | dir=in | app=c:\program files\expressfiles\expressfiles.exe |
"{7BFE0D81-2358-483E-96C1-7DE20962BAF1}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{7D2D812E-0AEB-420F-822A-AAE84CC245D4}" = protocol=17 | dir=in | app=c:\program files\expressfiles\expressdl.exe |
"{9040C12F-22D9-486D-AF95-E9D1DAF08E2E}" = protocol=17 | dir=in | app=c:\windows\system32\msiexec.exe |
"{931132B3-8F85-403B-9292-3BFC4BC1F790}" = protocol=6 | dir=in | app=c:\program files\expressfiles\expressdl.exe |
"{AAC7A407-A354-4BCD-9328-6CCE9F8EDC1E}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{B6B10433-A8AF-4161-848D-49C31D1A5FC8}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BDA4CAD4-E17D-476B-ABB3-C5E2B4B8DA6B}" = protocol=6 | dir=in | app=d:\martínek\steam\steam.exe |
"{EE5A3BAA-77FE-4BBF-9BE1-37881B674EA2}" = protocol=17 | dir=in | app=c:\program files\expressfiles\expressfiles.exe |
"{FAD43DD9-D1AF-4051-B021-C004AAB595E7}" = protocol=17 | dir=in | app=d:\martínek\steam\steam.exe |
"TCP Query User{280DB709-AF80-4EB6-8B02-D861F1CB837F}D:\nová složka\counter-strike 1.6 standalone\launcher.exe" = protocol=6 | dir=in | app=d:\nová složka\counter-strike 1.6 standalone\launcher.exe |
"TCP Query User{32B6902E-576D-4A79-92B1-F7803F33F243}D:\trackmania 2\maniaplanet.exe" = protocol=6 | dir=in | app=d:\trackmania 2\maniaplanet.exe |
"TCP Query User{337388A5-E0EC-4DDF-B0E3-5341F3E3020E}D:\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=d:\tmnationsforever\tmforever.exe |
"TCP Query User{6B54DAA4-F2A2-403D-904B-B04BA4353BA8}D:\martínek\counter strike 1.6\csko.exe" = protocol=6 | dir=in | app=d:\martínek\counter strike 1.6\csko.exe |
"TCP Query User{952C4075-7DFF-4ACB-A769-8296066B7990}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=6 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe |
"TCP Query User{99C0997C-1485-4C38-8881-CAD4AF49DB46}C:\program files\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"TCP Query User{A42601D2-526B-402A-974B-20CFF1162305}D:\tmnationsforever\tmforever.exe" = protocol=6 | dir=in | app=d:\tmnationsforever\tmforever.exe |
"TCP Query User{CBD83866-D432-4EF4-A826-2EC677B040EF}D:\audiosurf\engine\questviewer.exe" = protocol=6 | dir=in | app=d:\audiosurf\engine\questviewer.exe |
"UDP Query User{03A4D9CE-A552-47E8-9411-06A329E43314}D:\trackmania 2\maniaplanet.exe" = protocol=17 | dir=in | app=d:\trackmania 2\maniaplanet.exe |
"UDP Query User{34FB3BBB-5AE9-434D-BD77-9CCFC1A4C7AC}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=17 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe |
"UDP Query User{8340570D-E77D-400B-9D38-8DF32A3411D2}C:\program files\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"UDP Query User{86570762-05D2-44E0-BA03-E4CA6895E1A7}D:\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=d:\tmnationsforever\tmforever.exe |
"UDP Query User{A6342375-C8DC-421A-B74F-5A32619B2969}D:\audiosurf\engine\questviewer.exe" = protocol=17 | dir=in | app=d:\audiosurf\engine\questviewer.exe |
"UDP Query User{BD9B0757-DB2E-4AC7-A399-49637FF48A59}D:\nová složka\counter-strike 1.6 standalone\launcher.exe" = protocol=17 | dir=in | app=d:\nová složka\counter-strike 1.6 standalone\launcher.exe |
"UDP Query User{ED50DBF9-4FC6-44BA-AE12-16F24362EEDA}D:\tmnationsforever\tmforever.exe" = protocol=17 | dir=in | app=d:\tmnationsforever\tmforever.exe |
"UDP Query User{F283D989-2EFD-4EBD-8A24-9E789E46DBD4}D:\martínek\counter strike 1.6\csko.exe" = protocol=17 | dir=in | app=d:\martínek\counter strike 1.6\csko.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0557414B-8017-3BC8-171D-C5E3FDE44506}" = AMD VISION Engine Control Center
"{05ACC42B-0C84-283A-9A92-043210380609}" = CCC Help French
"{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common
"{0891B708-EF3F-4D7E-9724-265245F46276}" = Windows Live Remote Service Resources
"{09922FFE-D153-44AE-8B60-EA3CB8088F93}" = Windows Live UX Platform Language Pack
"{0ABBF310-94E4-4AE8-A6BD-10345A3F6439}" = Google Drive
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0C1931EB-8339-4837-8BEC-75029BF42734}" = Windows Live UX Platform Language Pack
"{11778DA1-0495-4ED9-972F-F9E0B0367CD5}" = Windows Live Writer
"{11F26C09-3821-46E5-8351-612BE5953F22}_is1" = Minecraft 1.2.5 with Technic Pack [FEarBG] version 1
"{17504ED4-DB08-40A8-81C2-27D8C01581DA}" = Windows Live Remote Service Resources
"{17780F99-A9DF-450B-81B3-6781B20A17A8}" = FontResizer
"{185AFA7A-F63E-450B-94AA-011CAC18090E}" = E-Cam
"{192E2132-E977-4D3E-90BA-9DBCE1B57F8C}" = Heroes of Might and Magic® IV
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1C0B235C-CB45-6807-CAF5-B40FF412B9B5}" = CCC Help Spanish
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}" = Bing Bar
"{1E225F69-700D-8AD8-D1EF-857B8172C70D}" = CCC Help Turkish
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FC83EAE-74C8-4C72-8400-2D8E40A017DE}" = Windows Live Writer
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{201B5096-AF6E-423E-B987-023E040D9B42}" = Windows Live Remote Service Resources
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}" = Need for Speed™ Carbon
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 9
"{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2E518631-A849-37D5-5F0D-42EAF5A42E66}" = CCC Help Russian
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3301AFB0-5573-AD5B-97C7-7639BD14FB68}" = CCC Help Czech
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{341697D8-9923-445E-B42A-529E5A99CB7A}" = syncables desktop SE
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{35B73FA4-22CB-92D4-8E88-21E46348A42A}" = CCC Help Finnish
"{36B0DC39-3282-40EB-8587-B875CE46C3A7}" = ExpressGateCloud
"{38E5A3B1-ADF1-47E0-8024-76310A30EB36}" = LiveUpdate
"{3A9C618D-349F-AEF5-A7C8-7D3517CE00AD}" = CCC Help Dutch
"{3B8F4A89-57F3-4450-BA1A-BBECFE22D0D0}" = Windows Live Family Safety
"{3EB5ABE1-3FCB-61A6-9C44-144EBE160B68}" = CCC Help German
"{3F50AF3B-8997-4916-0095-99D63DDB785A}" = Harry Potter
"{41E4FA4B-9376-4C32-AA46-65FCC0087CD5}" = Windows Live Remote Service Resources
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}" = WIDCOMM Bluetooth Software
"{454F5782-A4C3-480E-A629-D435795DEFD8}" = Windows Live Remote Client Resources
"{4586C5D7-11E6-3A00-2109-5E4193A9E29E}" = CCC Help English
"{464B3406-A4D0-4914-910F-7CA4380DCC13}" = Windows Live Remote Client Resources
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{46DD5269-1B4F-9416-039E-9206D7901CBA}" = ATI Catalyst Install Manager
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B5092B6-F231-4D18-83BC-2618B729CA45}" = CapsHook
"{4B74F060-E2CF-AEEE-B742-A40FEDB72143}" = CCC Help Hungarian
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.1
"{4FCBCF89-1823-4D97-A6F2-0E8DD66E273A}" = Broadcom Wireless Network Adapter
"{5275D81E-83AD-4DE4-BC2B-6E6BA3A33244}" = Windows Live Writer Resources
"{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate for Eee PC
"{5E627606-53B9-42D1-97E1-D03F6229E248}" = Windows Live UX Platform Language Pack
"{60C3C026-DB53-4DAB-8B97-7C1241F9A847}" = Windows Live Movie Maker
"{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live
"{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{66AE4254-8D8F-55B8-7698-3C04188FF2B1}" = Catalyst Control Center Localization All
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{68BD912C-8874-4468-3BAF-A4CB17A1B995}" = Catalyst Control Center Profiles Mobile
"{690B304B-E52E-282C-A605-A856392DE6B8}" = CCC Help Chinese Standard
"{6ABE832B-A5C7-44C1-B697-3E123B7B4D5B}" = Windows Live Mesh
"{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}" = Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz
"{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71C0E38E-09F2-4386-9977-404D4F6640CD}" = Hotkey Service
"{7272F232-A7E0-4B2B-A5D2-71B7C5E2379C}" = Windows Live Fotótár
"{749F674B-2674-47E8-879C-5626A06B2A91}" = InstantOn
"{759142E8-25B0-42AE-B408-4215065D3F4B}" = Windows Live Family Safety
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{7A53F622-1DA9-4F08-8EDF-699FE319B2DB}" = CCC Help Korean
"{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live
"{7AB68B76-48BE-6C16-68E4-E0309E184484}" = CCC Help Greek
"{7CB529B2-6C74-4878-9C3F-C29C3C3BBDC6}" = Windows Live Writer Resources
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}" = Chicken Invaders 2
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{84267681-BF16-40B6-9564-27BC57D7D71C}" = Windows Live Photo Common
"{869779B9-C610-77B2-3251-A72BE6C70463}" = CCC Help Swedish
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.03
"{88A41A42-ADE1-4EB4-969A-D42CA36C7FEF}" = Catalyst Control Center - Branding
"{88F08F98-12BC-4613-81A2-8F9B88CFC73E}" = Super Hybrid Engine
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140000-006D-0405-0000-0000000FF1CE}" = Microsoft Office Klikni a spusť 2010
"{90140011-0066-0405-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - čeština
"{9115B806-D15E-70C9-C7ED-4A05F25952E4}" = CCC Help Thai
"{91D1305C-ECEB-4B43-9BC6-14D37C4AC695}" = Windows Live Family Safety
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria
"{99E77016-BCF2-48C8-9119-43ECF5815F65}" = AsusScreensaver
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A0D86B4A-D9EA-1A52-4A4B-50F896502566}" = Catalyst Control Center InstallProxy
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A3389C72-1782-4BB4-BBAA-33345DE52E3F}" = Windows Live Messenger
"{A4C16B19-10AA-4990-AA87-D14F653E3345}" = Windows Live Remote Client Resources
"{A7056D45-C63A-4FE4-A69D-FB54EF9B21BB}" = Windows Live Messenger
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAB46F6A-B28B-86C6-FBB2-106119949344}" = CCC Help Chinese Traditional
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}" = Trend Micro Titanium
"{ABBD4BA9-6703-40D2-AB1E-5BB1F7DB49A4}" = Trend Micro Titanium
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.1 MUI
"{AD001A69-88CC-4766-B2DB-3C1DFAB9AC72}" = Windows Live Mesh
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}" = Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B6BA4064-A529-8BAB-F725-4B73CE69FEC7}" = AMD Fuel
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B844661C-D51E-489E-977A-EC60A13C78E8}" = AMD Media Foundation Decoders
"{BCF16F16-AC0E-4ABE-A9EF-412CF484BA51}" = Windows Live Family Safety
"{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}" = Windows Live Mesh
"{C15BE721-60F3-A9FD-A1F9-0A85C2273BE9}" = CCC Help Norwegian
"{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}" = Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia
"{C30628D8-D3A0-4F23-90F0-F145808087B6}" = Windows Live Remote Client Resources
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C8421D85-CA0E-4E93-A9A9-B826C4FB88EA}" = Windows Live Mail
"{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}" = Galeria fotografii usługi Windows Live
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0A05794-48C2-4424-A15A-9F20FCFDD374}" = Call of Duty(R) 2
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D44AA979-47C2-4BC0-A860-09A54224EA44}_is1" = Game Park Console
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D801B39E-CE01-409F-8E7C-B7976EA3C9DC}_is1" = Audiosurf
"{D9A2994B-7DFC-5448-C315-60DB380BF338}" = CCC Help Danish
"{DA242151-E6EA-4BC4-1C95-5F42A04FB9AD}" = CCC Help Japanese
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DE38924D-F9B6-3F7B-7DA8-2743D8A084E5}" = ccc-utility
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DEDF8BAB-98D7-4CFA-9C42-27431EC4BD1F}" = Windows Live Remote Service Resources
"{DF353444-8655-AC33-0FE8-453E7FE7D78B}" = CCC Help Italian
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1629C45-9CEF-498E-83CD-D6A09CADA176}" = Windows Live Remote Client Resources
"{E55E0C35-AC3C-4683-BA2F-834348577B80}" = Windows Live Writer
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E8FD15B2-281E-44D8-9FD4-A6D6BEE46702}" = Windows Live Family Safety
"{E9AD2143-26D5-4201-BED1-19DCC03B407D}" = Windows Live Messenger
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2856FD0-4710-2DB9-9F52-4873E73B42FF}" = CCC Help Polish
"{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}" = Windows Live Messenger
"{F4678A65-9095-49E8-B5D9-31A9886C2840}" = Windows Live Family Safety
"{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}" = Windows Live Movie Maker
"{FA6CF94F-DACF-4FE7-959D-55C421B91B17}" = Windows Live Mail
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FC0E19F0-FF63-BB23-E04E-F667EDB4F700}" = CCC Help Portuguese
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FEEF7F78-5876-438B-B554-C4CC426A4302}" = Windows Live Essentials
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Asus Vibe2.0" = AsusVibe2.0
"ASUS WebStorage" = ASUS WebStorage
"CCleaner" = CCleaner
"Counter-Strike 1.6 Standalone" = Counter-Strike 1.6 Standalone
"DAEMON Tools Lite" = DAEMON Tools Lite
"Display Stix2.1.1" = Display Stix 2.1.1
"Eee Docking_is1" = Eee Docking 3.10.4
"Elantech" = ETDWare PS/2-x86 7.0.5.13_WHQL
"FilesFrog Update Checker" = FilesFrog Update Checker
"Fraps" = Fraps
"Google Chrome" = Google Chrome
"InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}" = FontResizer
"InstallShield_{192E2132-E977-4D3E-90BA-9DBCE1B57F8C}" = Heroes of Might and Magic® IV
"InstallShield_{36B0DC39-3282-40EB-8587-B875CE46C3A7}" = ExpressGateCloud
"InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}" = Call of Duty(R) 2
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"NosTale(CZ)_is1" = Nostale(CZ)
"Oceanis Change Background Windows 7_is1" = Oceanis Change Background Windows 7
"Office14.Click2Run" = Microsoft Office Klikni a spusť 2010
"Opera 12.11.1661" = Opera 12.11
"Steam App 440" = Team Fortress 2
"TmNationsForever_is1" = TmNationsForever
"uTorrentControl_v2 Toolbar" = uTorrentControl_v2 Toolbar
"VLC media player" = VLC media player 2.0.2
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.20 (32-bit)

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 26.2.2013 7:34:25 | Computer Name = Týna-PC | Source = CVHSVC | ID = 100
Description = Pouze informace (Patch task for {90140011-0066-0405-0000-0000000FF1CE}):
DownloadLatest Failed: Nelze rozpoznat název nebo adresu serveru.

Error - 26.2.2013 19:24:13 | Computer Name = Týna-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: iexplore.exe, verze: 9.0.8112.16464, časové
razítko: 0x50ec971b Název chybujícího modulu: skypeieplugin.dll, verze: 6.6.0.11664,
časové razítko: 0x510a49a1 Kód výjimky: 0xc0000005 Posun chyby: 0x00012ba7 ID chybujícího
procesu: 0x16c4 Čas spuštění chybující aplikace: 0x01ce146261e91023 Cesta k chybující
aplikaci: C:\Program Files\Internet Explorer\iexplore.exe Cesta k chybujícímu modulu:
C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll ID zprávy: a1312ea8-806b-11e2-ae31-0008ca2d10d7

Error - 27.2.2013 13:17:24 | Computer Name = Týna-PC | Source = Application Hang | ID = 1002
Description = Program iexplore.exe verze 9.0.8112.16464 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: 1b60 Čas spuštění: 01ce1509ccbcc0a3 Čas ukončení: 348 Cesta k aplikaci: C:\Program
Files\Internet Explorer\iexplore.exe ID hlášení:

Error - 28.2.2013 4:52:39 | Computer Name = Týna-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_LanmanServer, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: unknown, verze: 0.0.0.0, časové
razítko: 0x00000000 Kód výjimky: 0xc0000005 Posun chyby: 0x00000000 ID chybujícího
procesu: 0x420 Čas spuštění chybující aplikace: 0x01ce1590e697f948 Cesta k chybující
aplikaci: C:\windows\system32\svchost.exe Cesta k chybujícímu modulu: unknown ID
zprávy: 3462375d-8184-11e2-89fa-0008ca2d10d7

Error - 3.3.2013 13:30:47 | Computer Name = Týna-PC | Source = Application Hang | ID = 1002
Description = Program iexplore.exe verze 9.0.8112.16464 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: b30 Čas spuštění: 01ce182d03415368 Čas ukončení: 560 Cesta k aplikaci: C:\Program
Files\Internet Explorer\iexplore.exe ID hlášení:

Error - 5.3.2013 7:22:45 | Computer Name = Týna-PC | Source = Application Hang | ID = 1002
Description = Program TmForever.exe verze 0.0.0.0 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
17b0 Čas spuštění: 01ce198b11039343 Čas ukončení: 203 Cesta k aplikaci: D:\TmNationsForever\TmForever.exe

ID
hlášení:

Error - 6.3.2013 10:17:14 | Computer Name = Týna-PC | Source = Application Hang | ID = 1002
Description = Program iexplore.exe verze 9.0.8112.16464 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: 4d4 Čas spuštění: 01ce1a70a4328b6a Čas ukončení: 937 Cesta k aplikaci: C:\Program
Files\Internet Explorer\iexplore.exe ID hlášení:

Error - 6.3.2013 16:22:26 | Computer Name = Týna-PC | Source = Application Hang | ID = 1002
Description = Program iexplore.exe verze 9.0.8112.16464 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: c70 Čas spuštění: 01ce1aa09ed24bf7 Čas ukončení: 2141 Cesta k aplikaci: C:\Program
Files\Internet Explorer\iexplore.exe ID hlášení:

Error - 7.3.2013 11:16:28 | Computer Name = Týna-PC | Source = Application Hang | ID = 1002
Description = Program iexplore.exe verze 9.0.8112.16464 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: 178 Čas spuštění: 01ce1b3d0b712f13 Čas ukončení: 920 Cesta k aplikaci: C:\Program
Files\Internet Explorer\iexplore.exe ID hlášení: f1a35f9a-8739-11e2-98b6-0008ca2d10d7


Error - 7.3.2013 13:36:12 | Computer Name = Týna-PC | Source = Application Hang | ID = 1002
Description = Program iexplore.exe verze 9.0.8112.16464 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: 15fc Čas spuštění: 01ce1b51c295febe Čas ukončení: 3291 Cesta k aplikaci:
C:\Program Files\Internet Explorer\iexplore.exe ID hlášení:

Error - 7.3.2013 14:34:15 | Computer Name = Týna-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: iexplore.exe, verze: 9.0.8112.16464, časové
razítko: 0x50ec971b Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko:
0x00000000 Kód výjimky: 0xc0000005 Posun chyby: 0x00000000 ID chybujícího procesu:
0x20f4 Čas spuštění chybující aplikace: 0x01ce1b620ddcb78b Cesta k chybující aplikaci:
C:\Program Files\Internet Explorer\iexplore.exe Cesta k chybujícímu modulu: unknown
ID
zprávy: 9c8dcb94-8755-11e2-98b6-0008ca2d10d7

[ System Events ]
Error - 11.4.2013 14:27:36 | Computer Name = Týna-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (20:25:23, ?11.?4.?2013) bylo neočekávané.

Error - 11.4.2013 14:27:54 | Computer Name = Týna-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: cdrom sfdrv01 sfvfs02

Error - 11.4.2013 14:30:52 | Computer Name = Týna-PC | Source = DCOM | ID = 10010
Description =

Error - 11.4.2013 14:31:34 | Computer Name = Týna-PC | Source = Application Popup | ID = 875
Description = Načtení ovladače sfvfs02.sys je blokováno.

Error - 11.4.2013 14:31:34 | Computer Name = Týna-PC | Source = Application Popup | ID = 875
Description = Načtení ovladače sfdrv01.sys je blokováno.

Error - 11.4.2013 14:32:11 | Computer Name = Týna-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: cdrom sfdrv01 sfvfs02

Error - 11.4.2013 15:27:11 | Computer Name = Týna-PC | Source = Service Control Manager | ID = 7034
Description = Služba Skype C2C Service byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 11.4.2013 15:34:41 | Computer Name = Týna-PC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 11.4.2013 15:51:42 | Computer Name = Týna-PC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 11.4.2013 16:14:42 | Computer Name = Týna-PC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.


< End of report >

Spustte znovu OTL

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  :otl
  DRV - File not found [Kernel | On_Demand | Unknown] -- C:\ComboFix\mbr.sys -- (mbr)
  DRV - File not found [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
  DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Users\MMA~1\AppData\Local\Temp\catchme.sys -- (catchme)
  IE - HKLM\..\URLSearchHook: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
  IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
  IE - HKU\S-1-5-21-976265568-3136085713-4227130884-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com [binary data]
  IE - HKU\S-1-5-21-976265568-3136085713-4227130884-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
  IE - HKU\S-1-5-21-976265568-3136085713-4227130884-1003\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  IE - HKU\S-1-5-21-976265568-3136085713-4227130884-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
  O2 - BHO: (Complitly) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Martin\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
  O2 - BHO: (uTorrentControl_v2 Toolbar) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
  O3 - HKLM\..\Toolbar: (uTorrentControl_v2 Toolbar) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
  O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
  O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  [2013.04.11 21:17:56 | 001,752,992 | ---- | M] (Bleeping Computer, LLC) -- C:\Users\Máma\Desktop\WiNlOgOn.exe
  [2013.04.11 21:16:28 | 001,752,992 | ---- | M] (Bleeping Computer, LLC) -- C:\Users\Máma\Desktop\uSeRiNiT.exe
  [2013.04.11 21:16:22 | 001,752,992 | ---- | M] (Bleeping Computer, LLC) -- C:\Users\Máma\Desktop\iExplore.exe
  [2013.04.11 21:16:16 | 001,752,992 | ---- | M] (Bleeping Computer, LLC) -- C:\Users\Máma\Desktop\rkill.exe
  [2013.04.11 21:15:42 | 001,752,992 | ---- | M] (Bleeping Computer, LLC) -- C:\Users\Máma\Desktop\rkill.com
  [2013.04.11 19:36:47 | 000,002,584 | ---- | M] () -- C:\ProgramData\f8oa.js
  [2012.09.16 13:09:03 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\OpenCandy
  [2012.09.16 13:09:03 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\OpenCandy
  [11 C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
  [1 C:\windows\System32\config\systemprofile\AppData\Local\SoftGrid Client\140066.CSY-90140011-66-405\*.tmp files -> C:\windows\System32\config\systemprofile\AppData\Local\SoftGrid Client\140066.CSY-90140011-66-405\*.tmp -> ]
  [2013.04.12 22:16:02 | 000,000,914 | ---- | M] () -- C:\windows\Tasks\Adobe Flash Player Updater.job
  [2013.04.12 20:49:21 | 000,000,936 | ---- | M] () -- C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
  [2013.04.12 22:34:06 | 000,000,940 | ---- | M] () -- C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
  
  :reg
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  "Adobe Reader Speed Launcher"=-
  "SunJavaUpdateSched"=-
  
  :files
  %windir%\system32\*.tmp.dll /s
  %windir%\system32\SET*.tmp /s
  %windir%\*.tmp
  
  :commands
  [RESETHOSTS]
  [EMPTYTEMP]
  [EMPTYFLASH]
  [EMPTYJAVA]

• Nasledne kliknete na Opravit
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Počítač makal, restartoval dle výše popsaného, ale log mi tedy opravdu nedal. Co dál??

Tak jsem to zkusila ještě jednou a tentokrát mi to log vyplivlo, tady je:

All processes killed
========== OTL ==========
Error: No service named mbr was found to stop!
Service\Driver key mbr not found.
File C:\ComboFix\mbr.sys not found.
Error: No service named EagleXNt was found to stop!
Service\Driver key EagleXNt not found.
File C:\windows\system32\drivers\EagleXNt.sys not found.
Error: No service named catchme was found to stop!
Service\Driver key catchme not found.
File C:\Users\MMA~1\AppData\Local\Temp\catchme.sys not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{7473b6bd-4691-4744-a82b-7854eb3d70b6} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\ not found.
File C:\Program Files\uTorrentControl_v2\prxtbuTor.dll not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKU\S-1-5-21-976265568-3136085713-4227130884-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully!
HKU\S-1-5-21-976265568-3136085713-4227130884-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_USERS\S-1-5-21-976265568-3136085713-4227130884-1003\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-976265568-3136085713-4227130884-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}\ not found.
File C:\Users\Martin\AppData\Roaming\Complitly\Complitly.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\ not found.
File C:\Program Files\uTorrentControl_v2\prxtbuTor.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{7473b6bd-4691-4744-a82b-7854eb3d70b6} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\ not found.
File C:\Program Files\uTorrentControl_v2\prxtbuTor.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
File C:\Users\Máma\Desktop\WiNlOgOn.exe not found.
File C:\Users\Máma\Desktop\uSeRiNiT.exe not found.
File C:\Users\Máma\Desktop\iExplore.exe not found.
File C:\Users\Máma\Desktop\rkill.exe not found.
File C:\Users\Máma\Desktop\rkill.com not found.
File C:\ProgramData\f8oa.js not found.
Folder C:\Users\Martin\AppData\Roaming\OpenCandy\ not found.
Folder C:\Users\Martin\AppData\Roaming\OpenCandy\ not found.
File/Folder C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp not found.
File/Folder C:\windows\System32\config\systemprofile\AppData\Local\SoftGrid Client\140066.CSY-90140011-66-405\*.tmp not found.
File C:\windows\Tasks\Adobe Flash Player Updater.job not found.
File C:\windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
File C:\windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched not found.
========== FILES ==========
File/Folder C:\windows\system32\*.tmp.dll not found.
File/Folder C:\windows\system32\SET*.tmp not found.
File/Folder C:\windows\*.tmp not found.
========== COMMANDS ==========
C:\windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Martin
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Máma
->Temp folder emptied: 62290 bytes
->Temporary Internet Files folder emptied: 111107 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 12810215 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: Týna
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4333 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 12,00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Martin
->Flash cache emptied: 0 bytes

User: Máma
->Flash cache emptied: 0 bytes

User: Public

User: Týna
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Martin
->Java cache emptied: 0 bytes

User: Máma
->Java cache emptied: 0 bytes

User: Public

User: Týna
->Java cache emptied: 0 bytes

Total Java Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 04142013_164631

Files\Folders moved on Reboot...
C:\windows\temp\HS.log moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Vyyyborne, jak se chova PC

Zkusila jsem přihlášení na dceřinu složku a plocha se objevila, zůstala a dítě blahem vedle sebe pokračovalo v činnosti, kterou započalo v pátek před zavirováním. Mám tomu tedy rozumět tak, že jsme se hajzlíka zbavili úspěšně?? Pokud ano, děkuji mnohokrát za pomoc

Tak jeste uklidime

Odinstalujte Combofix

• Prejmenujte ComboFix na Uninstall
• Spustte jej
• Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel èistiè

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse