VIRY.CZ

OTL.txt 3

2013.07.03 11:34:21 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.07.03 11:23:33 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.07.03 11:08:11 | 000,000,958 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job
[2013.07.03 10:55:31 | 000,000,828 | ---- | M] () -- C:\Users\MINO\Desktop\OTL – zástupce.lnk
[2013.07.03 10:53:35 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\MINO\Documents\OTL.exe
[2013.07.03 10:40:39 | 001,496,172 | ---- | M] () -- C:\Users\MINO\Documents\CrystalDiskInfo5_0_0.zip
[2013.07.03 10:38:04 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.07.03 10:13:44 | 000,000,960 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2013.07.03 10:10:53 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.07.03 10:08:44 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2013.07.03 10:08:17 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013.07.03 10:08:17 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013.07.03 10:07:54 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.07.03 10:06:29 | 000,007,988 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2013.07.03 09:58:36 | 000,000,659 | ---- | M] () -- C:\Windows\DeleteOnReboot.bat
[2013.07.03 09:10:38 | 000,000,869 | ---- | M] () -- C:\Users\MINO\Desktop\adwcleaner – zástupce.lnk
[2013.07.03 09:09:09 | 000,648,201 | ---- | M] () -- C:\Users\MINO\Documents\adwcleaner.exe
[2013.07.03 08:52:33 | 000,000,828 | ---- | M] () -- C:\Users\MINO\Desktop\JRT – zástupce.lnk
[2013.07.03 08:50:47 | 000,545,954 | ---- | M] (Oleg N. Scherbakov) -- C:\Users\MINO\Documents\JRT.exe
[2013.07.03 08:16:10 | 000,000,835 | ---- | M] () -- C:\Users\MINO\Desktop\RSIT – zástupce.lnk
[2013.07.03 08:13:16 | 000,781,383 | ---- | M] () -- C:\Users\MINO\Documents\RSIT.exe
[2013.07.03 07:11:25 | 000,389,960 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.07.03 06:08:18 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job
[2013.07.02 13:24:50 | 000,180,224 | ---- | M] () -- C:\Windows\SPInstall.etl
[2013.07.02 10:19:50 | 000,002,154 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013.07.02 10:12:23 | 011,123,152 | ---- | M] (Microsoft Corporation) -- C:\Users\MINO\Documents\mseinstall.exe
[2013.07.01 13:53:45 | 000,610,724 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2013.07.01 13:53:45 | 000,598,900 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013.07.01 13:53:45 | 000,119,308 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2013.07.01 13:53:45 | 000,104,914 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013.07.01 12:51:34 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2013.07.01 08:56:21 | 000,081,768 | ---- | M] (Conduit) -- C:\ministub.exe
[2013.06.30 09:49:18 | 000,770,344 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2013.06.30 09:49:18 | 000,369,584 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2013.06.30 09:49:18 | 000,175,176 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys
[2013.06.30 09:49:18 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys.sum
[2013.06.30 09:49:18 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswSP.sys.sum
[2013.06.30 09:49:18 | 000,000,175 | ---- | M] () -- C:\Windows\System32\drivers\aswSnx.sys.sum

========== Files Created - No Company Name ==========

[2013.07.03 11:23:32 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.07.03 10:55:31 | 000,000,828 | ---- | C] () -- C:\Users\MINO\Desktop\OTL – zástupce.lnk
[2013.07.03 10:39:34 | 001,496,172 | ---- | C] () -- C:\Users\MINO\Documents\CrystalDiskInfo5_0_0.zip
[2013.07.03 09:10:38 | 000,000,869 | ---- | C] () -- C:\Users\MINO\Desktop\adwcleaner – zástupce.lnk
[2013.07.03 09:08:55 | 000,648,201 | ---- | C] () -- C:\Users\MINO\Documents\adwcleaner.exe
[2013.07.03 08:52:33 | 000,000,828 | ---- | C] () -- C:\Users\MINO\Desktop\JRT – zástupce.lnk
[2013.07.03 08:16:09 | 000,000,835 | ---- | C] () -- C:\Users\MINO\Desktop\RSIT – zástupce.lnk
[2013.07.03 08:13:10 | 000,781,383 | ---- | C] () -- C:\Users\MINO\Documents\RSIT.exe
[2013.07.02 12:18:59 | 000,180,224 | ---- | C] () -- C:\Windows\SPInstall.etl
[2013.07.02 10:19:50 | 000,002,154 | ---- | C] () -- C:\Windows\epplauncher.mif
[2013.07.02 10:18:10 | 000,001,833 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2013.06.30 09:49:18 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys.sum
[2013.06.30 09:49:18 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSP.sys.sum
[2013.06.30 09:49:18 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSnx.sys.sum
[2013.05.19 14:12:11 | 000,087,608 | ---- | C] () -- C:\Users\MINO\AppData\Roaming\inst.exe
[2013.04.24 18:16:45 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013.04.24 18:16:45 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013.04.24 18:16:45 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013.04.24 18:16:45 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013.04.24 18:16:45 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013.04.22 15:54:54 | 000,175,176 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2013.04.22 15:54:54 | 000,049,376 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2013.04.19 05:34:14 | 000,389,960 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.02.16 19:19:40 | 000,000,434 | ---- | C] () -- C:\Users\MINO\.swfinfo
[2013.01.19 22:29:35 | 000,003,342 | ---- | C] () -- C:\Users\MINO\wxDownloadFast.ini
[2010.06.25 21:52:56 | 000,000,680 | ---- | C] () -- C:\Users\MINO\AppData\Local\d3d9caps.dat
[2010.05.26 14:12:41 | 000,000,103 | ---- | C] () -- C:\Users\MINO\AppData\Roaming\default.pls
[2010.04.10 11:02:59 | 000,000,108 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2010.02.07 09:32:17 | 000,000,270 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009.12.02 19:41:53 | 000,008,350 | ---- | C] () -- C:\ProgramData\LUUnInstall.LiveUpdate
[2009.09.11 15:47:10 | 000,007,887 | ---- | C] () -- C:\Users\MINO\AppData\Roaming\pcouffin.cat
[2009.09.11 15:47:03 | 000,001,144 | ---- | C] () -- C:\Users\MINO\AppData\Roaming\pcouffin.inf
[2009.08.01 16:05:46 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008.09.25 15:21:13 | 000,001,024 | ---- | C] () -- C:\Users\MINO\.rnd
[2008.09.21 12:49:30 | 000,194,560 | ---- | C] () -- C:\Users\MINO\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2006.11.02 14:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.08 19:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.04.11 08:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.04.11 08:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012.07.21 13:42:37 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Alawar
[2010.04.06 09:14:01 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\AnvSoft
[2012.11.13 09:43:39 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Ashampoo
[2013.02.16 07:27:27 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\avidemux
[2008.11.12 11:58:53 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Canon
[2013.05.05 05:55:02 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\DAEMON Tools Lite
[2010.06.06 06:14:16 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\DMCache
[2009.11.03 09:55:01 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\FlashGet
[2013.02.16 07:33:08 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\GetRightToGo
[2009.06.14 15:42:43 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\GHISLER
[2011.11.10 13:20:14 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\gtk-2.0
[2010.06.06 06:27:21 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\IDM
[2009.10.03 17:02:10 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\iolo
[2010.03.19 19:31:38 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\IrfanView
[2013.02.16 10:20:50 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Moyea
[2008.09.21 10:10:27 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Opera
[2009.06.29 15:49:42 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Pi Eye Games
[2013.04.23 15:42:31 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Seznam.cz
[2011.06.12 12:25:22 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Sony
[2012.07.20 15:23:17 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\spidla
[2013.05.18 18:35:00 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\TuneUp Software
[2013.02.06 07:03:47 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\TweakNow PowerPack
[2013.01.25 07:06:53 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\TweakNow PowerPack 2009
[2013.01.31 11:15:17 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\TweakNow RegCleaner 2011
[2012.12.23 15:43:20 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Ulozto File Manager
[2012.07.21 14:42:55 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\URSE Games
[2013.07.01 09:49:21 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\uTorrent
[2009.05.31 11:47:10 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\VitySoft
[2013.05.19 14:22:27 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Vso
[2010.04.14 10:05:03 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\WordToPDF
[2012.07.21 14:51:34 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\wrapper
[2012.12.21 19:39:32 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Xilisoft
[2013.03.19 14:20:00 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\XnConvert
[2012.11.13 09:12:47 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Špidla Data Processing, s.r.o

========== Purity Check ==========



========== Custom Scans ==========

< >
[2006.11.02 15:01:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2006.11.02 15:01:49 | 000,032,604 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.05.10 11:06:19 | 000,000,960 | ---- | C] () -- C:\Windows\Tasks\Google Software Updater.job
[2012.12.20 09:46:22 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.01.20 15:09:54 | 000,000,932 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.01.20 15:09:55 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013.05.22 06:02:38 | 000,000,906 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job
[2013.05.22 06:02:40 | 000,000,958 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job

< >

< MD5 for: ATAPI.SYS >
[2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\erdnt\cache\atapi.sys
[2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008.01.19 09:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008.01.19 09:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008.09.21 17:15:08 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys
[2008.09.21 17:15:08 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[2008.09.21 17:15:06 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.04.11 08:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\System32\autochk.exe
[2009.04.11 08:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
[2008.01.19 09:33:01 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe
[2006.11.02 11:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6000.16386_none_dfbd2b4dc4d6121b\autochk.exe

< MD5 for: CDROM.SYS >
[2008.01.19 07:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
[2008.01.19 07:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
[2009.04.11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
[2009.04.11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
[2009.04.11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
[2006.11.02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008.10.29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008.10.30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2008.09.21 17:48:18 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=6D06CD98D954FE87FB2DB8108793B399 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16549_none_4fac29707cae347a\explorer.exe
[2008.09.21 17:48:17 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=BD06F0BF753BC704B653C3A50F89D362 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20668_none_501f261995dcf2cf\explorer.exe
[2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\erdnt\cache\explorer.exe
[2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008.10.28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006.11.02 11:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe
[2008.01.19 09:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

< MD5 for: HAL.DLL >
[2009.04.11 08:32:46 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll

< MD5 for: SCECLI.DLL >
[2008.01.19 09:36:19 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2006.11.02 11:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll
[2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\erdnt\cache\scecli.dll
[2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll

< MD5 for: SERVICES.EXE >
[2008.01.19 09:33:28 | 000,279,040 | ---- | M] (Microsoft Corporation) MD5=2B336AB6286D6C81FA02CBAB914E3C6C -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe
[2006.11.02 11:45:40 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=329CF3C97CE4C19375C8ABCABAE258B0 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6000.16386_none_cd28fe6bd05df036\services.exe
[2009.04.11 08:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\erdnt\cache\services.exe
[2009.04.11 08:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\System32\services.exe
[2009.04.11 08:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe

< MD5 for: SVCHOST.EXE >
[2006.11.02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe
[2008.01.19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\erdnt\cache\svchost.exe
[2008.01.19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008.01.19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.26 10:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C46796E3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys
[2013.05.08 05:40:36 | 000,914,792 | ---- | M] (Microsoft Corporation) MD5=078218D74C4EFC2CE7E4C6DF22A94F2F -- C:\Windows\System32\drivers\tcpip.sys
[2013.05.08 05:40:36 | 000,914,792 | ---- | M] (Microsoft Corporation) MD5=078218D74C4EFC2CE7E4C6DF22A94F2F -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23106_none_b59411ab7ca4df04\tcpip.sys
[2009.04.11 08:33:02 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE3433D8 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18005_none_b5098b5e63880c42\tcpip.sys
[2009.12.08 22:52:30 | 000,897,624 | ---- | M] (Microsoft Corporation) MD5=1ACBB7A47E78F4CC82D2EFFB72901528 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18377_none_b2d96a966698ad63\tcpip.sys
[2009.08.15 23:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009.08.14 19:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2012.03.30 14:39:11 | 000,905,600 | ---- | M] (Microsoft Corporation) MD5=27D470DABC77BC60D0A3B0E4DEB6CB91 -- C:\Windows\erdnt\cache\tcpip.sys
[2012.03.30 14:39:11 | 000,905,600 | ---- | M] (Microsoft Corporation) MD5=27D470DABC77BC60D0A3B0E4DEB6CB91 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18604_none_b50896786388e1d5\tcpip.sys
[2010.02.18 13:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010.02.18 16:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009.08.14 16:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2013.01.04 13:28:19 | 000,914,792 | ---- | M] (Microsoft Corporation) MD5=3535CD93F944C00F098E73E12EE7FEB6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23013_none_b5863efb7cafb1c9\tcpip.sys
[2009.12.08 22:15:00 | 000,907,832 | ---- | M] (Microsoft Corporation) MD5=46E6685F3E92AEC743773ADD4CD54F57 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22283_none_b53aaa1b7ce8560d\tcpip.sys
[2010.02.18 16:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010.02.18 14:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2008.09.21 17:07:39 | 000,806,400 | ---- | M] (Microsoft Corporation) MD5=52A8BD6294F7D1443C6184C67AE13AF4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20752_none_5ff4e4f9ab7777f4\tcpip.sys
[2013.05.08 06:37:21 | 000,905,576 | ---- | M] (Microsoft Corporation) MD5=548E198BAE21EFC21F8B5F0C1728AD27 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18835_none_b4e92aca63a0494d\tcpip.sys
[2009.12.08 22:37:09 | 000,900,696 | ---- | M] (Microsoft Corporation) MD5=5653230D480A9C54D169E1B080B72CF5 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys
[2008.09.21 17:07:41 | 000,803,328 | ---- | M] (Microsoft Corporation) MD5=5DF77458AA92FDB36FCE79C60F74AB5D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16627_none_5f90b964923d030a\tcpip.sys
[2010.06.16 17:55:58 | 000,902,032 | ---- | M] (Microsoft Corporation) MD5=6216A954ED7045B62880A92D6C9B9FC7 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys
[2009.08.14 18:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2010.06.16 18:39:32 | 000,912,776 | ---- | M] (Microsoft Corporation) MD5=6A10AFCE0B38371064BE41C1FBFD3C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22425_none_b57d8e037cb5db63\tcpip.sys
[2013.01.04 13:28:18 | 000,905,576 | ---- | M] (Microsoft Corporation) MD5=74E2D020C47BB2B2FCCBA29A518A7EB4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18764_none_b4c7b8d663b986a2\tcpip.sys
[2010.06.16 17:59:54 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=782568AB6A43160A159B6215B70BCCE9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18493_none_b2bfcb7c66ac7d10\tcpip.sys
[2008.04.26 10:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2A79C02 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys
[2009.12.08 19:58:13 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=8734BD051FFDCBF8425CF222141C3741 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16973_none_5f56ae52926920d8\tcpip.sys
[2009.08.14 19:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2010.02.18 19:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2010.06.16 18:04:57 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=A474879AFA4A596B3A531F3E69730DBF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18272_none_b4baded863c37e22\tcpip.sys
[2010.04.05 19:03:01 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=A6A02EF5B5E40FBD31A1ADC577DA54BB -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_b36bda857faff8dc\tcpip.sys
[2009.12.08 19:45:32 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=CA3A5756672013A66BB9D547A5A62DCA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21175_none_5fe223d3ab852692\tcpip.sys
[2010.04.05 22:00:48 | 000,910,208 | ---- | M] (Microsoft Corporation) MD5=CC9993701AC57F995554C696DDA49C12 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22377_none_b5497d157cdc9c9f\tcpip.sys
[2006.11.02 10:58:38 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=D944522B048A5FEB7700B5170D3D9423 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16386_none_5f4ed3e0926e99e4\tcpip.sys
[2010.02.18 16:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2009.12.08 22:01:08 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=DA467E7619AE5F4588E6262C13C8940A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18160_none_b4c3ac4a63bd325c\tcpip.sys
[2012.03.30 14:39:11 | 000,914,304 | ---- | M] (Microsoft Corporation) MD5=EE7E10BED85C312C1D5D30C435BDDA9F -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22828_none_b58096797cb31c04\tcpip.sys
[2008.01.19 09:43:39 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021EAF9C4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys
[2009.08.14 18:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.01.19 09:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\erdnt\cache\userinit.exe
[2008.01.19 09:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008.01.19 09:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[2006.11.02 11:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\erdnt\cache\winlogon.exe
[2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2006.11.02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
[2008.01.19 09:33:37 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< >

< %systemroot%*.* /U /s >
[10 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]

OTL.txt 4

[132 C:\Windows\temp\*.tmp files -> C:\Windows\temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2013.07.01 08:56:21 | 000,081,768 | ---- | M] (Conduit) -- C:\ministub.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012.11.08 10:37:44 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Adobe
[2011.06.03 18:04:46 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Ahead
[2012.07.21 13:42:37 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Alawar
[2010.04.06 09:14:01 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\AnvSoft
[2013.05.30 13:26:37 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Apple Computer
[2012.11.13 09:43:39 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Ashampoo
[2008.09.20 20:46:13 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\ATI
[2013.02.16 07:27:27 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\avidemux
[2008.11.12 11:58:53 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Canon
[2013.05.05 05:55:02 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\DAEMON Tools Lite
[2013.07.01 09:15:37 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\DivX
[2010.06.06 06:14:16 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\DMCache
[2012.08.24 05:18:43 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\dvdcss
[2009.11.03 09:55:01 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\FlashGet
[2013.02.16 07:33:08 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\GetRightToGo
[2009.06.14 15:42:43 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\GHISLER
[2011.11.10 13:20:14 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\gtk-2.0
[2008.09.20 20:42:37 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Identities
[2010.06.06 06:27:21 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\IDM
[2009.10.03 17:02:10 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\iolo
[2010.03.19 19:31:38 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\IrfanView
[2008.09.20 20:45:03 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Macromedia
[2013.04.21 14:03:17 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Malwarebytes
[2013.03.29 11:12:52 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Media Player Classic
[2013.01.20 17:31:24 | 000,000,000 | --SD | M] -- C:\Users\MINO\AppData\Roaming\Microsoft
[2013.02.16 10:20:50 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Moyea
[2013.01.20 11:37:45 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Mozilla
[2010.03.17 19:33:26 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Nero
[2008.09.21 10:10:27 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Opera
[2009.06.29 15:49:42 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Pi Eye Games
[2008.09.27 13:13:13 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Real
[2008.09.29 18:00:30 | 000,000,000 | RH-D | M] -- C:\Users\MINO\AppData\Roaming\SecuROM
[2013.04.23 15:42:31 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Seznam.cz
[2013.06.22 10:55:04 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Skype
[2011.06.12 12:25:22 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Sony
[2012.07.20 15:23:17 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\spidla
[2013.05.18 18:35:00 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\TuneUp Software
[2013.02.06 07:03:47 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\TweakNow PowerPack
[2013.01.25 07:06:53 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\TweakNow PowerPack 2009
[2013.01.31 11:15:17 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\TweakNow RegCleaner 2011
[2012.12.23 15:43:20 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Ulozto File Manager
[2012.07.21 14:42:55 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\URSE Games
[2013.07.01 09:49:21 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\uTorrent
[2009.05.31 11:47:10 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\VitySoft
[2013.06.11 00:07:42 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\vlc
[2013.05.19 14:22:27 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Vso
[2008.09.21 12:59:58 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\WinRAR
[2010.04.14 10:05:03 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\WordToPDF
[2012.07.21 14:51:34 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\wrapper
[2012.12.21 19:39:32 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Xilisoft
[2013.03.19 14:20:00 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\XnConvert
[2012.11.13 09:12:47 | 000,000,000 | ---D | M] -- C:\Users\MINO\AppData\Roaming\Špidla Data Processing, s.r.o

< %APPDATA%\*.exe /s >
[2013.05.19 14:21:09 | 000,087,608 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\inst.exe
[2013.03.21 11:26:26 | 001,061,960 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\Seznam.cz\szninstall.exe
[2013.03.27 14:09:44 | 002,582,600 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\Seznam.cz\sznsetup.exe
[2013.02.13 16:16:08 | 000,942,080 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\Seznam.cz\bin\chromeUpdatePref.exe
[2013.04.16 13:52:34 | 000,055,808 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\Seznam.cz\bin\ffkill.exe
[2013.04.15 13:34:14 | 000,045,560 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
[2013.04.12 10:13:24 | 000,457,208 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
[2013.04.12 10:10:22 | 000,092,664 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
[2012.05.04 10:41:02 | 002,330,136 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\Seznam.cz\install\sznsetup.exe
[2012.03.14 11:12:34 | 006,401,412 | ---- | M] (Spidla) -- C:\Users\MINO\AppData\Roaming\spidla\wrapper_trial\Atomový míč 2\Atomovy mic 2.exe
[2012.07.21 04:48:20 | 002,351,104 | -H-- | M] () -- C:\Users\MINO\AppData\Roaming\spidla\wrapper_trial\Atomový míč 2\game.exe
[2012.07.20 15:18:41 | 001,173,631 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\spidla\wrapper_trial\Atomový míč 2\unins000.exe
[2012.03.14 12:46:18 | 006,719,506 | ---- | M] (Spidla) -- C:\Users\MINO\AppData\Roaming\spidla\wrapper_trial\Drahokamový míč - Davné legendy\Drahokamovy mic - Davne legendy.exe
[2012.07.21 14:42:48 | 002,600,960 | -H-- | M] () -- C:\Users\MINO\AppData\Roaming\spidla\wrapper_trial\Drahokamový míč - Davné legendy\game.exe
[2012.07.21 14:41:46 | 001,173,631 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\spidla\wrapper_trial\Drahokamový míč - Davné legendy\unins000.exe
[2011.04.19 22:18:12 | 006,106,270 | ---- | M] (Spidla) -- C:\Users\MINO\AppData\Roaming\wrapper\Atomovy mic 1.exe
[2011.04.15 10:41:52 | 006,250,664 | ---- | M] (Spidla) -- C:\Users\MINO\AppData\Roaming\wrapper\Divoky mic 3.exe
[2012.07.21 14:51:34 | 002,412,544 | -H-- | M] () -- C:\Users\MINO\AppData\Roaming\wrapper\game.exe
[2011.04.15 09:57:06 | 006,144,210 | ---- | M] (Spidla) -- C:\Users\MINO\AppData\Roaming\wrapper\Na Divokem zapade.exe
[2012.07.21 13:33:22 | 001,173,631 | ---- | M] () -- C:\Users\MINO\AppData\Roaming\wrapper\unins000.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2007.07.04 16:52:14 | 000,344,064 | ---- | M] (Advanced Micro Devices, Inc.) Unable to obtain MD5 -- C:\Windows\system32\ATIDEMGX.dll

< %systemroot%\Tasks\*.job >
[2013.07.03 13:00:24 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.07.03 10:13:44 | 000,000,960 | ---- | M] () -- C:\Windows\Tasks\Google Software Updater.job
[2013.07.03 10:10:53 | 000,000,932 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.07.03 13:00:24 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013.07.03 06:08:18 | 000,000,906 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job
[2013.07.03 13:08:11 | 000,000,958 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2007.07.04 16:52:14 | 000,344,064 | ---- | M] (Advanced Micro Devices, Inc.) Unable to obtain MD5 -- C:\Windows\system32\ATIDEMGX.dll

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2013.07.03 12:08:12 | 000,003,568 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013.07.03 12:08:12 | 000,003,568 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013.07.03 10:08:44 | 000,045,056 | ---- | M] () -- C:\Windows\system32\acovcnt.exe
[2013.07.01 12:51:34 | 000,002,577 | ---- | M] () -- C:\Windows\system32\config.nt
[2013.07.03 07:11:25 | 000,389,960 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
[2013.07.01 13:53:45 | 000,119,308 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2013.07.01 13:53:45 | 000,104,914 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2013.07.01 13:53:45 | 000,610,724 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2013.07.01 13:53:45 | 000,598,900 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2013.07.01 13:53:45 | 001,426,608 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI

< %SYSTEMDRIVE%\*.exe >
[2013.07.01 08:56:21 | 000,081,768 | ---- | M] (Conduit) -- C:\ministub.exe

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ehTray.exe" = C:\Windows\ehome\ehTray.exe -- [2008.01.19 09:33:09 | 000,125,952 | ---- | M] (Microsoft Corporation)
"Sidebar" = C:\Program Files\Windows Sidebar\SideBar.exe /autoRun -- [2009.04.11 08:28:03 | 001,233,920 | ---- | M] (Microsoft Corporation)
"GoogleDriveSync" = "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart -- [2013.06.06 23:57:24 | 019,676,256 | ---- | M] (Google)
"cz.seznam.software.szndesktop" = "C:\Users\MINO\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q -- [2013.04.12 10:10:22 | 000,092,664 | ---- | M] ()
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun -- [2013.06.03 16:27:20 | 019,603,048 | R--- | M] (Skype Technologies S.A.)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2013.04.13 05:51:22 | 000,920,472 | ---- | M] (Mozilla Corporation) MD5=6F5386A655598F71BAAB2D6B63A69D6A -- C:\Program Files\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2013.05.17 01:34:33 | 000,757,400 | ---- | M] (Microsoft Corporation) MD5=67EE46FD4D3B56531C5DD1BDC149275A -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2013.04.23 17:56:01 | 000,879,456 | ---- | M] (Opera Software) MD5=C5520FEB7AD5F6E3692B6DE41F6A1A27 -- C:\Program Files\Opera\opera.exe

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.07.03 11:23:33 | 000,000,512 | ---- | M] () MD5=405981678C1BF9E814918FF482F294F7 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2013.03.08 07:27:21 | 000,004,723 | ---- | M] () -- \Users\MINO\AppData\Roaming\uTorrent\Patch & Crack Race Driver 2.rar.torrent
[2012.12.22 15:31:09 | 000,005,369 | ---- | M] () -- \Users\MINO\AppData\Roaming\VitySoft\FRD\plugins\crackle.frp

< *keygen* /s >
[2009.09.25 19:15:42 | 000,633,856 | ---- | M] () -- \PROGRAMY\TOTAL VIDEO CONVERTER HD\Keygen.exe
[2012.10.31 20:21:18 | 001,987,072 | ---- | M] () -- \PROGRAMY\TUNE UP UTILITIES 2013 CZ\TuneUp Utilities 2013 keygen\keygen.exe
[2012.09.22 13:38:20 | 002,949,881 | ---- | M] () -- \PROGRAMY\TUNE UP UTILITIES 2013 CZ\TuneUp2013-KeyGenerator_DE_Serial_Wolf57\TuneUp2013-KeyGenerator_DE_Serial_Wolf57.exe

< *loader* /s >
[2004.02.03 10:27:56 | 000,113,664 | ---- | M] () -- \Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
[2013.01.28 13:08:40 | 000,008,827 | ---- | M] () -- \Program Files\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2013.04.05 12:58:26 | 000,059,720 | ---- | M] () -- \Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
[2013.04.05 12:58:26 | 000,919,880 | ---- | M] () -- \Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader_main.dll
[2006.10.26 14:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006.10.26 14:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2008.06.24 14:45:14 | 000,111,912 | ---- | M] () -- \Program Files\Common Files\Nero\Shared\NSCLoader.dll
[2011.04.29 11:53:44 | 000,011,917 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMCommon\FreemakeCommon\Profiles\FmDownloaderProfiles.xml
[2011.10.06 17:20:28 | 000,014,336 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.Detector.dll
[2011.10.06 17:20:28 | 000,006,656 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.GlobalSettings.dll
[2011.10.06 17:20:28 | 000,011,264 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.HtmlParser.dll
[2011.10.06 17:20:28 | 000,036,352 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.Interface.dll
[2011.10.06 17:20:28 | 000,017,408 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.Miscellaneous.dll
[2011.10.06 17:20:28 | 000,048,640 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.SmartDownloader.Core.dll
[2011.10.06 17:20:28 | 000,159,744 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.SmartDownloader.Extensions.dll
[2011.10.06 17:20:28 | 000,018,944 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.Subtitles.dll
[2011.10.06 17:20:28 | 000,079,360 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.SupportedSite.dll
[2011.10.06 17:20:28 | 000,018,944 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.TrackDownloaderLib.dll
[2011.10.06 17:20:28 | 000,003,584 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloaderDeploy.dll
[2011.03.16 14:12:40 | 000,034,304 | ---- | M] () -- \Program Files\Freemake\Freemake Video Converter\FMWeb\Uploader\FMYouTubeUploader.dll
[2013.02.19 12:07:28 | 000,030,608 | ---- | M] () -- \Program Files\Seznam.cz\distribution\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2009.09.25 14:00:00 | 000,001,849 | ---- | M] () -- \Program Files\TuneUp Utilities 2012\data\Integrator\images\panel6\loader.gif
[2009.08.11 19:18:02 | 001,523,200 | ---- | M] () -- \Program Files\Uloz.to Uploader\Uloz_to_Uploader.exe
[2012.11.22 14:54:36 | 000,063,744 | ---- | M] () -- \Program Files\vso\VSO Downloader\2\eula_VsoDownloader_en.rtf
[2012.12.12 15:29:00 | 012,530,144 | ---- | M] () -- \Program Files\vso\VSO Downloader\2\VsoDownloader.exe
[2006.12.23 17:37:56 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2009.09.01 16:10:52 | 000,002,089 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
[2013.03.02 16:02:18 | 000,000,097 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\VSO\VSO Downloader 2\Aplikace VSO Downloader 2 na internetu.url
[2013.03.02 16:02:18 | 000,001,033 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\VSO\VSO Downloader 2\Odinstalovat aplikaci VSO Downloader 2.lnk
[2013.03.02 16:02:18 | 000,001,058 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\VSO\VSO Downloader 2\VSO Downloader 2.lnk
[2008.02.04 13:32:50 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero8\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013.04.25 17:31:28 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2013.04.25 17:31:28 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2013.04.25 17:31:28 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2012.12.27 15:30:34 | 000,146,471 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20121227.143033.969.log
[2013.01.10 10:35:05 | 000,143,119 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130110.093505.262.log
[2013.01.11 14:00:22 | 000,091,314 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130111.130022.062.log
[2013.01.11 16:53:33 | 000,179,534 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130111.155333.731.log
[2013.01.12 06:55:49 | 000,033,171 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130112.055549.345.log
[2013.01.12 08:20:23 | 000,192,271 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130112.072023.690.log
[2013.01.12 13:47:40 | 000,280,635 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130112.124740.768.log
[2013.01.15 05:56:44 | 000,688,185 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130115.045644.660.log
[2013.01.16 14:10:22 | 000,385,527 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130116.100400.989.log
[2013.01.19 10:05:12 | 000,549,395 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130119.090511.491.log
[2013.01.19 13:54:48 | 000,751,154 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130119.125448.225.log
[2013.01.31 16:45:47 | 000,314,900 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130131.154547.835.log
[2013.02.05 07:12:52 | 000,655,846 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130205.061252.743.log
[2013.03.02 16:02:32 | 000,019,322 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130302.150232.779.log
[2013.03.03 11:07:05 | 000,004,102 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130303.100650.772.log
[2013.03.04 13:48:59 | 000,171,029 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130304.124859.750.log
[2013.03.14 10:06:37 | 000,462,448 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130314.090637.197.log
[2013.03.22 15:06:17 | 000,266,663 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130322.140617.298.log
[2013.04.08 12:03:20 | 000,435,853 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130408.052320.276.log
[2013.04.08 16:53:31 | 000,304,027 | ---- | M] () -- \ProgramData\VSO\vsorep\log\crash_downloader.20130408.165331.399.log
[2012.12.26 21:45:02 | 000,354,529 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20121226.204502.623.log
[2013.01.10 20:00:33 | 000,939,101 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130110.190031.470.log
[2013.01.11 20:44:41 | 000,509,466 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130111.194441.456.log
[2013.01.12 13:46:32 | 000,460,789 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130112.124631.675.log
[2013.01.13 21:20:14 | 000,851,422 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130113.202013.877.log
[2013.01.14 07:08:32 | 000,099,220 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130114.060831.965.log
[2013.01.14 21:08:32 | 000,643,586 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130114.200831.859.log
[2013.01.15 15:52:29 | 000,781,219 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130115.145229.233.log
[2013.02.03 14:35:30 | 000,911,736 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130203.133529.690.log
[2013.02.03 17:27:56 | 000,162,312 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130203.162755.941.log
[2013.02.04 14:31:51 | 000,814,834 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130204.133150.423.log
[2013.02.06 16:57:22 | 000,629,496 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130206.155722.032.log
[2013.02.07 16:26:47 | 000,746,640 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130207.152646.835.log
[2013.02.09 17:55:44 | 000,994,845 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130209.165543.633.log
[2013.02.15 20:05:26 | 001,270,040 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130215.190524.057.log
[2013.02.16 16:13:41 | 000,178,429 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130216.151341.103.log
[2013.02.16 19:23:43 | 000,026,044 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130216.182343.860.log
[2013.02.19 14:47:50 | 000,514,293 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130219.134749.948.log
[2013.02.21 19:41:47 | 000,127,106 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130221.184147.166.log
[2013.02.23 19:48:06 | 000,252,416 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130223.184805.700.log
[2013.02.24 17:41:29 | 000,317,017 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130224.164128.883.log
[2013.02.26 18:26:44 | 000,285,487 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130226.172644.211.log
[2013.03.02 13:30:18 | 000,045,479 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130302.123018.532.log
[2013.03.03 12:45:39 | 000,086,890 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130303.114538.994.log
[2013.03.06 19:07:15 | 000,081,423 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130306.180715.178.log
[2013.03.09 13:38:31 | 000,038,664 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130309.123831.634.log
[2013.03.09 19:47:04 | 000,027,436 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130309.184704.203.log
[2013.03.12 13:48:24 | 000,406,595 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130312.124824.569.log
[2013.03.15 19:32:31 | 000,184,042 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130315.183231.533.log
[2013.03.16 15:03:00 | 000,224,072 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130316.140300.414.log
[2013.03.21 14:17:00 | 000,091,472 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130321.131700.253.log
[2013.03.22 19:27:06 | 000,205,749 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130322.182706.725.log
[2013.03.23 15:40:11 | 000,139,375 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130323.144011.450.log
[2013.03.27 21:32:30 | 000,018,228 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130327.203230.719.log
[2013.03.31 10:02:42 | 000,006,099 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130331.100242.823.log
[2013.04.04 20:58:27 | 000,286,214 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130404.205826.941.log
[2013.04.06 12:42:54 | 000,180,168 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130406.124254.257.log
[2013.04.07 12:26:39 | 000,457,973 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130407.122639.430.log
[2013.04.08 21:10:15 | 000,169,457 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130408.211015.042.log
[2013.04.10 05:18:12 | 000,100,639 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130410.051811.892.log
[2013.04.12 13:44:04 | 000,037,584 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130412.134404.042.log
[2013.04.12 19:42:47 | 000,053,460 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130412.194247.593.log
[2013.04.13 15:31:49 | 000,115,511 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130413.153149.405.log
[2013.04.14 14:05:35 | 000,007,683 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130414.140535.606.log
[2013.04.19 18:14:35 | 000,140,271 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130419.181435.730.log
[2013.04.24 06:23:55 | 000,005,699 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130424.062355.690.log
[2013.04.30 18:46:10 | 000,181,404 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130430.184609.852.log
[2013.05.04 16:56:49 | 000,096,469 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130504.165649.219.log
[2013.05.06 13:41:17 | 000,010,796 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130506.134117.652.log
[2013.05.07 14:39:25 | 000,305,110 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130507.143925.655.log
[2013.05.08 12:02:53 | 000,120,719 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130508.120253.042.log
[2013.05.10 17:49:43 | 000,037,847 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130510.174943.817.log
[2013.05.11 16:50:01 | 000,066,897 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130511.165001.926.log
[2013.05.12 16:16:21 | 000,131,049 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130512.161621.291.log
[2013.05.19 14:11:05 | 000,066,482 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130519.141105.233.log
[2013.05.21 15:24:29 | 000,069,226 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130521.152429.437.log
[2013.06.18 10:57:36 | 000,005,697 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130618.105736.534.log
[2013.06.22 19:19:30 | 000,245,704 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130622.191930.175.log
[2013.06.24 17:34:16 | 000,268,892 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130624.173416.543.log
[2013.06.30 13:13:06 | 000,111,624 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130630.131305.903.log
[2013.07.01 19:19:33 | 000,005,596 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130701.191933.842.log
[2013.07.01 20:25:58 | 000,042,027 | ---- | M] () -- \ProgramData\VSO\vsorep\log\log_downloader.20130701.202557.990.log
[2012.12.26 15:13:07 | 014,587,824 | ---- | M] () -- \PROGRAMY\YOTUBE\vso_downloader_setup.exe
[2013.02.18 23:25:23 | 012,592,416 | ---- | M] () -- \PROGRAMY\YOTUBE\VSO Downloader Ultimate v2.9.10.4 Including Crack [h33t][iahq76]\vso_downloader.exe
[2013.02.18 23:25:25 | 011,830,152 | ---- | M] () -- \PROGRAMY\YOTUBE\VSO Downloader Ultimate v2.9.10.4 Including Crack [h33t][iahq76]\Crack\VsoDownloader.exe
[2009.09.01 16:10:52 | 000,002,089 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
[2013.03.02 16:02:18 | 000,000,097 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\VSO\VSO Downloader 2\Aplikace VSO Downloader 2 na internetu.url
[2013.03.02 16:02:18 | 000,001,033 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\VSO\VSO Downloader 2\Odinstalovat aplikaci VSO Downloader 2.lnk
[2013.03.02 16:02:18 | 000,001,058 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\VSO\VSO Downloader 2\VSO Downloader 2.lnk
[2008.02.04 13:32:50 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero8\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013.04.25 17:31:28 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2013.04.25 17:31:28 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2013.04.25 17:31:28 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2012.12.27 15:30:34 | 000,146,471 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20121227.143033.969.log
[2013.01.10 10:35:05 | 000,143,119 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130110.093505.262.log
[2013.01.11 14:00:22 | 000,091,314 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130111.130022.062.log
[2013.01.11 16:53:33 | 000,179,534 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130111.155333.731.log
[2013.01.12 06:55:49 | 000,033,171 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130112.055549.345.log
[2013.01.12 08:20:23 | 000,192,271 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130112.072023.690.log
[2013.01.12 13:47:40 | 000,280,635 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130112.124740.768.log
[2013.01.15 05:56:44 | 000,688,185 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130115.045644.660.log
[2013.01.16 14:10:22 | 000,385,527 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130116.100400.989.log
[2013.01.19 10:05:12 | 000,549,395 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130119.090511.491.log
[2013.01.19 13:54:48 | 000,751,154 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130119.125448.225.log
[2013.01.31 16:45:47 | 000,314,900 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130131.154547.835.log
[2013.02.05 07:12:52 | 000,655,846 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130205.061252.743.log
[2013.03.02 16:02:32 | 000,019,322 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130302.150232.779.log
[2013.03.03 11:07:05 | 000,004,102 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130303.100650.772.log
[2013.03.04 13:48:59 | 000,171,029 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130304.124859.750.log
[2013.03.14 10:06:37 | 000,462,448 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130314.090637.197.log
[2013.03.22 15:06:17 | 000,266,663 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130322.140617.298.log
[2013.04.08 12:03:20 | 000,435,853 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130408.052320.276.log
[2013.04.08 16:53:31 | 000,304,027 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\crash_downloader.20130408.165331.399.log
[2012.12.26 21:45:02 | 000,354,529 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20121226.204502.623.log
[2013.01.10 20:00:33 | 000,939,101 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130110.190031.470.log
[2013.01.11 20:44:41 | 000,509,466 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130111.194441.456.log

OTL.txt 5

[2013.01.12 13:46:32 | 000,460,789 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130112.124631.675.log
[2013.01.13 21:20:14 | 000,851,422 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130113.202013.877.log
[2013.01.14 07:08:32 | 000,099,220 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130114.060831.965.log
[2013.01.14 21:08:32 | 000,643,586 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130114.200831.859.log
[2013.01.15 15:52:29 | 000,781,219 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130115.145229.233.log
[2013.02.03 14:35:30 | 000,911,736 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130203.133529.690.log
[2013.02.03 17:27:56 | 000,162,312 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130203.162755.941.log
[2013.02.04 14:31:51 | 000,814,834 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130204.133150.423.log
[2013.02.06 16:57:22 | 000,629,496 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130206.155722.032.log
[2013.02.07 16:26:47 | 000,746,640 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130207.152646.835.log
[2013.02.09 17:55:44 | 000,994,845 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130209.165543.633.log
[2013.02.15 20:05:26 | 001,270,040 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130215.190524.057.log
[2013.02.16 16:13:41 | 000,178,429 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130216.151341.103.log
[2013.02.16 19:23:43 | 000,026,044 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130216.182343.860.log
[2013.02.19 14:47:50 | 000,514,293 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130219.134749.948.log
[2013.02.21 19:41:47 | 000,127,106 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130221.184147.166.log
[2013.02.23 19:48:06 | 000,252,416 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130223.184805.700.log
[2013.02.24 17:41:29 | 000,317,017 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130224.164128.883.log
[2013.02.26 18:26:44 | 000,285,487 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130226.172644.211.log
[2013.03.02 13:30:18 | 000,045,479 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130302.123018.532.log
[2013.03.03 12:45:39 | 000,086,890 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130303.114538.994.log
[2013.03.06 19:07:15 | 000,081,423 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130306.180715.178.log
[2013.03.09 13:38:31 | 000,038,664 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130309.123831.634.log
[2013.03.09 19:47:04 | 000,027,436 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130309.184704.203.log
[2013.03.12 13:48:24 | 000,406,595 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130312.124824.569.log
[2013.03.15 19:32:31 | 000,184,042 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130315.183231.533.log
[2013.03.16 15:03:00 | 000,224,072 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130316.140300.414.log
[2013.03.21 14:17:00 | 000,091,472 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130321.131700.253.log
[2013.03.22 19:27:06 | 000,205,749 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130322.182706.725.log
[2013.03.23 15:40:11 | 000,139,375 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130323.144011.450.log
[2013.03.27 21:32:30 | 000,018,228 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130327.203230.719.log
[2013.03.31 10:02:42 | 000,006,099 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130331.100242.823.log
[2013.04.04 20:58:27 | 000,286,214 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130404.205826.941.log
[2013.04.06 12:42:54 | 000,180,168 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130406.124254.257.log
[2013.04.07 12:26:39 | 000,457,973 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130407.122639.430.log
[2013.04.08 21:10:15 | 000,169,457 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130408.211015.042.log
[2013.04.10 05:18:12 | 000,100,639 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130410.051811.892.log
[2013.04.12 13:44:04 | 000,037,584 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130412.134404.042.log
[2013.04.12 19:42:47 | 000,053,460 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130412.194247.593.log
[2013.04.13 15:31:49 | 000,115,511 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130413.153149.405.log
[2013.04.14 14:05:35 | 000,007,683 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130414.140535.606.log
[2013.04.19 18:14:35 | 000,140,271 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130419.181435.730.log
[2013.04.24 06:23:55 | 000,005,699 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130424.062355.690.log
[2013.04.30 18:46:10 | 000,181,404 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130430.184609.852.log
[2013.05.04 16:56:49 | 000,096,469 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130504.165649.219.log
[2013.05.06 13:41:17 | 000,010,796 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130506.134117.652.log
[2013.05.07 14:39:25 | 000,305,110 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130507.143925.655.log
[2013.05.08 12:02:53 | 000,120,719 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130508.120253.042.log
[2013.05.10 17:49:43 | 000,037,847 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130510.174943.817.log
[2013.05.11 16:50:01 | 000,066,897 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130511.165001.926.log
[2013.05.12 16:16:21 | 000,131,049 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130512.161621.291.log
[2013.05.19 14:11:05 | 000,066,482 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130519.141105.233.log
[2013.05.21 15:24:29 | 000,069,226 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130521.152429.437.log
[2013.06.18 10:57:36 | 000,005,697 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130618.105736.534.log
[2013.06.22 19:19:30 | 000,245,704 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130622.191930.175.log
[2013.06.24 17:34:16 | 000,268,892 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130624.173416.543.log
[2013.06.30 13:13:06 | 000,111,624 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130630.131305.903.log
[2013.07.01 19:19:33 | 000,005,596 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130701.191933.842.log
[2013.07.01 20:25:58 | 000,042,027 | ---- | M] () -- \Users\All Users\VSO\vsorep\log\log_downloader.20130701.202557.990.log
[2012.11.29 16:47:10 | 000,197,580 | ---- | M] () -- \Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\ftdownloader@ftdownloader.com.xpi
[2012.01.30 08:19:00 | 000,004,176 | ---- | M] () -- \Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\{3cb073f3-be3c-4e8f-942d-8a747b54486f}\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
[2013.04.15 13:32:10 | 000,060,416 | ---- | M] () -- \Users\MINO\AppData\Roaming\Seznam.cz\bin\14635libfoxloader-x64.dll
[2013.03.29 13:37:34 | 000,059,384 | ---- | M] () -- \Users\MINO\AppData\Roaming\Seznam.cz\bin\14635libfoxloader.dll
[2013.04.23 15:42:22 | 000,000,165 | ---- | M] () -- \Users\MINO\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2013.02.19 12:07:28 | 000,030,608 | ---- | M] () -- \Users\MINO\AppData\Roaming\Seznam.cz\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2013.03.25 16:27:20 | 000,000,665 | ---- | M] () -- \Users\MINO\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
[2013.03.25 16:27:26 | 000,000,117 | ---- | M] () -- \Users\MINO\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
[2006.10.31 22:02:20 | 000,053,248 | ---- | M] () -- \Users\MINO\AppData\Roaming\wrapper\PhysXLoader.dll
[2013.04.24 06:22:47 | 014,630,632 | ---- | M] () -- \Users\MINO\Documents\vso_downloader_setup.exe
[2013.03.02 16:02:19 | 000,001,034 | ---- | M] () -- \Users\Public\Desktop\VSO Downloader 2.lnk
[2008.11.01 11:37:19 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2008.01.19 09:34:04 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.05.19 15:44:38 | 000,003,102 | ---- | M] () -- \Windows\System32\Tasks\YourFile DownloaderUpdate
[2008.09.21 16:12:43 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_de-de_cb9c6772f81a418b.manifest
[2008.09.21 16:10:59 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_en-us_748d3d6be6f84d50.manifest
[2008.09.21 16:13:09 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_es-es_74589a4fe71f3ef5.manifest
[2008.09.21 16:11:00 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_fr-fr_1710104ed9f15557.manifest
[2008.09.21 16:13:44 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_it-it_01380695b1233ad5.manifest
[2008.09.21 16:13:50 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_ja-jp_a35d85a2a43e4cb0.manifest
[2008.09.21 16:14:13 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_nl-nl_2d992eca70004957.manifest
[2008.09.21 16:12:42 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_de-de_cbf6c366115bebbd.manifest
[2008.09.21 16:10:59 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_en-us_74e7995f0039f782.manifest
[2008.09.21 16:13:08 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_es-es_74b2f6430060e927.manifest
[2008.09.21 16:11:00 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_fr-fr_176a6c41f332ff89.manifest
[2008.09.21 16:13:43 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_it-it_01926288ca64e507.manifest
[2008.09.21 16:13:50 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_ja-jp_a3b7e195bd7ff6e2.manifest
[2008.09.21 16:14:12 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_nl-nl_2df38abd8941f389.manifest
[2008.01.19 04:14:52 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_cs-cz_33426ea9fd097a15.manifest
[2008.09.21 16:10:49 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.16646_none_591b3d986f9b5725.manifest
[2008.09.21 16:10:49 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.20782_none_5975998b88dd0157.manifest
[2008.01.19 00:00:00 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18000_none_5b26ba326ca6e048.manifest
[2008.09.21 16:10:28 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18027_none_5b181c606cb0c98b.manifest
[2008.09.21 16:10:27 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.22125_none_5b9fb89785d036a7.manifest
[2009.04.11 00:12:44 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2006.11.02 12:13:06 | 000,003,970 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6000.16386_none_68fc663d5430d3de.manifest
[2008.01.19 00:05:22 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2006.11.02 14:34:33 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6000.16386_none_43bd59f592b7be86\dmloader.dll
[2008.01.19 09:34:04 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6001.18000_none_45f41bf18fa2cf5a\dmloader.dll
[2008.01.19 09:34:04 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6002.18005_none_47df94fd8cc49aa6\dmloader.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6002.18005_none_b5c807ab2d93d829\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6001.18000_none_b3dc8e9f30720cdd\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6000.16386_none_b1a5cca33386fc09\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 5384 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:661DFA1C
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:373E1720

< End of report >

v prubehu testovani mi Microsoft Security Essentials nasel tohle:

Kategorie: Nástroj

Popis: Tento program má potenciálně nežádoucí chování.

Doporučená akce: Povolte tuto zjištěnou položku pouze v případě, že programu nebo vydavateli softwaru důvěřujete.

Položky:
file:C:\PROGRAMY\TUNE UP UTILITIES 2013 CZ\TuneUp Utilities 2013 keygen\keygen.exe
----------------------------------------------------------------------------------------------------------------------------
Malware Protection Center
Hrozba výzkum a reakce

HackTool:Win32/Keygen (?)

Položka encyklopedie
Aktualizováno: 15 březen 2013 | Publikováno: 16 červenec 2009

Aliasy
Troj/Keygen (Sophos)
Crack (VirusBuster)
not-a-virus:Keygen (Kaspersky)
CRCK_KEYGEN (Trend Micro)

Úroveň výstrahy (?)
Střední

Antimalware ochranu podrobnosti
Microsoft doporučuje stažení nejnovějších definic pro získání ochrany. Zjištění poslední aktualizace:
Definice: 1.153.780.0
Vydáno: 28 Červen 2013 Detekce zpočátku vytvořeny:
Definice: 1.45.287.0
Vydáno: Říjen 07, 2008
HackTool:Win32/Keygen je detekce pro nástroj, který generuje klíče pro různé softwarové produkty.

Na počítačích kde HackTool:Win32/Keygen je detekována, to je obyčejné najít další výskyty další malware.
-------------------------------------------------------------------------------------------------------------------------
a jeste ve virove truhle Avastu mam tohle:

1-TV4UG3WG.txt C:\Windows\System32\config\AppData\Roaming\Microsoft\Cookies....virus JS:ScriptSH-inf (TR)..datum 8.3.2013
2- netbt.sys C:\Windows\winsx\x86_microsoft-netbt_31bf3856ad364_6.0.6002.180005_none_6250416df465f2b1....virus Win32:Aluroot-E(Rtk) datum: 11.4.2009

3-netbt.sys.dump. C:\Windows\system32\drivers......virus Win32:Aluroot-E(Rtk).....datum 22.4.2013

tak teda prosim o radu co s tim mam udelat

Co vam rikaji pojmy autorsky zakon, kradez, licencni podminky Moc se tim nezabyvate ze a proto mate i treba ten TuneUp nelegalne (bez zakoupene licence) ze

Uznavam,zavreme pulku republiky.

Cracky\keygeny a podobne dobroty jsou nejcastejsim zdrojem malware a bordelu, ktery mate v PC. Nase forum nepodporuje a netoleruje piratsky SW. A jaksi kdyz tomu holdujete, tak je pak leceni zbytecne...

Bezi tam Avast a MSE, jeden z nich musi pryc, takze ktery?

vyosek píše: Cracky\keygeny a podobne dobroty jsou nejcastejsim zdrojem malware a bordelu, ktery mate v PC. Nase forum nepodporuje a netoleruje piratsky SW. A jaksi kdyz tomu holdujete, tak je pak leceni zbytecne...

Bezi tam Avast a MSE, jeden z nich musi pryc, takze ktery?

Zdravim vas.
Pro upresneni,ty SW jsou volne ke stazeni treba na Slunecnici,Stahuj atd.,tak proc to nabizeji???? Ja vim,ze to neni
v souladu s pravidli,ale to jsem nevedel.Nikdo z kolegu senikdy nad tim nepozastavil,ale uznavam vasi duslednost.Prosim pomozte mi vylecit ten bordel

A z tech antiviru navrhujete,ktery???? Ja asi MSE.

Ano, volne ke stazeni jsou zkusebni verze, ale slunecnice\stahuj nabizeji radne zakoupeni licence. A nejen s pravidly fora, ale predevsim se zakony CR musi byt dodrzovani licence. Urcite slunecnice\stahuj nenabizeji ke stazeny cracky\keygeny.

Odinstalujte MSE, Avast je daleko kvalitnejsi

Stahnete SecurityCheck http://screen317.spywareinfoforum.org/SecurityCheck.exe

• Ulozte nejlepe na Plochu
• Spustte tradicne dvouklikem a postupujte dle pokynu utility
• Po dokonceni skenu se vytvori a otevre log, ten mi sem vlozte

MSE odinstalovan

Results of screen317's Security Check version 0.99.68
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
avast! Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
TuneUp Utilities 2012
TuneUp Utilities Language Pack (en-US)
CCleaner
TweakNow RegCleaner 2011
Java(TM) 6 Update 13
Java 7 Update 21
Java(TM) 6 Update 7
Java version out of Date!
Adobe Flash Player 11.7.700.224
Adobe Reader 8 Adobe Reader out of Date!
Mozilla Firefox 20.0.1 Firefox out of Date!
Google Chrome 27.0.1453.110
Google Chrome 27.0.1453.116
````````Process Check: objlist.exe by Laurent````````
AVAST Software Avast AvastSvc.exe
AVAST Software Avast AvastUI.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````

Jeste odinstalujte ten nelegalni TuneUp a tak i TweakNow RegCleaner 2011 - obcas maze co nema

Odinstalujte PANDORA.TV

Spustte znovu OTL

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  :otl
  SRV - [2012.09.28 10:25:54 | 000,625,304 | ---- | M] (Pandora.TV) [Auto | Running] -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe -- (PanService)
  DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
  DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
  DRV - File not found [Kernel | Disabled | Stopped] -- System32\DRIVERS\netbt.sys -- (netbt)
  DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
  DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme)
  DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
  IE - HKLM\..\URLSearchHook: {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - No CLSID value found
  IE - HKLM\..\SearchScopes,DefaultScope =
  IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
  IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\URLSearchHook: *{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - No CLSID value found
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes,DefaultScope =
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes\{0F6FF7B9-A040-41BD-9DF5-F85433DEE733}: "URL" = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes\{198BE5EF-6F8B-43EF-9959-BEE103129F70}: "URL" = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes\{1AC41551-8B29-419C-88BA-B1F9139B14C6}: "URL" = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_12454
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes\{35FD2330-604A-4D31-BD43-501C8DC8827C}: "URL" = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes\{76B4494B-253C-4A8A-AF50-20036433A656}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_12454
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes\{833F6631-E528-4FF0-B565-2A1DC2C7BC8A}: "URL" = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_12454
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes\{928CAC77-A316-4D8F-8C4A-27259E4B0F66}: "URL" = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
  IE - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\SearchScopes\{D0172197-EAA8-4429-9494-A089E7502945}: "URL" = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
  O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
  O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - No CLSID value found.
  O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC} - No CLSID value found.
  O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
  O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {8E41E543-E069-4197-8608-E8B4C2F75747} - No CLSID value found.
  O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
  O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
  O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
  O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - No CLSID value found.
  O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC} - No CLSID value found.
  O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
  O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {8E41E543-E069-4197-8608-E8B4C2F75747} - No CLSID value found.
  O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
  O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
  O3 - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\Toolbar\ShellBrowser: (no name) - {8E41E543-E069-4197-8608-E8B4C2F75747} - No CLSID value found.
  O3 - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
  O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
  O15 - HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\..Trusted Domains: localhost ([]http in Internet)
  O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
  O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
  [2013.07.03 08:53:23 | 000,000,000 | ---D | C] -- C:\JRT
  [2013.07.03 08:50:34 | 000,545,954 | ---- | C] (Oleg N. Scherbakov) -- C:\Users\MINO\Documents\JRT.exe
  [2010.05.03 13:06:12 | 002,131,336 | ---- | C] (Ask.com ) -- C:\Program Files\Common Files\AskToolbarInstaller.exe
  [2013.07.03 09:58:36 | 000,000,659 | ---- | M] () -- C:\Windows\DeleteOnReboot.bat
  [2013.07.03 09:10:38 | 000,000,869 | ---- | M] () -- C:\Users\MINO\Desktop\adwcleaner – zástupce.lnk
  [2013.07.03 08:52:33 | 000,000,828 | ---- | M] () -- C:\Users\MINO\Desktop\JRT – zástupce.lnk
  [2013.07.03 08:50:47 | 000,545,954 | ---- | M] (Oleg N. Scherbakov) -- C:\Users\MINO\Documents\JRT.exe
  [2013.07.03 08:16:10 | 000,000,835 | ---- | M] () -- C:\Users\MINO\Desktop\RSIT – zástupce.lnk
  [10 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
  [1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
  [2013.07.03 13:00:24 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
  [2013.07.03 10:13:44 | 000,000,960 | ---- | M] () -- C:\Windows\Tasks\Google Software Updater.job
  [2013.07.03 10:10:53 | 000,000,932 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
  [2013.07.03 13:00:24 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
  [2013.07.03 06:08:18 | 000,000,906 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job
  [2013.07.03 13:08:11 | 000,000,958 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job
  @Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
  @Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6002.18005_none_b5c807ab2d93d829\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
  @Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6001.18000_none_b3dc8e9f30720cdd\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
  @Alternate Data Stream - 5384 bytes -> C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6000.16386_none_b1a5cca33386fc09\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
  @Alternate Data Stream - 5384 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
  @Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:661DFA1C
  @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:373E1720
  
  :reg
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  "OpwareSE4"=-
  "GrooveMonitor"=-
  "seznam-listicka-distribuce"=-
  "SearchProtectAll"=-
  "DivXMediaServer"=-
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
  "B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXBannerAdPlugin.dll"=-
  "B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll"=-
  "B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll"=-
  "B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXPlayerPlugin.dll"=-
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  "GoogleDriveSync"=-
  "cz.seznam.software.szndesktop"=-
  "Skype"=-
  "SearchProtect"=-
  
  :files
  C:\Program Files\SearchProtect
  C:\PROGRAMY\TUNE UP UTILITIES 2013 CZ
  C:\Users\MINO\AppData\Roaming\SearchProtect
   C:\Program Files\PANDORA.TV
  %windir%\system32\*.tmp.dll /s
  %windir%\system32\SET*.tmp /s
  %windir%\*.tmp
  
  :commands
  [RESETHOSTS]
  [EMPTYTEMP]
  [EMPTYFLASH]
  [EMPTYJAVA]

• Nasledne kliknete na Opravit
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

TweakNow RegCleaner 2011 + Tune Up odinstalovano

OTL:

All processes killed
========== OTL ==========
Error: No service named PanService was found to stop!
Service\Driver key PanService not found.
File C:\Program Files\PANDORA.TV\PanService\PandoraService.exe not found.
Service NwlnkFwd stopped successfully!
Service NwlnkFwd deleted successfully!
File system32\DRIVERS\nwlnkfwd.sys not found.
Service NwlnkFlt stopped successfully!
Service NwlnkFlt deleted successfully!
File system32\DRIVERS\nwlnkflt.sys not found.
Service netbt stopped successfully!
Service netbt deleted successfully!
File System32\DRIVERS\netbt.sys not found.
Service IpInIp stopped successfully!
Service IpInIp deleted successfully!
File system32\DRIVERS\ipinip.sys not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\ComboFix\catchme.sys not found.
Service blbdrive stopped successfully!
Service blbdrive deleted successfully!
File C:\Windows\system32\drivers\blbdrive.sys not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{A3BC75A2-1F87-4686-AA43-5347D756017C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}\ not found.
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\StartPageCache| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\*{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\*{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}\ not found.
HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0F6FF7B9-A040-41BD-9DF5-F85433DEE733}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0F6FF7B9-A040-41BD-9DF5-F85433DEE733}\ not found.
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\{198BE5EF-6F8B-43EF-9959-BEE103129F70}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{198BE5EF-6F8B-43EF-9959-BEE103129F70}\ not found.
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\{1AC41551-8B29-419C-88BA-B1F9139B14C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1AC41551-8B29-419C-88BA-B1F9139B14C6}\ not found.
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\{35FD2330-604A-4D31-BD43-501C8DC8827C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{35FD2330-604A-4D31-BD43-501C8DC8827C}\ not found.
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\{76B4494B-253C-4A8A-AF50-20036433A656}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{76B4494B-253C-4A8A-AF50-20036433A656}\ not found.
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\{833F6631-E528-4FF0-B565-2A1DC2C7BC8A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{833F6631-E528-4FF0-B565-2A1DC2C7BC8A}\ not found.
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\{928CAC77-A316-4D8F-8C4A-27259E4B0F66}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{928CAC77-A316-4D8F-8C4A-27259E4B0F66}\ not found.
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\SearchScopes\{D0172197-EAA8-4429-9494-A089E7502945}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D0172197-EAA8-4429-9494-A089E7502945}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3041D03E-FD4B-44E0-B742-2D9B88305F98} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3041D03E-FD4B-44E0-B742-2D9B88305F98}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{8E41E543-E069-4197-8608-E8B4C2F75747} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E41E543-E069-4197-8608-E8B4C2F75747}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3041D03E-FD4B-44E0-B742-2D9B88305F98} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3041D03E-FD4B-44E0-B742-2D9B88305F98}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4724C5D8-DFA7-417A-A2F5-1EABFEE9B4AC}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{8E41E543-E069-4197-8608-E8B4C2F75747} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E41E543-E069-4197-8608-E8B4C2F75747}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{8E41E543-E069-4197-8608-E8B4C2F75747} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E41E543-E069-4197-8608-E8B4C2F75747}\ not found.
Registry value HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{A057A204-BACC-4D26-9990-79A187E2698E} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-1876766861-4099627362-3959107545-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\localhost\ deleted successfully.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
C:\JRT\temp folder moved successfully.
C:\JRT\erunt folder moved successfully.
C:\JRT folder moved successfully.
C:\Users\MINO\Documents\JRT.exe moved successfully.
C:\Program Files\Common Files\AskToolbarInstaller.exe moved successfully.
C:\Windows\DeleteOnReboot.bat moved successfully.
C:\Users\MINO\Desktop\adwcleaner – zástupce.lnk moved successfully.
C:\Users\MINO\Desktop\JRT – zástupce.lnk moved successfully.
File C:\Users\MINO\Documents\JRT.exe not found.
C:\Users\MINO\Desktop\RSIT – zástupce.lnk moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2DF2.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3301.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP33B.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP55BE.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6C3B.tmp\System.Web.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6C3B.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP77AF.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP81A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9052.tmp\System.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9052.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE752.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPEEF0.tmp folder deleted successfully.
C:\Windows\Installer\MSI2329.tmp deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\Tasks\Google Software Updater.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job moved successfully.
ADS C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT deleted successfully.
ADS C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6002.18005_none_b5c807ab2d93d829\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh deleted successfully.
Unable to delete ADS C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6001.18000_none_b3dc8e9f30720cdd\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
Unable to delete ADS C:\Windows\winsxs\x86_microsoft-windows-p..rastructureconsumer_31bf3856ad364e35_6.0.6000.16386_none_b1a5cca33386fc09\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
Unable to delete ADS C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
ADS C:\ProgramData\TEMP:661DFA1C deleted successfully.
ADS C:\ProgramData\TEMP:373E1720 deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\OpwareSE4 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SearchProtectAll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DivXMediaServer deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXBannerAdPlugin.dll deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXPlayerPlugin.dll deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveSync deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Skype deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SearchProtect not found.
========== FILES ==========
File\Folder C:\Program Files\SearchProtect not found.
File\Folder C:\PROGRAMY\TUNE UP UTILITIES 2013 CZ not found.
File\Folder C:\Users\MINO\AppData\Roaming\SearchProtect not found.
File\Folder C:\Program Files\PANDORA.TV not found.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: MINO
->Temp folder emptied: 138001870 bytes
->Temporary Internet Files folder emptied: 258618 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 3866666 bytes
->Google Chrome cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 2024 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 538577 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 136,00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: MINO
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: MINO
->Java cache emptied: 0 bytes

User: Public

Total Java Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 07062013_132142

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

v prubehu testovani mi Microsoft Security Essentials nasel tohle:

Kategorie: Nástroj

Popis: Tento program má potenciálně nežádoucí chování.

Doporučená akce: Povolte tuto zjištěnou položku pouze v případě, že programu nebo vydavateli softwaru důvěřujete.

Položky:
file:C:\PROGRAMY\TUNE UP UTILITIES 2013 CZ\TuneUp Utilities 2013 keygen\keygen.exe
----------------------------------------------------------------------------------------------------------------------------
Malware Protection Center
Hrozba výzkum a reakce

HackTool:Win32/Keygen (?)

Položka encyklopedie
Aktualizováno: 15 březen 2013 | Publikováno: 16 červenec 2009

Aliasy
Troj/Keygen (Sophos)
Crack (VirusBuster)
not-a-virus:Keygen (Kaspersky)
CRCK_KEYGEN (Trend Micro)

Úroveň výstrahy (?)
Střední

Antimalware ochranu podrobnosti
Microsoft doporučuje stažení nejnovějších definic pro získání ochrany. Zjištění poslední aktualizace:
Definice: 1.153.780.0
Vydáno: 28 Červen 2013 Detekce zpočátku vytvořeny:
Definice: 1.45.287.0
Vydáno: Říjen 07, 2008
HackTool:Win32/Keygen je detekce pro nástroj, který generuje klíče pro různé softwarové produkty.

Na počítačích kde HackTool:Win32/Keygen je detekována, to je obyčejné najít další výskyty další malware.
-------------------------------------------------------------------------------------------------------------------------
a jeste ve virove truhle Avastu mam tohle:

1-TV4UG3WG.txt C:\Windows\System32\config\AppData\Roaming\Microsoft\Cookies....virus JS:ScriptSH-inf (TR)..datum 8.3.2013
2- netbt.sys C:\Windows\winsx\x86_microsoft-netbt_31bf3856ad364_6.0.6002.180005_none_6250416df465f2b1....virus Win32:Aluroot-E(Rtk) datum: 11.4.2009

3-netbt.sys.dump. C:\Windows\system32\drivers......virus Win32:Aluroot-E(Rtk).....datum 22.4.2013

tak teda prosim o radu co s tim mam udelat

Omlouvam se,ale ja vul jsem poslal OTL dvakrat,ale chtel jsem vedet jestli mame vyresene to s tema virama,co s virovou truhlou Avastu,kde je ulozen ten bordel

a jeste dotaz:co nahradit misto TuneUp,nebo tweaknow

Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/

• Ulozte nejlepe na Plochu a rozbalte
• Spustte kliknutim na mbanr
• Nyni postupne kliknete na Next a Update
• Po dokonceni update (aktualizace) databaze kliknete opet na Next
• Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC
• Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko
• Tez zkontrolujte, jetsli je zatrzitko u Create Restore point
• Nyni kliknete na CleanUp cimz nalezenou infekci odstranime
• PC bude restartovan
• Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte